JP2005182129A - Individual authentication method for automatic transaction apparatus, and automatic transaction apparatus - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an individual authentication method for an automatic transaction apparatus, and an apparatus that can enhance the strength of individual authentication without the addition of incidental equipment such as a biometric identification device, and keep customer convenience intact. <P>SOLUTION: The method for individual authentication on the automatic transaction apparatus at withdrawal from a user's account comprises the steps of, upon the user's withdrawal operation on the automatic transaction apparatus, displaying an input screen for a password conditioning at least any one of a withdrawal amount, a withdrawal limit date and a withdrawal type, which has been generated and registered by the user's request before the withdrawal operation in an account file in an apparatus superior to the automatic transaction apparatus; collating for authentication a password entered by the user with the password registered in advance in the account file; and determining whether or not to permit the withdrawal according to the authentication result. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to an identity verification method in an automatic transaction apparatus that deposits and withdraws cash or electronic money in a bank or the like, and an automatic transaction apparatus to which the method is applied.

Conventionally, the following method is known as an identity verification method in an automatic transaction apparatus that deposits and withdraws cash at a bank or the like.
In other words, identification methods based on manned visual inspection and questions of identification information, identification methods using seals, identification methods using personal identification numbers, identification methods using one-time passwords using a random number table, identification methods using biometric identification, etc. .
Of these, the identification method using a personal identification number is often used. In this identity verification method using a personal identification number, if the presence of a cash card matches the four-digit personal identification number registered in advance and the personal identification number entered on the screen, the transaction is deemed to be the principal. Deciding.

However, with this method, if a cash card is stolen, cash will be withdrawn from the account without permission if the PIN is known. In order to make the PIN number difficult to forget, the date of birth, telephone number, car license plate number, etc. are often used. For this reason, if the information that can be found together with the cash card is also stolen together, the personal identification number can be easily inferred.
There is a lot of damage caused by theft of cash cards, and this measure is necessary, but if you simply increase the number of digits in the PIN, you will forget the PIN or you will not be able to remember it. Contrary to this, there is a concern that convenience will decrease and damage will increase.

In view of this, it is conceivable to adopt a personal identification method using a seal stamp or a personal identification method using biometric identification to make the conditions for determining the person stricter.
However, when the identity verification method using a seal stamp or the identity verification method based on biometric identification is adopted, not only the capital investment for the automatic transaction apparatus becomes enormous, but also the seal stamp has a strong risk of theft and counterfeiting. If so, there is a part that depends on injury and physical condition, and there is a concern about a decrease in convenience.
Further, as disclosed in Patent Document 1 below, a plurality of cash cards are used, and a personal identification number and a biometric identification function are used in combination. Is considered, a transaction type and a transaction limit corresponding to this rank are presented, and when a transaction that cannot be handled is selected, a transaction addition is notified to the user.
JP 2002-288424 A

  However, even when the identity verification method described in Patent Document 1 is adopted, it is necessary to attach a biometric identification device to the automatic transaction apparatus, which causes a problem that capital investment increases.

  An object of the present invention is to provide an identity verification method and apparatus in an automatic transaction apparatus capable of improving the strength of identity verification without adding additional facilities such as a biometric identification device and not impairing customer convenience. It is to provide.

In order to achieve the above object, an identity verification method according to the present invention is a method for performing identity verification related to withdrawal from an account owned by a user using an automatic transaction apparatus, wherein For a cash operation, at least one of the withdrawal amount, withdrawal date, and withdrawal type generated and registered at the request of the user before the withdrawal operation in the account file of the host device of the automatic transaction device A step of displaying a password input screen, verifying the identity by comparing the password input by the user with the password registered in advance in the account file, and determining whether to withdraw according to the confirmation result It is characterized by that.
The password may be generated for each withdrawal transaction unit in response to a request from an information terminal used by a user.
In addition, for the withdrawal operation of the user in the automatic transaction apparatus, the condition is checked before the password is verified, and the withdrawal amount, withdrawal date and withdrawal type specified by the user do not match the above condition. Includes a step of determining that the transaction is impossible.
In addition, for the withdrawal operation of the user in the automatic transaction apparatus, the issuance condition of the password is checked after the verification of the password, and the user specifies even when the password matches the password registered in the account file. The method includes a step of determining that the transaction is impossible when the withdrawal amount, the due date of withdrawal, and the withdrawal type do not match the above conditions.

The automatic transaction apparatus according to the present invention is an automatic transaction apparatus that determines whether or not withdrawal is possible after performing identity verification related to withdrawal from an account owned by a user,
For a user's withdrawal operation, at least one of the withdrawal amount, withdrawal date, and withdrawal type generated and registered at the request of the user in the account file of the host device of the automatic transaction apparatus before the withdrawal operation The password input screen is displayed, and the password entered by the user is sent to the host device, verified against the password registered in the account file in advance, and the confirmation result is received. Means for determining whether or not money is allowed is provided.
The password may be generated for each withdrawal transaction unit in response to a request from an information terminal used by a user.

