JP2016139291A - Settlement device, settlement method, and settlement program - Google Patents

Settlement device, settlement method, and settlement program Download PDF

Info

Publication number
JP2016139291A
JP2016139291A JP2015014000A JP2015014000A JP2016139291A JP 2016139291 A JP2016139291 A JP 2016139291A JP 2015014000 A JP2015014000 A JP 2015014000A JP 2015014000 A JP2015014000 A JP 2015014000A JP 2016139291 A JP2016139291 A JP 2016139291A
Authority
JP
Japan
Prior art keywords
settlement
signature
current
payment
value
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
JP2015014000A
Other languages
Japanese (ja)
Other versions
JP6517027B2 (en
Inventor
清本 晋作
Shinsaku Kiyomoto
晋作 清本
三宅 優
Masaru Miyake
優 三宅
Original Assignee
Kddi株式会社
Kddi Corp
Kddi株式会社
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Kddi株式会社, Kddi Corp, Kddi株式会社 filed Critical Kddi株式会社
Priority to JP2015014000A priority Critical patent/JP6517027B2/en
Publication of JP2016139291A publication Critical patent/JP2016139291A/en
Application granted granted Critical
Publication of JP6517027B2 publication Critical patent/JP6517027B2/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

PROBLEM TO BE SOLVED: To provide a settlement device, a settlement method, and a settlement program capable of assuring legitimate usage of electronic money without the need of realtime checking.SOLUTION: A settlement device 1 is provided with: a storage unit 20 that stores a current hash value 21 corresponding to a cumulative state of settlement including depositing and payment of the electronic money; a first updating unit 11 that updates the current hash value 21 to a new value each time of settlement on the basis of the current hash value 21 and data generated from transaction of the settlement; a signature unit 12 that performs a signature for the current hash value 21 by using a secret key 31 to generate a signature 32 of the hash value; and a secure element 30 that protects the secret key 31 and the signature 32 of the hash value.SELECTED DRAWING: Figure 1

Description

  The present invention relates to an electronic money settlement apparatus, a settlement method, and a settlement program.

  2. Description of the Related Art Conventionally, an electronic money system that performs settlement of payment and payment by electronic data and its communication has been provided. Even if the payment means by software in such a system is tamper resistant, the current balance may be tampered with by an attack such as overwriting a copy at a later date. As a countermeasure, in addition to a technique for ensuring safety by hardware, an electronic payment technique for checking validity on-line in real time has been proposed (see, for example, Patent Document 1).

JP 2003-308469 A

  However, a system that requires real-time communication with a server at the time of settlement cannot be applied to offline settlement at a store or the like.

  It is an object of the present invention to provide a settlement apparatus, a settlement method, and a settlement program that do not require a real-time check and can guarantee proper use of electronic money.

  The settlement apparatus according to the present invention includes a current value storage unit that stores a current unique value corresponding to a cumulative state of settlement including payment or payment of electronic money, and is stored in the current value storage unit for each settlement. A first update unit that updates the current unique value to a new value based on the current unique value and the data generated from the settlement transaction, and the signature value is signed with a secret key. And a protection storage unit for protecting the secret key and the signature data.

  The first update unit may update the eigenvalue by a hash calculation using the eigenvalue and a hash value of data including the transaction as inputs.

  The current value storage unit may be included in the protection storage unit.

  The signature unit signs the concatenated data of the unique value and the current time information, and the settlement apparatus extracts the unique value from the signature data at regular intervals and updates the signature data by the signature unit. A second updating unit may be provided.

  The settlement apparatus may include a history recording unit that stores a history of the transaction, and a communication unit that adds a signature to the transaction extracted from the history and transmits the transaction to the aggregation center.

  The settlement method according to the present invention is a settlement method by a computer, and the computer includes a current value storage unit that stores a current unique value corresponding to a cumulative status of settlement including payment or payment of electronic money, and the settlement A first update step of updating the current unique value to a new value based on the current unique value stored in the current value storage unit and data generated from the settlement transaction; The control unit of the computer executes a signature step of signing the unique value with a secret key in the storage unit, generating signature data, and storing the signature data in the protection storage unit.

  The settlement program according to the present invention causes a computer to execute each step of the settlement method.

  According to the present invention, it is possible to guarantee the legitimate use of electronic money without requiring a real-time check.

