JP2007058353A - Electronic commercial transaction system, settlement method, update method for database, settlement proxy program and database update program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a settlement method of electronic commercial transaction for performing settlement processing without making personal information flow to a network even when it is possible for a user to use only one network. <P>SOLUTION: This electronic commercial transaction system 10 is preliminarily provided with a personal information DB403 in which the IP address of an information terminal 101 and the personal information of a user of the information terminal 101 are registered so as to be associated with each other. The settlement proxy receiving means of a settlement proxy authentication server 405 receives a settlement proxy request from a store server 301, and acquires the IP address of the information terminal 101. When an IP address matched with the acquired IP address and personal information associated with the matched IP address are registered in the personal information DB403, the settlement proxy authentication means authenticates the settlement proxy request from the store server 301. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

The present invention relates to settlement of electronic commerce, and more particularly, to an electronic commerce system, a settlement method, a settlement agent program, a database update method used therefor, and a database update program capable of performing settlement without transmitting personal information to a network. .

Conventionally, various methods for electronic settlement of electronic commerce transactions performed using information terminals such as personal computers and mobile phones have been proposed.
FIG. 23 shows an example of a conventional electronic payment system. A conventional electronic payment system includes an information terminal 20, a store server 21, and a payment agent system 22, each of which is connected via the Internet 23.
When performing electronic payment by service or product purchase, the information terminal 20 transmits a message M11 that is a purchase request to the store server 21. When the store server 21 receives the purchase request, the store server 21 transmits, to the information terminal 20 as a response, a message M11 including information on the connection destination of the proxy payment system 22 that performs proxy payment and the product price.
Upon receiving the message M11 from the store server 21, the information terminal 20 generates a message M12 for making a payment request based on the message M11 and transmits it to the payment agent system 22. The payment agent system 22 receives the payment request information, performs credit processing, and transmits the processing result to the information terminal 20 as a response to the message M12.
At this time, the request message M12 includes a personal credit card number, a bank account number, a personal identification number, and the like, and the settlement agent system 22 performs credit processing based on these personal information.
The information terminal 20 receives the message M12 from the payment agent system 1 and transmits the result to the store server 21, thereby completing the electronic payment.

In these inventions, since personal information such as account numbers and credit numbers is transmitted to the Internet, there is a risk of being decrypted by a third party.
For this reason, Patent Document 1 discloses an invention in which an arbitrary identification ID is assigned in association with personal information, and a settlement process is performed by transmitting the arbitrary identification ID.
Patent Document 2 discloses an invention in which order processing or the like is performed using the Internet, and user authentication is performed using a secure line such as a telephone line.

JP 2001-101271 A JP 2003-28392 A

However, in the invention of Patent Document 1, there is a problem that there is a risk that the identification ID is deciphered and abused by a third party as long as the identification ID is distributed over the network.
Moreover, in the invention of Patent Document 2, there is a problem that the user needs an environment in which two different networks can be used simultaneously for settlement processing.

  Therefore, an object of the present invention is to provide an electronic commerce payment method and the like that can perform payment processing without flowing personal information to the network even when the user can use only one network.

In the electronic commerce system according to the present invention, a personal information database in which the physical ID of the information terminal and the personal information of the user of the information terminal are associated and registered is provided in advance. Here, the physical ID is a unique identifier set in the information terminal, and means a thing that reaches the destination device as a part of the header of the communication packet transmitted by the information terminal.
The payment proxy receiving means of the payment proxy authentication server receives the payment proxy request from the store server, and the acquisition means acquires the physical ID of the information terminal. Here, the “store server” refers to a computer that provides a service for presenting a list of products to be sold and prices to customers who have accessed by electronic means and accepting orders from customers by electronic means. To tell.
The payment proxy authentication unit authenticates a payment proxy request from the store server when the physical ID that matches the acquired physical ID and the personal information associated with the physical ID that matches the physical ID are registered in the personal information database ( Claim 1).

According to the payment agency system, the payment agency request can be authenticated based only on the physical ID of the information terminal and the personal information database.
Therefore, payment can be made without transferring personal information via the network. Further, it is not necessary to prepare a line separate from the line for accessing the store server to transfer personal information.

In the electronic commerce system, an IP address may be used as a physical ID.
If it does in this way, the network widely open | released by the public, such as the internet, can be used as a network for an information terminal to access a store server.

In the electronic commerce system, an IP address distribution comprising individual identifier acquisition means for acquiring individual identification information of an information terminal, IP address distribution means for distributing an IP address to the information terminal, and database update means for updating a personal information database A server may be provided.
The database update means of the IP address distribution server uses the IP address distributed to the information terminal when the individual identifier that matches the individual identifier of the acquired information terminal and the personal information associated with the individual identifier are registered in the personal information database. The personal information database is updated by registering the address in association with the personal information. That is, the personal information previously registered in the personal information database via the solid identifier is associated with the delivered IP address, and the personal information database is updated so that the individual who uses the information terminal can be identified by the IP address (claim) 3). Here, the “individual identifier” is a unique ID that can identify an information terminal, which is stored in the information terminal and can be read by software.

In this way, the IP address distribution server automatically updates the personal information database to associate the personal information with the IP address of the information terminal.
The payment proxy authentication server can authenticate the payment proxy request based only on the IP address of the information terminal and the updated personal information database.
Therefore, payment can be made without transferring personal information via the network. Further, it is not necessary to prepare a line separate from the line for accessing the store server to transfer personal information.

The electronic commerce system includes a terminal authentication server, and a connection authentication unit of the terminal authentication server authenticates connection to an information terminal in which an individual identifier and personal information associated therewith are registered in a personal information database. In this way, the IP address distribution server may distribute the IP address only to the information terminal whose connection is authenticated (claim 4).
In this way, the payment agent system can be used only through an information terminal registered in advance.

In the electronic commerce system, communication between the information terminal and the terminal authentication server and communication between the information terminal and the IP address distribution server may be performed via a closed network.
In this way, the possibility of unauthorized acquisition of the solid identification information by a third party can be extremely reduced.

In the electronic commerce system, the tag addition unit of the information terminal adds a tag to the frame transmitted to the IP address distribution server and the terminal authentication server, and the gateway switch unit adds the tag to the closed network. Other frames may be transferred to the Internet (Claim 6).
In this way, the transmission frame can be transmitted to an appropriate network according to the purpose without any special operation by the user of the information terminal.