  ADVANTAGE OF THE INVENTION According to this invention, the intensity | strength of identity verification can be improved without adding incidental facilities, such as a biometrics identification apparatus, and it can avoid impairing a customer's convenience.

Hereinafter, an embodiment for carrying out the present invention will be specifically described with reference to the drawings.
FIG. 1 is a block diagram showing a system configuration according to an embodiment of the present invention.
The system shown in FIG. 1 includes an automatic transaction apparatus 10 for depositing / withdrawing cash or electronic money, a billing process 20 for controlling the same, and a user information terminal (such as a personal computer or a mobile phone) 70 via the Internet 30. The banking process 40 includes an internet banking process 40 for realizing internet banking, and the billing process 20 and the internet banking process 40 can be linked on the host computer 1. The account processing 20 and the internet banking processing 40 share the account file 60 stored in the external storage device 50 and read / write information related to the transaction.

FIG. 2 shows a flowchart of the withdrawal process in the system configuration of FIG.
First, it is assumed that the user (customer) has already issued an authorization password, which will be described later with reference to FIG.
When withdrawing money from the automatic transaction apparatus 10, the user selects a withdrawal transaction on the transaction selection screen 201 of the automatic transaction apparatus 10. When the cash card insertion instruction is followed, a password input screen 202 is displayed. Here, the conventional 4-digit password is entered. Subsequently, the withdrawal amount is entered on the amount input screen 203.
In the account processing 20 of the host computer 1, in addition to checking the personal identification number (steps 101 and 102), the permission password issuance issuance and issuance conditions (withdrawal upper limit amount, withdrawal due date) are checked (step). 103, 104). During this time, the automatic transaction apparatus 10 displays a processing screen 204.
Here, if the permission password has not been issued or if the issuance conditions and the input information from the user do not match, the transaction is invalidated. This process prevents other people from withdrawing cash or transferring it to other accounts only by analogy with a cash card or PIN.
That is, if the permission password has not been issued, the transaction is invalidated even if the passwords match. Even if the permission password has been issued, the transaction type selected by the user on the transaction selection screen 201 and the withdrawal amount entered on the amount input screen 203 are transactions that are not permitted under the permission password issuance conditions. Transaction is invalid.
Thereafter, the balance is checked as in the conventional process (steps 105 and 106), and control is transferred to the automatic transaction apparatus 10 once.

In the automatic transaction apparatus 10, a permission password input screen 205 is displayed. Therefore, the user inputs a permission password that has been issued in advance.
In the account processing 200 of the host computer 1, the user's permission password issued in advance and stored in the account file 60 is read out using the cash card number, and the user is displayed on the read permission password and permission password input screen 205. Is checked for a match with the permitted password entered (steps 108 and 109). In step 103 and 104 described above, whether or not an authorized password is issued and the conditions for issuing it are checked. If the person has issued an authorized password immediately before the bank card theft, the accidental condition is met and the complete checkout is There are cases where this is not possible. However, since the permission password itself is checked in steps 108 and 109, the possibility that another person can withdraw money is extremely low. It should be noted that the permission password is desirably set to 10 digits or more as the number of digits that cannot be estimated. Further, as will be described with reference to FIG. 3, since there is no need for memorization, there is no problem even with a larger number of digits. As soon as these checks are completed, a withdrawal process is performed (step 110), and in order to prevent double withdrawal, an authorization password used this time is erased from the account file 60 (step 111). Furthermore, the permission password that has passed the withdrawal date is deleted from the account file 60 at any time.

If the permission password registered in advance in the account file 60 and the permission password entered by the user do not match, error processing is performed (step 112), and the transaction cannot be made to the user on the screen of the automatic transaction apparatus 10 In addition, it is assumed that one authorization password is issued for each withdrawal action, and it is necessary to issue an authorization password again at the next withdrawal action to enhance security. Desirable above. However, one permission password can be shared for a plurality of transactions with small withdrawal amounts by the prior registration of the principal.
While the accounting process 20 is checking the permission password, the automatic transaction apparatus 10 displays a processing screen 206. When the withdrawal process is completed, the cash is discharged from the cash outlet, and a medium discharge screen 207 for returning the cash card is displayed, and the cash card is discharged from the card outlet.