It is a block diagram which shows the function structure of the payment apparatus which concerns on 1st Embodiment. It is a figure which shows the flow of the whole payment method concerning 1st Embodiment. It is a flowchart which shows the update process of the hash value with respect to the payment transaction which concerns on 1st Embodiment. It is a flowchart which shows the update process of the hash value with respect to the payment transaction which concerns on 1st Embodiment. It is a block diagram which shows the function structure of the payment apparatus which concerns on 2nd Embodiment. It is a figure which shows the flow of the update process of the signature value which concerns on 2nd Embodiment. It is a flowchart which shows the update process of the hash value which concerns on 2nd Embodiment.

[First Embodiment]
The first embodiment of the present invention will be described below.
The settlement apparatus 1 according to the present embodiment is an information processing apparatus (computer) having a management data such as a balance of electronic money and a memory for storing various data, and a processor for executing various programs. It may be a mobile terminal such as a telephone.

FIG. 1 is a block diagram showing a functional configuration of the settlement apparatus 1 according to the present embodiment.
The settlement apparatus 1 includes a control unit 10, a storage unit 20, a secure element 30 (protection storage unit), and a communication unit 40.

The control unit 10 is a part that controls the entire settlement apparatus 1, and implements various functions in the present embodiment by appropriately reading and executing various programs stored in the storage unit 20. The control unit 10 may be a CPU.
The control unit 10 includes a first update unit 11 and a signature unit 12.

The storage unit 20 is a storage area for various programs and various data for causing the hardware group to function as the payment apparatus 1, and may be a ROM, a RAM, a flash memory, a hard disk (HDD), or the like. Specifically, the storage unit 20 stores a settlement program that causes the control unit 10 to execute each function of the present embodiment.
In addition, the storage unit 20 stores a current hash value 21 (to be described later) and a settlement history 22 that is log information of a settlement (for example, payment or payment) transaction.

The secure element 30 has functions of memory protection and register protection, and can protect data stored in the memory, access to the memory performed by the program, and operations executed by the CPU. Furthermore, the secure element 30 has an encryption function and can encrypt and store important data.
Specifically, the secure element 30 securely stores a secret key 31 and a signature 32 of a hash value, which will be described later, by using these functions.

The communication unit 40 transmits / receives data to / from other devices. Specifically, the communication unit 40 performs data communication with a deposit processing server or a payment processing terminal of a store directly or via a network. The communication unit 40 receives, for example, a hash value calculated from a payment transaction and an electronic signature from a payment processing server at the time of payment settlement, and receives a hash value calculated from the payment transaction and the electronic signature at the time of payment settlement. Send to.
Further, the communication unit 40 transmits information obtained by adding a signature to the payment transaction extracted from the payment history 22 to the electronic money aggregation center.

  The first updating unit 11 updates the eigenvalue corresponding to the accumulation status of electronic money up to now based on the data generated from the transaction of payment every time payment including payment or payment of electronic money is made. . The unique value may be, for example, a hash value, and is updated to a new value each time payment processing is performed by a hash operation using the hash value of data including each settlement transaction and the current unique value as inputs. Is stored as the current hash value 21.

  The signature unit 12 signs the current hash value 21 as a unique value with the secret key 31 and generates a hash value signature 32. Since the signature calculation is performed in the secure element 30, the hash value signature 32 is updated while the secret key 31 is kept secret. Therefore, the hash value signature 32 is stored safely with reduced risk of tampering. Is done.

FIG. 2 is a diagram showing an overall flow of the settlement method according to the present embodiment.
The user terminal (settlement device 1) stores the current hash value 21 (H1) and the hash value signature 32 (S1).

When depositing to the user terminal, the depositor (the issuer of electronic money) assigns the electronic signature to the deposit transaction, calculates the hash value of the entire data including this signature, and then calculates the calculated hash value. (A) is sent to the user terminal.
The user terminal (first update unit 11) combines the received calculated hash value (A) with the current hash value 21 (H1) and inputs it to the hash function to update the current hash value 21. (H2). Further, the user terminal (signature unit 12) calculates an electronic signature for the current hash value 21 (H2) and updates the signature 32 of the hash value (S2).
On the other hand, the depositor sends the deposit transaction and its electronic signature to the aggregation center.

When the user terminal performs payment processing for the store, the current hash value 21 (H2) and the payment transaction are combined, and when this data is digitally signed, the hash value of the entire data including this signature is calculated. The calculated hash value (B) is sent to the store terminal.
The store terminal adds an electronic signature to the received hash value in addition to the payment transaction data and sends it to the aggregation center.
The user terminal (first updating unit 11) combines the calculated hash value (B) and the current hash value 21 (H2) and inputs them to the hash function to update the current hash value 21 (H3 ). Further, the user terminal (signature unit 12) calculates an electronic signature for the current hash value 21 (H3) and updates the signature 32 of the hash value (S3).

