JP2013105437A - Card issue system, card issue apparatus, and card issue method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To more appropriately determine validity of a deal.SOLUTION: When an account number is written in an IC cash card 2, card specific information which is specific information of the IC cash card 2 is acquired (step S101), and the acquired card specific information are associated with the account number, and the card specific information and the account number are stored in an administrative server 4 (step S102).

Description

  The present invention relates to a card issuing system, a card issuing machine, and a card issuing method for a financial institution or the like to issue an IC cash card or the like to an account holder.

Conventionally, as a card issuing system, for example, there is a conventional technique described in Patent Document 1.
In this prior art, the card issuing machine prompts the staff of the financial institution to input an account number and a password, and the management server stores the input account number and the password in association with each other. Subsequently, when the management server stores the account number and the password, the card issuing machine writes the account number to the IC cash card and issues the IC cash card.

JP 2007-87079 A

However, in the above prior art, the management server stores the IC cash card account number and the personal identification number in association with each other. Therefore, for example, when using an IC cash card, the automatic teller machine reads the account number from the IC cash card, prompts the account holder to enter the PIN, and the management server inputs the read account number and By verifying the personal identification number with the stored account number and personal identification number, the legitimacy of the transaction using the IC cash card has been secured. Therefore, if another IC cash card (illegal card) is issued by mistake with the same account number, the fraudulent card is used, and when an appropriate PIN is entered, the management server There is a possibility that it is determined that the entered personal identification number matches the stored account number and personal identification number. Therefore, there was a possibility of misjudging that it is a legitimate transaction.
An object of the present invention is to make it possible to more appropriately determine the validity of an IC card by focusing on the above points.

One aspect of the card issuing system of the present invention is:
A card issuing system that writes set setting information to an IC card and issues an IC card, and when writing the setting information to the IC card, unique information that acquires card unique information that is unique information of the IC card An acquisition terminal, and a management server that stores the card specific information acquired by the specific information acquisition terminal and the setting information in association with each other are provided.

  In another aspect of the card issuing system of the present invention, the unique information acquisition terminal includes a unique information reading unit that reads the card unique information from an IC card, a setting information acquisition unit that acquires the setting information to be written to the IC card, An information transmitting unit for transmitting the card unique information read by the unique information reading unit and the setting information acquired by the setting information acquiring unit to the management server; and an issuance permission for permitting the management server to issue an IC card A card issuing unit that writes the setting information acquired by the setting information acquisition unit to an IC card when the instruction is transmitted, and the management server includes the card specific information and the card specific information transmitted from the specific information acquisition terminal. A server storage unit that stores setting information in association with each other, and the server storage unit stores the card specific information and the setting information in association with each other. Characterized by comprising a server transmission unit that transmits the issuing permission instruction to said specific information acquisition terminal.

One aspect of the specific information acquisition terminal of the present invention is:
A card issuing machine that writes set setting information to an IC card and issues an IC card. When writing setting information to an IC card, the card specific information that is unique information of the IC card is acquired and acquired. The card specific information and the setting information are associated with each other and stored in a management server.

One aspect of the card issuing method of the present invention is a card issuing method for writing set setting information to an IC card and issuing the IC card. When writing the setting information to the IC card, the card issuing method is unique to the IC card. Card unique information that is information is acquired, and the acquired card unique information and the setting information are associated with each other and stored in a management server.
According to such a configuration, the management server stores the card unique information and the setting information stored in the IC card in association with each other. Therefore, for example, when the IC card is used, the validity of the IC card is determined by comparing the card unique information and setting information in the IC card with the card unique information and setting information stored in the management server. be able to.

Another aspect of the card issuing system of the present invention is as follows:
The unique information acquisition terminal includes a request input unit capable of inputting a reissue request for an IC card, and the information transmission unit is input when the reissue request is input by the request input unit. The reissue request is transmitted to the management server together with the card unique information read by the unique information reading unit and the setting information obtained by the setting information obtaining unit, and the management server sends the reissue request from the unique information obtaining terminal. When the request is transmitted, the card specific information stored in the server storage unit in association with the setting information transmitted from the specific information acquisition terminal is transmitted from the specific information acquisition terminal. A unique information rewriting unit that rewrites the card unique information, and the server transmission unit sends the issuance permission instruction when the unique information rewrite unit rewrites the card unique information. And transmits the presence information acquisition terminal.

  According to such a configuration, for example, when a reissue request is input, the management server rewrites the card specific information stored in association with the setting information acquired by the setting information acquisition unit. That is, the management server erases the card unique information that has already been stored, and stores the card unique information of the new IC card. Therefore, the management server can be prevented from storing a plurality of pieces of card specific information in association with one setting information. Therefore, for example, it is possible to prevent a plurality of IC cards from being issued for one setting information.

  According to the present invention, the management server stores the card unique information and the setting information stored in the IC card in association with each other. Therefore, for example, when the IC card is used, the validity of the IC card is determined by comparing the card unique information and setting information in the IC card with the card unique information and setting information stored in the management server. be able to.

