JP2005135256A - Program, method and system for communication using password - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To make it possible to realize communication in which confidentiality of a password is enhanced easily at a sending side without installing dedicated software at a receiver side. <P>SOLUTION: A server 1 provides an EC (electronic commerce) site in which a web page is provided for selling digital contents (application programs such as shareware, wall paper, ringer melody, music and the likes) via a network. After distribution of the digital contents purchased by a customer via each terminal, the server 1 issues a key, that is a password corresponding to the digital content. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to a password communication system, a password communication program, and a password communication method.

  When accessing a server from a terminal via a network, the legitimacy of a user is generally determined based on authentication information such as a password. Thereby, access is permitted for a regular user.

  Further, even when software is sold through the Internet, it is necessary to input authentication information such as a password in order for a legitimate user to use software downloaded from a server to a terminal.

In the case of the above form, a procedure for notifying the user of the password is required. For notification of a password, there are sending means such as mail, mail and facsimile. If mail can be used by the user at the destination, a password is often inserted into the mail text (Patent Document 1).
JP 2003-256670 A

  Today, when highly confidential information is communicated by e-mail or the like, there is a communication in which confidentiality is enhanced by a technique such as encryption, or by embedding in an image by an implant technique.

  However, in this type of communication, encryption and decryption processes are required on the transmission side and the reception side, respectively. Therefore, it is necessary to install dedicated software on the transmission side and the reception side, respectively, and there is a concern that the scale of the system will increase depending on the number of users. As a result, there is a risk that the cost may be increased.

  SUMMARY OF THE INVENTION An object of the present invention is to provide a password communication system, a password communication program, and a password communication method capable of realizing communication with a password having high confidentiality easily without preparing dedicated software on the receiving side. Is to provide.

  In order to solve the above-described problems and achieve the above object, a password communication system according to the invention of claim 1 is a password communication system for electronic commerce via a network, and includes customer information including an email address. First storage means for storing, second storage means for storing a password for unlocking each digital content in association with each other, and the network in response to a request from a terminal with reference to the first storage means Distribution means for distributing the digital content via the second storage means, image conversion means for reading out a password for unlocking the digital content distributed by the distribution means from the second storage means and converting it into image data, and the first Read the email address of the customer who purchased the digital content distributed by the distribution means by referring to the storage means. And a mail creating means for creating a mail with the image data obtained by the image converting means attached to the mail address, and a mail transmitting means for sending the mail created by the mail creating means. It is characterized by this.

  A password communication program according to the invention of claim 2 is a password communication program that can be executed by a computer of a server that conducts electronic commerce over a network, and stores customer information including a mail address in the computer. A first step of distributing digital content via the network in response to a request from a terminal with reference to one storage means, and a password for unlocking the digital content distributed in the first step A second step of reading from the second storage means for storing the password for unlocking in association with each other and converting it into image data; and the digital content distributed in the first step with reference to the first storage means Read the email address of the customer who purchased A third step of creating a mail with the image data obtained in the second step attached to an address and a fourth step of transmitting the mail created in the third step are executed. To do.

  In addition, the password communication method according to the invention of claim 3 is a password communication method when performing electronic commerce via a network, from the terminal with reference to the first storage means for storing customer information including a mail address. A first step of distributing digital content via the network in response to a request of the user, and a password for unlocking the digital content distributed in the first step for each digital content A second step of reading out from the second storage means for storing the information and converting it into image data, and reading out the mail address of the customer who purchased the digital content distributed in the first step with reference to the first storage means Attach the image data obtained in the second step to the email address A third step of creating a mail, and a fourth step of transmitting the mail created in the third step, is characterized in that comprises a.