In the electronic commerce system, when a message requesting confirmation of authentication is transmitted with the physical ID of the information terminal acquired by the physical ID acquisition means as a destination, and a message for confirmation is transmitted in response thereto The payment agent may be authenticated (claim 7).
In this way, even if a third party impersonates the physical ID of the information terminal registered as a legitimate terminal and attempts to use the system illegally, the confirmation message is registered. Therefore, the user of this information terminal can input the fact that authentication confirmation is rejected to prevent unauthorized use in advance.

  In the settlement method according to the present invention, the physical ID of the information terminal is extracted from the packet transmitted by the information terminal, and the physical ID that matches the extracted physical ID and the personal information associated with the physical ID are stored in the personal information database. If the transaction is authenticated, the transaction is settled (claim 8).

According to the payment method, it is possible to authenticate the payment proxy request based only on the IP address of the information terminal and the personal information database.
Therefore, payment can be made without transferring personal information via the network. Also, there is no need to prepare a dedicated line for transferring personal information.

In the above settlement method, an authentication confirmation request is transmitted with the extracted physical ID as the destination, and the transaction may be authenticated when an authentication confirmation for confirming the authentication is returned in response to the authentication confirmation request ( Claim 9).
In this way, even if a third party impersonates the physical ID of the information terminal registered as a legitimate terminal and attempts to use the system illegally, the confirmation message is registered. Therefore, unauthorized transactions by third parties can be prevented in advance.

  In the method for updating the personal information database according to the present invention, the individual identifier of the information terminal is extracted from the connection authentication request frame transmitted by the information terminal to be connected to the network, and is associated with the individual identifier that matches the individual identifier and this individual identifier. When the personal information is included in the personal information database, the connection is authenticated, and when the connection is authenticated, the IP address for the Internet connection is transmitted to the information terminal, and the individual that matches the IP address. It is registered in the personal information database in association with the identifier (claim 10).

  According to the database update method, the personal information registered in the personal information database in advance through the individual identification information and the delivered IP address are associated with each other so that the individual who uses the information terminal can be identified by the IP address. You can update the database.

The payment agent program according to the present invention causes a computer to receive a payment agent request from a store server, acquire an IP address set in an information terminal, and access a personal information database to match the acquired IP address. When an IP address is registered in the information database and personal information associated with the matching IP address is registered in the personal information database, a payment proxy request is authenticated (claim 11).
According to the payment agent program, the computer can be operated as a device that performs an authentication process for the payment agent request.

In the above program, an authentication confirmation request for confirming the authentication is transmitted with the physical ID acquired in the physical ID acquisition step as a transmission destination, and the authentication request is authenticated when an authentication confirmation is received in response to the authentication confirmation request. You may make it make it (claim 12).
In this way, unauthorized use due to physical ID disguise can be prevented.

The database update program according to the present invention causes a computer to receive an IP address distribution request for Internet connection from an information terminal, and to extract individual identification information of the information terminal from a frame including the IP address distribution request, thereby distributing the IP address. Upon request, the IP address is distributed to the information terminal, and the distributed IP address is registered in the personal information database in association with the individual identification information registered in the personal information database that matches the individual identifier of the extracted information terminal (request) Item 13).
According to the database update program, the computer can be operated as an apparatus for updating the personal information database used for authenticating the payment proxy request based on the IP address of the information terminal in the payment proxy system.

According to the present invention, the payment proxy authentication server includes physical ID acquisition means and can acquire the physical ID of the information terminal. In the personal information database, the physical ID of the information terminal is registered in association with the personal information of the user of the information terminal. The payment proxy authentication server searches the personal information database, and when there is a physical ID that matches the acquired physical ID and personal information associated with this physical ID, the payment proxy request is from a valid user Is determined, and the payment proxy request is authenticated.
Therefore, even when the user can use only one network, the payment process can be performed without flowing personal information to the network.

Hereinafter, the configuration and operation of the electronic settlement system 10 according to the first embodiment of the present invention will be described with reference to the drawings.
FIG. 1 is a block diagram showing the configuration of the electronic payment system 10.
Referring to FIG. 1, an electronic payment system 10 includes an information terminal 101 in which a user browses electronic commerce information and performs an electronic payment operation, a gateway 201 that distributes transmission destinations with reference to a frame of the information terminal 101, and an information terminal 101. Authenticates the information terminal 101 before accessing the Internet (network) N101, an IP address distribution server 402 that assigns an IP address to the information terminal 101, and a store that provides product information and sells products Allotted to the server 301, the payment agent reception server 404 that receives the payment agent request from the store server, the payment agent authentication server 405 that receives the authentication request from the payment agent reception server and confirms the information terminal 101, and the information terminal 101 Personal information DB in which the registered IP address and owner's personal information are recorded 03, the settlement DB 406 in which the settlement amount with the registered store server is recorded, and the settlement processing with the second settlement server 501 of the bank system 2 based on the information in the settlement DB 406 and the personal information DB 403 And a first settlement server 407 for performing
The payment proxy system 1 is configured by the terminal authentication server 401, the IP address distribution server 402, the payment counter reception server 404, the payment proxy authentication server 405, the personal information DB 403, the payment DB 406, and the first payment server 407.

The information terminal 101 is connected to the gateway 201 via the access line S11.
The store server 301, the payment agent reception server 404, the payment agent authentication server 405, and the gateway 201 are connected via the Internet N101.
The gateway 201, the terminal authentication server 401, and the IP address distribution server 402 are connected by a closed network N102.
The payment DB 406 is connected to the payment proxy reception server and the first payment server 407, and the personal information DB 403 is a payment proxy authentication server 405, a terminal authentication server 401, an IP address distribution server 402, and a first payment server. 407.
The settlement proxy accepting server 404 is connected to the settlement proxy authentication server, and is connected to the first settlement server 407 and the second settlement server 501 of the bank system 2.

  The information terminal 101 has a display function or a display output function to a TV or a monitor, can be operated by a remote control or a keyboard, and has an access to the Internet and a browser function. The information terminal 101 includes a set top box, a personal computer, a home server, a network appliance, an embedded computer device, and the like. The information terminal 101 is managed with a unique individual identifier, and the individual identifier is also recorded on the information terminal 101.

  The gateway 201 has a function of controlling the connection of the information terminal 101 to the network, refers to a frame or a packet, has a switch function with a tag or a label, and further refers to a destination address, whereby the Internet N101 Alternatively, a switch function to the closed network N102 is provided.