1 is a conceptual diagram showing a schematic configuration of a card management system 1. FIG. 2 is a block diagram illustrating a schematic configuration of an IC cash card 2. FIG. 3 is a block diagram illustrating a schematic configuration of a card issuing machine 3. FIG. 3 is a block diagram illustrating a schematic configuration of a management server 4. FIG. It is a figure for demonstrating the outline | summary of a card management database. It is a block diagram showing schematic structure of the automatic teller machine 5. FIG. It is a flowchart showing a card | curd issuing process. It is a flowchart showing a card registration process. It is a flowchart showing a validity confirmation process. It is a flowchart showing a card search process. It is a sequence diagram which shows operation | movement of the staff of a financial institution, the card issuing machine 3, and the management server 4. FIG. It is a figure which shows the flow of information in the IC cash card 2, the card issuing machine 3, and the management server 4 when the IC cash card 2 is newly issued. It is a sequence diagram which shows operation | movement of the staff of a financial institution, the card issuing machine 3, and the management server 4. FIG. It is a figure which shows the flow of information in the IC cash card 2, the card issuing machine 3, and the management server 4 when reissuing the IC cash card 2. It is a sequence diagram which shows operation | movement of the staff of a financial institution, the card issuing machine 3, and the management server 4. FIG. It is a sequence diagram which shows operation | movement of a depositor, the automatic teller machine 5, and the management server 4. FIG. It is a figure which shows the flow of the information in the automatic teller machine 5, the card issuing machine 3, and the management server 4 in the case of operating the automatic teller machine 5. It is a sequence diagram which shows operation | movement of a depositor, the automatic teller machine 5, and the management server 4. FIG. It is a figure which shows the flow of the information in the automatic teller machine 5, the card issuing machine 3, and the management server 4 in the case of operating the automatic teller machine 5.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
In this embodiment, the present invention is applied to an IC cash card 2 management system (hereinafter also referred to as a card management system 1). The IC cash card 2 is a card that is issued by a financial institution to a depositor and the depositor operates the automatic teller machine 5.
(Constitution)
FIG. 1 is a conceptual diagram showing a schematic configuration of the card management system 1.
As shown in FIG. 1, the card management system 1 includes an IC cash card 2, a card issuing machine 3, a management server 4, and an automatic teller machine 5. The card issuing machine 3 and the management server, and the automatic teller machine 5 and the management server 4 can communicate with each other via the communication network 6.
In the present embodiment, in order to facilitate the description, the IC cash card 2, the card issuing machine 3, and the automatic teller machine 5 are each configured to be one.

FIG. 2 is a block diagram illustrating a schematic configuration of the IC cash card 2.
As shown in FIG. 2, the IC cash card 2 includes an IC chip 7. The IC chip 7 includes a communication unit 8, a unique information storage unit 9, an account number storage unit 10, and a chip control unit 11.
The communication unit 8 can communicate with a card receiving unit 13 described later of the card issuing machine 3 or a card receiving unit 22 described later of the automatic teller machine 5. As the communication unit 8, for example, contact communication that performs communication by directly contacting the card reception unit 13 of the card issuing machine 3 or the card reception unit 22 of the automatic teller machine 5 or non-contact communication that performs wireless communication is adopted. it can.

  The unique information storage unit 9 stores a control program executed by the chip control unit 11 and card unique information that can identify the IC cash card 2. The card unique information is unique information set for each IC cash card 2. The control program and the card unique information are written into the unique information storage unit 9 when the IC cash card 2 is manufactured. As the card specific information, for example, CPLC (Card Production Life Cycle History File Identifier) defined by the EMV standard can be adopted. Further, as the unique information storage unit 9, for example, a ROM (Read Only Memory) in which the stored contents cannot be rewritten can be adopted.

  The account number storage unit 10 can store an account number assigned when the IC cash card 2 is issued. The account number is a unique number set for each account in order to identify the depositor's account. The account number is written into the account number storage unit 10 when the chip control unit 11 executes the control program. As the account number storage unit 10, for example, an EEPROM (Electrically Erasable Programmable ROM) capable of rewriting stored contents can be employed.

  The chip control unit 11 controls each unit in the IC chip 7 according to a control program stored in the unique information storage unit 9 based on various signals and information received by the communication unit 8 from the card issuing machine 3 and the automatic teller machine 5. . Specifically, when the communication unit 8 receives the unique information request signal from the card issuing machine 3, the chip control unit 11 stores the card unique information stored in the unique information storage unit 9 via the communication unit 8. Information is transmitted to the card issuing machine 3. The unique information request signal is a signal for requesting transmission of card unique information. When the communication unit 8 receives an account number from the card issuing machine 3, the chip control unit 11 writes the received account number in the account number storage unit 10. Further, when the communication unit 8 receives the information request signal from the automatic teller machine 5, the chip control unit 11 receives the card unique information stored in the unique information storage unit 9 via the communication unit 8, and The account number stored in the account number storage unit 10 is transmitted to the automatic teller machine 5. The information request signal is a signal for requesting transmission of card specific information and an account number. As the chip controller 11, for example, a CPU (Central Processing Unit) can be employed.

The card issuing machine 3 is installed in a financial institution store or the like.
FIG. 3 is a block diagram illustrating a schematic configuration of the card issuing machine 3.
As shown in FIG. 3, the card issuing machine 3 includes a communication unit 12, a card receiving unit 13, a unique information reading unit 14, an operation unit 15, an issuing machine storage unit 16, and an issuing machine control unit 17.
The communication unit 12 can communicate with a communication unit 21 described later of the management server 4 via the communication network 6.
The card reception unit 13 can insert the IC cash card 2. The card receiving unit 13 can communicate with the communication unit 8 of the IC chip 7 when the IC cash card 2 is inserted. In addition, when the communication unit 21 receives the issuance non-permission signal from the management server 4, the card receiving unit 13 discharges the inserted IC cash card 2 to a reject hopper (not shown) for collecting the IC cash card. To do. The issue non-permission signal is a signal indicating that the issue of the IC cash card 2 is not permitted.