FIG. 3 is a flowchart showing a procedure for issuing an authorized password used for identity verification.
The user has an authorization password issued before a withdrawal operation at the automatic transaction apparatus 10. For example, Internet banking on the bank homepage established in the host computer 1 is accessed via the Internet 30 from an information terminal such as a personal computer or a mobile phone, and issued using the internet banking processing 40. The Internet banking process 40 is assumed to be confirmed by a unique security method, and detailed description thereof is omitted here.
First, the user accesses the bank homepage 301 from the information terminal 70 such as a personal computer or a mobile phone managed by the user via the Internet 30, selects the Internet banking menu 302, and further issues "Issue authorized password". select. Then, from the condition input screen 303, a withdrawal upper limit amount and a withdrawal due date are entered. This is to prevent you from being able to withdraw even if you have issued a permission password but forgot to withdraw or you no longer need to withdraw. . Depending on the user, from the viewpoint of strengthening security, it is desirable that the due date of withdrawal is as close as possible to the current date, and the upper limit of withdrawal should be matched to the planned withdrawal amount. desirable.

In the internet banking process 40 of the host computer 1, a permission password is generated by a random number (step 151). This permission password is a one-time password that does not require memorization, and it is desirable to use a considerable number of digits (more than 10 digits) in order to protect it from other analogies and trials. The internet banking process 40 stores the permission password and the issuance conditions (withdrawal upper limit amount and withdrawal deadline date) in the account file 60 (step 152), and the information terminal 70 as a reply to the authorization password issuance request. The transmitted permission password is displayed on the screen of the information terminal 70 (step 153). Further, the permission password is notified to the user by e-mail (step 154). In this case, both the personal computer and the mobile phone can be set as the e-mail destination.
In the information terminal, the processing screen 304 is displayed until the permission password is generated.

The user inputs the permission password issued in this process on the permission password input screen 205 of the automatic transaction apparatus 10 shown in FIG.
In this case, the authorization password is not recorded on the memo paper and carried, but immediately before the withdrawal operation is performed using the mobile phone, an authorization password e-mail addressed to itself is received and the automatic transaction apparatus is viewed while viewing the received mail. It is desirable to input on 10 input screens.
By doing so, it is possible to prevent the memo paper on which the permission password is recorded from being stolen and unauthorized payments by others.
If the mobile phone storing the authorization password is stolen or lost, the personal bank can be used to access the internet banking process 40 and invalidate all of the issued authorization passwords.
In the condition input screen in step 303 of FIG. 3, only the withdrawal upper limit amount and the withdrawal due date are entered, but cash withdrawal and transfer withdrawal are specified as the withdrawal type. You can also.

FIG. 4 is a flowchart of the accounting process that incorporates a procedure for improving the convenience when the permission password is applied.
For the issuance of the permission password in the present invention, it is assumed that a mobile phone or Internet banking is used, but not all people own mobile phones or have Internet banking contracts. For this reason, it is a service of a reporting system from the user, and a user identification method using only a personal identification number is used for a user who does not report. Steps 101 to 112 shown in FIG. 2 are replaced with those in FIG.
In the account processing 20 of the host computer 1, the personal identification number is checked, and if it matches the pre-registered personal identification number, it is checked whether or not there is an application for using the permission password (steps 1021 and 1022). If there is a service use declaration, the process proceeds to the subsequent processes. If there is no service use declaration, the process pattern is set to B (step 1042), and the process proceeds to step 105, which is a conventional process.

On the other hand, if the use of the service has been declared, the withdrawal amount entered without the permission password and the withdrawal entered from the automatic transaction apparatus 10 when the service use is declared by the user. The amount is compared (steps 1023 and 1024). If the amount exceeding the upper limit is input, the process proceeds to the subsequent step 103. If the withdrawal is within the upper limit, the processing pattern is set to B (step 1042) and step 105 is a conventional process. Transition to.
In step 103, whether or not an authorized password is issued and issuance conditions (withdrawal upper limit amount, withdrawal deadline date) are checked (steps 103 and 104). If they do not match, the transaction is invalidated. If it is determined that the check is valid, the processing pattern is A (step 1041). Thereafter, the balance is checked as in the conventional process (steps 105 and 106).
When the processing pattern is A, the control is temporarily transferred to step 204 of the automatic transaction apparatus 10, and when the processing pattern is B, after the withdrawal process is performed, the process proceeds to step 206 of the automatic transaction apparatus 10 ( Steps 1061, 1062, 1063).

By individually setting the withdrawal amount upper limit value in step 1023 by the user's declaration, it becomes possible to eliminate the need for a permission password for, for example, a small amount of withdrawals, thereby preventing a decrease in convenience. it can. In addition, it is possible to avoid a large amount of withdrawal damage.
If the user who wants to enhance security at the expense of convenience can set the withdrawal amount upper limit to 0 yen, all withdrawal processes can be made to be in the same state as “with authorized password”. .

