JP2006209520A - Portable device and service execution system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a service execution system for preventing information such as a user's profile from being leaked even to a service using device. <P>SOLUTION: A determining device 101 provided in an IC card 10 determines whether user information and user attribute information stored in a user information storage device 102 and a user attribute storage device 103 satisfy a user condition stored in a use condition storage device 104, and since only the determination result is transmitted to the service using device 3, the user information and user attribute information can be prevented from being leaked to the service using device 3. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention includes a service providing device that provides a service, a service using device that uses a service provided by the service providing device, and a portable device that is carried by a user who intends to use the service. Relates to a service execution system.

  In recent years, with the spread of networks such as the Internet, various services have been widely used via networks. When a user intends to use such a service, authentication by the service provider side is generally performed using an ID code and a password. However, when trying to use multiple services, the number of ID codes and passwords to be used increases accordingly, which is inconvenient for the user to store or record all ID codes and passwords. is there. In addition, every time the ID code and password are input from the keyboard, it takes time to input and may cause an input error.

  In addition to the authentication by ID code and password, there are cases where the use of the service is permitted by limiting the attributes of the user who wants to receive the service such as age and membership. Also, if the attributes of the service using device are restricted when trying to use a service, the service using device attribute is sent to the service provider to confirm that the service is available. It may be necessary. Even in such a case, if the user attribute or the service using device attribute is input every time the user tries to use the service, the operation becomes complicated.

  In order to solve such a problem, a profile representing a user attribute or a service using device attribute is stored in a recording medium such as an IC card or a memory card, and a service corresponding to the stored profile is provided. There is something. For example, the access control information including the date of birth of the user fixedly recorded on the IC card and the access request indicating the request for content are received, and the age of the user included in the received access control information is requested. Judgment is made whether or not the registered age condition is satisfied according to the content of the content or the form of the provision, and the requested content is provided only when the age of the user satisfies the registered age condition. What is permitted is known (for example, see Patent Document 1).

  However, in such a conventional technology, the profile of the user or the device using the service is unconditionally transmitted to the content provider, and thus the profile leaks to a third party such as a malicious content provider. was there.

  In order to prevent such an adverse effect, a system as shown in FIG. 9 has been proposed as a system in which a user profile is not leaked to the content providing side.

  In this conventional system, as shown in FIG. 9, a service using device 43 and a service providing device 4 are connected by the Internet 1. The service utilization device 43 is connected to the IC card reader 2 for reading data stored in the IC card 50.

  The IC card 50 is a portable device that is carried by a user who intends to use a service, and includes a non-volatile storage medium and a device having tamper resistance (tamper-proofing performance). The IC card 50 is provided with a user information storage device 102, a user attribute (profile) storage device 103, and a use condition storage device 104. Here, having tamper resistance means having resistance to analysis of internal structure and stored data, and unauthorized rewriting.

  The user information storage device 102 stores user information that proves the existence of the user in advance by an external organization that guarantees the user information. Here, the user information is specifically the basic information of the user such as date of birth, gender, name, etc. As an external organization that guarantees the user information, for example, a public office Etc. are considered.

  The user attribute storage device 103 stores user attribute information, which is user attribute information, in advance by an external organization that guarantees user attributes. Here, the user attribute information is specifically information such as the name of the service provider with which the company belongs, ISP (Internet Service Provider), etc., and is an external organization that guarantees the user attributes. For example, a service provider with which the user belongs or the user has a contract may be considered.

  The usage condition storage device 104 stores in advance usage conditions that are conditions for using the service by an external institution that issues usage conditions. Here, the usage conditions may include age conditions when attempting to use a certain service, temporal conditions during which the service can be used, conditions regarding membership that is permitted to use the service, and the like.

