JP2009288834A - Information management system and reading unit - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an information management system improving user convenience. <P>SOLUTION: A membership certificate DB server 300 receives a device ID and service information from a terminal unit, receives a service information request message to be used from the terminal unit, obtains the requested service information from a memory unit, generates an index including position information to identify the stored position of the obtained service information, and transmits the service information and the index to the terminal unit. A PC 200 reads the device ID from a first device, reads the service information from a second device, transmits the device ID and the service information to the membership certificate DB server 300, transmits a request message to the membership certificate DB server 300, receives the service information and the index, transmitted as a response, from the membership certificate DB server 300, and writes the service information into the storage position of the first device identified by the position information. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention stores information in a portable security device such as an IC (Integrated Circuit) card and manages service information used in a service using the portable security device, and reads service information from the portable security device. It relates to a reader.

  Conventionally, various services using portable security devices such as IC cards that can store more information than magnetic cards and the like have been provided. For example, a service for providing points or the like to a member who owns an IC card (membership card) storing membership card information is known.

  An IC card used as a membership card or the like is usually provided as a different card for each service provider. Therefore, the user needs to have different IC cards for the number of services to be used, which has been a factor in reducing convenience.

  On the other hand, if information of a plurality of services is registered in the IC card, it is possible to receive a plurality of services with one IC card. For example, Patent Document 1 proposes a technology related to a service management system that registers a service of another service provider with a customer operation terminal for an IC card issued by a financial institution.

JP 2004-178331 A

  However, the method of Patent Document 1 uses a dedicated customer operation terminal for an existing IC card issued by a certain financial institution, so that a service provider other than the financial institution corresponding to this customer operation terminal A service can be added. For this reason, for example, even if an IC card of a certain service provider is already possessed and the service is received, if the service provider does not support the customer operation terminal, the service provider's existing IC card is stored in the existing IC card. It is not possible to receive a plurality of services with one IC card by adding a service. As described above, in the method of Patent Document 1, information on a plurality of existing cards cannot always be integrated into one IC card, and the convenience of the user may be impaired.

  The present invention has been made in view of the above, and an object of the present invention is to provide an information management system and a reading apparatus that can improve the convenience of a user of a service using a portable security device.

  In order to solve the above-described problems and achieve the object, the present invention is a management for managing service information used in a service using the portable security device, which is information stored in the portable security device. An information management system comprising a device and a terminal device connectable to the management device via a network, wherein the management device includes a first device that is a portable security device capable of storing a plurality of the service information A storage unit capable of associating and storing a device ID to be identified and at least one service information read from each of at least one second device in which the service information is stored; and the device ID and the service A first receiving unit for receiving information from the terminal device, the received device ID and the received device ID A storage unit that associates service information with the storage unit, stores a request message for requesting the service information of a service to be used from the terminal device, and requests the requested service information. A generation unit that generates an index including an acquisition unit that is acquired from a storage unit, an information ID that identifies the acquired service information, and location information that specifies a storage location of the service information on the first device; A first transmission unit that transmits the acquired service information and the generated index to the terminal device, wherein the terminal device reads the device ID from the first device, and the second device A reading unit that reads the service information from the device; and a device that transmits the read device ID and the service information to the management apparatus. A transmission unit; a third transmission unit that transmits the request message requesting the service information of the service stored and used in the first device to the management device; and the service information transmitted as a response to the request message. And a third receiving unit that receives the index from the management device, writes the received index into the first device, and identifies the received service information by the location information included in the received index And a writing unit for writing to a storage location on the first device. According to the present invention, since service information read from at least one portable security device in which service information is stored can be written to another portable security device, only one portable security device can be used. A plurality of services can be received, and the convenience of the service using the portable security device can be improved.

  Further, the present invention stores at least one service information used in a service using a portable security device, and specifies an information ID for identifying the stored service information and a storage location of the stored service information. Whether or not the service information to be used is stored based on the index reading unit that reads the index from the portable security device that stores the index including the position information and the information ID included in the read index And an information reading unit that reads the service information to be used from the position information included in the read index when it is stored. According to the present invention, since a plurality of pieces of service information can be read from one portable security device, it is possible to receive a plurality of services using only one portable security device, and a service using the portable security device. Convenience can be improved.

