JP2005301945A - Authentication processor and authentication processing program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an authentication processor safely and efficiently performing settlement by a credit card in on-line communication or off-line. <P>SOLUTION: A credit card processor 1 compares a settlement money amount and a reference settlement money amount in the settlement of credit to decide that authentication by which the settlement is performed is one of off-line authentication or on-line authentication. Thereby, the efficient authentication of the credit can be performed. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to an authentication processing apparatus when performing credit processing or the like.

As a method of paying a transaction amount when a consumer purchases an item or enjoys a specific service through a transaction, there are a settlement method using a credit card in addition to a settlement method using cash. This is because a consumer has a credit card with a credit company (credit sales company) and obtains a credit card indicating that the credit company guarantees a certain credit loan. At the affiliated store with which the contract is made, it is possible to make a settlement with the transaction amount postpaid by presenting a credit card.
In the settlement by credit card, the member store reads information stored in the credit card presented by the customer by the credit card processing device and performs processing such as authentication and sales as to whether the credit card is valid. The authentication here is performed online by connecting a member store and a credit sales company, for example, an online credit card authentication system provided by a private data communication company, and an IC card (memory that stores invalid credit card information) Some cards are performed offline.
And in a movable credit card processing device mounted and used in a taxi or the like, online communication is performed by a wireless communication network or the like, but depending on the stop position or location of the car, it is outside the area of the wireless communication network, and online processing May not be possible.
In order to solve this problem, for example, there is an authentication processing device that can perform authentication processing online or offline (see Patent Document 1).
JP 2000-11051 A

  Certainly, the authentication processing device is effective as such for a safe payment by credit card. However, when online communication is possible, since it is authenticated by online communication even for a small amount of payment, there is a problem that it takes time to respond to an inquiry and makes a customer wait. Moreover, since communication costs are incurred by online communication, it is uneconomical particularly in the case of the above-mentioned small amount of settlement.

  Accordingly, the present invention is to provide an authentication processing device that performs safe and efficient settlement by credit card online and offline.

In order to solve the above-mentioned problems, the invention described in claim 1 is directed to a communication means for connecting to an authentication means connected to a communication line, and to make a transaction amount postpaid using a recording medium. Online authentication processing means for inquiring an authentication means connected to the communication line whether or not the authentication data recorded on the recording medium is valid, and whether or not the recording medium to be authenticated is valid The off-line authentication processing means for making an inquiry based on the data for authentication and the authentication data stored in the authentication data storage means, and the settlement amount by the recording medium to be authenticated and the reference settlement amount are compared, and according to the comparison result A determination unit that selects between the online authentication processing unit and the offline authentication processing unit; and a control unit that executes an authentication process based on a determination result by the determination unit. The features.
Furthermore, a program for realizing the main functions shown in the invention described in claim 1 is provided to the computer (the invention described in claim 7).

  The invention according to claim 2 is characterized in that, in the invention according to claim 1, the reference settlement amount in the judging means is different depending on the type of the recording medium to be authenticated.

  The invention according to claim 3 is the invention according to claim 1 or 2, wherein the reference settlement amount in the determination means can be arbitrarily set or changed.

  The invention according to claim 4 is the invention according to any one of claims 1 to 3, wherein the authentication data storage means in the offline authentication processing means is a storage medium capable of updating stored data. And

  According to the fifth aspect of the present invention, there is provided a communication means for connecting to an authentication means connected to a communication line and an authentication recorded on the recording medium to be authenticated in order to postpay the transaction amount using the recording medium. Online authentication processing means for making an inquiry to the authentication means connected to the communication line as to whether or not the authentication data is valid, and whether or not the recording medium to be authenticated is valid in the authentication data and authentication data storage means Off-line authentication processing means for inquiring based on stored authentication data; and on-line authentication processing means in accordance with a failure rate of past use history information of the recording medium to be authenticated and a predetermined failure rate Alternatively, it is characterized by comprising a determination means for selecting an offline authentication processing means and a control means for executing an authentication process based on a determination result by the determination means.