  The service utilization device 43 is provided with a determination device 101. When the service utilization apparatus 43 receives a service utilization request, the determination apparatus 101 reads user information, user attribute information, and utilization conditions from the IC card 50 inserted in the IC card reader 2 and uses the read utilization. It is determined whether or not the condition is satisfied. That is, when the determination apparatus 101 receives a service request, the user information stored in the user information storage device 102 and the user attribute information stored in the user attribute storage device 103 are used as a usage condition storage unit. It is determined whether or not the use conditions stored in 104 are satisfied. Then, the service using device 43 transmits the determination result of the determination device 101 to the service providing device 4 via the Internet 1.

  In the system shown in FIG. 9, the user profile and the usage rights / license information acquired in advance by the user are stored in a recording medium such as an IC card or a memory card, and the service / device is used. The user inserts the recording medium into a reading device of a service use device such as a personal computer and receives the authentication so that the service / device can be used.

  In the conventional system as shown in FIG. 9, only the determination result is transmitted from the service using device 43 to the service providing device 4, and information relating to the user's privacy such as user information and user attribute information is stored in the service. It is not transmitted to the providing device 4. For this reason, it is possible to prevent information such as user attribute information from leaking to the service providing apparatus 4 to the service providing side.

  However, in such a conventional system, since the determination result is transmitted from the service use device 43 to the service providing device 4, in order to guarantee the reliability of the determination result, the service use device 43 does not accept the determination result. Thus, it is necessary to sign by the public key encryption method or the like, and the service providing apparatus 4 needs to verify the sent determination result. Since such a technique related to electronic signatures is now widely known, no particular explanation is given here.

  As described above, according to such a system, information such as a user's profile is used only in the service using device 43, and only the determination result is transmitted to the service providing device 4. Such information is not leaked to the service provider. However, when the service using device 43 itself is provided by a third party, it is impossible to prevent information such as the user profile from leaking to the third party.

  In recent years, various services are expected to be used not only in the home, but also in one's office, Internet cafe, business trip destination office, and the like. For this reason, it is expected that there will be many cases where the service use device itself is used not by individuals but by an unspecified number of users.

  However, in the conventional system as shown in FIG. 9, user information, user attributes, and usage condition storage devices stored in the user information storage device 102 or the user attribute storage device 103 of the IC card 50. Since the service cannot be used unless the usage conditions stored in 104 are read to the service utilization device 43 and the determination is made, personal information such as user information may be leaked to a third party. obtain.

For example, if there is software that illegally obtains information such as a user's profile in a computer used at an Internet cafe, the information such as the user's profile will be leaked to a malicious third party. It will be. In particular, in the future, with the arrival of a ubiquitous society that can be connected to a network anywhere, it is expected to use various computing resources and networks on the go to access various contents and enjoy services. In such a case, if information such as a personal profile remains in the service use device or is illegally acquired, the service cannot be used with peace of mind.
JP 2003-167785 A

  In the conventional service execution system described above, information such as the user profile is not leaked to the service providing apparatus, but information such as the user profile is leaked to the service using apparatus. There was a problem of end.

  An object of the present invention is to provide a service execution system in which information such as a user's profile does not leak to a service using device.

To achieve the above object, a service execution system according to the present invention includes a user attribute storage unit that is carried by a user who wants to use a service and stores user attribute information that is attribute information of the user. A usage condition storage unit that stores usage conditions that are conditions for using the service, and user attribute information stored in the user attribute storage unit when the service usage request is received, A portable device comprising: a determination unit that determines whether or not the usage conditions stored in the unit are satisfied;
A service providing device for providing a service;
When the service providing apparatus is connected to the service providing apparatus by a network and intends to use a service provided by the service providing apparatus, the mobile device transmits a service request to the portable apparatus to request the determination of whether the service can be used or not. When a determination result indicating that the use of the service is permitted is received from the apparatus, the determination result is transmitted to the service providing apparatus and the service using apparatus starts the execution of the service.

  According to the present invention, whether or not the user attribute information satisfies the use condition is determined by the determination unit provided in the portable device, and only the determination result is transmitted to the service using device. It is possible to prevent the user attribute information from leaking to the service using device.