  According to the present invention, it is possible to improve the convenience of a user of a service using a portable security device.

  Exemplary embodiments of an information management system and a reading apparatus according to the present invention are explained in detail below with reference to the accompanying drawings.

  The information management system according to the present embodiment enables information on existing IC cards used for services such as membership card services to be registered in one integrated IC card. In the following, a system for managing membership card information used in the membership card service will be described as an example. However, the applicable service is not limited to the membership card service, and a mobile phone equipped with an IC card and an IC chip. Any service that uses a portable security device such as a telephone can be applied.

  FIG. 1 is a diagram showing an overall configuration of the information management system according to the present embodiment. Hereinafter, the configuration and processing outline of the information management system according to the present embodiment will be described with reference to FIG.

  As shown in FIG. 1, the information management system includes an IC card 100 for integration, and a terminal to which a reader / writer 250 that can access the IC card 100 and IC cards 1 and 2, which are examples of existing membership card cards, is connected. It includes a PC 200 as an apparatus, a membership card DB server 300 as a management apparatus for managing information on an IC card, and a reader / writer 400 as a reading apparatus installed in a store or the like.

  The IC cards 1 and 2 are examples of existing IC cards owned by a certain user. The IC card 1 represents an example of a membership card (CD rental point card) issued by a CD rental company. The IC card 2 represents an example of a membership card (restaurant point card) issued by a restaurant business.

  The IC card 100 is an IC card for registering information on existing IC cards such as the IC cards 1 and 2 and enabling a plurality of services. Hereinafter, the IC card 100 may be referred to as a My membership card.

  The IC cards 1, 2, and 100 can be realized by non-contact type IC cards, for example. A contact type IC card may be used. Further, a portable security device other than the card type such as a cellular phone with a built-in IC chip may be used.

  In a non-contact type IC card, a unique area (unique area) where unique information can be set for each service provider and a common area (common area) managed by the non-contact type IC card operator can be set. it can. The service stored in each area is identified by the upper code, the middle code, and the lower code.

  In the figure, the IC card 1 stores service information, which is information used for the point service, in a data area in a unique area. A service using the IC card 1 is identified by an upper code = 1234, a middle code = 2000, and a lower code = 2111. Similarly, the IC card 2 stores service information in a data area within a unique area. A service using the IC card 2 is identified by an upper code = 5678, a middle code = 6000, and a lower code = 6222.

  The reader / writer 400 is used by being connected to a POS (Point Of Sales) terminal of a restaurant that can use a restaurant point card (IC card 2), for example. In the reader / writer 400, setting information 451 including key information for accessing service information of a service identified by an upper code = 5678, a middle code = 6000, and a lower code = 6222 is set in advance.

  The IC card 100 stores service information of a plurality of services in a data area in the common area. For this reason, the upper code is a code (WWW in the figure) that is pre-assigned to the common area. In this embodiment, in order to identify a service (hereinafter referred to as “My membership card service”) that allows a plurality of existing service information to be registered in the My membership card (IC card 100), the My membership card intermediate code is further added. = XXXX and My membership card lower code = YYYY are assigned.

  Further, the IC card 100 stores the service information of the existing IC cards 1 and 2 downloaded from the membership card DB server 300 in the data area of the My membership card card. In the figure, an example is shown in which service information 111 corresponding to the IC card 1 and service information 112 corresponding to the IC card 2 are stored in the IC card 100.

  The IC card 100 uses an index 120 including service information ID for identifying service information corresponding to an existing IC card and position information for specifying the storage position of the service information, for example, an IC card such as the head of the data area. Store in 100 predetermined storage locations. In the figure, a service information ID composed of a high-order code, a middle-order code, and a low-order code, and the number of bytes (offset) from the beginning of the data area of the My membership card service of the IC card 100 in the area for storing service information. An example of an index including position information is shown.

  The user obtains the IC card 100 from the provider, for example, by applying to the provider of the My membership card service. The IC card 100 stores a card ID that is identification information of the IC card 100 at a predetermined storage position. The membership card DB server 300 manages service information that can be used for each user based on the card ID.