  The personal information DB 403 stores an individual identifier of the information terminal 101 and personal information to be presented in writing when the owner of the information terminal 101 subscribes to the Internet access and payment agency service. The personal information here is, for example, a name, an address, and a debit account. The personal information and the IP address necessary for accessing the Internet are also recorded in association with the information terminal 101. In addition to personal information, billing information for services and payment information for products and services are also recorded.

In the settlement DB 406, registration information and settlement information of the store server operator who subscribes to the settlement agency service are recorded. The registration information includes information specifying the operating company, such as the operating company name, address, telephone number, and store server URL, and the bank name and account number for settlement. In addition, when payment is performed, payment information such as a trading partner, amount, date and time is recorded in association with the management company.
In the bank system 2, an account of an operator of a store server subscribing to a payment agency service and a personal account of a user who holds the information terminal 101 are opened.

FIG. 2 is a schematic block diagram showing the configuration of the information terminal 101.
The information terminal 101 includes an Internet access module 111, an authentication module 112, an IP address acquisition module 113, a tag addition module (tag addition means) 114, and a network adapter 115.
The Internet access module 111 is a module for transmitting and receiving data to and from a server connected to the Internet N101 such as the store server 301. The Internet access module 111 is configured by, for example, a web browser or a TCP / IP (Transmission Control Protocol / Internet Protocol) protocol stack.
The Internet access module 111 transmits the IP address (physical ID) assigned to the information terminal 101 included in the header of the packet addressed to the store server 301.

  The authentication module 112 is a module for performing an authentication procedure prior to connection to the Internet N101. The authentication module 112 transmits an authentication request to the terminal authentication server 401 via the information terminal network adapter 115 and receives an authentication response from the terminal authentication server 401.

  The IP address acquisition module 113 is a module for acquiring an IP address necessary for accessing the Internet N101 after the authentication procedure is successful. The IP address acquisition module 113 transmits an IP address request to the IP address distribution server 402 and receives a response from the IP address distribution server 402 in response to this request. The IP address acquisition module 113 sets the acquired IP address in the network adapter 115.

  The tag addition module 114 is a module for adding a tag indicating a frame to be transferred to the closed network N102 to a frame transmitted from the authentication module 112 and the IP address acquisition module 113 to the gateway 201 via the network adapter 115. is there. The tag is added to the header of the transmission frame in the form of a VLAN tag, for example.

The network adapter 115 is an interface card for connecting the information terminal 101 to the access line S11. In the present embodiment, the network adapter 115 is configured by an Ethernet adapter (“Ethernet” is a registered trademark). The network adapter 115 has a ROM (Read Only Memory) (not shown), and a MAC (Media Access Control) address (individual identifier) 116 is stored in this ROM.
All data transmission / reception performed by the information terminal 101 is performed via the network adapter 115.

FIG. 3 is a schematic block diagram showing the configuration of the gateway 201.
The gateway 201 includes a network adapter 211, a tag detection module (tag detection means) 212, and a switch (switch means) 213.
The network adapter 211 is an interface card for connecting the information terminal 101 to the access line S11, and is configured by, for example, an Ethernet adapter.
The tag detection module 212 is a module for analyzing a frame received from the information terminal 101 and detecting a tag added by the tag addition module of the information terminal 101. When a tag is detected, the tag information is transmitted to the switch 213.
The switch 213 sets the transmission destination of the frame to the closed network N102 when the tag information is received, and sets it to the Internet N101 when there is no tag information.

FIG. 4 is a schematic block diagram showing the configuration of the terminal authentication server 401.
The terminal authentication server 401 includes an authentication execution module 415, a personal information DB reference module 416, and a network adapter 417.
The authentication execution module 415 compares the personal information transmitted from the personal information DB 403 with the individual identification information transmitted from the information terminal 101, and executes authentication determination.
The personal information DB reference module 416 transmits the individual identification information transmitted from the information terminal 101 to the personal information DB 403, and requests transmission of personal information associated with the individual identification information.

FIG. 5 is a schematic block diagram showing the configuration of the IP address distribution server 402.
The IP address distribution server 402 includes an IP address pool 410, an IP address distribution module (IP address distribution unit) 411, a network adapter 412, and a DB update module (database update unit) 413.
The IP address pool 410 is data storing a plurality of IP addresses reserved for distribution in response to a request from the information terminal 101, and is stored in, for example, a RAM (not shown).
When there is a distribution request from the information terminal 101, the IP address distribution module 411 refers to the IP address pool 410, searches for an IP address that is not assigned to another terminal, and distributes it to the information terminal 101. To do.
The network adapter 412 is an interface for connecting the IP address distribution server 402 to the closed network N102, and is configured by an Ethernet adapter, for example.
The DB update module 413 accesses the personal information DB 403, searches for an individual identifier whose IP address from the information terminal 101 matches the individual identifier included in the prestige request, and distributes it to the information terminal 101 in association with this individual identifier. Registered IP address and update personal information DB403

FIG. 6 is a schematic block diagram showing the configuration of the store server 301.
The store server 301 includes a network adapter 311, a physical ID extraction module 312, a payment proxy request module, and an information provision module 314.
The network adapter 311 is an interface for connecting the store server 301 to the Internet N101, and is configured by an Ethernet adapter, for example.
The physical ID extraction module 312 is a module that extracts the IP address by analyzing the header of the frame transmitted from the information terminal 101.
The payment proxy request module 313 is a module that transmits a payment proxy request to the payment proxy reception server 404 when the frame transmitted from the information terminal 101 is a purchase request. The payment proxy request includes the IP address of the information terminal 101 extracted by the physical ID extraction module 312.
The information providing module 314 is a module for providing information on the types and prices of products handled by the store server 301 in the form of characters and images in response to a request from the information terminal 101. For example, HTTP (HyperText Transfer Protocol) ) Consists of server programs.

FIG. 7 is a schematic block diagram showing the configuration of the settlement proxy accepting server 404.
The settlement proxy accepting server 404 includes a network adapter 421, a settlement proxy acceptance module 422, and a settlement DB update module 423.
The network adapter 421 is an interface for connecting the payment proxy reception server 404 to the Internet N101, a connection line S43 with the payment proxy authentication server, and an access line S45 with the payment DB 406, and is configured by, for example, an Ethernet adapter.
The payment proxy accepting module 422 is a module that receives a payment proxy request from the store server 301 and transfers it to the payment proxy server.
The settlement DB update module 423 is a module for transmitting the current transaction result to the settlement DB 406 and updating the database when substitution of settlement is executed.

