JP2017038215A - Information delivery system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To deliver information safely even when infected with malware, by preventing occurrence of damage due to fraud.SOLUTION: On the transmitter 100 side, two sets of transmission units 110, 120, constituted as units separate from each other, are prepared. The first transmission unit 110 transmits the inputted delivery object information P to a receiver 200 by using a first inter-device communication section 112, and transmits to a second transmission unit 120 by using a first inter-unit communication section 113. The second transmission unit 120 transmits the received delivery object information P to the receiver 200 by using a second inter-device communication section 122. On the receiver 200 side, a received information collation section 230 collates the delivery object information P received from two routes, and confirms matching. Inter-device communication between the transmitter 100 and receiver 200 is performed via the Internet, and communication between the transmission units 110, 120 is performed by near-field wireless communication.SELECTED DRAWING: Figure 1

Description

  The present invention relates to an information delivery system that delivers arbitrary information from a transmission device to a reception device, and more particularly, to a system that performs safe delivery while protecting against illegal acts by crackers.

  In the service industry, electronic commerce via the Internet is spreading more and more, and damage caused by fraudulent acts by crackers has become a social problem. In particular, if fraudulent acts are carried out in electronic commerce with financial institutions, tremendous harm will occur, and therefore, net banking systems and the like are required to be fully safe.

  In order to conduct safe commercial transactions that eliminate fraudulent acts by crackers, it is necessary to ensure the safe delivery of information between the two parties performing the transactions. In other words, when sending and receiving information, the sender sends information after confirming that the receiver is the correct trading partner, and the receiver confirms that the sender is the correct trading partner. It is necessary to receive information. Further, even if information is transmitted from a correct trading partner, there is a possibility that the information is tampered on the transmission path, and therefore, the receiver side needs to confirm the validity of the received information.

  Generally, two authentication methods, two-factor authentication and two-path authentication, are known as main authentication methods when information is transferred. Two-factor authentication is a method of authenticating that the communication partner is the correct partner on the condition that “you know or have two factors”. Specifically, you know the password, Authentication is performed by imposing conditions such as possessing a token or possessing a specific random number table. For example, Patent Document 1 below discloses a specific two-factor authentication method using a password and a token, and Patent Document 2 discloses a two-factor authentication method using a random number table or the like as authentication data. It is disclosed.

  On the other hand, the two-path authentication is a method for authenticating transmission / reception of correct information on the condition of “consistency of communication results by two communication paths”. Specifically, an access path to a web page and transmission / reception of an e-mail An authentication method using two routes called routes is well known. For example, in Patent Document 3 below, two communication paths are prepared between a communication device and a server, and after temporarily registering personal information using the first communication path, the second communication path is A technique for performing the main registration using the method is disclosed. Patent Document 4 discloses a technique for performing authentication processing between a user terminal and a server, and then performing authentication by e-mail. A technique is disclosed in which a One Time URL is notified using an e-mail, and then a server is accessed from the user terminal using the One Time URL.

  Of course, various other authentication techniques have been proposed. For example, in Patent Document 6, a combination of optimal authentication methods is registered in an authentication rule database according to individual users and transaction types, and an optimal authentication method according to a specific authentication rule is determined according to the situation. Techniques to perform are disclosed.

Special table 2009-537893 gazette JP-T-2006-527446 JP 2004-126267 A Japanese Patent Laid-Open No. 10-301903 JP 2005-346389 A JP 2004-240645 A

  A typical technique for fraud by crackers is the distribution of malware. When a user's terminal device is infected with malware such as a computer virus, an execution environment for various illegal acts is fostered. For example, when the data to be transmitted from the user terminal to the server is changed to pass through the cracker terminal due to the action of malware, the delivery target information is falsified by the cracker's hand and then arrives at the server Will occur. In this case, there is a risk that the password entered by the user and the contents of the random number table are also extracted and passed to the cracker. Moreover, the user himself / herself is often unaware of the presence of malware, and there is a high possibility that such a dangerous state will continue for a long period of time. Conventional two-factor authentication procedures cannot provide sufficient protection against such malware infections.