  The reader / writer 400 newly sets setting information 452 so that the point service can be used not only by the existing IC card 2 but also by the My membership card. The setting information 452 includes key information for accessing service information of the My membership card service in the common area and key information for accessing the service information 112 in the data area of the My membership card.

  The PC 200 is a device that can read service information from the IC cards 1 and 2 and write service information to the IC card 100 by using the reader / writer 250. Then, the PC 200 acquires the service information in the unique area by the reader / writer 250 and transmits it to the membership card DB server 300 ((1) in the figure).

  The membership card DB server 300 stores service information, acquires service information to be used from the stored service information and transmits it to the PC 200 in response to a request from the user of the PC 200. That is, the PC 200 accepts selection of service information of a service to be used from the user. Then, the selected service information is downloaded from the membership card DB server 300 ((2) in the figure). Further, the PC 200 writes the downloaded service information in the data area of the My membership card service of the IC card 100 ((3) in the figure). The index is generated by the membership card DB server 300, downloaded together with the service information, and written to the IC card 100 together with the service information.

  In this way, the user can use a desired service using only one IC card 100 among services available using the existing IC cards 1 and 2.

  In the figure, only one PC 200 is shown, but a plurality of PCs 200 may be provided for each user, for example. Similarly, for example, a plurality of reader / writers 400 may be provided for each store.

  Next, the hardware configuration of each device included in the information management system according to this exemplary embodiment will be described. FIG. 2 is a diagram illustrating an example of a hardware configuration of the IC card 100 according to the present embodiment.

  As shown in FIG. 2, the IC card 100 includes a communication unit 11, a CPU (Central Processing Unit) 12, a RAM (Random Access Memory) 13, a ROM (Read Only Memory) 14, and an EEPROM (Electronically Erasable and Programmable). Read Only Memory) 15.

  The communication unit 11 controls communication between the IC card 100 and the reader / writer 250 or the reader / writer 400.

  The ROM 14 is a storage medium that can only be read, and is used as a storage area for programs and data. The EEPROM 15 is a non-volatile memory that can be written and erased, and is used as a data storage area. The data stored in the EEPROM 15 may be arbitrary data. Information on the common area shown in FIG. 1 is stored in the EEPROM 15.

  The CPU 12 executes a program stored in the ROM 14 and executes various processes based on the function of the program. The RAM 13 is used as a work area for the CPU 12. The RAM 13 is also used as a storage area for data that needs to be rewritten.

  Next, the hardware configuration of the PC 200 and the membership card DB server 300 will be described. FIG. 3 is a diagram illustrating an example of a hardware configuration of the PC 200 and the membership card DB server 300 according to the present embodiment.

  The PC 200 and the membership card DB server 300 according to the present embodiment include a control device such as a CPU 21, a storage device such as a ROM 22 and a RAM 23, a communication I / F 24 connected to a network for communication, and a HDD (Hard Disk Drive). ), An external storage device such as a CD (Compact Disc) drive device, a display device such as a display device, an input device such as a keyboard and a mouse, and a bus 25 for connecting each part, and using a normal computer It has a hardware configuration.

  Next, the hardware configuration of the reader / writer 400 will be described. FIG. 4 is a diagram illustrating an example of a hardware configuration of the reader / writer 400 according to the present embodiment.

  As shown in FIG. 4, the reader / writer 400 includes a communication unit 31, a communication unit 32, a CPU 33, and a ROM 34.

  The communication unit 31 controls communication with IC cards such as IC cards 1, 2, 100, and the like. The communication method with the IC card may be either a non-contact method or a contact method. The communication unit 32 controls communication with a device that reads from and writes to an IC card such as a POS terminal. The ROM 34 is a storage medium that can only be read, and is used as a storage area for programs and data. The CPU 33 executes a program stored in the ROM 34 and executes various processes based on the function of the program.