In the determination unit of the portable device, among the usage conditions stored in the usage condition storage unit, conditions that cannot be determined by the user attribute information are included in the service usage apparatus together with the determination result of other usage conditions. Send
In the service using device, it is determined whether or not the use condition transmitted from the portable device is satisfied, and the determination result and the determination result transmitted from the portable device are both satisfied. The execution of the service may be started.

  According to the present invention, even if the usage conditions include conditions that cannot be determined by the user attribute information, such as environmental conditions and provider conditions, the user attribute information is not included in the mobile device. It is possible to prevent the user attribute information from leaking to the service using device because the determination is made on the condition that can be determined based on the above and only the determination result is output.

In addition, the mobile device is a user attribute storage unit that stores user attribute information that is attribute information of the user;
A use condition storage unit that stores use conditions that are conditions for using the service;
When user attribute information and usage conditions are stored in the user attribute storage unit and the usage condition storage unit, respectively, user attribute information stored in the user attribute storage unit is stored in the usage condition storage unit. A determination unit that determines whether or not the use condition is satisfied;
The determination result by the determination unit is stored, and when the service use request is received, the determination result is stored in the determination result storage unit that transmits the stored determination result to the service use apparatus that has transmitted the service request. It may be.

  According to the present invention, the determination by the determination unit is performed when the user attribute information and the usage conditions are stored in the portable device, and the determination result is stored in the determination result storage unit in advance. When a use request is received, it is only necessary to output the determination result stored in the determination result storage unit. Therefore, it is possible to shorten the processing time when using the service.

  Furthermore, the portable device may be constituted by an IC card having tamper resistance.

  As described above, according to the present invention, information such as the user profile is not output from the recording medium, and only the determination result is output, and the service using apparatus performs service based only on this determination result. Since the availability of use is determined, it is possible to obtain an effect that information such as a user profile is not leaked to the service using device.

  Next, embodiments of the present invention will be described in detail with reference to the drawings.

(First embodiment)
FIG. 1 is a block diagram showing a configuration of a service execution system according to the first embodiment of this invention. In FIG. 1, the same components as those in FIG. 9 are denoted by the same reference numerals, and description thereof is omitted.

  The service execution system according to the present embodiment has a configuration in which the service use device 43 and the IC card 50 are replaced with the service use device 3 and the IC card 10, respectively, with respect to the conventional service execution system shown in FIG. Yes.

  The service use device 3 has a configuration in which the determination device 101 is deleted from the service use device 43 in the conventional service execution system shown in FIG. Then, when using the service provided by the service providing device 3, the service using device 3 in the present embodiment transmits a service request to the IC card 10 to request the determination of the availability of the service, When a determination result indicating that the use of the service is permitted is received from the IC card 10, execution of the service is started.

  Next, the configuration of the IC card 10 in FIG. 1 is shown in FIG. In FIG. 2, the same components as those in FIG. 10 are denoted by the same reference numerals, and description thereof is omitted.

  Similar to the IC card 50 shown in FIG. 10, the IC card 10 in the present embodiment includes a non-volatile storage medium and is configured by a device having tamper resistance (tamper-proofing performance). As shown in FIG. 2, the IC card 10 according to the present embodiment includes a determination device 101, a user information storage device 102, a user attribute (profile) storage device 103, and a use condition storage device 104. The determination apparatus 101 is newly provided with respect to the IC card 50 in the conventional service execution system shown in FIG.

  In the present embodiment, when the service is executed, the determination device 101 determines the use condition extracted from the use condition storage device 104 based on the information extracted from the user information storage device 102 and the use attribute storage device 103. Thus, execution is determined and only the determination result is output to the service using device 3. Then, the service using device 3 determines whether or not the service can be used based on the determination result from the IC card 10.

  When the service use device 3 uses a plurality of services, the use condition storage device 104 stores the use conditions for each service ID so that each service is specified by the service ID. Then, the determination apparatus 101 determines whether or not the use condition corresponding to the service ID included in the service use request from the service use apparatus 3 is satisfied.