FIG. 8 is a schematic block diagram showing the configuration of the payment proxy authentication server 405.
The settlement proxy authentication server 405 includes a network adapter (settlement proxy request reception means and IP address acquisition means) 431, a settlement proxy authentication module (settlement proxy authentication means) 432, a settlement confirmation module (settlement confirmation request transmission means) 433, and a personal information DB. The update module 434 is configured.
The network adapter 431 is an interface for connecting the payment proxy authentication server 405 to the Internet N101, a connection line S43 with the payment proxy reception server 404, and an access line S44 with the personal information DB 403, and is configured by an Ethernet adapter, for example.

The payment proxy authentication module 432 is a module that authenticates the payment proxy request transferred from the payment proxy reception server 404. The payment proxy authentication module 432 accesses the personal information DB 403 to check whether the personal information DB 403 includes the IP address of the information terminal 101 included in the payment proxy request and the personal information associated therewith. If the IP address of the information terminal 101 and personal information associated therewith are included, it is determined that the payment agent request is valid from the registered user, and the payment agent is authenticated.
The payment confirmation 433 module is a module for confirming with the user of the information terminal 101 whether or not the payment can be executed when the payment proxy is authenticated. The authentication confirmation module 433 transmits the fact that payment is about to be made and the details of the transaction related to the payment to the information terminal 101. Then, when there is a response from the user to confirm the payment, the payment agent is executed.
The personal information DB update module 434 executes the payment agent by reflecting the current transaction contents in the DB 403 with the personal information when the user authentication is obtained and the execution of the payment agent is confirmed.

Next, the operation of the electronic commerce system 10 will be described.
FIG. 9 is a sequence diagram showing the operation of the Internet access process, which is a precondition process for the settlement process.
The information terminal 101 needs to receive an IP address when accessing the Internet N101 such as immediately after power-on. First, in order for the information terminal 101 to perform authentication confirmation that the information terminal 101 is a correct terminal registered as a terminal that can use the electronic commerce system 10, the information terminal 101 passes the closed network N102 to the terminal authentication server 401. Then, an authentication request including the individual identifier is transmitted (step 101).

  Upon receiving the authentication request, the terminal authentication server 401 transmits the individual identifier reference and the personal information reference request recorded in association with the individual identifier to the personal information DB 403 using the individual identifier as a key (step 102). . The terminal authentication server 401 receives personal information from the personal information DB 403 (step 103). The terminal authentication server 401 determines the validity of the individual identifier transmitted from the information terminal 101 based on the received personal information (step 104).

When the authentication determination result is normal, the information terminal 101 is notified as an authentication request response that authentication has been successful (step 105). In addition, the authentication result is transmitted to the IP address distribution server 402 as the authentication result notification, including the individual identifier of the authenticated information terminal 101 and the authentication result (step 106).

Next, when the information terminal 101 is normally authenticated, an IP address request is transmitted to the IP address distribution server 402 (step 106).
When the IP address distribution server 402 receives the IP address request from the information terminal 101, the IP address distribution server 402 confirms that the information terminal 101 has been normally authenticated, and then, with respect to the IP address pool in the IP address distribution server 402, In order to refer to the currently used IP address, an IP address reference request is made (step 108).

The IP address distribution server 402 receives the IP address response from the IP address pool (step 109), and when there is an assignable IP address, the information including the IP address information to be assigned to the information terminal 101 is displayed as the IP address. It is transmitted as a response (step 110).
Also, the IP address distribution server 402 makes a personal information DB update request to the personal information DB 403 and records the IP address in order to record the assigned IP address information in association with the personal identifier of the information terminal 101 (step 111). The information terminal 101 that has received the IP address response accesses the Internet by using the assigned IP address (step 112).

  FIG. 18 shows an address map of the IP address pool 410 in the IP address distribution server 402. In the IP address pool 410, a list of IP addresses that can be allocated and the current allocation status or free space information corresponding to the list are recorded. In the IP address distribution to the IP address distribution server 402 (step 107), one IP address having the state of “free” in the address map diagram of FIG. Is transmitted to the IP address distribution server 402.

FIG. 10 is a sequence diagram showing the operation of the settlement process of the electronic commerce system 10.
Referring to FIG. 10, in the information terminal 101, an information request is made to the store server 301 in order to refer to information on products and services provided by the store server 301 by using a web browser or the like (step 201). The store server 301 transmits information on products and services such as video and text (step 202). The information terminal 101 displays the received information and makes the user refer to it (step 203).

  When the user makes a purchase decision from the provided information and performs electronic payment, a purchase request is transmitted to the store server 301 (step 204). When receiving the purchase request 204, the store server 301 extracts the IP address of the information terminal 101 from the received packet (step 205). Further, the store server 301 makes a payment proxy request to the payment proxy reception server 404 as information including the extracted IP address and sales amount (step 206).

When the payment proxy receiving server 404 receives the payment proxy request, it makes a payment authentication request to the payment proxy authentication server 405 as information including the IP address and the payment amount (step 207).
The settlement proxy authentication server 405 requests the personal information from the personal information DB 403 to refer to the personal information using the received IP address as a key (step 208). The settlement proxy authentication server 405 receives personal information reversely looked up from the personal information DB 403 using the IP address as a key (step 209). Then, an authentication request including the payment amount is made to the information terminal 101 (step 210).

  In this case, the payment proxy authentication server 405 physically transmits to the information terminal 101, but transmits a message with the IP address received from the payment proxy reception server 404 as the transmission destination. When the information terminal 101 receives the authentication request, the information terminal 101 displays a message prompting the user to determine the payment amount and the payment acceptance (step 211). The user performs an input operation to approve the displayed content, and the result and information including the solid identifier are transmitted as an authentication response to the settlement proxy authentication server 405 (step 212).

  The settlement proxy authentication server 405 performs authentication determination by comparing the received individual identifier (step 213), and notifies the settlement proxy reception server 404 of a settlement authentication response (step 214). Further, the settlement proxy authentication server 404 makes a request to update the personal information DB 403 as information including the amount related to the individual identifier to the personal information DB 403 in order to charge the purchase user for the corresponding settlement amount. Is updated (step 215).

  The payment agent reception server 404 receives the payment authentication response from the payment agent authentication server 405, confirms that the payment is accepted, and notifies the store server of a payment agent response indicating the result of the payment acceptance (step 216). In addition, in order to record the store, the individual, and the amount of the payment, the payment DB update request is made to the payment DB 406 (step 217). The store server 301 receives the settlement proxy response 216, transmits a purchase result notification 218 to the information terminal 101, and notifies the purchase result from the store server 301 to the user.