  A password communication system according to the invention of claim 4 is a password communication system for performing login control via a network, and includes a first storage means for storing user information including a mail address, and each user. And a second storage means for storing a password for permitting login in association with each other, and a password to be supplied to an authorized user with reference to the first storage means is read out from the second storage means into image data. The image conversion means for conversion and the mail address of the authorized user are read with reference to the first storage means, and a mail with the image data obtained by the image conversion means attached to the mail address is created. Log from the terminal via the network, the mail creating means, the mail transmitting means for sending the mail created by the mail creating means, and the network A verification unit for verifying the password received from the terminal with reference to the second storage unit, and a notification unit for notifying whether login is possible or not according to the result of the verification unit. It is characterized by.

  A password communication program according to a fifth aspect of the invention is a password communication program that can be executed by a computer of a server that performs login control via a network, and stores user information including a mail address in the computer. The first step of referring to the first storage means and reading out the password to be supplied to the authorized user from the second storage means for storing the password for permitting login for each user in association with each other and converting it into image data And a second step of reading the legitimate user's mail address with reference to the first storage means, and creating a mail with the image data obtained in the first step attached to the mail address; A third step of sending the mail created in the second step, and a terminal via the network When there is a login request, a fourth step of checking the password received from the terminal with reference to the second storage means, and a fifth step of notifying whether login is possible according to the result of the fourth step; Is executed.

  The password communication method according to the invention of claim 6 is a password communication method when performing login control via a network, and is authorized by referring to the first storage means for storing user information including an email address. A first step of reading out the password to be supplied to the user from the second storage means for storing the password for permitting login for each user in association with each other, and referring to the first storage means The second step of reading out the mail address of the legitimate user and creating a mail with the image data obtained in the first step attached to the mail address, and the mail created in the second step And when there is a login request from the terminal via the network, the second storage means is referred to A fourth step of collating the password received from the end and is characterized in that it comprises a fifth step of notifying the log propriety in accordance with the result of the fourth step.

  According to the present invention, a password communication system, a password communication program, and a password communication method capable of easily realizing communication with enhanced password confidentiality only on the transmission side without preparing dedicated software on the reception side. Can be provided.

Hereinafter, an embodiment according to the present invention will be described in detail with reference to the accompanying drawings.
(Embodiment 1)
First, the first embodiment will be described. FIG. 1 is a block diagram showing a password communication system according to Embodiment 1 of the present invention. For example, as shown in FIG. 1, the password communication system communicates with a terminal such as a PC (personal computer) 2 via a network such as the server 1 and the Internet 6, or the server 1, the base station 4, and a mobile unit. It communicates with a communication terminal such as the mobile phone 3 via a network such as the communication network 5 and the Internet 6, images the password issued from the server 1, and distributes it to the target terminal.

  The server 1 provides an EC (electronic commerce) site that provides a sales page for digital contents (application programs such as shareware, wallpaper, ringtones, music, etc.) via a network. After distributing the digital content purchased by the customer via each terminal, the server 1 issues a use key corresponding to the digital content, that is, a password.

  The PC 2 includes a display 21, an operation input unit 22, browser software for browsing the web via the network (Internet 6), mail exchange mailer software, and the like. The PC 2 can function the digital content by accessing the EC site provided by the server 1 via the network, receiving the password from the server 1 after purchasing the desired digital content.

  In addition to the display 31 and the operation input unit 32, the mobile phone 3 includes browser software for browsing the web via a network (base station 4, mobile communication network 5 and Internet 6), mail exchange mailer software, and the like. doing. The mobile phone 3 can function the digital content by accessing the EC site provided by the server 1 via the network, purchasing the desired digital content, and receiving a password from the server 1.

  The mobile communication network 5 connects a plurality of base stations (for example, the base station 4) to construct a mobile phone wireless communication network, and is connected to the Internet 6 by a gate server (not shown).

  Next, the first embodiment will be functionally described. 2 is a block diagram for explaining functions of the password communication system according to the first embodiment, FIG. 3 is a block diagram showing a server configuration example of the password communication system according to the first embodiment, and FIG. 4 is a block diagram showing the present embodiment. 5 is a diagram for explaining an example of user management according to FIG. 1, FIG. 5 is a diagram for explaining an example of a reception screen according to the first embodiment, and FIG. 6 is a flowchart for explaining an operation according to the first embodiment. Here, the PC 2 is taken as an example of the representative on the terminal side, but the same applies to the mobile phone 3. Moreover, shareware is taken as an example of digital content, but the same applies to other digital content such as ringtones.