  On the other hand, the conventional two-path authentication procedure cannot sufficiently protect against such malware infection. For example, even if two routes, a web page access route and an e-mail transmission / reception route, are prepared, the user terminal that communicates using these two routes is infected with malware. And communication using either route cannot escape from the target of cracker fraud.

  Accordingly, an object of the present invention is to provide an information delivery system capable of preventing damage caused by fraudulent acts and performing safe delivery of information even when infected with malware.

(1) According to a first aspect of the present invention, there is provided an information delivery system that includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A first inter-unit communication unit that transmits the delivery target information input by the delivery target information input unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives delivery target information transmitted from the first transmission unit;
A second inter-device communication unit that transmits the delivery target information received by the second inter-unit communication unit to the receiving device;
Have
The receiving device
A first information receiving unit that receives information estimated from the delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated from the delivery target information transmitted from the second inter-device communication unit;
A received information collating unit for collating the information received by the first information receiving unit with the information received by the second information receiving unit;
Have
Communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication.

(2) According to a second aspect of the present invention, there is provided an information delivery system that includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A first inter-unit communication unit that transmits the delivery target information input by the delivery target information input unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives delivery target information transmitted from the first transmission unit;
A derivation information generating unit that generates derivation information by executing a predetermined derivation process based on the delivery target information received by the second inter-unit communication unit;
A second inter-device communication unit that transmits the derivative information generated by the derivative information generation unit to the receiving device;
Have
The receiving device
A first information receiving unit that receives information estimated from the delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated from derivative information transmitted from the second inter-device communication unit;
A received information collating unit that collates the information received by the first information receiving unit and the information received by the second information receiving unit by a collating process for confirming consistency according to the derivation process;
Have
The derivation process is a process of deriving derivation information that is uniquely determined with respect to the original information with the delivery target information as the original information.
Communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication.

(3) According to a third aspect of the present invention, there is provided an information delivery system that includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A derivation information generating unit that generates derivation information by executing a predetermined derivation process based on the delivery target information input by the delivery target information input unit;
A first inter-unit communication unit that transmits the derived information generated by the derived information generation unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives derivative information transmitted from the first transmission unit;
A second inter-device communication unit that transmits the derivative information received by the second inter-unit communication unit to the receiving device;
Have
The receiving device
A first information receiving unit that receives information estimated from the delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated from derivative information transmitted from the second inter-device communication unit;
A received information collating unit that collates the information received by the first information receiving unit and the information received by the second information receiving unit by a collating process for confirming consistency according to the derivation process;
Have
The derivation process is a process of deriving derivation information that is uniquely determined with respect to the original information with the delivery target information as the original information.
Communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication.

(4) According to a fourth aspect of the present invention, there is provided an information delivery system that includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A first derivation information generating unit that generates first derivation information by executing a first derivation process based on the delivery target information input by the delivery target information input unit;
A first inter-unit communication unit that transmits the first derivative information generated by the first derivative information generation unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives the first derivative information transmitted from the first transmission unit;
A second derivation information generation unit that generates second derivation information by executing a second derivation process based on the first derivation information received by the second inter-unit communication unit;
A second inter-device communication unit that transmits the second derivative information generated by the second derivative information generation unit to the receiving device;
Have
The receiving device
A first information receiving unit that receives information estimated from the delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated from the second derivative information transmitted from the second inter-device communication unit;
Received information collation for collating the information received by the first information receiving unit and the information received by the second information receiving unit by the first derivation process and the collation process for confirming consistency according to the second derivation process And
Have
The first derivation process is a process of deriving first derivation information that is uniquely determined with respect to the original information, with the delivery target information as the original information, and the second derivation process is the first derivation process. A process of deriving second derivative information that is uniquely determined with respect to the original information, using the information as the original information;
Communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication.