  The invention according to claim 6 is the invention according to any one of claims 1 to 6, wherein the control means is a case where an online authentication processing means is selected in the judging means, and communication is poor. When the online authentication process cannot be executed by the above, the communication means is caused to perform a reconnection trial operation.

  According to the first, third, and seventh aspects of the invention, in authentication processing such as payment by credit card, online authentication is performed in the case of an expensive payment by setting, and offline authentication is performed in a small amount of payment. Since no extra communication occurs, processing does not take time and costs can be reduced.

  According to the second aspect of the invention, by changing the setting for each type of card, for example, credit card authentication corresponding to service or security for each type of credit card can be performed.

  According to the fourth aspect of the present invention, even when online communication is not possible by updating the stored data, offline authentication based on the latest information is performed, so that safer authentication and payment by credit card are performed. be able to.

  According to the fifth aspect of the present invention, it is possible to prevent unauthorized use or to detect the card by determining online authentication or offline authentication based on a failure rate based on the authentication history stored in the card and a predetermined failure rate. Safe authentication and transactions can be performed according to the actual usage.

  According to the invention described in claim 6, it is possible to perform authentication with higher safety by performing online authentication again when a communication failure is detected.

[First Embodiment]
With reference to FIG. 1, the whole structure of the charge data processing system 101 containing the credit card processing apparatus 1 which concerns on this invention is demonstrated. The fee data processing system 101 is, for example, a system for paying taxi fares with a credit card, and a credit card authentication server 6 that is a server for online verification of whether credit card payment is possible, taxi business A sales office terminal 5 which is a network terminal installed in a place and the like and a communication apparatus 4 which is installed in a taxi and performs network communication by radio or the like are connected to a network N which can communicate with each other.

  In a taxi, a taxi meter 3 for calculating a fare, an in-vehicle terminal 2 for performing money management, a credit card processing device 1 for performing payment by a credit card, and the communication device 4 can communicate with each other. Connect to.

  The network N includes, for example, GSM (Global System for Mobile communication), GPRS (General Packet Radio System), PDC (Personal Digital Cellular), CDMA (Code Division Multiple Access), PHS (Personal Handyphone). System), Bluetooth wireless communication system, wireless LAN (Local Area Network), and other mobile phone and wireless modem standards and communication systems that mean a communication path capable of data communication. The configuration is not limited.

  The credit card authentication server 6 is a server that performs, for example, a credit card authentication service of a private data communications company, and returns whether or not credit settlement is possible from the received credit card information.

  The sales office terminal 5 is an information device such as a PC (Personal Computer), for example, and is installed in a taxi sales office or the like, and manages the position or dispatch of each taxi vehicle. The office terminal 5 is a server for authenticating the taxi ticket. When the fare payment is made by the taxi ticket, the taxi ticket is not forged by the identification number of the taxi ticket transmitted from the communication device 4. It may be configured to return such information.

  Further, the fee data processing system 101 is not particularly limited to a system for paying taxi fares with a credit card, and is used for payment at the time of purchase of goods sold at retail stores, inns, movie theaters, etc. For example, it may be a transaction amount such as payment for a service, etc., and communication by online authentication may be performed by wire instead of wireless.

Next, the internal configuration of the credit card processing apparatus 1 which is an authentication processing apparatus according to the present invention will be described.
As shown in FIG. 2, the credit card processing apparatus 1 includes a control unit 11, an input unit 12, an output unit 13, a storage unit 14, a communication unit 15, a clock unit 16, and a power supply unit 17. They are connected to each other, read credit card information, and authenticate settlement using the credit card online or offline.

  The control unit 11 includes a CPU (Central Processing Unit), an internal RAM (Random Access Memory), a ROM (Read Only Memory), and the like (not shown). The CPU executes various control programs stored in the ROM using a predetermined area of the RAM as a work area, and sends a control signal to each of the above parts to control the overall operation of the credit card processing apparatus 1.