  Next, details of functions of each device included in the information management system according to the exemplary embodiment will be described. First, details of the configuration and functions of the PC 200 will be described with reference to FIG. FIG. 5 is a functional block diagram of the PC 200 according to the present embodiment. As shown in the figure, the PC 200 includes a display unit 210 as a main hardware configuration. The PC 200 includes a transmission / reception unit 201, a reading unit 202, and a writing unit 203 as main software configurations realized by the CPU 21 operating in accordance with a program stored in an HDD or the like.

  The display unit 210 is a component corresponding to a display device such as the above-described display device, and displays various types of information processed by this system. For example, the display unit 210 displays a list of available service information received from the membership card DB server 300. The display unit 210 displays a list of service information read from the IC card 100 as service information currently stored in the IC card 100.

  The transmission / reception unit 201 transmits / receives data to / from an external device such as the membership card DB server 300. For example, the transmission / reception unit 201 functions as a second transmission unit that transmits the card ID of the IC card 100 read from the IC card 100 and the service information read from the IC cards 1 and 2 to the membership card DB server 300. In addition, the transmission / reception unit 201 functions as a third transmission unit that transmits a request message for requesting service information to be stored and used in the IC card 100 to the membership card DB server 300. The transmission / reception unit 201 functions as a third reception unit that receives service information and an index transmitted as a response to the transmitted request message from the membership card DB server 300.

  The reading unit 202 reads information from an IC card such as the IC cards 1 and 2 via the reader / writer 250. For example, the reading unit 202 reads a card ID from the IC card 100. Further, the reading unit 202 reads service information of a service using each IC card from existing IC cards such as the IC cards 1 and 2.

  The writing unit 203 writes information to the IC card via the reader / writer 250. For example, the writing unit 203 writes the index and service information downloaded from the membership card DB server 300 in the data area of the My membership card service of the IC card 100.

  Next, details of the configuration and functions of the membership card DB server 300 will be described with reference to FIG. FIG. 6 is a functional block diagram of the membership card DB server 300 according to the present embodiment. As shown in the figure, the membership card DB server 300 includes a membership card DB 321 as a main hardware configuration. The membership card DB server 300 includes a transmission / reception unit 301, an authentication unit 302, an acquisition unit 303, and a storage unit as main software configurations realized by the CPU 21 operating according to a program stored in an HDD or the like. 304 and a generation unit 305.

  The membership card DB 321 stores membership card information in which service information that can be stored in the card is associated with each My membership card (IC card 100). FIG. 7 is a diagram illustrating an example of the data structure of membership card information stored in the membership card DB 321. As shown in FIG. 7, the membership card DB 321 stores membership card information in which a card ID, a service information ID for identifying service information, service information, and a use flag are associated with each other.

  The use flag is information indicating whether or not the service information identified by the service information ID is stored in the IC card 100 identified by the card ID. If it is stored, “use” is stored. “Not used” is set when there is not.

  Returning to FIG. 6, the transmission / reception unit 301 transmits / receives data to / from an external device such as the PC 200. For example, the transmission / reception unit 301 functions as a first reception unit that receives the card ID of the IC card 100 and service information read from the IC cards 1 and 2 from the PC 200. In addition, the transmission / reception unit 301 functions as a second reception unit that receives, from the PC 200, a request message for requesting service information of a service to be stored and used in the IC card 100 among the registered service information. The transmission / reception unit 301 functions as a first transmission unit that transmits to the PC 200 the service information acquired from the membership card DB 321 in response to the request message and the index generated for the acquired service information.

  The authentication unit 302 authenticates the user of the PC 200 using the card ID transmitted from the PC 200, the user authentication ID, and the password. The verification authentication ID and password used at the time of authentication are stored in a storage unit (not shown) of the membership card DB server 300. The authentication method is not limited to the method using the authentication ID and password, and any authentication method conventionally used such as fingerprint authentication or voiceprint authentication can be applied.

  The acquisition unit 303 acquires service information requested from the PC 200 as service information to be used from the membership card DB 321.

  The saving unit 304 associates the card ID of the IC card 100 with service information read from the existing IC cards 1 and 2 and transmitted from the PC 200 and saves it in the membership card DB 321. Specifically, the storage unit 304 displays the card ID, the service information ID assigned to the received service information, the received service information, and the membership card information for which “unused” is set as a usage flag. Save in DB321.