  The depositor and payer (user terminal) may immediately send the settlement (payment or payment) transaction and signature to the aggregation center, store it, and send it at a predetermined timing later. May be.

The aggregation center can detect the possibility of fraud, for example, the payment amount is larger than the deposit amount, by compiling these transactions and grasping the balance of each user. Further, the aggregation center calculates a hash value (A, B) from each received transaction and signature, or uses the received hash value (B) to be the same as the current hash value 21 stored in the user terminal. Therefore, the validity of the current hash value 21 stored in the user terminal can be verified by comparing these hash values. The aggregation center may receive the hash value (A) calculated from the depositor.
Further, since it is difficult to falsify the signature 32 of the hash value stored in the secure element 30, the validity of the current hash value 21 is guaranteed.

FIG. 3 is a flowchart showing hash value update processing for a deposit transaction by the settlement apparatus 1 according to the present embodiment.
In step S <b> 11, the communication unit 40 receives a hash value calculated from data including the deposit transaction and the depositor's electronic signature. The received hash value is stored in the settlement history 22.

In step S <b> 12, the first update unit 11 reads the current hash value 21 from the storage unit 20.
In step S <b> 13, the first update unit 11 performs a hash operation using the current hash value 21 and the hash value received in step S <b> 11 as inputs, and updates the current hash value 21.

  In step S <b> 14, the signature unit 12 performs signature calculation on the current hash value 21 using the secret key 31 in the secure element 30 to generate a signature 32 of the hash value.

FIG. 4 is a flowchart showing hash value update processing for a payment transaction by the settlement apparatus 1 according to the present embodiment.
In step S21, the control unit 10 generates a payment transaction.

In step S <b> 22, the first update unit 11 reads the current hash value 21 from the storage unit 20.
In step S23, the first updating unit 11 combines the current hash value 21 and the payment transaction, performs the electronic signature of the payer (settlement device 1) for this data, and the hash value of the entire data including the electronic signature Calculate The entire data including the electronic signature and the calculated hash value are stored in the settlement history 22.
In step S24, the first update unit 11 performs a hash operation using the current hash value 21 and the hash value calculated in step S23 as inputs, and updates the current hash value 21.

  In step S <b> 25, the signature unit 12 performs signature calculation on the current hash value 21 using the secret key 31 in the secure element 30, and generates a signature 32 of the hash value.

  According to the present embodiment, the settlement apparatus 1 updates the unique value (current hash value 21) based on a transaction corresponding to each settlement. At this time, the settlement apparatus 1 generates signature data (hash value signature 32) using the secret key 31 in the secure element 30, so that the eigenvalue can be prevented from being falsified and the validity can be guaranteed. Therefore, the settlement apparatus 1 does not require a real-time check using a server on the network, and implements a mechanism such as double use and balance tampering prevention, payment refusal refusal, and the like. Use can be guaranteed.

  Further, the settlement apparatus 1 adopts the current hash value 21 as the unique value, so that the data size can be compressed and stored efficiently, signature calculation, transmission / reception processing, and the like. In particular, since the size of transaction data transmitted and received between the depositor and the settlement apparatus 1 or between the settlement apparatus 1 and the store terminal in the deposit is reduced, this embodiment uses, for example, a two-dimensional barcode. It can also be applied to offline payment methods.

  Further, since the settlement apparatus 1 stores the settlement history 22 and transmits it together with the signature to the aggregation center, the aggregation center can aggregate the legitimate transaction data with the signature, thereby improving the reliability of balance management and the like.

[Second Embodiment]
Hereinafter, a second embodiment of the present invention will be described.
In addition, about the structure similar to 1st Embodiment, the same code | symbol is attached | subjected and description is abbreviate | omitted or simplified.

FIG. 5 is a block diagram showing a functional configuration of the settlement apparatus 1a according to the present embodiment.
The settlement apparatus 1a of the present embodiment differs from the settlement apparatus 1 of the first embodiment in the function of the signature unit 12a, and the control unit 10a further includes a second update unit 13.

The signature unit 12a performs a signature calculation on the concatenated data of the unique value (current hash value 21) and the current time information to generate a signature 32 of the hash value.
The second updating unit 13 extracts a unique value from the signature 32 of the hash value at regular intervals, and after newly concatenating the current time information, the signature unit 12a updates the signature data.