  The input unit 12 includes a keypad 21 and a card reader / writer 22, reads an input instruction from a user or credit card information, and outputs the read instruction to the control unit 11. The keypad 21 includes various keys such as numeric keys, character keys, and function keys for inputting operation instructions.

  The card reader / writer 22 reads information about a credit company that is a card issuer recorded on a magnetic material or a wireless tag applied to a credit card, information about a card holder, and history information about credit settlement for a predetermined period. . Further, when a credit card is settled, the card reader / writer 22 writes information related to the settlement in addition to the history information.

  The output unit 13 is capable of printing an image on a display device 23 composed of a liquid crystal display or the like, a recording medium such as paper, and includes a printer 24 using, for example, a thermal transfer method. Based on this, various information is displayed on the display and receipts are issued.

  The storage unit 14 is a RAM 25 composed of a dynamic random access memory (DRAM) or a flash memory, and can be renewed by being detachably connected to a socket (not shown), and a memory card 26 which is a small semiconductor as authentication data storage means. Operating system (OS) and various operation programs related to the system or operation of the credit card processing apparatus 1, predetermined reference settlement amount, identification information for identifying a credit company, credit card related to offline credit card authentication Valid information (positive data) and credit card invalid information (negative data) are stored.

  The communication unit 15 transmits / receives information relating to credit settlement with an online communication I / F 27 that is an interface for connecting to the communication device 4 that is a communication device for online communication, and other terminals such as the in-vehicle terminal 2 and the ECR. The credit card processing apparatus 1 receives a credit settlement amount and returns the result, or transmits / receives data related to online authentication.

  The clock unit 16 has a crystal oscillation circuit that always outputs a clock signal generated by crystal transmission at a constant frequency and a clock circuit that counts the clock signal and clocks the current time (none of which is shown), and is used for credit processing. The date / time of the current year / month / day / hour / minute / second used and the elapsed time are measured, and the date / time data or time data measured according to an instruction from the control unit 11 is output.

  The power supply unit 17 distributes electric power obtained from a battery power source such as a lithium battery or a power source of a vehicle-mounted cigarette ignition socket to each unit.

  Next, credit settlement processing in the credit card processing apparatus 1 will be described with reference to the flowcharts shown in FIGS. The credit settlement process described here includes each of steps S11 to S33 performed by the control unit 11.

  The credit card processing apparatus 1 starts the credit settlement process by accepting the amount of credit payment from the inter-terminal communication I / F 28 (step S11), and waits for the input of the amount (step S12).

  When the amount is input in step S12 (step S12: YES), the credit card for settlement is displayed and notified on the display device 23 to be inserted into the card reader / writer 22 (step S13), and the credit card is inserted. It waits until it is done (step S14).

  When a credit card is inserted in step S14, the information of the credit card is read as authentication data (step S14: YES), and the amount of credit payment is compared with the standard settlement amount in step S15 as a determination means. Thus, it is determined whether to perform online authentication or offline authentication.

  If it is determined in step S15 that online authentication is to be performed (step S15: YES), the process proceeds to the online authentication process shown in FIG. 4, and the authentication data is credit card authentication that is an online inquiry destination using a predetermined communication method. It is transmitted to the server 6 (step S16).

  After step S16, the process waits until a response regarding the authentication result from the credit card authentication server 6 elapses (step S17). When the predetermined time elapses or a response from the credit card authentication server 6 is received. If it is received (step S18: YES), an error occurs in online communication depending on whether the response is communication data by a predetermined method or if there is no loss in the communication data and whether a predetermined time has elapsed. A check is made to see if it is not (step S19).

If it is determined in step S19 that an error has occurred in online communication (step S19: YES), it is determined whether to try online communication again (step S20), and if online communication is performed again (step S20). : YES), the process returns to step S16.
The determination in step S20 may be based on data set in the storage unit 14, but may be based on an input instruction from the keypad 21.