  The unique information reading unit 14 reads card unique information from the unique information storage unit 9 of the IC chip 7 via the card receiving unit 13. Specifically, the unique information reading unit 14 transmits a unique information request signal to the IC chip 7 via the card receiving unit 13, and receives the card unique information transmitted from the IC chip 7 that has received the unique information request signal. Receive. Subsequently, the unique information reading unit 14 outputs the read card unique information to the issuing machine control unit 17.

The operation unit 15 allows a financial institution staff who is a user to input a login ID, an account number, and an issue type. The issue type is information indicating whether or not it is the first IC cash card issued (newly issued IC cash card 2) after the account is opened. The issue type includes “new” indicating that the IC cash card is newly issued, and “reissue” indicating that the IC cash card is not newly issued (reissue). Accordingly, the user can input a reissue request for the IC cash card 2 by inputting “reissue” as the issue type. As the operation unit 15, for example, there is a keyboard for allowing a user to input a login ID, an account number, and an issue type. When the user inputs a login ID, an account number, and an issue type, the operation unit 15 outputs the input login ID, account number, and issue type to the issuer control unit 17.
In the present embodiment, an example in which the user inputs an account number has been shown, but other configurations may be employed. For example, the issuing machine control unit 17 may appropriately create an account number that does not overlap with an account number registered in a card management database described later.

The issuing machine storage unit 16 stores a control program executed by the issuing machine control unit 17 and preset issuing machine specific information. The issuing machine specific information is unique information set for each card issuing machine 3. The control program and the issuer specific information are written to the issuer storage unit 16 when the card issuer is set. The issuing machine information includes, for example, an issuing machine number. As the issuing machine storage unit 16, for example, an EEPROM capable of rewriting stored contents can be adopted.
The issuing machine control unit 17 includes the card unique information output by the unique information reading unit 14, the login ID output by the operation unit 15, the account number and the issue type, and various signals and information received from the management server 4 by the communication unit 12. Based on the signal, each unit in the card issuing machine 3 is controlled in accordance with a control program stored in the issuing machine storage unit 16. Specifically, the issuing machine control unit 17 executes a card issuing process to be described later for issuing the IC cash card 2. As the issuing machine control part 17, CPU can be employ | adopted, for example.

The management server 4 is installed at the headquarters of a financial institution.
FIG. 4 is a block diagram illustrating a schematic configuration of the management server 4.
As shown in FIG. 4, the communication part 18, the server memory | storage part 19, and the server control part 20 are provided.
The communication unit 18 can communicate with the communication unit 12 of the card issuing machine 3 or the deposit machine control unit 25 of the automatic teller machine 5 via the communication network 6.

FIG. 5 is a diagram for explaining the outline of the card management database.
The server storage unit 19 stores a control program executed by the server control unit 20 and a card management database for managing the IC cash card 2. As shown in FIG. 5, the card management database is composed of records provided for each issued IC cash card 2. Each record includes an account number stored in the IC cash card 2 (IC chip 7), card specific information stored in the IC cash card 2, a login ID used when the IC cash card 2 is issued, an issuing machine number, and an IC cash card. 2 issue time as a field. As the server storage unit 19, for example, an HDD capable of rewriting stored contents can be employed.

  The server control unit 20 controls the server storage unit 19 to store the various signals and information received by the communication unit 18 from the card issuing machine 3 and the various signals and information received by the communication unit 18 from the automatic teller machine 5. Each part in the management server 4 is controlled according to the program. Specifically, the issuer control unit 17 stores the account number and card specific information to be written in the IC cash card 2 in the card management database, which will be described later, and stores the card management database in the IC cash card 2 from the card management database. A card search process (to be described later) for searching for a record corresponding to the account number and the card information being executed is executed. As the issuing machine control part 17, CPU can be employ | adopted, for example.

The automatic teller machine 5 is installed in a store of a financial institution or the like.
FIG. 6 is a block diagram illustrating a schematic configuration of the automatic teller machine 5.
As shown in FIG. 6, the automatic teller machine 5 includes a communication unit 21, a card receiving unit 22, an information reading unit 23, a deposit machine storage unit 24, and a deposit machine control unit 25.
The communication unit 21 can communicate with the communication unit 21 of the management server 4 via the communication network 6.
The card reception unit 22 can insert the IC cash card 2. The card reception unit 22 can communicate with the communication unit 8 of the IC chip 7 when the IC cash card 2 is inserted.

  The information reading unit 23 reads card unique information from the unique information storage unit 9 of the IC chip 7 via the card receiving unit 22. Subsequently, the information reading unit 23 reads the account number from the account number storage unit 10 of the IC chip 7 via the card receiving unit 22. Specifically, the information reading unit 23 transmits the information request signal to the IC chip 7 via the card receiving unit 22, and the card specific information and the account number transmitted from the IC chip 7 that has received the information request signal. Receive. Subsequently, the information reading unit 23 outputs the read card unique information and the account number to the deposit machine control unit 25.

The deposit machine storage unit 24 stores a control program executed by the deposit machine control unit 25. As the deposit machine storage unit 24, for example, an EEPROM capable of rewriting stored contents can be adopted.
The deposit machine control unit 25 follows the control program stored in the deposit machine storage unit 24 based on the card specific information and account number output from the information reading unit 23 and various signals and information received from the management server 4 by the communication unit 21. Each part in the card issuing machine 3 is controlled. Specifically, the deposit machine control unit 25 executes a later-described validity confirmation process for confirming the validity of the IC cash card 2 (confirming that the IC cash card 2 has not been illegally created). To do. Further, the deposit machine control unit 25 executes transaction processing in the account specified by the account number based on the account number stored in the IC cash card 2. Examples of the transaction process include a deposit withdrawal process from an account, a cash deposit process to an account, and a transfer process to another account. As the deposit machine control part 25, CPU can be employ | adopted, for example.