  Next, the operation of the service execution system of this embodiment will be described in detail with reference to the drawings. The operation of the service execution system of this embodiment will be described with reference to the sequence chart of FIG.

  First, as pre-processing, user information, user attribute information, and service usage conditions are issued by an external organization that guarantees user information, an external organization that guarantees user attributes, and an external organization that issues usage conditions. Processing is performed (steps 301 to 303). The issued user information, user attribute information, and usage conditions are stored in the user information storage device 102, user attribute storage device 103, and usage condition storage device 104 in the IC card 10, respectively. (Steps 304 to 305).

  Next, when the service use device 3 transmits a service use request to the IC card 10 as a process at the time of using the service (step 307), the determination device 101 of the IC card 10 is specified by the transmitted service ID. User information, user attribute information, and usage conditions corresponding to the service to be collected are collected from the user information storage device 102, the user attribute storage device 103, and the usage condition storage device 104, respectively (step 308). The determination apparatus 101 determines whether the collected user information and user attribute information satisfy the collected usage conditions (step 309), and transmits the determination result to the service providing apparatus 4.

  The service providing apparatus 4 that has received the determination result from the service using apparatus 3 starts providing the service when the received determination result indicates that the use condition is satisfied (step 310).

  In the service execution system of the present embodiment, the determination apparatus 101 provided in the IC card 10 determines whether or not the user information and user attribute information satisfy the usage conditions, and only the determination result is used for the service. Since the information is transmitted to the device 3, it is possible to prevent user information and user attribute information from leaking to the service utilization device 3.

  In the above description, the determination apparatus 101 has been described as determining whether or not the use condition stored in the use condition storage apparatus 104 is satisfied by the user information and the user attribute. However, there are cases where usage conditions cannot be determined only by user information and user attributes stored in the IC card. Therefore, the determination apparatus 101 transmits a service usage request together with the determination result of other usage conditions for the usage conditions stored in the usage condition storage unit 104 that cannot be determined by the user information and the user attribute information. To the service use device 3.

  In such a case, the service use device 3 determines whether or not the use condition transmitted from the IC card 10 is satisfied, and the determination result and the determination result transmitted from the IC card 20 are obtained. Start service execution if both are satisfied.

  For example, as shown in FIG. 4, when the usage condition for a certain service is divided into four types of conditions such as a charging condition, a user condition, a provider condition, and an environmental condition, a determination is made among these four types of conditions. Those not completed are stored in the use condition storage device 104. Here, the charging condition is a condition such as whether or not “100 yen has been paid” for determining whether or not a fee for using the service has been paid. As the user condition, the age of the user is “20”. It is a condition of whether or not it is “older or older”. The billing condition need not be stored in the use condition storage device 104 if payment is completed before the use condition is stored in the use condition storage device 104. Further, the provider condition is a condition such as whether or not the service providing apparatus is a device capable of “color output”, and the environmental condition is whether or not the service start time is “before 23:00”. It is such a condition.

  In such a case, only the information in the IC card 10 can determine only the user condition “20 years or older”. In such a case, as shown in FIG. 5, the usage conditions that cannot be determined in the IC card are output from the IC card 10 to the service usage device 3, and the determination device 201 provided in the service usage device 3. Thus, it is determined whether or not this use condition is satisfied. And in the service utilization apparatus 3, when all the determination results in the IC card 10 and the determination result in the determination apparatus 201 included therein indicate that the conditions are satisfied, all the use conditions are in the service providing apparatus. Notify that it is satisfied.

  By doing so, the usage conditions stored in the usage condition storage device 104 include conditions that cannot be determined by user information and user attribute information such as environmental conditions and provider conditions. Even in such a case, the determination apparatus 101 performs determination on conditions that can be determined based on user information and user attribute information, and outputs only the determination result. It is possible to prevent personal information such as person attribute information from leaking to the service using device 3.