  If it is determined in step S20 that online communication is not performed (step S20: NO), the communication device 4 used for online communication and the online communication I / F 27 are reset, and the authentication data used for online communication is reset. Switching to offline authentication such as buffer erasure is performed (step S21), and the process proceeds to offline authentication processing shown in FIG.

  If it is determined in step S19 that no error has occurred in online communication (step S19: NO), it is determined whether or not credit settlement is possible from the response from the credit card authentication server 6 (step S22). If it is determined that the credit card can be settled (step S22: YES), after the data indicating that the credit card is settled is transmitted to the in-vehicle terminal 2, a slip indicating that the credit card is settled from the printer 24 or The receipt is printed (step S23), the history related to credit card payment is updated (step S25), and the process ends.

  If it is determined in step S22 that credit settlement is not to be performed (step S22: NO), data indicating that credit settlement cannot be performed is transmitted to the in-vehicle terminal 2, and the credit card is used for credit settlement to the display device 23. The fact that the payment cannot be made is displayed, online error processing is performed (step S24), the fact that the credit card payment is bad is described in the history of credit card payment (step S25), and the process ends.

  If it is determined in step S15 that offline authentication processing is to be performed (step S15: NO) or after step S21, if the offline authentication processing shown in FIG. Based on the positive data, the credit card is searched for whether it is a credit card that can be used, such as a credit card with a merchant contract (step S26).

  After step S26, if it is determined from the result of the positive data search that the credit card is not usable (step S27: NO), data indicating that credit payment cannot be performed is transmitted to the in-vehicle terminal 2, and the display device 23 is displayed to the effect that the user is not affiliated with the credit company that is going to perform the credit settlement, a positive error process is performed (step S31), and the process is terminated.

  After step S26, if it is determined that the credit card is usable from the result of the positive data search (step S27: YES), the card is registered such as suspension of use based on the authentication data. Whether or not the credit card is unusable, such as whether or not the credit settlement limit has been exceeded, is searched from the negative data (step S28).

  After step S28, if it is determined that the credit card (bad card) is unusable from the result of the negative data search (step S29: YES), data indicating that credit payment cannot be made to the in-vehicle terminal 2 is present. Is transmitted, the display 23 displays that the credit card cannot be settled, a negative error process is performed (step S32), and the fact that the credit settlement is defective is recorded in the credit settlement history (step S32). S33), the process ends.

  After step S28, if it is determined that the card is not a defective card as a result of the negative data search (step S29: NO), data indicating that credit card payment is to be performed is transmitted to the in-vehicle terminal 2, and then the printer 24 issues A slip or receipt indicating that the transaction has been made is printed (step S30), the history of credit card payment is updated (step S33), and the process ends.

  As described above, the credit card processing apparatus 1 performs online authentication processing or offline authentication processing by comparing the payment amount with the reference payment amount in the payment by the credit card.

Therefore, the credit card processing apparatus 1 can perform credit card authentication with reduced costs without taking time for processing because extra communication does not occur by performing offline authentication in a small payment.
For high-value payments, it is possible to select credit card authentication with high safety by performing online authentication.

[Second Embodiment]
A credit card processing apparatus 1a according to a second embodiment will be described with reference to the drawings. For the sake of simplification, the same components as those of the credit card processing apparatus 1 are denoted by the same reference numerals and description thereof is omitted, and each credit company of the credit card processing apparatus 1a is different from the credit card processing apparatus 1. Only the process of determining the reference settlement amount and determining whether to perform online authentication or offline authentication will be described with reference to the flowchart shown in FIG.

  The credit card processing device 1a starts the credit settlement process by accepting the amount of credit payment from the inter-terminal communication I / F 28 (step S41), and waits for the input (step S42).

  When the amount is input in step S42 (step S42: YES), the credit card for settlement is displayed and notified on the display device 23 to be inserted into the card reader / writer 22 (step S43), and the credit card is inserted. It waits until it is done (step S44).