  The generation unit 305 generates an index for the service information acquired by the acquisition unit 303 as service information to be used. Specifically, the generation unit 305 generates an index including a service information ID including a higher code, a middle code, and a lower code, and position information for specifying a storage position of the service information in the IC card 100. . As the position information, for example, an offset from the beginning of the data area of the My membership card service of the IC card 100 can be used. Note that the location information is not limited to this, and any information can be used as long as the storage location of each service information can be specified. For example, the storage order and data size of each service information may be used as the position information. Even in such a configuration, the storage location of each service information can be specified by adding the data sizes in the storage order.

  Next, details of the configuration and functions of the reader / writer 400 will be described with reference to FIG. FIG. 8 is a functional block diagram of the reader / writer 400 according to the present embodiment. As shown in the figure, the reader / writer 400 includes an index reading unit 401 and an information reading unit 402.

  The index reading unit 401 reads an index from the IC card 100. Further, the information reading unit 402 determines that desired service information is stored in the IC card 100 by referring to the index, and if it is stored, uses the position information of the index to store the IC card. Read desired service information from 100.

  Next, service information registration processing, service information write acquisition processing, and service information acquisition processing by the information management system according to this embodiment configured as described above will be described. The service information registration process is a process of registering service information read from an existing IC card in the membership card DB server 300. The service information writing process is a process of writing service information desired to be used among the service information registered in the membership card DB server 300 to the IC card 100. The service information acquisition process is a process for acquiring service information written in the IC card 100.

  The service information registration process and the service information write acquisition process can be configured to be executed by a dedicated program for My membership card service installed in advance in the PC 200, for example. That is, the user can start execution of the service information registration process and the service information write acquisition process by selecting a predetermined menu or the like from such a dedicated program.

  First, the service information registration process will be described with reference to FIG. FIG. 9 is a sequence diagram showing the overall flow of service information registration processing in the present embodiment.

  First, the reading unit 202 of the PC 200 reads the card ID of the IC card 100 via the reader / writer 250 (step S901). As described above, the service information registration process is premised on the user obtaining the IC card 100 in advance. If the service information is registered in the membership card DB 321 in association with the user authentication ID instead of the card ID, there is no need to obtain the IC card 100 and read the card ID in this step.

  Next, the PC 200 accepts input of the user authentication ID and password (step S902). Next, the transmission / reception unit 201 of the PC 200 notifies the membership card DB server 300 of the read card ID, the input authentication ID, and the password (step S903).

  The transmission / reception unit 301 of the membership card DB server 300 receives the notified card ID, authentication ID, and password. And the authentication part 302 authenticates a user using card ID, authentication ID, and a password (step S904). Next, the transmission / reception unit 301 transmits the authentication result to the PC 200 (step S905).

  If authenticated, the reading unit 202 of the PC 200 searches the IC card 1 or the IC card 2 that is an existing IC card via the reader / writer 250 for a service corresponding to the My membership card service (step S906). ). Whether or not the service is compatible is determined based on, for example, the data storage format and whether the upper code, middle code, and lower code match a predetermined code.

  When the corresponding service is searched, the reading unit 202 acquires service information via the reader / writer 250 (step S907). Next, the transmitting / receiving unit 201 transmits the read service information to the membership card DB server 300 (step S908).

  The transceiver 301 of the membership card DB server 300 receives the transmitted service information. Then, the storage unit 304 stores the received service information in the membership card DB 321 in association with the card ID received in step S903 (step S909).

  In this way, the user can register the service information read from the existing IC card in the membership card DB server 300. The service information registration process can be executed at an arbitrary timing for each existing IC card. Further, the service information transmitted in step S908 is not limited to one, and the service information read from a plurality of existing IC cards may be transmitted collectively.

  Next, the service information writing process will be described with reference to FIG. FIG. 10 is a sequence diagram showing an overall flow of the service information writing process in the present embodiment.

  The card ID reading process and the authentication process from step S1001 to step S1005 are the same as those from step S901 to step S905 of FIG.