(5) According to a fifth aspect of the present invention, there is provided an information delivery system that includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A derivation information generating unit that generates derivation information by executing a predetermined derivation process based on the delivery target information input by the delivery target information input unit;
A first inter-device communication unit that transmits the derived information generated by the derived information generation unit to the receiving device;
A first inter-unit communication unit that transmits the delivery target information input by the delivery target information input unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives delivery target information transmitted from the first transmission unit;
A second inter-device communication unit that transmits the delivery target information received by the second inter-unit communication unit to the receiving device;
Have
The receiving device
A first information receiving unit that receives information estimated from the derivative information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated from the delivery target information transmitted from the second inter-device communication unit;
A received information collating unit that collates the information received by the first information receiving unit and the information received by the second information receiving unit by a collating process for confirming consistency according to the derivation process;
Have
The derivation process is a process of deriving derivation information that is uniquely determined with respect to the original information with the delivery target information as the original information.
Communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication.

(6) According to a sixth aspect of the present invention, in the information delivery system according to the fifth aspect described above,
The second transmission unit further includes a derivation process information storage unit that stores derivation process information used for the derivation process,
The second inter-unit communication unit further has a function of transmitting the derivation processing information to the first transmission unit,
The first inter-unit communication unit further has a function of receiving derivation processing information transmitted from the second inter-unit communication unit,
The derivation information generation unit executes the derivation process using the derivation process information received by the first inter-unit communication unit.

(7) A seventh aspect of the present invention is the information delivery system according to the second to sixth aspects described above,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is the original Including combining predetermined fixed data with information or information derived from the original information,
The reception information collation unit is configured to execute a collation process using the fixed data.

(8) According to a seventh aspect of the present invention, in the information delivery system according to the second to sixth aspects described above,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is a predetermined process. A fluctuation data generation process for generating different fluctuation data each time based on an algorithm, and a fluctuation data synthesis process for synthesizing fluctuation data with the original information or information derived from the original information,
The received information matching unit executes the matching process using the variation data generated every time based on the same algorithm as the above algorithm.

(9) According to a ninth aspect of the present invention, in the information delivery system according to the eighth aspect described above,
In the fluctuation data generation process, data related to the year, month, day, day of the week, or time when the process is executed is generated as fluctuation data.

(10) According to a tenth aspect of the present invention, in the information delivery system according to the second to sixth aspects described above,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is the original Including a process of operating a predetermined function on information or information derived from the original information,
The received information matching unit executes the matching process using the function or the inverse function of the function.

(11) An eleventh aspect of the present invention is the information delivery system according to the tenth aspect described above,
A hash function or other one-way function is used as a function to be operated.

(12) In a twelfth aspect of the present invention, in the information delivery system according to the second to sixth aspects described above,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is the original Including a process of creating an electronic signature using a predetermined encryption key for the information or information derived from the original information, so that derivative information including the electronic signature is generated,
The received information matching unit executes a matching process including a process for confirming the validity of the electronic signature.

(13) In a thirteenth aspect of the present invention, in the information delivery system according to the twelfth aspect described above,
A secret key based on the public key cryptosystem is stored on the transmitting device side, and a public key corresponding to the secret key is stored on the receiving device side,
The verification process includes a process of confirming the validity of the electronic signature created on the transmitting apparatus side using the secret key using the public key on the receiving apparatus side.

(14) According to a fourteenth aspect of the present invention, in the information delivery system according to the first to thirteenth aspects described above,
When the first inter-device communication unit transmits specific information to the receiving device, the first inter-device communication unit transmits a specific transaction number associated with the specific information,
When the second inter-device communication unit transmits the information corresponding to the specific information to the receiving device, the second inter-device communication unit transmits the corresponding information with the same transaction number as the predetermined transaction number. ,
The received information collation unit is a pair of information in which the same transaction number is associated with the information transmitted from the first inter-device communication unit and the information transmitted from the second inter-device communication unit. Is recognized as a verification target.