(Calculation processing)
Next, a card issuing process executed by the issuing machine control unit 17 of the card issuing machine 3 will be described. The card issuing process is a process for issuing an IC cash card.
FIG. 7 is a flowchart showing the card issuing process.
The card issuing process is executed when the IC cash card 2 is inserted into the card receiving unit 13, the unique information reading unit 14 reads the card unique information, and the login ID, account number, and issue type are input to the operation unit 15. Is done.

First, in step S101, the issuing machine control unit 17 acquires card unique information output from the unique information reading unit 14, and acquires a login ID, an account number, and an issue type output from the operation unit 15. Subsequently, the issuing machine control unit 17 acquires the current time.
Subsequently, the process proceeds to step S102, where the issuing machine control unit 17 issues the card unique information, login ID, account number, and issue type acquired in step S101, and the issuing machine number stored in the issuing machine storage unit 16. Are associated with each other to generate a set of data (hereinafter also referred to as card registration data). Subsequently, the issuing machine control unit 17 transmits the generated card registration data to the server control unit 20 of the management server 4 via the communication unit 12 and the communication network 6.

  Subsequently, the process proceeds to step S <b> 103, and the issuing machine control unit 17 receives the issue permission determination signal transmitted from the management server 4 via the communication unit 12 and the communication network 6. The issue permission determination signal is a signal for determining whether or not the issue of the IC cash card 2 is permitted. As the issue permission determination signal, there are an issue permission signal (issuance permission instruction) indicating that the IC cash card issuance is permitted, and an issue non-permission signal (issuance non-permission instruction) indicating that the issue of the IC cash card is not permitted. is there. If the issue permission determination signal is not transmitted from the management server 4, the issuing machine control unit 17 waits until the issue permission determination signal is transmitted.

Subsequently, the process proceeds to step S104, where the issuing machine control unit 17 determines whether or not to permit the IC cash card 2 to be issued. Specifically, it is determined whether or not the issue permission determination signal received in step S103 is an issue permission signal. If the issuance control unit 17 determines that the issuance permission determination signal is an issuance permission signal (Yes), it determines that the issuance of the IC cash card 2 is permitted, and the process proceeds to step S105. On the other hand, if the issuer control unit 17 determines that the issue permission determination signal is an issue non-permission signal (No), it determines that the issue of the IC cash card 2 is not permitted, and proceeds to step S106.
In step S105, the issuing machine control unit 17 transmits the account number to the chip control unit 11 of the IC cash card 2 via the card receiving unit 13, and then ends this calculation process. Thereby, the chip control unit 11 writes the account number in the account number storage unit 10.
On the other hand, in step S106, the issuing machine controller 17 causes the card receiver 13 to discharge the IC cash card 2 to the reject hopper.

Next, card registration processing executed by the management server 4 will be described. The card registration process is a process for registering an account number and card specific information to be written in the IC cash card 2 in the card management database.
FIG. 8 is a flowchart showing card registration processing.
The card registration process is executed when card registration data (card unique information, login ID, account number, issue type, current time, and issuer information) is transmitted from the card issuing machine 3 to the management server 4. It is.

First, in step S <b> 201, the server control unit 20 receives the card registration data transmitted from the card issuing machine 3 via the communication unit 18 and the communication network 6.
Subsequently, the process proceeds to step S202, and the server control unit 20 determines whether a reissue request for the IC cash card 2 has been transmitted. Specifically, the server control unit 20 determines whether or not the issue type included in the card registration data received in step S201 is “new”. If the server control unit 20 determines that the issuance type is “new” (Yes), the server control unit 20 proceeds to step S203. On the other hand, if the server control unit 20 determines that the issuance type is “reissue” (No), the server control unit 20 determines that the reissue request for the IC cash card 2 has been transmitted, and proceeds to step S206.

In step S203, the server control unit 20 records the card management database from the card unique information, login ID, account number, issue type, current time, and issuer information included in the card registration data received in step S201. One is formed. Subsequently, the server control unit 20 writes the formed record in the server storage unit 19. Thereby, the server storage unit 19 adds / registers a new record in the card management database.
Subsequently, the process proceeds to step S204, where the server control unit 20 transmits an issuance permission signal to the card issuing machine 3 via the communication unit 18 and the communication network 6, and then ends this calculation process.

  On the other hand, in step S205, the server control unit 20 records a record in which the account number received in step S201 and the field value of the field “account number” match among the plurality of records constituting the card management database (hereinafter, “ Whether there is a matching record) is determined. If the server control unit 20 determines that a matching record exists (Yes), the server control unit 20 proceeds to step S206. On the other hand, if the server control unit 20 determines that no matching record exists (No), the server control unit 20 proceeds to step S208.

  In the step S206, the server control unit 20 receives the card registration information received in the step S201, the card unique information, the login ID, the issuer number, and the issue time fields of the matching record determined to exist in the step S205. Is rewritten with card-specific information, login ID, issue machine number, and issue time included in the data. As a result, when a reissue request is transmitted from the card issuer 3, the server control unit 20 associates the card number stored in the server storage unit 19 with the account number transmitted from the card issuer 3. The information is rewritten with the card specific information transmitted from the card issuing machine 3.