  In FIG. 5, the case where the determination is first performed on the IC card 10 side is described, but first, information other than the user information and the user attribute information in the determination device 201 in the service utilization device 3. It may be determined whether or not the usage condition is satisfied, and the usage condition that has not been determined may be transmitted from the service utilization apparatus 3 to the IC card 10. Then, the IC card 10 determines whether or not the user information and user attribute information stored therein satisfy the usage conditions transmitted from the service utilization device 3, and the determination result is used as the service utilization device 3. You may make it return to.

  Further, when the condition of the device attribute is included in the use condition, the service using device 3 may not want to know the device attribute to the service providing device 4. For example, if the service content is video distribution and the conditions for the service using device are set with specifications such as CPU clock frequency, HDD remaining capacity, memory capacity, etc., such device attributes It is also conceivable that the service providing apparatus does not want to be known.

  In such a case, as shown in FIG. 6, it is also possible to provide an IC chip in the service use device 3, and to configure the determination device 201 and the use condition storage device 202 in this IC chip. In such a configuration, the determination device 201 acquires the device attribute of the service using device 3, and determines whether or not the device attribute satisfies the use condition stored in the use condition storage device 202. When the use condition is satisfied and the determination result from the IC card 10 indicates that the service can be used, the service providing apparatus 4 determines the determination result that the service can be used. Send.

  With this configuration, the service using device 3 determines whether or not the service can be used without knowing the device attribute to the service providing device 4.

  Further, as a form of the service execution system, a plurality of service providing apparatuses exist, provision conditions for becoming a service providing apparatus are set, and the service can be provided only when the provision conditions are satisfied. Systems exist. In the case of such a service execution system, it is necessary to determine whether or not the device attribute of the service providing device satisfies a provision condition set in advance. In such a system configuration, the service providing apparatus side may not want to know the device attributes of the service providing apparatus to the service using apparatus side. In such a case, a provision condition storage device in which provision conditions are stored and a determination device for determining whether or not the provision conditions are satisfied are provided in the service provision device. It may be determined whether or not the provision condition is satisfied. By adopting such a configuration, the service providing apparatus side determines the providing condition without knowing the apparatus attribute to the service using apparatus.

(Second Embodiment)
Next, a service execution system according to the second embodiment of this invention will be described. In the first embodiment described above, every time the IC card 10 receives a service use request from the service use device 3, is the use condition satisfied in the determination device 101 in the IC card 10 shown in FIG. It was judged whether or not. However, if there is no change in user information, user attributes, and usage conditions, the determination result is the same every time. Since a certain amount of time is required to perform the determination process, it is not necessary to perform this process every time a service use request is received.

  Therefore, in the service execution system according to the second embodiment of the present invention, an IC card 20 as shown in FIG. 7 is used. The IC card 20 in this embodiment is different from the IC card 10 shown in FIG. 2 in that a determination result storage device 105 for storing the determination result of the determination device 101 is newly provided. ing. In FIG. 7, the same components as those in FIG. 2 are denoted by the same reference numerals, and description thereof is omitted.

  In this embodiment, the determination device 101 of the IC card 20 does not receive a service use request from the service use device 3, but a user information storage device 102, a user attribute storage device 103, and a use condition storage device 104. The user information, the user attribute, and the usage condition are written respectively, or the user information and usage stored in the user information storage device 102, the user attribute storage device 103, and the usage condition storage device 104. The process of determining whether or not the usage condition is satisfied is performed at the timing when either the user attribute or the usage condition is changed.

  Then, the determination result storage device 105 stores the determination result by the determination device 101, and when the service use request is received, transmits the stored determination result to the service use device 3 that has transmitted the service request. . Here, when there are a plurality of services used by the service utilization device 3, the determination device 101 makes a determination for each service ID, and the determination result storage device 105 stores a determination result for each service ID. Keep it.

  Next, the operation of the service execution system of this embodiment will be described in detail with reference to the drawings. The operation of the service execution system of this embodiment will be described with reference to the sequence chart shown in FIG.