FIG. 6 is a diagram showing a flow of signature value update processing according to the present embodiment.
At time t1, the settlement apparatus 1a calculates the signature value (S4) after concatenating the current hash value 21 (H) and the current time t1.
Thereafter, at time t2 when a predetermined time has elapsed from time t1, the settlement apparatus 1a extracts the current hash value 21 (H) from the signature value (S4), concatenates the current time t2, and then calculates the signature value (S5). To do.
By repeating the process similar to that at time t2, the unique information including the current time information and the signature value corresponding to the unique information are periodically updated.

FIG. 7 is a flowchart showing hash value update processing by the settlement apparatus 1a according to the present embodiment.
In step S31, the second updating unit 13 acquires the current hash value 21 from the signature 32 of the hash value.

  In step S32, the second update unit 13 generates concatenated data between the current hash value 21 acquired in step S31 and the current time information, and provides the data to the signature unit 12a.

  In step S <b> 33, the signature unit 12 a performs signature calculation on the concatenated data based on the current hash value 21 using the secret key 31 in the secure element 30 to generate a signature 32 of the hash value.

  According to the present embodiment, the data (unique information) including the unique value and the current time information is updated every fixed period, and the signature value (hash value signature 32) is also updated accordingly. Accordingly, the settlement apparatus 1a can make fraud due to rollback of the unique information difficult and improve the reliability of the settlement system.

  As mentioned above, although embodiment of this invention was described, this invention is not restricted to embodiment mentioned above. Further, the effects described in the present embodiment are merely a list of the most preferable effects resulting from the present invention, and the effects of the present invention are not limited to those described in the present embodiment.

  The unique value (the current hash value 21) in the above-described embodiment may be stored in the secure element 30. In this case, since the payment apparatus (1 or 1a) can make it difficult to tamper with the eigenvalue, the reliability of the payment system can be further improved.

  The control method by the settlement apparatus 1 is realized by software. When realized by software, a program constituting the software is installed in the information processing apparatus (payment apparatus 1). These programs may be recorded on a removable medium such as a CD-ROM and distributed to the user, or may be distributed by being downloaded to the user's computer via a network. Furthermore, these programs may be provided to the user's computer (payment apparatus 1) as a Web service via a network without being downloaded.

1, 1a Settlement device 10, 10a Control unit 11 First update unit 12, 12a Signature unit 13 Second update unit 20 Storage unit (current value storage unit, history storage unit)
21 Current hash value (unique value)
22 Settlement history 30 Secure element (Protective memory)
31 Private key 32 Hash value signature 40 Communication part

Claims (7)

  1. A current value storage unit for storing a current unique value corresponding to a cumulative status of settlement including payment or payment of electronic money;
    A first updating unit that updates the current unique value to a new value based on the current unique value stored in the current value storage unit and data generated from the settlement transaction each time the payment is made; ,
    A signature part for signing the unique value with a secret key and generating signature data;
    A settlement apparatus comprising: a protection storage unit that protects the secret key and the signature data.
  2.   The settlement apparatus according to claim 1, wherein the first update unit updates the unique value by a hash calculation using the unique value and a hash value of data including the transaction as inputs.
  3.   The settlement apparatus according to claim 1, wherein the current value storage unit is included in the protection storage unit.
  4. The signature unit signs the concatenated data of the eigenvalue and current time information,
    The settlement apparatus according to any one of claims 1 to 3, further comprising a second update unit that extracts the unique value from the signature data and updates the signature data by the signature unit at regular intervals.
  5. A history recording unit for storing a history of the transaction;
    The settlement apparatus according to claim 1, further comprising: a communication unit that adds a signature to the transaction extracted from the history and transmits the transaction to the aggregation center.
  6. A computer payment method,
    The computer includes a current value storage unit that stores a current unique value corresponding to a cumulative state of settlement including payment or payment of electronic money,
    A first update step of updating the current unique value to a new value based on the current unique value stored in the current value storage unit and the data generated from the settlement transaction each time the payment is made; ,
    A settlement method in which the control unit of the computer executes a signature step of signing the unique value with a secret key in a protected storage unit, generating signature data, and storing the signature data in the protected storage unit.
  7.   The payment program for making the said computer perform each step of the payment method of Claim 6.
JP2015014000A 2015-01-28 2015-01-28 Settlement apparatus, settlement method and settlement program Active JP6517027B2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2015014000A JP6517027B2 (en) 2015-01-28 2015-01-28 Settlement apparatus, settlement method and settlement program

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
JP2015014000A JP6517027B2 (en) 2015-01-28 2015-01-28 Settlement apparatus, settlement method and settlement program

Publications (2)