(15) The fifteenth aspect of the present invention is the information delivery system according to the first to fourteenth aspects described above,
The first transmission unit further includes a first position recognition unit for recognizing the current position of the first transmission unit. When the first inter-device communication unit transmits information to the reception device, the first transmission unit The first position information recognized by the position recognition unit is transmitted in combination,
The second transmission unit further includes a second position recognition unit for recognizing the current position of the second transmission unit. When the second inter-device communication unit transmits information to the reception device, the second position recognition unit The second position information recognized by the position recognition unit is combined and transmitted,
When the reception information collation unit collates the first information transmitted from the first inter-device communication unit and the second information transmitted from the second inter-device communication unit, the first information The positional information combined with the second information and the positional information combined with the second information are information within a predetermined neighborhood range as one condition for successful verification.

(16) According to a sixteenth aspect of the present invention, in the information delivery system according to the first to fifteenth aspects described above,
When the first inter-device communication unit transmits information to the first information receiving unit, the transmission time is shared between the two,
When the first inter-unit communication unit transmits information to the second transmission unit, the first unit communication unit transmits a combination of the above transmission times,
The second inter-device communication unit also transmits the transmission time transmitted from the first inter-unit communication unit when transmitting information to the second information receiving unit,
When the reception information collation unit collates the first information transmitted from the first inter-device communication unit and the second information transmitted from the second inter-device communication unit, the first information One condition for successful verification is that the transmission time shared by the information receiving section of the second information receiving section matches the transmission time received by the second information receiving section.

(17) The seventeenth aspect of the present invention is the information delivery system according to the first to sixteenth aspects described above,
The communication between the first inter-device communication unit and the first information receiving unit and the communication between the second inter-device communication unit and the second information receiving unit are performed using the TCP / IP protocol via the Internet. Communication between the first inter-unit communication unit and the second inter-unit communication unit is performed using the NFC standard.

(18) An eighteenth aspect of the present invention is the information delivery system according to the first to seventeenth aspects described above,
The first transmission unit is configured by a first information processing apparatus incorporating an application program that operates under the control of the first OS, and the second transmission unit is different from the first OS. This is configured by a second information processing apparatus incorporating an application program that operates under the management of the above.

  (19) According to a nineteenth aspect of the present invention, an apparatus for an information delivery system is configured by the first transmission unit or the second transmission unit in the information delivery system according to the first to eighteenth aspects described above. It is.

  (20) According to a twentieth aspect of the present invention, the first transmission unit or the second transmission unit in the information delivery system according to the first to eighteenth aspects described above is configured by incorporating a program into a computer. It is.

(21) According to a twenty-first aspect of the present invention, there is provided an information delivery system that includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit, and these two sets of transmission units have a function of performing inter-unit communication by near-field wireless communication with each other, and inter-device communication with respect to the reception device. And a function of performing
The first transmission unit transmits the delivery target information to the receiving device using the inter-device communication function, and uses the inter-unit communication function to the second transmission unit. Send delivery target information or derived information derived from delivery target information,
The second transmission unit receives the information transmitted from the first transmission unit, and uses the inter-device communication function for the receiving device to receive or derive information derived from the received information. As verification information,
The receiving apparatus collates the information estimated to be the delivery target information transmitted from the first transmission unit using the information estimated from the verification information transmitted from the second transmission unit. Is.

(22) According to a twenty-second aspect of the present invention, in an information delivery method for delivering delivery target information from a transmission device to a reception device,
A unit preparation stage for preparing two transmission units each having a function of performing inter-unit communication by near-field wireless communication and a function of performing inter-device communication with respect to a reception device as a transmission device;
A delivery target information transmission stage in which the first transmission unit transmits delivery target information to the reception device using the inter-device communication function;
An inter-unit communication stage in which the first transmission unit transmits to the second transmission unit, using the inter-unit communication function, the delivery target information or derivative information derived from the delivery target information;
The second transmission unit receives the information transmitted from the first transmission unit, and uses the inter-device communication function for the receiving device to receive or derived information derived from the received information. Information sending stage for sending as information for matching,
A collation stage in which the receiving device collates the information estimated to be the delivery target information transmitted in the delivery target information transmission stage using the information estimated in the collation information transmission stage and the estimated information; ,
Is to do.