  When a credit card is inserted in step S44, the information of the credit card is read as authentication data (step S44: YES), a credit company is identified from the authentication data, and a predetermined standard settlement for each credit company. An amount is set (step S45).

  In addition, although the identification of the type of credit card here is the identification of the credit company, the card with different services issued by the same credit company may be identified, and is not particularly limited.

  After step S45, the amount of credit payment and the reference settlement amount are compared to determine whether to perform online authentication or offline authentication (step S46).

  As described above, the credit card processing device 1a determines online authentication processing or offline authentication processing by comparing the payment amount with the reference payment amount set according to the type of credit card in the payment by credit card. For example, the credit card can be authenticated according to the service or security of each credit company.

[Third Embodiment]
A credit card processing apparatus 1b according to a third embodiment will be described with reference to the drawings. For the sake of simplification, the same components as those of the credit card processing device 1 are denoted by the same reference numerals, description thereof is omitted, and the credit settlement history of the credit card processing device 1b having a different configuration from the credit card processing device 1 is used. Only the processing for calculating the failure rate from the data and comparing the failure rate with the failure rate for each credit company which is a predetermined failure rate to determine whether to perform online authentication or offline authentication is shown in FIG. This will be described with reference to the flowchart shown in FIG.

  The credit card processing device 1b starts the credit settlement process by accepting the amount of credit payment from the inter-terminal communication I / F 28 (step S51), and waits for the input (step S52).

  When the amount is input in step S52 (step S52: YES), the credit card for settlement is displayed and notified on the display device 23 to be inserted into the card reader / writer 22 (step S53), and the credit card is inserted. It waits until it is done (step S54).

  When a credit card is inserted in step S54, information on the credit card and history information related to credit settlement are read as authentication data (step S54: YES), and credit settlement in the total number of past credit settlements is performed from the history information. Is determined as a failure rate, and a credit company is identified from the credit card information, and a predetermined failure rate set for each company is calculated (step S55).

  After step S55, the failure rate based on the card history is compared with a predetermined failure rate for each credit company (step S56), and if it is determined that the failure rate based on the history is greater than the predetermined failure rate, online authentication is performed. It is determined to be performed (step S56: YES).

  In step S56, when it is determined that the failure rate based on the history is smaller than the predetermined failure rate (step S56: NO), the credit payment amount is compared with the reference settlement amount, and online authentication or offline authentication is performed. It is determined whether or not to perform (step S57).

When it determines with performing online authentication in step S57 (step S57: YES), it transfers to online authentication processing.
If it is determined in step S57 that offline authentication is to be performed (step S57: NO), the process proceeds to offline authentication processing.
In the first embodiment, when it is determined that the credit card is not usable (step S27: NO), a predetermined reference settlement amount for each credit company is set (corresponding to step S45 in FIG. 6). Depending on the amount of each standard payment, a credit company with a high degree of reliability may allow credits even with high payments, and a credit company with a low degree of confidence may permit only low-payments with credits. . Further, in the case of a high-payment in the case of a credit company with a low degree of reliability, the credit card is a failure rate that is a ratio of bad credit settlement in the total number of past credit settlements for each credit company, and the credit card The credit company is identified from the information, and a predetermined defect rate set for each company is calculated (corresponding to step S55 in FIG. 7), and the defect rate based on the card history and the predetermined defect rate for each credit company are calculated. If it is determined by comparison (corresponding to step S56 in FIG. 7) that the failure rate based on the history is smaller than the predetermined failure rate, even a credit company with low reliability can pay a certain amount of high payment with credit. It may be allowed. Thereby, even if the amount of credit payment exceeds the reference settlement amount in the case of offline authentication, it is possible to safely permit credit payment as much as possible by performing various authentications.
The authentication target may be not only a credit card but also a postpay card, and the recording medium may be an IC card, a card with a built-in electronic tag, or the like.
Further, the recording medium to be authenticated may display authentication data by a barcode or the like, and this authentication data may be recognized and authenticated. In this case, the recording medium may be a mobile phone, PDA, wearable personal computer, camera And so on.