  If authenticated, the transmission / reception unit 201 of the PC 200 transmits an acquisition request message requesting acquisition of a list of service information registered in the membership card DB server 300 to the membership card DB server 300 (step S1006). The acquisition request message may be configured to be transmitted when the user explicitly instructs.

  The transmission / reception unit 301 of the membership card DB server receives the acquisition request message. When the acquisition request message is received, the acquisition unit 303 acquires service information corresponding to the card ID notified in step S1003 from the membership card DB 321 (step S1007). Next, the transmitting / receiving unit 301 transmits the acquired service information list to the PC 200 as a registered service list (step S1008).

  The PC 200 receives the registered service list by the transmission / reception unit 201 and displays the received registered service list on the display unit 210. In addition to the service information ID, the display unit 210 may be configured to display a service name or the like that enables the user to grasp the contents of the service. The service name or the like may be acquired from the service information, or may be set by the membership card DB server 300 and transmitted by being included in the registered service list.

  Next, the PC 200 accepts selection of service information to be used by the user (step S1009). Next, the transmission / reception unit 201 transmits a request message for requesting acquisition of the selected service information to the membership card DB server 300 (step S1010). The request message includes the service information ID of the selected service information. Thereby, the membership card DB server 300 can identify the selected service information.

  The transmission / reception unit 301 of the membership card DB server 300 receives the request message. Next, the acquisition unit 303 acquires service information corresponding to the service information ID included in the request message from the membership card DB 321 (step S1011). Next, the generation unit 305 generates an index for the acquired service information (step S1012). Next, the transmission / reception unit 301 transmits the acquired service information and the generated index to the PC 200 (step S1013).

  The transmission / reception unit 201 of the PC 200 receives the service information and the index transmitted from the membership card DB server 300. Then, the writing unit 203 writes the service information and the index received on the IC card 100 via the reader / writer 250 (step S1014). The writing unit 203 refers to the position information included in the index and specifies the storage position of each service information.

  In this way, the user can download only the desired service information from the service information read from the existing IC card and registered in the membership card DB server 300 and write it in the IC card 100. When changing the written service information, the user may select different service information in step S1009. That is, the service information written in the IC card 100 can be changed by transmitting a request message for requesting the newly selected service information and executing the processing from step S1010.

  Note that it may be configured to accept designation of service information to be deleted from the IC card 100 and transmit a deletion request message requesting deletion of the specified service information to the membership card DB server 300. In this case, the membership card DB server 300 may be configured to acquire the service information excluding the service information requested to be deleted from the written service information and execute the processes after step S1012.

  Next, service information acquisition processing will be described with reference to FIG. FIG. 11 is a sequence diagram showing the overall flow of service information acquisition processing in the present embodiment.

  The service information acquisition process is started by holding the My membership card over the reader / writer 400 in which a key for access to the My membership card (IC card 100) is set in advance.

  That is, when the user holds the IC card 100 over the reader / writer 400, the reader / writer 400 accesses the data area of the My membership card service of the IC card 100 with a predetermined authentication key for accessing the IC card 100. (Step S1101).

  When accessing the My membership card service, the reader / writer 400 starts access with an authentication key corresponding to the upper code = WWWW, the middle code = XXXX, and the lower code = YYYY.

  When the authentication key is authenticated, the IC card 100 permits the reader / writer 400 to access the membership card data area (step S1102). If the authentication key corresponding to the My membership card service is not used, the reader / writer 400 corresponds to the restaurant point service identified by the upper code = 5678, the middle code = 6000, and the lower code = 6222. Access the IC card with the authentication key. Thereby, even when the existing IC card 2 is used, the restaurant point service can be used.

  Next, the index reading unit 401 of the reader / writer 400 acquires an index from a predetermined storage position in the membership card data area (step S1103). Next, the reader / writer 400 specifies the storage position of the service information to be used on the IC card 100 from the acquired index (step S1104).

  For example, as shown in FIG. 1, it is assumed that setting information 452 of a service using a restaurant point card (IC card 2) is set in the reader / writer 400, and an index 120 is set in the IC card 100. In this case, in the reader / writer 400, the storage position of the service information of the service identified from the index 120 by the upper code = 5678, the middle code = 6000, and the lower code = 6222 is 100 (bytes) from the head. Identify that.