As described above, according to this embodiment, even if a cash card is stolen, it is not withdrawn without permission. Convenience can be prevented from decreasing depending on the setting of the withdrawal amount upper limit.
Setting the withdrawal amount upper limit itself leaves the possibility of withdrawal without permission, but others do not know how much the withdrawal amount upper limit is actually set. If it is known that such security is provided, it will be difficult to withdraw even if the cash card is stolen, and the act of stealing another person's cash card itself will be recognized as meaningless.
Further, as the capital investment for the automatic transaction apparatus, it is not necessary to modify the machine part, and it is possible to cope with it easily because only a few software modifications are required.

In addition, although said embodiment demonstrated the case where cash withdrawal was performed, it is applicable similarly when transferring cash from a user's account to another account.
In addition, although an example in which both the withdrawal upper limit amount and the withdrawal due date are input as the conditions for the permission password has been shown, either one may be used.
In addition, withdrawal and transfer of electronic money can be handled similarly.

(Another embodiment of the present invention)
In the above embodiment, it is determined whether or not the permission password matches after determining whether or not the condition for issuing the permission password is met. It can be configured to determine whether or not they match, and to make a transaction impossible if they do not match.
That is, in the above embodiment, if it is necessary to make withdrawals of 10,000 yen and 1 million yen within the balance range, for example, with December 8th, 2003 as the withdrawal deadline date, A procedure is required in which money is paid first and then the other permission password is issued to withdraw money. In this case, it takes too much time to withdraw multiple times within a day.
Therefore, a plurality of permission passwords are registered in advance for each transaction unit, and when making a withdrawal, the user is first asked to enter the permission password and checked, and one of the plurality of passwords registered in advance is checked. If they match, check the withdrawal amount and transaction expiration date, the withdrawal amount entered by the user and the current transaction date, and decide whether to withdraw or not. Can be configured.
When the permission password is issued for each transaction unit, a plurality of passwords and conditions as shown in FIG. 5 are registered in the account file 60.
As a result, it is possible to simplify the procedure for issuing a permission password when making multiple withdrawals within one day.

It is a system configuration figure showing an embodiment of the invention. It is a flowchart which shows the example of the payment process in embodiment of FIG. It is a flowchart which shows the example of permission password issue processing. It is a flowchart which shows the example of the process incorporating the convenience ensuring procedure at the time of permission password application. It is a figure which shows the example of the registration content of the account file at the time of making it issue a permission password for every transaction unit.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 1 ... Host computer, 10 ... Automatic transaction apparatus, 20 ... Account processing, 30 ... Internet, 40 ... Internet banking processing, 50 ... External storage device, 60 ... Account file, 70 ... Information terminal.

Claims (6)

It is a method of performing identity verification related to withdrawal from an account owned by a user with an automatic transaction device,
For the withdrawal operation of the user in the automatic transaction apparatus, at least the withdrawal amount and withdrawal due date and withdrawal type of the withdrawal file generated and registered at the request of the user before the withdrawal operation in the account file of the host apparatus of the automatic transaction apparatus A password entry screen is displayed on the condition that any one of the conditions is entered, the password entered by the user is verified against the password registered in advance in the account file, and withdrawal is made according to the confirmation result. An identity verification method in an automatic transaction apparatus, comprising the step of determining whether or not the transaction is possible.   2. The identity verification in the automatic transaction apparatus according to claim 1, wherein the password is generated for each withdrawal transaction unit in response to a request from an information terminal used by a user. Method.   For the withdrawal operation of the user in the automatic transaction apparatus, the condition is checked before the password is verified, and the withdrawal amount and withdrawal deadline specified by the user and the withdrawal type do not match the condition. 3. The identification method for an automatic transaction apparatus according to claim 1, further comprising a step of determining that the transaction is impossible.   For the withdrawal operation of the user in the automatic transaction device, after checking the password, the issuance condition of the password is checked, and even if the password matches the password registered in the account file, the withdrawal amount specified by the user 3. The identity verification method in the automatic transaction apparatus according to claim 1, further comprising a step of determining that the transaction is impossible when the withdrawal due date and the withdrawal type do not match the conditions. It is an automatic transaction device that determines whether or not withdrawal is possible after performing identity verification related to withdrawal from an account owned by the user,
For a user's withdrawal operation, at least one of the withdrawal amount, withdrawal date, and withdrawal type generated and registered at the request of the user in the account file of the host device of the automatic transaction apparatus before the withdrawal operation The password input screen is displayed, and the password entered by the user is sent to the host device, verified against the password registered in the account file in advance, and the confirmation result is received. An automatic transaction apparatus comprising means for determining whether or not money is allowed.   6. The automatic transaction apparatus according to claim 5, wherein the password is generated for each withdrawal transaction unit in response to a request from an information terminal used by a user.

Images