Next, the settlement operation through the bank system 2 will be described with reference to FIG.
The first settlement server 407 refers to the operator information and the amount of agency settlement from the settlement DB 406 in order to make payment to the store server operator that has subscribed to the agency agency service. Deposit money into the account of the operator of the second settlement server 501. Also, the first settlement proxy server 407 refers to the personal information and the billing amount from the personal information DB, and performs a debit processing on the second settlement server 501 from the user's personal account.

Next, the database structure of the personal information DB 403 will be described with reference to FIG. Referring to FIG. 17, the personal information DB 403 includes a terminal information table 403a, a personal information table 403b, a physical ID information table 403c, a subscription service information table 403d, and an electronic payment information table 403e.
In the terminal information table 403a, individual identifiers of a plurality of information terminals 101 are recorded. In the personal information table 403b, personal information such as the name, address, telephone number, and account number of the user who owns the information terminal 101 is recorded. In the physical ID information table 403c, the IP address assigned by the IP address distribution server 402 to the information terminal 101 is recorded.

  The terminal information table 403a, the personal information table 403b, and the physical ID information table 403c are associated in a one-to-one relationship by a user name that is a unique key. The user A in FIG. 7 is associated with the information terminal table 401a, the personal information table 403b, and the physical ID information table 403c, but the user B is associated with the terminal information table 403a and the personal information table 403b. 403c is not associated. This indicates that an IP address is not assigned to the information terminal 101 owned by the user B.

  In the subscription service information table 403c and the electronic payment information table 403e, the service information and the amount of money subscribed to by each user, the information on the electronic payment and the amount of money are recorded in association with each user of the personal information table 403a. The first settlement server 407 requests the second settlement server 501 to withdraw the total amount of the service fee according to the subscription service status of each user and the amount of the purchased product.

Next, the database structure of the settlement DB 406 will be described with reference to FIG. Referring to FIG. 18, the settlement DB 406 includes a business operator information table 406a and a proxy settlement information table 406b. In the business operator information table 406a, the business name, address, telephone number, and account number of the business operator that operates the store server 301 and subscribes to the electronic payment proxy processing service are recorded. In the proxy settlement information table, the name and amount of a user who has performed settlement for electronic settlement for each business are recorded. The business entity information table and the agency settlement information table are associated with each business unit.
The first settlement server 407 sums up the amounts of payments made for each business operator and makes a payment request for the total amount to the second settlement server.

Next, the operation of each device constituting the electronic commerce system 10 will be described.
FIG. 11 is a schematic flowchart showing the operation of the information terminal 101.
Prior to accessing the Internet, the information terminal 101 transmits an authentication request to the terminal authentication server 401 (step 10). This authentication request includes identification information for identifying the information terminal 101 as a solid, for example, a MAC address. Since the tag is added to the authentication request frame by the tag addition module, the gateway 210 transfers the authentication request frame to the terminal authentication server 401 via the closed network N102 that is free from a wiretapping by a third party.

Upon receiving the authentication result from the terminal authentication server 401 (step 11), the information terminal 101 then transmits an IP address distribution request to the IP address distribution server 402 (step 12). This transmission request frame also includes the MAC address. Further, like the authentication request frame, it is transferred to the IP address distribution server 402 via the closed network N102.
The information terminal 101 receives an available IP address from the IP address distribution server 402 (step 13), sets it in the network adapter 115, and starts access to the Internet N101 (step 14).

  The information terminal 101 accesses the store server 301 via the Internet N101, and transmits an information request to obtain information such as the price of the product (step 15). The information terminal 101 receives the information returned as HTML (HyperText Markup Language) data from the store server 301 in response to the information request, and interprets it with, for example, Web browser software and displays it on the screen (step 16). When the type and quantity of the product to be purchased are input by the user, the information terminal 101 transmits a purchase request to the store server 301 (step 17). Since this communication is performed by TCP / IP, the IP header of the purchase request frame includes the IP address of the information terminal 101.

When the payment agent is authenticated for the purchase request, the information terminal 101 receives the authentication confirmation request transmitted from the payment agent authentication server 405 (step 18). The information terminal 101 displays the content of the transaction included in the authentication confirmation request on the screen, and waits for the user's intention to confirm whether or not to confirm the authentication of the settlement agent. When there is an input, the information terminal 101 transmits a confirmation response to the payment proxy authentication server 405 (step 19).
When the payment agent is executed, the information terminal 101 receives the purchase result notification from the store server 301 and displays it on the screen (step 20).

FIG. 12 is a schematic flowchart showing the operation of the gateway 201.
When the gateway 210 receives the frame from the information terminal 201 (step 25), the tag detection module 212 determines whether or not the frame includes a tag indicating that the frame should be transferred to the closed network N102 (step 26). ). The tag detection module 212 notifies the detection result to the switch 213.
The switch 213 forwards the frame to which the tag is added to the closed network N102 (step 27) and the frame to which the tag is not added to the Internet N101 (step 28).

FIG. 13 is a schematic flowchart showing the operation of the terminal authentication server 401.
Upon receiving the individual identification information from the information terminal 101 (step 301), the terminal authentication server 401 refers to the personal information DB 403 to confirm whether the information terminal 101 is registered as a legitimate user (step 302). ).
The terminal authentication server 401 first checks whether or not individual identification information that matches the received individual identification information is registered in the personal information DB 403 (step 303). If it is not registered, the authentication is rejected (step 307), and the fact is notified to the information terminal 101 (step 308).
If it is registered in the personal information DB 403 that matches the received individual identification information, it is determined whether or not a user associated with the matching individual identification information is registered (step 304). If the user is not registered, the authentication is rejected (step 307), and the fact is notified to the information terminal 101 (step 308). If the user is registered, the information terminal 101 is authenticated and the information terminal 101 is notified of this.

FIG. 14 is a schematic flowchart showing the operation of the IP address distribution server 401.
When receiving the IP address request from the information terminal 101 (step 30), the IP address distribution server 401 confirms that the information terminal 101 is an authenticated terminal (step 31). If it is not possible to confirm that the information terminal has been authenticated, a notification that the IP address cannot be distributed is transmitted to the information terminal 101 (step 35), and the process is terminated.
When it is confirmed that the information terminal 101 has been authenticated, the IP address pool is referred to, notification of an assignable IP address is received (step 32), and the IP address is transmitted to the information terminal 101 (step 32). ).
The IP address distribution server 403 registers the IP address transmitted to the information terminal 101 in association with the individual identification information of the information terminal 101 stored in the personal information DB 403, and updates the personal information DB 403.