  Next, the information reading unit 402 of the reader / writer 400 accesses the service information to be used from the specified storage location (step S1105). As shown in FIG. 1, the data structure of the service information 112 corresponding to the IC card 2 is the same as the data structure of the service information stored in the existing IC card 2. For this reason, the reader / writer 400 can access the service information in the same manner as when reading the existing IC card 2.

  In addition, you may comprise so that service information may be memorize | stored in My membership card card by the data structure different from the service information memorize | stored in the existing IC card. For example, the membership card DB server 300 may be configured to compress the service information of an existing IC card, and the compressed service information may be stored in the My membership card card. Thereby, the storage area in the My membership card can be reduced. In addition, in the case of a method in which a predetermined operator manages a common area, such as Felica (registered trademark), and costs are incurred according to the amount of data written to the common area, the cost of the storage area is reduced. Reduction can be realized.

  When the data structure of the service information is converted and stored, the reader / writer 400 needs to further include a function for accessing the converted service information. For example, when the service information is compressed and stored, the reader / writer 400 is configured to have a function of decompressing the compressed service information. Note that a function for decompressing service information may be provided in the IC card 100, and the service information may be decompressed in the IC card 100.

  As described above, the PC 200 mainly has a function of reading information on an existing IC card and registering it in the membership card DB server 300, and a function of writing service information to be used in the registered service information to the My membership card. Yes.

  In addition to these functions, the PC 200 may be configured to have a function of confirming a service written on the My membership card. As a result, the user can easily check the services that can be used with the My membership card, and the convenience can be further improved.

  In order to realize this function, the PC 200 further has a function of reading service information stored in the data area of the My membership card service of the IC card 100 and a function of displaying a list of read service information on the display unit 210 and the like. Prepare.

  FIG. 12 is a schematic diagram showing an outline of processing for displaying a registered service by such a function. As shown in FIG. 12, the PC 200 displays on the display unit 210 the service information of the card being registered read from the IC card 100 held over the reader / writer 250.

  Note that any apparatus having a function of reading information from the IC card 100 may be configured to check registered service information by an apparatus other than the PC 200. For example, a dedicated application for reading and displaying information on the IC card 100 may be set on a mobile phone having a reader / writer function and the registered service information may be confirmed using the mobile phone. Good.

  FIG. 13 is a schematic diagram showing an outline of processing for displaying a registered service by a mobile phone. As shown in FIG. 13, the service information of the card being registered in the IC card 100 is displayed in the display screen 510 of the mobile phone 500 by holding the IC card 100 over the mobile phone 500 having a reader / writer function. Can do.

  As described above, in the information management system according to the present embodiment, the information on the existing IC card can be registered in one IC card for integration. This eliminates the need for the user to own a plurality of IC cards corresponding to each service in order to use a plurality of services. That is, it is possible to improve the convenience of services using a portable security device such as an IC card.

  As described above, the information management system and the reading apparatus according to the present invention are suitable for a system that manages service information used in a service using a portable security device such as a membership card service.

It is a figure which shows the whole structure of the information management system concerning this Embodiment. It is a figure which shows an example of the hardware constitutions of the IC card concerning this Embodiment. It is a figure which shows an example of the hardware constitutions of PC concerning this Embodiment and a membership card DB server. It is a figure which shows an example of the hardware constitutions of the reader / writer concerning this Embodiment. It is a functional block diagram of PC concerning this Embodiment. It is a functional block diagram of the membership card DB server concerning this Embodiment. It is a figure which shows an example of the data structure of the membership card information memorize | stored in membership card DB. It is a functional block diagram of the reader / writer concerning this Embodiment. It is a sequence diagram which shows the whole flow of the service information registration process in this Embodiment. It is a sequence diagram which shows the whole flow of the service information write-in process in this Embodiment. It is a sequence diagram which shows the whole flow of the service information acquisition process in this Embodiment. It is a schematic diagram which shows the outline | summary of the process which displays the registered service. It is a schematic diagram which shows the outline | summary of the process which displays the registered service.