  First, as pre-processing, user information, user attribute information, and service usage conditions are issued by an external organization that guarantees user information, an external organization that guarantees user attributes, and an external organization that issues usage conditions. Processing is performed (steps 701 to 703). The issued user information, user attribute information, and usage conditions are stored in the user information storage device 102, user attribute storage device 103, and usage condition storage device 104 in the IC card 20, respectively. (Steps 704 to 705). The processing so far is the same as the operation in the first embodiment described with reference to FIG.

  In the IC card 20 according to the present embodiment, user information, user attribute information, and usage conditions are stored in the user information storage device 102, the user attribute storage device 103, and the usage condition storage device 104, respectively. The determination apparatus 101 collects user information, user attribute information, and usage conditions (step 707), and determines whether the usage conditions are satisfied for each service ID (step 708). Then, the determination result is stored in the determination result storage device 105 (step 709).

  Next, when the service utilization device 3 transmits a service utilization request to the IC card 20 as a process when using the service (step 710), the determination result storage device 105 of the IC card 20 uses the transmitted service ID. A determination result corresponding to the specified service is searched (step 711), and the determination result is transmitted to the service providing apparatus 4 via the Internet 1.

  The service providing apparatus 4 that has received the determination result from the service using apparatus 3 starts providing the service when the received determination result indicates that the use condition is satisfied (step 712).

  According to the service execution system of this embodiment, it is determined whether or not the usage conditions are satisfied when the user information, the user attribute information, and the usage conditions are stored in the IC card 20, and the determination result is obtained. Since it is stored in the determination result storage device 105 in advance, it is possible to determine whether or not the service can be used only by referring to the determination result stored in the determination result storage device 105 when using the service. Therefore, it is possible to shorten the processing time when using the service as compared with the first embodiment.

  In the first and second embodiments, the case where an IC card is used as a portable device that stores user information, user attribute information, and usage conditions has been described. However, the present invention is not limited to this. Instead, the present invention can be similarly applied to any portable device provided that it has a non-volatile storage medium and has tamper resistance (tamper-proof performance). . For example, using a mobile phone equipped with an IC chip, the user information storage device 102, the user attribute storage device 103, the use condition storage device 104, and the determination device 101 shown in FIGS. If configured, similar processing can be performed.

  In the first and second embodiments described above, the user information storage device 102 and the user attribute storage device 103 are described as being provided in the IC cards 10 and 20. It is assumed that the organization that simply guarantees the user information and the organization that guarantees the user attribute information are stored separately, and both the user information and the user attribute information are stored in the user. As attribute information, the user information storage device 102 and the user attribute storage device 103 may be combined into one user attribute storage device.

  Further, in the first and second embodiments described above, the service using device 3 has been described as using a service provided by the service providing device 4 connected via the Internet 1. The present invention is not limited to such a case, and can be similarly applied to a case where any service can be executed by the service using device 3 alone. For example, when the service using device 3 is a game device, the user can use the game device by inserting the IC card 10 or 20 into the IC card reader 2 connected to the service using device 3. Become. As described above, even when the service using apparatus 3 executes the service alone, the service can be used without leaking the user profile information or the like to the service using apparatus 3.

It is a block diagram which shows the structure of the service execution system of the 1st Embodiment of this invention. It is a block diagram which shows the structure of IC card 10 in FIG. It is a sequence chart which shows operation | movement of the service execution system of the 1st Embodiment of this invention. It is a figure which shows the specific example of usage conditions, and its determination timing. It is a figure for demonstrating the kind of information exchanged between IC card 10 and the service utilization apparatus 3 at the time of determining usage conditions. It is a figure for demonstrating the operation | movement in case the determination apparatus in the service utilization apparatus 3 determines availability. It is a block diagram which shows the structure of the IC card 20 in the service execution system of the 2nd Embodiment of this invention. It is a sequence chart which shows operation | movement of the service execution system of the 2nd Embodiment of this invention. It is a block diagram which shows the structure of the conventional service execution system. It is a sequence chart which shows operation | movement of the conventional service execution system.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Internet 2 IC card reader 3 Service utilization apparatus 4 Service provision apparatus 10, 20 IC card 43 Service utilization apparatus 50 IC card 101 Determination apparatus 102 User information storage apparatus 103 User attribute storage apparatus 104 Usage condition storage apparatus 105 Determination result storage Device 201 Determination device 202 Usage condition storage device 301 to 310 step 701 to 712 step