  The server system includes a server 1, a shareware management database 11, and a user management database 12. For example, as shown in FIG. 2, the server 1 includes a shareware purchase acceptance unit 101, a shareware purchase confirmation unit 102, a shareware transmission unit 103, a password issue / registration unit 104, a character string-image conversion unit 105, and a password attachment. The mail creation unit 106 and the password-attached mail transmission unit 107 are configured.

  For example, as shown in FIG. 2, the PC 2 includes a shareware purchase request unit 201, a download processing unit 202, a memory 203, a password registration unit 204, a shareware execution unit 205, a mail receiving unit 206, a mail opening processing unit 207, a display 21 and the operation input unit 22.

  For example, as shown in FIG. 3, the server 1 is connected to the Internet 6 in terms of hardware, and controls the communication control unit 13 that controls communication with other devices via the Internet 6 and controls the entire server. A CPU, a ROM storing a control program, a control unit 14 having a memory for storing various data in a storage area, a DB interface 15 connected to the shareware management DB 11 and the user management DB 12, and the like are provided.

  Shareware purchase acceptance unit 101, shareware purchase confirmation unit 102, shareware transmission unit 103, password issuance and registration unit 104, character string-image conversion unit 105, password-attached email creation unit 106, and password-attached email transmission unit 107 Is executed by the control unit 14.

  The shareware management DB 11 accumulates shareware (application program) that is a sale product, and can read the shareware specified by the control unit 14.

  For example, as shown in FIG. 4, the user management DB 12 is configured such that a record is added when shareware purchase is confirmed. For example, in the case of a user xxx, shareware is purchased on October 24, 2003, and the password that is the use key of the shareware is “27KVLN”.

  In order to distribute the password to the user xxx by mail, the mail address “xxxx@aaa.com” is registered correspondingly. Similarly, in the case of the user yyyy, shareware is purchased on October 25, 2003, and the password that is the use key of the shareware is “29KVLM”. In order to distribute the password to the user yyyy by e-mail, the e-mail address “yyyy@bbb.com” is registered correspondingly.

  Here, the flow of processing will be described using the functional configuration of FIG. 2, the screen transition of FIG. 5, and the operation description of FIG. For example, in the PC 2, when the operation input unit 22 is operated by the user and the shareware desired to be purchased is specified, the shareware purchase request unit 201 requests the server 1 to purchase a desired shareware (designation of purchase desired product). Etc.) is issued (step S21).

  At this time, in the server 1, a purchase request is received by the shareware purchase receiving unit 101, and the shareware to be purchased is determined by the shareware purchase determination unit 102. That is, when access from the user's PC 2 is accepted in the server 1 (step S11), a shareware purchase screen is prepared according to the access and transmitted to the PC 2 (step S12).

  When the PC 2 receives the shareware purchase screen, the display is performed as shown in FIG. 5A (step S22). On the shareware purchase screen, various products (shareware) are displayed in association with the amount of money and selectable by radio buttons (FIG. 5A). For example, when a clock application is selected by a user operation, a confirmation screen (FIG. 5B) is displayed by operating the purchase icon IC1, and a shareware purchase procedure is executed between the server 1 and the PC 2. (Step S13, Step S23).

  Thereafter, in the server 1, a confirmation screen is prepared and transmitted to the PC 2 (step S14). In PC2, when the confirmation screen is received, it is displayed as shown in FIG. 5B (step S24). When the user operates the confirmation icon IC2, the confirmation operation is notified to the server 1 (step S25). In the server 1, when purchase confirmation is accepted (step S15), a purchase notification screen is prepared and transmitted (step S16).