FIG. 15 is a schematic flowchart showing the operation of the store server 301.
When store server 401 receives a message from information terminal 101 (step 401), it determines whether the message is an information request (step 402). If it is determined that the message is an information request, product information is returned to the information terminal 101 (step 403), and the process returns to a message reception waiting state.
If it is determined that the received message is not an information request, it is determined whether the message is a purchase application (step 404). If the message is neither an information request nor a purchase application, the process ends here (No at step 404, step 407).
If it is determined that the received message is a purchase application, the IP address of the information terminal 101 is extracted from the message (step 405). This is performed, for example, by extracting the source IP address included in the header of the received message.

If the extraction of the IP address is successful, the store server 301 transmits a payment proxy request to the payment proxy reception server 404 (step 406). This payment agent request includes the IP address of the information terminal 101 acquired in step 405 and the payment amount.
When the payment proxy authentication server 405 authenticates the payment proxy, the store server 301 receives a payment proxy response from the payment proxy reception server 404 (step 408), and transmits a purchase result notification to the information terminal 101 ( Step 409).

FIG. 16 is a schematic flowchart showing the operation of the settlement proxy accepting server 404.
Upon receiving the payment proxy request from the store server 301 (step 420), the payment proxy reception server 404 transmits a payment authentication request to the payment proxy authentication server 405 (step 421), and sends a payment authentication response from the payment proxy authentication server. wait. This payment authentication request includes the IP address of the information terminal 101 received from the store server 301 and the payment amount.
When receiving the payment authentication response (step 423), the payment proxy accepting server 404 transmits the payment proxy response to the store server 301 (step 423). The settlement proxy reception server 404 updates the settlement DB 404 by transmitting the name of the store that performed the current transaction, the user name, and the like to the settlement DB 404.

FIG. 17 is a schematic flowchart showing the operation of the settlement proxy authentication server 405.
Upon receiving the payment proxy request from the payment proxy reception server 404 (step 430), the payment proxy reception server 405 transmits a personal information request to the personal information DB 403 (step 431). This personal information request includes the IP address of the information terminal 101.
The personal information DB 403 searches for personal information associated with the IP address included in the personal information request, and the payment proxy authentication server 405 receives the search result (step 432).
The settlement proxy authentication server 405 determines whether the received search result includes personal information and individual identification information associated with the IP address of the information terminal 101 (step 433). If there is no personal information or individual identification information, the process ends here.

When both the personal information and the individual identification information are associated with the IP address of the information terminal 101, the payment proxy authentication server 405 sends an authentication request to the information terminal 101 to request the user to authenticate the payment contents. Transmit (step 434). This authentication request is made with the IP address of the information terminal 101 acquired from the payment proxy accepting server as a physical destination.
Therefore, even if a third party who is not a legitimate user of the information terminal 101 tries to make an illegal transaction by impersonating the IP address of the terminal used by the information terminal 101, the authentication request is not sent to the third party terminal. It arrives at the information terminal 101 without.
For this reason, the user of the information terminal 101 can input a response indicating that authentication is not performed in response to an authentication request that the user does not remember, thereby preventing unauthorized use by a third party.

When the payment proxy authentication server 405 receives the authentication response from the information terminal 101 (step 435), the payment proxy authentication server 405 determines whether or not the payment proxy can be performed (step 436). Here, the payment agent is authenticated only when the information terminal 101 authenticates the payment. That is, even when it is confirmed in step 433 that individual identification information and personal information associated with the IP address of the information terminal 101 exist, if there is an authentication response from the information terminal 101 to deny authentication, If there is no authentication response even after a predetermined time has passed since the authentication request was transmitted, the payment agent is not authenticated. Further, even when the individual identification information included in the authentication response does not match that associated with the IP address of the information terminal 101 in the personal information DB 403, the payment agent is not authenticated.
If it is determined in step 436 that the payment agent cannot be authenticated, the process ends here.

  If it is determined in step 436 that the payment proxy can be authenticated, the payment proxy authentication server 405 transmits a payment proxy response to the payment proxy reception server 404 (step 437). Further, the individual identifier and the contents of the current settlement are transmitted to the personal information DB 403 to update the database (step 438).

  The present invention is also implemented as a computer program that causes the information terminal 101, the store server 301, the terminal authentication server 401, the IP address distribution server 402, the payment proxy reception server 404, and the payment proxy authentication server 405 to perform the operations described above. be able to.

According to the electronic commerce system 10, the terminal authentication server 402 authenticates the information terminal 101, and the IP address assigned to the authenticated information terminal 101 by the IP address distribution server 402 and the personal information registered in the personal information DB 403 in advance. Register in association with individual identification information.
When there is a payment authentication request, the payment proxy authentication server 405 determines whether the personal information associated with the IP address of the information terminal 101 extracted from the purchase request frame and the individual identification information are registered in the personal information DB 403. Authenticate payment based on
Therefore, even if the information terminal 101 does not transmit personal information such as a credit card number to the store server 301 via the Internet N101, the payment proxy authentication server 405 can perform a payment proxy authentication process.

Further, according to the electronic commerce system 10, the payment proxy authentication server 405 transmits an authentication request with the IP address of the information terminal 101 extracted from the frame of the purchase request as the destination when authenticating the payment proxy. Therefore, this authentication request reaches the information terminal 101 even if the IP address included in the purchase request is forged by a third party. Then, the payment proxy authentication server 405 performs a payment proxy when there is a response to authenticate the authentication request and the solid identification information included in the response matches that stored in the personal information DB. Certify.
Therefore, it is possible to prevent a third party from impersonating the IP address of the terminal used by the third party and impersonating the authorized user of the information terminal 101.

Further, according to the electronic commerce system 10, the message interface between the store server 301 and the payment agent system 1 can be realized only with an IP address and a payment amount which are known and open information. Therefore, the function for negotiating with the payment agent system of the store server 301 is simplified, the occurrence rate of failures and the like is reduced, and maintenance maintenance is facilitated. Furthermore, an advanced security function for communication with the payment agent system 1 is not necessary.
Therefore, the system construction of the store server 301 is facilitated, and the operation cost can be reduced.

Further, according to the electronic commerce system 10, when the information terminal 101 receives authentication for Internet connection, the tag addition module 114 adds a tag to the transmission frame. Then, the gateway 201 switches the frame with the tag to the closed network N102.
Therefore, when authenticating the information terminal 101, a high level of security can be secured through the secure closed network N102.