Subsequently, the process proceeds to step S207, and the server control unit 20 transmits the issue permission signal to the issuer control unit 17 of the card issuer 3 via the communication unit 21, and then ends this calculation process. As a result, the issuer control unit 17 issues the IC cash card 2.
On the other hand, in step S208, the server control unit 20 transmits an issuance non-permission signal to the issuing machine control unit 17 of the card issuing machine 3 via the communication unit 21, and then ends this calculation process. As a result, the issuing machine control unit 17 stops issuing the IC cash card 2.

Next, the correctness confirmation process executed by the deposit machine control unit 25 of the automatic teller machine 5 will be described. The legitimacy confirmation process is a process for confirming the legitimacy of the IC cash card.
FIG. 9 is a flowchart showing the validity confirmation process.
The validity confirmation process is executed when the IC cash card 2 is inserted into the card receiving unit 22 and the information reading unit 23 reads the card unique information and the account number.

First, in step S301, the deposit machine control unit 25 acquires the card specific information and the account number output from the information reading unit 23.
Subsequently, the process proceeds to step S302, and the deposit machine control unit 25 transmits the card unique information and the account number acquired in step S301 to the server control unit 20 of the management server 4 via the communication unit 21 and the communication network 6. To do.

  Then, it transfers to step S303 and the deposit machine control part 25 receives the transaction permission determination signal transmitted from the management server 4 via the communication part 21 and the communication network 6. FIG. The transaction permission determination signal is a signal for determining whether or not to permit execution of transaction processing. The transaction permission determination signal includes a transaction permission signal (transaction permission instruction) indicating that the execution of the transaction process is permitted, and a transaction non-permission signal (transaction permission instruction) indicating that the execution of the transaction process is not permitted. In addition, when the transaction permission determination signal is not transmitted from the management server 4, the teller machine control unit 25 waits until the transaction permission signal is transmitted.

Then, it transfers to step S304 and the teller machine control part 25 determines whether implementation of transaction processing is permitted. Specifically, the teller machine control unit 25 determines whether or not the transaction permission determination signal received in step S303 is a transaction permission signal. Then, when it is determined that the transaction permission determination signal is a transaction permission signal (Yes), the teller machine control unit 25 determines to permit the execution of the transaction process, and proceeds to step S305. On the other hand, when it is determined that the transaction permission determination signal is a transaction non-permission signal (No), the teller machine control unit 25 determines that the execution of the transaction process is not permitted, and proceeds to step S306.
In step S305, the teller machine control unit 25 executes the transaction process in the account designated by the account number acquired in step S301, and then ends this calculation process.

On the other hand, in step S306, the deposit machine control unit 25 prohibits execution of transaction processing in the account corresponding to the account number acquired in step S301.
Subsequently, the process proceeds to step S307, and the teller machine control unit 25 transmits the log registration signal to the management server 4 via the communication unit 21 and the communication network 6, and then ends this calculation process. The log registration signal is a signal for causing the management server 4 to register the card specific information transmitted to the management server 4 in step S301 as an unauthorized log. Thereby, the management server 4 stores the card specific information of the IC cash card 2 whose validity cannot be confirmed as an unauthorized log.

Next, card search processing executed by the server control unit 20 of the management server 4 will be described. The card search process is a process for searching a record corresponding to the account number and card information stored in the IC cash card 2 from the card management database.
FIG. 10 is a flowchart showing card search processing.
The card search process is executed when the card specific information and the account number are transmitted from the automatic teller machine 5 to the management server 4.

First, in step S401, the server control unit 20 receives the card specific information and the account number from the automatic teller machine 5 through the communication unit 18 and the communication network 6.
Subsequently, the process proceeds to step S402, and the server control unit 20 selects a record in which the account number received in step S401 and the field value of the field “account number” match among the plurality of records constituting the card management database. Search for.

  Then, it transfers to step S403 and the server control part 20 collates the card | curd specific information and account number which were transmitted from the automatic teller machine 5 with the card | curd specific information and account number which the server memory | storage part 19 has memorize | stored. Specifically, the server control unit 20 determines whether or not the card specific information and the account number transmitted from the automatic teller machine 5 are stored in the server storage unit 19. As a determination method, a method of determining whether or not the field value of the field “card unique information” of the record searched in step S402 matches the card unique information acquired in step S401 can be adopted. When the server control unit 20 determines that the field value of the field “card unique information” of the retrieved record matches the acquired card unique information (Yes), the card transmitted from the automatic teller machine 5 It is determined that the unique information and the account number are stored in the card server storage unit 19, and the process proceeds to step S404. On the other hand, if the server control unit 20 determines that the field value of the field “card unique information” of the retrieved record does not match the acquired card unique information (No), the automatic cash deposit It is determined that the card unique information and the account number transmitted from the payer 5 are not stored in the card server storage unit 19, and the process proceeds to step S405.

In step S404, the server control unit 20 transmits the transaction permission signal to the automatic teller machine 5 via the communication unit 18 and the communication network 6, and then ends this calculation process. Thereby, the automatic teller machine 5 performs transaction processing.
On the other hand, in step S <b> 405, the management server 4 transmits a transaction disapproval signal to the automatic teller machine 5 via the communication unit 18 and the communication network 6. Thereby, the automatic teller machine 5 prohibits execution of transaction processing.

Then, it transfers to step S406 and the server control part 20 receives a log registration signal from the automatic teller machine 5 via the communication part 18 and the communication network 6. FIG. If the log registration signal is not transmitted from the automatic teller machine 5, the server control unit 20 waits until the log registration signal is transmitted.
Subsequently, the process proceeds to step S407, and the server control unit 20 writes the card specific information acquired in step S401 as an unauthorized log in the server storage unit 19, and then ends this calculation process.