Explanation of symbols

1, 2 IC card 11 Communication unit 12 CPU
13 RAM
14 ROM
15 EEPROM
21 CPU
22 ROM
23 RAM
24 Communication I / F
25 Bus 31, 32 Communication unit 33 CPU
34 ROM
100 IC card 111, 112 Service information 120 Index 201 Transmission / reception unit 202 Reading unit 203 Writing unit 210 Display unit 250 Reader / writer 300 Membership card DB server 301 Transmission / reception unit 302 Authentication unit 303 Acquisition unit 304 Storage unit 305 Generation unit 321 Membership card DB
400 Reader / writer 401 Index reading unit 402 Information reading unit 451, 452 Setting information 500 Mobile phone 510 Display screen

Claims (6)

A management device that manages information stored in the portable security device and used in services using the portable security device; and a terminal device that can be connected to the management device via a network. Information management system,
The management device
A device ID for identifying a first device that is a portable security device capable of storing a plurality of the service information, and at least one of the services read from each of at least one second device in which the service information is stored A storage unit capable of storing information in association with each other;
A first receiving unit that receives the device ID and the service information from the terminal device;
A storage unit that stores the received device ID in association with the received service information in the storage unit;
A second receiving unit that receives a request message for requesting the service information of a service to be used from the terminal device;
An acquisition unit for acquiring the requested service information from the storage unit;
A generating unit that generates an index including an information ID for identifying the acquired service information and location information for specifying a storage location of the service information on the first device;
A first transmitter that transmits the acquired service information and the generated index to the terminal device;
The terminal device
A reading unit that reads the device ID from the first device and reads the service information from the second device;
A second transmission unit for transmitting the read device ID and the service information to the management device;
A third transmission unit for transmitting the request message for requesting the service information of the service stored and used in the first device to the management device;
A third receiving unit that receives the service information and the index transmitted as a response to the request message from the management device;
A writing unit that writes the received index to the first device and writes the received service information to a storage location on the first device specified by the location information included in the received index. Was it,
An information management system characterized by The third transmission unit further transmits, to the management device, a deletion request message for requesting deletion of the service information that is not used among the service information stored in the first device,
The second receiving unit further receives the deletion request message from the terminal device,
The acquisition unit further receives, from the storage unit, the service information other than the service information requested to be deleted among the service information stored in the first device when the deletion request message is received. Acquired,
The third receiving unit further receives the service information and the index transmitted as a response to the deletion request message from the management device;
The information management system according to claim 1. The second transmission unit further transmits an acquisition request message for requesting acquisition of the service information corresponding to the device ID to the management device,
The third receiving unit further receives the acquisition request message from the terminal device,
The acquisition unit further acquires the service information corresponding to the device ID requested by the acquisition request message from the storage unit,
The third transmission unit further transmits the acquired service information to the terminal device,
The first receiving unit further receives the service information transmitted as a response to the acquisition request message from the management device,
The terminal device further includes a display unit that displays the received service information,
The second transmission unit stores the request message for requesting the service information selected from the service information displayed on the display unit as the service information of a service to be stored and used in the first device. Sending to the device,
The information management system according to claim 1. The reading unit further reads the service information stored in the first device from the first device,
The terminal device further includes a display unit for displaying the read service information;
The information management system according to claim 1. The management device further includes a compression unit that compresses the service information acquired by the acquisition unit,
The first transmission unit transmits the compressed service information and the generated index to the terminal device,
The third receiving unit receives the compressed service information and the index from the management device;
The writing unit writes the received index to the first device, and writes the compressed service information to a storage location on the first device specified by the position information included in the received index. thing,
The information management system according to claim 1. An index including at least one service information used in a service using a portable security device, an information ID for identifying the stored service information, and position information for specifying a storage position of the stored service information An index reading unit for reading the index from the portable security device storing
Based on the information ID included in the read index, it is determined whether or not the service information to be used is stored, and if it is stored, the service information is used from the position information included in the read index. An information reading unit for reading the service information;
A reading apparatus comprising:

Images