  When the purchase notification screen is received, the PC 2 displays the screen as shown in FIG. 5C (step S26). When the purchase procedure is completed in this way, as shown in FIG. 2, in the server 1, the shareware of the purchased product is read from the shareware management DB 11 by the shareware transmission unit 103 and transmitted to the PC 2. . In the PC 2, the download is started by the download processing unit 202 and stored in the memory 203.

  Thereafter, in the server 1, a password is issued by the password issuance and registration unit 104, and is registered in the user management DB 12 as in the example of FIG. 4 (step S17). The issued password is converted from the character string into image data (JPEG, GIF, PNG, etc.) by the character string-image converting unit 105 (step S18).

  The password (image data) prepared in this way is attached to the mail by the password attached mail creating unit 106. At this time, the corresponding mail address (destination) is read from the user management DB 12. Then, the password-attached mail transmission unit 107 transmits the password-attached mail toward the destination (step S19).

  In the PC 2, when a mail with a password attached is received by the mail receiving unit 206, which is a mailer, the mail is opened by the mail opening processing unit 207 according to the operation of the operation input unit 22 by the user. The mail opened in this way is displayed on the display 21 (step S27). For example, as shown in FIG. 5D, the password is displayed as an image IMG1.

On the PC 2 side, the password registration unit 204 inputs and registers “ABCDEFGH” indicated in the image IMG1 when the shareware is installed by operating the operation input unit 22 (step S28), whereby the user acquires the purchased shareware. Can be used.
(Embodiment 2)

  Next, the second embodiment will be described. FIG. 7 is a block diagram showing a password communication system according to Embodiment 2 of the present invention. For example, as shown in FIG. 7, the password communication system communicates with a terminal such as a PC (personal computer) 2 via a network such as a password issuing server 7, a development server 8 and the Internet 6, or a server 1 And the base station 4, the mobile communication network 5, and the Internet 6, communicate with the communication terminal such as the mobile phone 3 through the network, and image the password issued from the password issuing server 7 to the target terminal. Are distributed and made accessible to the development server 8.

  The password issuing server 7 issues a password for accessing the development server 8 via the network, and the development server 8 permits the access with the regular password and proceeds with the development via the network. Is. The PC 2, the mobile phone 3, the base station 4, and the mobile communication network 5 are as described above, and a description thereof is omitted.

  Next, the second embodiment is functionally described. FIG. 8 is a block diagram for explaining the functions of the password communication system according to the second embodiment, FIG. 9 is a diagram for explaining an example of user management according to the second embodiment, and FIG. 10 is a reception according to the second embodiment. FIGS. 11 and 12 are flowcharts for explaining an operation according to the second embodiment. Here, the mobile phone 3 is taken as an example as a representative of the terminal side, but the same applies to the PC 2.

  The server system includes a password issuing server 7, a development server 8, and a user management database 71. For example, as shown in FIG. 8, the password issuing server 7 includes a password issuing / registration unit 701, a character string-image conversion unit 702, a password attached mail creating unit 703, a password attached mail transmitting unit 704, and the like. For example, as shown in FIG. 8, the development server 8 includes an access reception unit 801, a password reception and verification unit 802, a login notification processing unit 803, and the like.

  For example, as shown in FIG. 8, the PC 2 includes a mail receiving unit 301, a mail opening processing unit 302, an access communication unit 303, a password input and transmission unit 304, a notification receiving unit 305, a display 31, an operation input unit 32, and the like. Is done.

  Although not shown, the password issuing server 7 and the development server 8 are both connected to the Internet 6 in terms of hardware, and a communication control unit that controls communication with other devices via the Internet 6, the entire server A control unit having a CPU for controlling the control, a ROM storing a control program, a memory for storing various data in a storage area, a DB interface connected to the user management DB 12, and the like.

  In the password issuing server 7, the password issuing / registration unit 701, the character string-image conversion unit 702, the password attached mail creation unit 703, and the password attached mail transmission unit 704 are executed by a control unit in the server. In the development server 8, the access receiving unit 801, the password receiving / verifying unit 802, and the login notification processing unit 803 are executed by a control unit in the server.