Claims (8)

A portable device carried by a user who intends to use the service,
A user attribute storage unit storing user attribute information which is the attribute information of the user;
A use condition storage unit that stores use conditions that are conditions for using the service;
Determination of whether or not user attribute information stored in the user attribute storage unit satisfies a usage condition stored in the usage condition storage unit when a service usage request is received from a service usage device And a portable device.   In the determination unit, the service usage apparatus that has transmitted the service usage request together with the determination result of other usage conditions for the conditions that cannot be determined by the user attribute information among the usage conditions stored in the usage condition storage unit The mobile device according to claim 1, which is transmitted to A portable device carried by a user who intends to use the service,
A user attribute storage unit storing user attribute information which is the attribute information of the user;
A use condition storage unit that stores use conditions that are conditions for using the service;
When user attribute information and usage conditions are stored in the user attribute storage unit and the usage condition storage unit, respectively, user attribute information stored in the user attribute storage unit is stored in the usage condition storage unit. A determination unit that determines whether or not the use condition is satisfied;
A determination result storage unit that stores the determination result by the determination unit and transmits the stored determination result to the service use apparatus that has transmitted the service request when a service use request is received; Portable device.   The portable device according to any one of claims 1 to 3, wherein the portable device comprises an IC card having tamper resistance. A user attribute storage unit that is carried by a user who wants to use the service and stores the user attribute information that is the user attribute information, and a use condition that is a condition for using the service are stored. When a service usage request is received with the usage condition storage unit, it is determined whether the user attribute information stored in the user attribute storage unit satisfies the usage conditions stored in the usage condition storage unit A portable device including a determination unit;
A service providing device for providing a service;
When the service providing apparatus is connected to the service providing apparatus by a network and intends to use a service provided by the service providing apparatus, the mobile device transmits a service request to the portable apparatus to request the determination of whether the service can be used or not. A service execution system comprising: a service using device that, upon receiving a determination result for permitting use of a service from a device, transmits the determination result to the service providing device and starts execution of the service. The determination unit of the portable device transmits conditions that cannot be determined by the user attribute information among the usage conditions stored in the usage condition storage unit to the service usage apparatus together with the determination result of other usage conditions. ,
In the service using device, it is determined whether or not the use condition transmitted from the portable device is satisfied, and the determination result and the determination result transmitted from the portable device are both satisfied. 6. The service execution system according to claim 5, wherein execution of the service is started. A user attribute storage unit that is carried by a user who wants to use the service and stores the user attribute information that is the user attribute information, and a use condition that is a condition for using the service are stored. When user attribute information and usage conditions are stored in the usage condition storage unit, the user attribute storage unit, and the usage condition storage unit, respectively, the user attribute information stored in the user attribute storage unit is A determination unit that determines whether or not the use condition stored in the use condition storage unit is satisfied, and a determination result stored by the determination unit are stored, and when the service use request is received, the stored determination result A determination result storage unit that transmits the service request to the service use device that has transmitted the service request;
A service providing device for providing a service;
When the service providing apparatus is connected to the service providing apparatus by a network and intends to use a service provided by the service providing apparatus, the mobile device transmits a service request to the portable apparatus to request the determination of whether the service can be used or not. A service execution system comprising: a service using device that, upon receiving a determination result for permitting use of a service from a device, transmits the determination result to the service providing device and starts execution of the service.   The service execution system according to claim 5, wherein the portable device is configured by an IC card having tamper resistance.

Images