  As described above, the credit card processing device 1b compares the payment failure rate calculated from the payment history with the credit card with a predetermined failure rate for each credit company, which is a predetermined failure rate. By determining whether to perform on-line authentication or off-line authentication, it is possible to select an authentication process that more closely matches the usage status of the credit card.

It is a figure which shows the structure of the charge data processing system 101 which the credit card processing apparatus 1 to which this invention is applied includes. It is a figure which shows the internal structure of the credit card processing apparatus 1 to which this invention is applied. It is a flowchart figure explaining the branch of the online / offline authentication which is a part of credit authentication process in 1st Embodiment. It is a flowchart figure explaining the online authentication process which is a part of credit authentication process in 1st Embodiment. It is a flowchart figure explaining the offline authentication process which is a part of credit authentication process in 1st Embodiment. It is a flowchart figure explaining the branch of the online / offline authentication for every credit company of the credit authentication process in 2nd Embodiment. It is a flowchart explaining the branch of the online / offline authentication by the historical data of the credit authentication process in 3rd Embodiment.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Credit card processing apparatus 2 Car terminal 3 Taximeter 4 Communication apparatus 5 Sales office terminal 6 Credit card authentication server N Network 11 Control part 12 Input part 13 Output part 14 Storage part 15 Communication part 16 Clock part 17 Power supply part 18 Bus

Claims (7)

A communication means for connecting to an authentication means connected to the communication line;
Online authentication processing means for referring to the authentication means connected to the communication line whether or not the authentication data recorded in the recording medium to be authenticated is valid in order to postpay the transaction amount using the recording medium;
Off-line authentication processing means for inquiring whether or not the recording medium to be authenticated is valid based on the authentication data and authentication data stored in the authentication data storage means;
A determination unit that compares the payment amount by the recording medium to be authenticated with a reference payment amount, and selects the online authentication processing unit or the offline authentication processing unit according to the comparison result;
Control means for executing an authentication process based on a determination result by the determination means;
An authentication processing apparatus comprising:   The authentication processing apparatus according to claim 1, wherein the reference settlement amount in the determination unit is different depending on a type of the recording medium to be authenticated.   The authentication processing apparatus according to claim 1, wherein the reference settlement amount in the determination unit can be arbitrarily set or changed.   The authentication processing apparatus according to claim 1, wherein the authentication data storage means in the offline authentication processing means is a storage medium capable of updating stored data. A communication means for connecting to an authentication means connected to the communication line;
Online authentication processing means for referring to the authentication means connected to the communication line whether or not the authentication data recorded in the recording medium to be authenticated is valid in order to postpay the transaction amount using the recording medium;
Off-line authentication processing means for inquiring whether or not the recording medium to be authenticated is valid based on the authentication data and authentication data stored in the authentication data storage means;
Judgment means for selecting either the online authentication processing means or the offline authentication processing means in accordance with a failure rate of the past usage history information of the recording medium to be authenticated and a predetermined failure rate;
Control means for executing an authentication process based on a determination result by the determination means;
An authentication processing apparatus comprising:   The control means causes the communication means to perform a reconnection trial operation when the online authentication processing means is selected by the judging means and the online authentication processing cannot be executed due to a communication failure. The authentication processing device according to any one of claims 1 to 5. On the computer,
A function for performing communication for connecting to an authentication means connected to a communication line;
A function of performing online authentication processing for inquiring of the authentication means whether or not the authentication data recorded on the recording medium to be authenticated is valid in order to postpay the transaction amount using the recording medium;
A function of performing offline authentication processing for inquiring whether or not the recording medium to be authenticated is valid based on the authentication data and authentication data stored in an authentication data storage unit;
A function of comparing a payment amount and a reference payment amount by the recording medium to be authenticated, and selecting online authentication or offline authentication according to the comparison result;
A function to execute an authentication process based on the determination result;
An authentication processing program characterized by realizing the above.

Images