  For example, as shown in FIG. 9, the user management DB 71 is configured such that a record of a company (user) that gives an access right with the password issuance is added. For example, in the case of a company ccc, the person in charge of accessing “Ichiro Sato” and the password distributed to the person in charge with access rights are “1298 # 3N”. In order to distribute the password by mail to the person in charge “Ichiro Sato”, the mail address “sat@ccc.com” is registered correspondingly.

  Similarly, in the case of the company ddd, the person in charge of access “Taro Yamada” and the password distributed to the person in charge with access rights are “3486 # 6M”. In order to distribute the password by email to the person in charge “Taro Yamada”, the mail address “yam@ddd.com” is registered in correspondence.

  Here, the flow of processing will be described using the functional configuration of FIG. 8, the screen transition of FIG. 10, and the operation description of FIGS. 11 and 12. In the password issuing server 7, a password is issued by the password issuing and registration unit 701, and is registered in the user management DB 71 as in the example of FIG. 9 (step S31). The issued password is converted from the character string into image data (JPEG, GIF, PNG, etc.) by the character string-image conversion unit 702 (step S32).

  The password (image data) prepared in this way is attached to the mail by the password attached mail creating unit 703. At this time, the corresponding mail address (destination) is read from the user management DB 71. Then, the password-attached mail transmission unit 704 transmits the password-attached mail toward the destination (step S33).

  In the mobile phone 3, when a mail with a password attached is received by the mail receiving unit 301, which is a mailer, the mail is opened by the mail opening processing unit 302 according to the operation of the operation input unit 32 by the user. The mail opened in this way is displayed on the display 31 (step S41). For example, as shown in FIG. 10, the password is displayed as an image IMG2.

  On the mobile phone 3 side, the access communication unit 303 accesses the development server 8 by operating the operation input unit 32 (step S61). In the development server 8, when access from the mobile phone 3 is received by the access receiving unit 801 (step S51), a login screen is prepared and transmitted to the mobile phone 3 (step S52).

  In the mobile phone 3, the login screen is received and displayed on the display 31 (step S62). Since this login screen is provided with a password input field, the password input by the operation input unit 32 and the password input by the transmission unit 304 are transmitted to the development server 8 (step S63).

  In this way, in the development server 8, the password reception and verification unit 802 refers to the user management DB 71 and performs authentication by verifying the password (step S53). The collation result, that is, the authentication result is notified to the mobile phone 3 by the login notification processing unit 803 (step S54). When the mobile phone 3 receives the notification sent from the development server 8, it is displayed on the display 31 (step S64).

  Here, the notification of the login result is a notification that permits access when a password verification match result is obtained, and is a notification that denies access when a password verification mismatch result is obtained.

  The present invention is used in industries that manufacture password communication systems, password communication programs, and password communication methods.

It is a block diagram which shows the password communication system by Embodiment 1 of this invention. It is a block diagram for demonstrating the function of the password communication system by this Embodiment 1. FIG. It is a block diagram which shows the server structural example of the password communication system by this Embodiment 1. FIG. It is a figure explaining an example of the user management by this Embodiment 1. FIG. It is a figure explaining the example of a receiving screen by this Embodiment 1. FIG. 4 is a flowchart for explaining an operation according to the first embodiment. It is a block diagram which shows the password communication system by Embodiment 2 of this invention. It is a block diagram for demonstrating the function of the password communication system by this Embodiment 2. FIG. It is a figure explaining an example of the user management by this Embodiment 2. FIG. It is a figure explaining the example of a receiving screen by this Embodiment 2. FIG. It is a flowchart explaining the operation | movement at the time of the password issuing by this Embodiment 2. FIG. It is a flowchart explaining the operation | movement at the time of login by this Embodiment 2. FIG.