  As described above, in the present embodiment, the account number constitutes the setting information. Similarly, the IC cash card 2 in FIG. 1 constitutes an IC card. Further, the card issuing machine 3 in FIG. 1 constitutes a unique information acquisition terminal. Furthermore, the management server 4 of FIG. 1 constitutes a management server. Also, the information reading unit 14, the issuer control unit 16 in FIG. 3 and step S101 in FIG. 7 constitute a unique information reading unit. Further, the operation unit 15, the issuing machine control unit 16 in FIG. 3, and step S <b> 101 in FIG. 7 constitute a setting information acquisition unit. Further, the communication unit 12, the issuer control unit 17 in FIG. 3 and step S102 in FIG. 7 constitute an information transmission unit. Further, the communication unit 12 and the issuer control unit 17 in FIG. 3 and steps S103, S104, S105, and S106 in FIG. 7 constitute a card issuing unit. 4 and steps S201, S202, and S203 of FIG. 8 constitute a server storage unit. Further, the communication unit 18, the server control unit 20, and step S204 in FIG. 8 constitute a server transmission unit. 3 constitutes a reissue request input unit. Further, the server control unit 20 in FIG. 4 and steps S202, S205, and S206 in FIG. 8 constitute a unique information rewriting unit.

(Operation, other)
Next, the operation of the card management system 1 of this embodiment will be described.
First, an operation when a new IC cash card 2 is issued will be described.
FIG. 11 is a sequence diagram showing the operations of the staff of the financial institution, the card issuing machine 3 and the management server 4.
FIG. 12 is a diagram illustrating a flow of information in the IC cash card 2, the card issuing machine 3, and the management server 4 when the IC cash card 2 is newly issued.

  First, as shown in FIG. 11, it is assumed that the staff of a financial institution inserts the raw card 2 into the card issuing machine 3 in order to issue a new IC cash card 2. The raw card 2 is an IC cash card 2 whose card account number is not yet stored in the account number storage unit 10. Subsequently, it is assumed that a financial institution staff inputs a login ID (for example, “UserB”), an account number (for example, “0001100300”), and an issuance type (for example, “new”) to the card issuing machine 3. Then, the card issuing machine 3 acquires card specific information (for example, “012345678901234”) from the raw card 2 (step S101). Further, the card issuing machine 3 acquires the login ID “UserB”, the account number “0001100300”, the issue type “new”, and the current time (for example, “10:15”) (step S101). Subsequently, the card issuing machine 3 receives the card unique information “012345678901234”, the login ID “UserB”, the account number “0001100300”, the issue type “new”, the issuer number “B001”, and the current time “10:15”. The associated card registration data is transmitted to the management server 4 (step S102). Subsequently, the management server 4 receives the card registration data from the card issuing machine 3 (step S201). Subsequently, the management server 4 determines that the issue type included in the received card registration data is “new” (step S202, Yes). Subsequently, the management server 4 registers the card registration data in the card management database (step S203). As a result, as shown in FIG. 12, the management server 4 has the account number “0001100300”, the card specific information “012345678901234”, the login ID “UserB”, the issuer number “B001” and the issue time included in the card registration data. One record of the card management database is formed in association with “10:15”, and the formed record is added / registered.

  Subsequently, returning to FIG. 11, the management server 4 transmits an issue permission signal to the card issuing machine 3 (step S204). Subsequently, the card issuing machine 3 receives an issue permission signal from the management server 4 as an issue permission determination signal (step S103). Subsequently, the card issuing machine 3 determines that the issue permission determination signal is an issue permission signal (step S104, Yes). Subsequently, the card issuing machine 3 writes the account number in the raw card 2 (step S105). Thereby, the card issuing machine 3 issues the IC cash card 2.

  Thus, in the card management system 1 of the present embodiment, the management server 4 stores the card unique information and the account number stored in the IC cash card 2 in association with each other. Therefore, for example, when the IC cash card 2 is used, the card unique information and the account number in the IC cash card 2 are collated with the card unique information and the account number stored in the management server 4 to obtain the IC cash card. The validity of 2 can be determined.

Next, a procedure for reissuing the IC cash card 2 will be described.
FIG. 13 is a sequence diagram showing operations of the staff of the financial institution, the card issuing machine 3 and the management server 4.
FIG. 14 is a diagram showing a flow of information in the IC cash card 2, the card issuing machine 3, and the management server 4 when the IC cash card 2 is reissued.

  First, as shown in FIG. 13, it is assumed that a staff member of a financial institution inserts the raw card 2 into the card issuing machine 3 in order to reissue the IC cash card 2. Subsequently, a staff member of the financial institution has a login ID (for example, “UserB”), an account number (the same as the account number written in the old IC cash card 2 that has been lost, for example, “0001100300”), and issuance It is assumed that a type (for example, “reissue”) is input to the card issuing machine 3. Then, the card issuing machine 3 acquires card specific information (for example, “5869843102471546”) from the raw card 2 (step S101). Further, the card issuing machine 3 acquires the login ID “UserB”, the account number “0001100300”, the issue type “reissue”, and the current time (for example, “20:15”) (step S101). Subsequently, the card issuing machine 3 receives the card specific information “5869843102471546”, the login ID “UserB”, the account number “0001100300”, the issue type “reissue”, the issuer number “B001”, and the current time “20:55”. Is sent to the management server 4 (step S102). Subsequently, the management server 4 receives the card registration data from the card issuing machine 3 (step S201). Subsequently, the management server 4 determines that the issue type included in the received card registration data is “reissue” (No in step S202). Subsequently, the management server 4 determines that there is a record (match record) in which the field value of the received account number “0001100300” and the field “account number” match among the plurality of records constituting the card management database. (Step S205, Yes). Subsequently, the management server 4 uses the card-specific information “5869843102471546” included in the received card registration data, the login ID, the login ID, the issuing machine number, and the field values of the issuing time in the matching record, Rewrite with “UserB”, issuing machine number “B001”, and issuing time “20:55” (step S206). As a result, as shown in FIG. 12, the management server 4 has an account number “0001100300”, card unique information “5869843102471546”, login ID “UserB”, issue machine number “B001”, and issue time included in the card registration data. The record of the card management database is updated in association with “20:55”.