Next, the configuration and operation of an electronic payment system 10a according to the second embodiment of the present invention will be described. Since the electronic payment system 10 a has many configurations in common with the electronic payment system 10, common components are denoted by the same reference numerals as those of the electronic payment system 10, and description thereof is omitted.
FIG. 1 is a block diagram showing the configuration of the electronic payment system 10a.
The electronic payment system 10a includes an information terminal 101a in which a user browses electronic commerce information and performs an electronic payment operation, a bridge 201a that relays communication between the information terminal 101a and the store server 301, provision of merchandise information, and merchandise A store server 301 that performs sales, a payment agent reception server 404 that receives a payment agent request from the store server, a payment agent authentication server 405 that receives an authentication request from the payment agent reception server and checks the information terminal 101, and information The personal information DB 403 in which the MAC address of the terminal 101 and the owner's personal information are recorded, the payment DB 406 in which the payment amount with the registered store server is recorded, the payment DB 406 and the personal information DB It is comprised with the 1st payment server 407 which performs the payment process with the 2nd payment server 501 of the bank system 2 based on the information of 403
The information terminal 101a, the store server 301, the payment proxy reception server 404, and the payment proxy authentication server 405 are each connected to the L2 network N103. The L2 network 102 is a network that performs communication using, for example, an OSI reference model second layer protocol such as Ethernet.
Therefore, in the electronic payment system 10a, the MAC address is used as the physical ID of the information terminal 101a.

FIG. 22 is a schematic block diagram showing the configuration of the information terminal 101a. The basic configuration is the same as that of the information terminal 101 in FIG. 2, but the authentication module 112, the IP address acquisition module 113, and the tag addition module 114 are not provided.
The network access module 111a is a device driver for controlling the information terminal network adapter 115, for example.

  The configuration of the store server 301 is the same as that in the first embodiment (see FIG. 6). However, the physical ID extraction module 312 analyzes the header of the frame transmitted from the information terminal 101 and extracts the MAC address.

The configuration of the settlement proxy receiving server 405 is the same as that in the first embodiment (see FIG. 7).
The configuration of the payment proxy authentication server 406 is the same as that in the first embodiment (see FIG. 8). However, the settlement proxy authentication module 432 performs authentication processing based on the MAC address instead of the IP address.

The payment processing operation of the electronic commerce system 10a is basically the same as the operation of the first embodiment shown in FIG. However, the store server 301 extracts the MAC address of the information terminal 101a instead of the IP address in ST205, and in the subsequent steps, authentication processing is performed based on this MAC address.
The operations of the information terminal 101a, the store server 310, the payment proxy reception server 404, and the payment proxy authentication server 405 are the same as those in the first embodiment (see FIGS. 11, 15, 16, and 17). However, since the electronic settlement system 10a does not include a terminal authentication server and an IP address distribution server, the information terminal 101a does not perform the operations shown in ST10 to ST14 in FIG.

  The data structure of the personal information DB 403 is the same as that shown in FIG. However, the MAC address is recorded in the physical ID information table 403c instead of the IP address. For example, when the user of the information terminal 101a makes a service use application, the individual identification information is notified together with personal information, and is stored in the personal information DB 403 in advance.

In the electronic commerce system 10a, the payment proxy authentication server 405 receives personal information and individual identification information associated with the MAC address of the information terminal 101a extracted from the frame of the purchase request in the personal information DB 403 when there is a payment authentication request. Authenticate payment based on whether it is registered or not.
Therefore, even if the information terminal 101a does not transmit personal information such as a credit card number to the store server 301 via the L2 network N103, the payment proxy authentication server 405 can perform a payment proxy authentication process.

Further, according to the electronic commerce system 10a, the payment proxy authentication server 405 transmits an authentication request with the MAC address of the information terminal 101a extracted from the frame of the purchase request as a destination when authenticating the payment proxy. Therefore, this authentication request reaches the information terminal 101a even if the MAC address included in the purchase request is forged by a third party. Then, the payment proxy authentication server 405 performs a payment proxy when there is a response to authenticate the authentication request and the solid identification information included in the response matches that stored in the personal information DB. Certify.
Therefore, it is possible to prevent a third party from impersonating the MAC address of the terminal used by the third party and impersonating the authorized user of the information terminal 101a.

Further, according to the electronic commerce system 10a, the message interface between the store server 301 and the payment agent system 1 can be realized only with the MAC address and the payment amount that are known and open information. Therefore, the function for negotiating with the payment agent system of the store server 301 is simplified, the occurrence rate of failures and the like is reduced, and maintenance maintenance is facilitated. Furthermore, an advanced security function for communication with the payment agent system 1 is not necessary.
Therefore, the system construction of the store server 301 is facilitated, and the operation cost can be reduced.

1 is an overall view of an electronic commerce system according to a first embodiment of the present invention. It is a block diagram of an information terminal. It is a block diagram of a gateway. It is a block diagram of a terminal authentication server. It is a block diagram of an IP address distribution server. It is a block diagram of a store server. It is a block diagram of a payment proxy reception server. It is a block diagram of a payment proxy authentication server. It is a sequence diagram which shows the operation | movement of the authentication of an information terminal, and IP address delivery. It is a sequence diagram which shows the operation | movement of a payment proxy process. It is a flowchart which shows operation | movement of an information terminal. It is a flowchart which shows operation | movement of a gateway. It is a flowchart which shows operation | movement of a terminal authentication server. It is a flowchart which shows operation | movement of an IP address delivery server. It is a flowchart which shows operation | movement of a shop server. It is a flowchart which shows operation | movement of a payment proxy reception server. It is a flowchart which shows operation | movement of a payment proxy authentication server. It is a figure which shows the data structure of an IP address table. It is a figure which shows the data structure of personal information DB. It is a figure which shows the data structure of payment DB. 1 is an overall view of an electronic commerce system according to a first embodiment of the present invention. It is a block diagram of the information terminal of FIG. It is a figure which shows the conventional electronic commerce system.