Explanation of symbols

1 server 2 PC
3 Mobile phone 5 Mobile communication network 6 Internet 7 Password issuing server 8 Development server 11 Shareware management database 12 User management database 13 Communication control unit 14 Control unit 15 DB interface 101 Shareware purchase acceptance unit 102 Shareware purchase confirmation unit 103 Shareware transmission unit 104 Password issuance and registration unit 105 Character string-image conversion unit 106 Password-attached email creation unit 107 Password-attached email transmission unit 701 Password issuance and registration unit 702 String-image conversion unit 703 Password-attached email creation unit 704 Password Attached mail transmission unit 801 Access reception unit 802 Password reception and verification unit 803 Login notification processing unit

Claims (6)

A password communication system for electronic commerce via a network,
First storage means for storing customer information including an email address;
Second storage means for storing a password for unlocking each digital content in association with each other;
Distribution means for distributing digital content via the network in response to a request from a terminal with reference to the first storage means;
Image conversion means for reading a password for unlocking the digital content distributed by the distribution means from the second storage means and converting it into image data;
The mail address of the customer who purchased the digital content distributed by the distribution means is read with reference to the first storage means, and a mail with the image data obtained by the image conversion means attached to the mail address is created. Email creation means;
Mail sending means for sending the mail created by the mail creating means;
A password communication system comprising: A password communication program that can be executed on a computer of a server that performs electronic commerce via a network,
In the computer,
A first step of distributing digital content via the network in response to a request from a terminal with reference to a first storage means for storing customer information including an email address;
A password for unlocking the digital content distributed in the first step is read from the second storage means for storing the password for unlocking each digital content in association with the second, and converted to image data. Steps,
Read the mail address of the customer who purchased the digital content distributed in the first step with reference to the first storage means, and create a mail with the image data obtained in the second step attached to the mail address And a third step
A fourth step of sending the mail created in the third step;
A password communication program characterized in that A password communication method for electronic commerce via a network,
A first step of distributing digital content via the network in response to a request from a terminal with reference to a first storage means for storing customer information including an email address;
A password for unlocking the digital content distributed in the first step is read from the second storage means for storing the password for unlocking each digital content in association with each other, and converted into image data. Steps,
Read the mail address of the customer who purchased the digital content distributed in the first step with reference to the first storage means, and create a mail with the image data obtained in the second step attached to the mail address And a third step
A fourth step of sending the mail created in the third step;
A password communication method comprising: A password communication system for performing login control via a network,
First storage means for storing user information including an email address;
Second storage means for storing a password for permitting login for each user in association with each other;
An image conversion means for reading out a password to be supplied to an authorized user with reference to the first storage means from the second storage means and converting it into image data;
A mail creating means for reading the mail address of the authorized user with reference to the first storage means and creating a mail with the image data obtained by the image converting means attached to the mail address;
Mail sending means for sending the mail created by the mail creating means;
When there is a login request from the terminal via the network, a verification unit that verifies the password received from the terminal with reference to the second storage unit;
Notification means for notifying whether or not login is possible according to the result of the matching means;
A password communication system comprising: A password communication program that can be executed on a server computer that performs login control via a network,
In the computer,
From the second storage means for storing the password to be supplied to the authorized user with reference to the first storage means for storing the user information including the mail address in association with the password for permitting login for each user. A first step of reading and converting to image data;
A second step of reading the legitimate user's mail address with reference to the first storage means, and creating a mail with the image data obtained in the first step attached to the mail address;
A third step of sending the mail created in the second step;
A fourth step of collating a password received from the terminal with reference to the second storage means when there is a login request from the terminal via the network;
A fifth step of notifying whether to log in according to the result of the fourth step;
A password communication program characterized in that A password communication method when performing login control via a network,
From the second storage means for storing the password to be supplied to the authorized user with reference to the first storage means for storing the user information including the mail address in association with the password for permitting login for each user. A first step of reading and converting to image data;
A second step of reading the legitimate user's mail address with reference to the first storage means, and creating a mail with the image data obtained in the first step attached to the mail address;
A third step of sending the mail created in the second step;
A fourth step of checking a password received from the terminal with reference to the second storage means when there is a login request from the terminal via the network;
A fifth step of notifying whether to log in according to the result of the fourth step;
A password communication method comprising:

Images