Publication Number Publication Date
JP2016139291A true JP2016139291A (en) 2016-08-04
JP6517027B2 JP6517027B2 (en) 2019-05-22

Family

ID=56559210

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2015014000A Active JP6517027B2 (en) 2015-01-28 2015-01-28 Settlement apparatus, settlement method and settlement program

Country Status (1)

Country Link
JP (1) JP6517027B2 (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH0785171A (en) * 1993-06-24 1995-03-31 Nippon Ginkou Electronic small amount settlement system
JPH10154193A (en) * 1996-09-30 1998-06-09 N T T Data Tsushin Kk Electronic money system and recording medium
JP2002279198A (en) * 2001-03-15 2002-09-27 Mizuho Corporate Bank Ltd Method of recording on electronic bankbook, electronic bankbook registration system, and computer-readable electronic bankbook recording medium
JP2008258661A (en) * 2007-03-30 2008-10-23 Ntt Data Corp Electronic signature device, method and program
US20130166455A1 (en) * 2011-12-23 2013-06-27 Douglas Feigelson Creating and using digital currency
JP2013539561A (en) * 2010-07-09 2013-10-24 武 水沼 Management method of electronic money

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH0785171A (en) * 1993-06-24 1995-03-31 Nippon Ginkou Electronic small amount settlement system
JPH10154193A (en) * 1996-09-30 1998-06-09 N T T Data Tsushin Kk Electronic money system and recording medium
JP2002279198A (en) * 2001-03-15 2002-09-27 Mizuho Corporate Bank Ltd Method of recording on electronic bankbook, electronic bankbook registration system, and computer-readable electronic bankbook recording medium
JP2008258661A (en) * 2007-03-30 2008-10-23 Ntt Data Corp Electronic signature device, method and program
JP2013539561A (en) * 2010-07-09 2013-10-24 武 水沼 Management method of electronic money
US20130166455A1 (en) * 2011-12-23 2013-06-27 Douglas Feigelson Creating and using digital currency

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
小林 直樹: "証拠性保全のための安全で効率的なログ署名方式の提案と評価", 日本セキュリティ・マネジメント学会誌 第28巻 第2号, vol. 第28巻, JPN6018030240, 25 September 2014 (2014-09-25), JP, pages 11 - 21 *

Also Published As

Publication number Publication date
JP6517027B2 (en) 2019-05-22

Similar Documents

Publication Publication Date Title
US10218737B2 (en) Trusted mediator interactions with mobile device sensor data
AU2015319804B2 (en) Remote server encrypted data provisioning system and methods
McCorry et al. A smart contract for boardroom voting with maximum voter privacy
US20200021441A1 (en) Methods for secure credential provisioning
US20170310653A1 (en) Client, server, method and identity verification system
Lin et al. A survey of blockchain security issues and challenges.
Niranjanamurthy et al. Analysis of Blockchain technology: pros, cons and SWOT
CN105556553B (en) Secure remote payment transaction processing
JP2018522353A (en) Authentication system and method for server-based payment
EP3050011B1 (en) Transaction authentication
RU2710897C2 (en) Methods for safe generation of cryptograms
US10477393B2 (en) Embedding cloud-based functionalities in a communication device
Tomescu et al. Catena: Efficient non-equivocation via bitcoin
US10164996B2 (en) Methods and systems for providing a low value token buffer
US9978094B2 (en) Tokenization revocation list
US9674196B2 (en) System utilizing a secure element
KR101780636B1 (en) Method for issuing certificate information and blockchain-based server using the same
US8943322B2 (en) Systems and methods for authenticating an electronic transaction
US10664824B2 (en) Cloud-based transactions methods and systems
RU154072U1 (en) Smart card reader with safe journaling function
US10511583B2 (en) Hybrid integration of software development kit with secure execution environment
CN106230851B (en) Data security method and system based on block chain
AU2015264124B2 (en) Offline authentication
Bond et al. Chip and Skim: cloning EMV cards with the pre-play attack
US10402792B2 (en) Systems and method for tracking enterprise events using hybrid public-private blockchain ledgers

Legal Events

Date Code Title Description
A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20170816

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20180725

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20180807

A521 Written amendment

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20180918

A02 Decision of refusal

Free format text: JAPANESE INTERMEDIATE CODE: A02

Effective date: 20181211

A521 Written amendment

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20190304

A911 Transfer of reconsideration by examiner before appeal (zenchi)

Free format text: JAPANESE INTERMEDIATE CODE: A911

Effective date: 20190312

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20190409

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20190417

R150 Certificate of patent or registration of utility model

Ref document number: 6517027

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150