  Subsequently, returning to FIG. 14, the management server 4 transmits an issuance permission signal to the card issuing machine 3 (step S207). Subsequently, the card issuing machine 3 receives an issue permission signal from the management server 4 as an issue permission determination signal (step S103). Subsequently, the card issuing machine 3 determines that the issue permission determination signal is an issue permission signal (step S104, Yes). Subsequently, the card issuing machine 3 writes the account number in the raw card 2 (step S105). Thereby, the card issuing machine 3 reissues the IC cash card 2.

  As described above, in the card management system 1 according to the present embodiment, for example, when a reissue request is input, the management server 4 stores the card unique in association with the account number input by the operation unit 15. Rewrite information. That is, the management server 4 erases the card-specific information that has already been stored, and stores the card-specific information of the new IC cash card 2. Therefore, it is possible to prevent the management server 4 from storing a plurality of card specific information in association with one account number. Therefore, for example, it is possible to prevent a plurality of IC cash cards 2 from being issued for one account number.

  On the other hand, it is assumed that a staff member of a financial institution erroneously inputs an account number (for example, “9796869070”) different from the account number (for example, “0001100300”) written in the old IC cash card 2. Then, as shown in FIG. 15, the management server 4 matches the received account number “9796869070” and the field value “0001100300” of the field “account number” among the plurality of records constituting the card management database. It is determined that a record (matching record) does not exist (step S205, No). Subsequently, the management server 4 transmits an issue non-permission signal to the card issuer 3 (step S208). Subsequently, the card issuing machine 3 receives an issue non-permission signal from the management server 4 as an issue permission determination signal (step S103). Subsequently, the card issuing machine 3 determines that the issue permission determination signal is an issue non-permission signal (No in step S104). Subsequently, the card issuing machine 3 discharges the IC cash card 2 to the reject hopper (step S106). Thereby, the card issuing machine 3 prohibits reissuance of the IC cash card 2 with an incorrect account number.

Then, the case where transaction processing is performed by the automatic teller machine 5 will be described.
FIG. 16 is a sequence diagram showing operations of the depositor, the automatic teller machine 5 and the management server 4.
FIG. 17 is a diagram showing the flow of information in the automatic teller machine 5, the card issuing machine 3, and the management server 4 when operating the automatic teller machine 5.

  First, as shown in FIG. 16, it is assumed that the depositor inserts a regular card into the automatic teller machine 5 in order to perform transaction processing such as deposit withdrawal processing from an account. The regular card is an IC cash card 2 issued by a regular procedure, and is an IC cash card 2 that stores card-specific information and an account number registered in the card management database. Then, the automatic teller machine 5 acquires the card specific information (for example, “012345678901234”) and the account number (for example, “0001100300”) from the IC cash card 2 (step S301). Subsequently, the automatic teller machine 5 transmits the card specific information “012345678901234” and the account number “0001100300” to the management server 4 (step S302). Subsequently, the management server 4 receives the card specific information “012345678901234” and the account number “0001100300” from the automatic teller machine 5 (step S401). Subsequently, as shown in FIG. 17, the management server 4 searches for a record in which the field value of the received account number “0001100300” and the field “account number” match among the plurality of records constituting the card management database. (Step S402). Subsequently, the management server 4 assumes that the field “card unique information” field value “012345678901234” of the retrieved record matches the acquired card unique information “012345678901234” (step S403, Yes). Subsequently, the management server 4 transmits a transaction permission signal to the automatic teller machine 5 (step S404). Subsequently, the automatic teller machine 5 receives a transaction permission signal from the management server 4 as a transaction permission determination signal (step S303). Subsequently, the automatic teller machine 5 determines that the transaction permission determination signal is a transaction permission signal (step S304, Yes). Subsequently, the automatic teller machine 5 permits execution of transaction processing in the account corresponding to the account number stored in the IC cash card 2 (step S305). Thereby, the automatic teller machine 5 executes transaction processing such as deposit withdrawal processing from the account.

  On the other hand, it is assumed that a malicious person inserts an unauthorized card into the automatic teller machine 5 as the IC cash card 2. The fraudulent card is the IC cash card 2 in which the same account number as the regular card is written. Then, as shown in FIGS. 18 and 19, the management server 4 determines that the field “card unique information” field value “012345678901234” of the searched record does not match the acquired card unique information “4641346577312” (step S403, No). Subsequently, the management server 4 transmits a transaction permission signal to the automatic teller machine 5 (step S404). Subsequently, the management server 4 transmits a transaction disapproval signal to the automatic teller machine 5 (step S405). Subsequently, the automatic teller machine 5 receives a transaction non-permission signal from the management server 4 as a transaction permission determination signal (step S303). Subsequently, the automatic teller machine 5 determines that the transaction permission determination signal is a transaction non-permission signal (No in step S304). Subsequently, the automatic teller machine 5 prohibits execution of transaction processing in the account corresponding to the account number stored in the IC cash card 2 (step S305). Thereby, the automatic teller machine 5 prohibits execution of cash withdrawal processing and the like.