Explanation of symbols

1, 1a: Settlement proxy system 101, 101a: Information terminal 114: Tag addition module (tag addition means)
201: Gateway 212: Tag detection module (tag detection means)
213: Switch (switch means)
301: Store server 401: Terminal authentication server 402: IP address distribution server 403: Personal information DB (personal information database)
405: Payment proxy authentication server 411: IP address distribution module (IP address distribution means)
412: Network adapter (individual identifier acquisition means)
413: DB update module (database update means)
415: Authentication execution module (connection authentication means)
422: Payment agent acceptance module (payment agent request receiving means, physical ID acquisition means)
432: Payment agent authentication module (payment agent authentication means)
433: Settlement confirmation module (Settlement confirmation request transmission means)
N101: Internet N102: Closed network N103: L2 network

Claims (13)

In an electronic commerce system including an information terminal operated by a purchaser of a product and a store server that receives an order from the information terminal via a network,
A payment agent authentication server for authenticating a payment agent request from the store server, and a personal information database in which a physical ID of the information terminal and personal information for identifying an individual who uses the information terminal are associated and registered. ,
The payment agent authentication server, a payment agent request receiving means for receiving a payment agent request from the store server;
A physical ID acquisition means for acquiring the physical ID included in a header of a packet transmitted from the information terminal;
Accessing the personal information database, a physical ID that matches the acquired physical ID is registered in the information database, and personal information associated with the matching physical ID is registered in the personal information database. An electronic commerce system comprising: a payment agent authenticating means for authenticating the payment agent request when there is a payment agent.   The payment agent system according to claim 1, wherein the physical ID is an IP address. An IP address distribution server that distributes an IP address for connecting to the Internet to the information terminal,
The IP address distribution server, an individual identifier acquisition means for acquiring an individual identifier of the information terminal,
IP address distribution means for distributing an IP address to the information terminal in response to a request from the information terminal;
An individual identifier that matches the acquired individual identification information is registered in the personal information database by accessing the personal information database, and personal information associated with the matching individual identifier is stored in the personal information database. 3. The database updating unit according to claim 2, further comprising a database update unit configured to update the personal information database by registering an IP address distributed to the information terminal in association with the personal information when registered. Electronic commerce system. A terminal authentication server that performs authentication of the connection based on the personal information database when the information terminal tries to connect to the Internet;
The terminal authentication server includes an individual identifier acquisition unit that extracts the individual identifier included in a connection authentication frame transmitted from the information terminal;
The personal information database is accessed, solid identification information that matches the extracted solid identification information is registered in the personal information database, and the personal information associated with the solid identification information is stored in the personal information database. A connection authentication means for authenticating the Internet connection of the information terminal when registered,
The electronic commerce system according to claim 3, wherein the IP address distribution server distributes an IP address to the information terminal whose connection is authenticated by the terminal authentication server.   The electronic commerce according to claim 4, wherein communication between the information terminal and the terminal authentication server and communication between the information terminal and the IP address distribution server are performed via a closed network. system. A gateway connected to each of the information terminal, the Internet, and the closed network;
The information terminal comprises tag addition means for adding a tag to a frame to be transmitted to the IP address distribution server and the terminal authentication server,
The gateway includes tag detection means for detecting the tag from a received frame received from the information terminal;
6. The electronic commerce according to claim 5, further comprising switch means for transferring the received frame in which the tag is detected to the closed network and transferring the received frame in which the tag is not detected to the Internet. system. The settlement proxy authentication server
An authentication confirmation request transmitting means for transmitting an authentication confirmation request for confirmation of authentication by the settlement agent means using the physical ID acquired by the physical ID acquisition means as a transmission destination;
7. The settlement proxy authentication unit authenticates the settlement proxy request when receiving a message confirming authentication in response to the authentication confirmation request. The payment agent system described in 1. Based on a personal information database in which physical IDs assigned to information terminals for ordering goods and personal information of users of the information terminals are registered in association with settlement of commercial transactions performed via the Internet In the method to do
A physical ID acquisition step of acquiring a physical ID of the information terminal from a packet transmitted by the information terminal;
Accessing the personal information database, a physical ID that matches the acquired physical ID is registered in the personal information database, and personal information associated with the matching physical ID is registered in the personal information database. A transaction authentication step for authenticating a transaction related to the order,
A payment method comprising: a payment execution step that operates when the transaction is authenticated in the transaction authentication step and executes payment related to the transaction.   In the transaction authentication step, an authentication confirmation request is transmitted with the extracted physical ID as a destination, and a transaction related to the order is authenticated when an authentication confirmation for confirming the authentication in response to the authentication confirmation request is received. The settlement method according to claim 8. In a method for updating a personal information database in which an individual identifier of an information terminal and personal information for identifying an individual who uses the information terminal are associated and registered,
A solid identifier extraction step for extracting the individual identifier of the information terminal from the connection authentication request frame transmitted by the information terminal to be connected to the network;
A connection authentication step for authenticating the connection when the personal information associated with the individual identifier extracted in the individual identifier extraction step and the personal information associated with the individual identifier are included in the personal information database;
An IP address distribution step that operates when authentication of the information terminal is permitted in the connection authentication step and distributes an IP address for Internet connection to the information terminal;
A method for updating a personal information database, comprising: an IP address registration step of registering the IP address in association with the matching individual identifier in the personal information database. The physical ID assigned to the information terminal and the information are substituted for the electronic commerce settlement performed between the information terminal operated by the purchaser of the product and the store server that receives the order from the information terminal via the network. In the payment agent program based on the personal information database registered in association with the personal information of the terminal user,
On the computer,
A payment agent request receiving step for receiving a payment agent request from the store server;
A physical ID extraction step of extracting the physical ID from a header of a packet transmitted from the information terminal;
Accessing the personal information database, a physical ID that matches the acquired physical ID is registered in the information database, and personal information associated with the matching physical ID is registered in the personal information database. And a payment agent authentication step for executing the payment agent authentication step for authenticating the payment agent request. In the payment authentication step,
Transmitting an authentication confirmation request for confirmation of the authentication with the physical ID acquired in the physical ID acquisition step as a transmission destination, and authenticating the settlement proxy request when receiving an authentication confirmation in response to the authentication confirmation request. 12. The settlement agent program according to claim 11, characterized in that it is a settlement agent program. In a program for updating a personal information database in which an individual identifier of an information terminal and personal information of a user of the information terminal are associated and registered,
On the computer,
An IP address distribution request receiving step for receiving an IP address distribution request for Internet connection from the information terminal;
Extracting the individual identification information of the information terminal from the frame including the IP address distribution request;
An IP address distribution step of distributing an IP address to the information terminal in response to the IP address distribution request;
A database update step of registering the IP address distributed in the IP address distribution step in the personal information database in association with the individual identification information registered in the personal information database matching the individual identifier of the extracted information terminal A database update program characterized in that

Images