As described above, in the card management system 1 according to the present embodiment, the management server 4 checks the card unique information and the account number in the IC cash card 2 with the card unique information and the account number stored in the management server 4. . Therefore, for example, when the IC cash card 2 is used, the validity of the IC cash card 2 can be determined.
In the card management system 1 of the present embodiment, the automatic teller machine 5 executes transaction processing when the card-specific information and the account number read from the IC cash card 2 are not stored in the management server 4. Can be prohibited. Thus, when the validity of the IC cash card 2 cannot be confirmed, the transaction process is not executed.
Subsequently, the automatic teller machine 5 transmits a log registration signal to the management server 4. Subsequently, the management server 4 writes the card unique information as an unauthorized log in the server storage unit 19 (step S407). This makes it possible to collect information on illegal cards.

(Application examples)
In the present embodiment, an example is shown in which the automatic teller machine 5 cancels the transaction processing when the IC cash card 2 used is determined to be an unauthorized card (steps S304 and S305). The configuration may be adopted. For example, the transaction processing may be restricted when it is determined that the used IC cash card 2 is an unauthorized card. When restricting transaction processing, for example, it may be configured to prohibit only transaction processing in which account deposits decrease, such as deposit withdrawal processing from an account and transfer processing to another account.

  Further, for example, when the automatic teller machine 5 determines that the IC cash card 2 used is an unauthorized card, the user can be specified such as a still image or a video of the user of the automatic teller machine 5. It may be configured to take a video. When shooting a video, for example, the automatic teller machine 5 is provided with a photographing unit such as a CCD (Charge Coupled Device Image Sensor) camera capable of taking a still image or a moving image of the user's face image. However, when a transaction non-permission signal is received from the management server 4, a still image or a moving image of the face image of the user of the automatic teller machine 5, that is, the user of the fraudulent card may be captured by the imaging unit.

In the present embodiment, an example in which the automatic teller machine 5 always determines whether or not the used IC cash card 2 is an unauthorized card is shown, but other configurations may be adopted. For example, such a determination may be performed only at the time of transaction processing in which account deposits decrease, such as deposit withdrawal processing from an account and transfer processing to another account.
Furthermore, in this embodiment, although the example which applies this invention to the management system of the IC cash card 2 for operating the automatic teller machine 5 was shown, you may employ | adopt another structure. For example, it may be configured to be applied to an IC card management system for operating a security system, such as entrance / exit management and PC (Personal Computer) authentication. When applied to an IC card management system for operating a security system, an IC card holder employee number in a company may be written in the IC card instead of an account number.

1 is a card management system 2, a cash card 3, a card issuing machine 4, a management server 5, an automatic teller machine 6, a communication network 7, an IC chip 8, a communication unit 9, a unique information storage unit 10, an account number storage unit 11 The chip controller 12, the communication unit 13, the card receiving unit 14, the unique information reading unit 15, the operation unit 16, the issuing machine storage unit 17, the issuing machine control unit 18, the communication unit 19, the server storage unit 20, and the server control unit 21. The communication unit 22, the card receiving unit 23, the information reading unit 24, the deposit machine storage unit 25, the deposit machine control unit

Claims (5)

A card issuing system for writing set setting information to an IC card and issuing an IC card,
When writing the setting information to the IC card, a unique information acquisition terminal for acquiring card unique information that is unique information of the IC card;
A card issuing system comprising: a management server that stores the card unique information acquired by the unique information acquisition terminal in association with the setting information. The specific information acquisition terminal is
A unique information reading unit for reading the card unique information from the IC card;
A setting information acquisition unit for acquiring the setting information to be written to the IC card;
An information transmitting unit that transmits the card unique information read by the unique information reading unit and the setting information acquired by the setting information acquiring unit to the management server;
A card issuing unit for writing the setting information acquired by the setting information acquisition unit to the IC card when an issuance permission instruction for permitting the IC card issuance is transmitted from the management server;
The management server
A server storage unit that stores the card unique information transmitted from the unique information acquisition terminal in association with the setting information;
2. The server transmission unit according to claim 1, further comprising a server transmission unit configured to transmit the issuance permission instruction to the unique information acquisition terminal when the server storage unit stores the card unique information and the setting information in association with each other. Card issuing system. The unique information acquisition terminal includes a request input unit capable of inputting an IC card reissue request,
When the reissue request is input from the request input unit, the information transmission unit includes the card specific information and the setting information acquisition unit from which the specific information read unit has read the input reissue request. Send to the management server together with the acquired setting information,
When the reissue request is transmitted from the unique information acquisition terminal, the management server stores the card stored in the server storage unit in association with the setting information transmitted from the unique information acquisition terminal A unique information rewriting unit for rewriting the unique information with the card unique information transmitted from the unique information acquisition terminal;
The card issuing system according to claim 2, wherein the server transmitting unit transmits the issuance permission instruction to the unique information acquisition terminal when the unique information rewriting unit rewrites the card unique information. A card issuing machine that writes set setting information to an IC card and issues an IC card,
When writing setting information to an IC card, card unique information that is unique information of the IC card is acquired, and the acquired card unique information and the setting information are stored in a management server in association with each other. Card issuing machine. A card issuing method for writing set setting information to an IC card and issuing an IC card,
When writing the setting information to the IC card, the card unique information that is unique information of the IC card is acquired, and the acquired card unique information and the setting information are associated with each other and stored in a management server, How to issue a card.

Images