(23) According to a twenty-third aspect of the present invention, an information delivery system includes a transmission device and a reception device, and delivers delivery target information from the transmission device to the reception device.
The transmission device includes a first transmission unit and a second transmission unit, and these two sets of transmission units have a function of performing inter-unit communication by near-field wireless communication with each other, and inter-device communication with respect to the reception device. And a function of performing
The first transmission unit transmits the delivery target information to the second transmission unit using the inter-unit communication function, and uses the inter-device communication function to the receiving device. Send derived information derived from the delivery target information as verification information,
The second transmission unit transmits the delivery target information transmitted from the first transmission unit to the reception device using the inter-device communication function,
The receiving apparatus collates the information estimated to be the delivery target information transmitted from the second transmission unit using the information estimated from the verification information transmitted from the first transmission unit. Is.

(24) According to a twenty-fourth aspect of the present invention, in an information delivery method for delivering delivery target information from a transmission device to a reception device,
A unit preparation stage for preparing two transmission units each having a function of performing inter-unit communication by near-field wireless communication and a function of performing inter-device communication with respect to a reception device as a transmission device;
A verification information transmission stage in which the first transmission unit transmits, to the reception device, derivative information derived from the delivery target information as verification information, using the inter-device communication function;
An inter-unit communication stage in which the first transmission unit transmits the delivery target information to the second transmission unit using the inter-unit communication function;
A delivery target information transmission stage in which the second transmission unit transmits the delivery target information transmitted from the first transmission unit to the receiving device using the inter-device communication function;
A collation stage in which the receiving device collates the information estimated to be the delivery target information transmitted in the delivery target information transmission stage using the information estimated in the collation information transmission stage and the estimated information; ,
Is to do.

  In the information delivery system according to the present invention, two sets of transmission units are provided as transmission devices, the delivery target information or its derivative information is transmitted from the two sets of transmission units to the reception device, and both are collated on the reception device side. Therefore, as long as the two sets of transmission units are not infected with malware having the same attack intention, fraud can be detected in advance. Further, since the communication between the two sets of transmission units is performed by near-field wireless communication based on the user's intentional operation, the possibility of communication interception in an environment not intended by the user can be reduced. As described above, in the information delivery system according to the present invention, a synergistic effect such as the fusion of two-factor authentication and two-path authentication can be obtained. It is possible to prevent information and to pass information safely.

1 is a block diagram showing a configuration of a basic system 10 according to a basic embodiment of the present invention. It is a figure which shows the information transmission operation | work using the basic system 10 shown in FIG. It is a figure which shows the operation screen of the information transmission operation | work using the basic system 10 shown in FIG. It is a figure which shows the production | generation process of the derivative information used with the system which concerns on the modification of the basic system 10 shown in FIG. It is the figure which illustrated the derivative information produced | generated by the process shown in FIG. It is a block diagram which shows the variation of the method of collating using derived information. It is a block diagram which shows the structure of system 10A which concerns on the 1st modification of the basic system 10 shown in FIG. It is a block diagram which shows the structure of the system 10B which concerns on the 2nd modification of the basic system 10 shown in FIG. It is a block diagram which shows the structure of the system 10C which concerns on the 3rd modification of the basic system 10 shown in FIG. It is a figure which shows another variation of the system which concerns on the modification of the basic system 10 shown in FIG. It is a figure which shows the information exchange processing work using the system which concerns on the modification on the right of FIG. It is a block diagram which shows the structure of system 10D which concerns on the 4th modification of the basic system 10 shown in FIG. It is a block diagram which shows the structure of the system 10E which concerns on the 5th modification of the basic system 10 shown in FIG. It is a block diagram which shows the structure of the system 10F which concerns on the 6th modification (modification using a transaction number) of the basic system 10 shown in FIG. It is a block diagram which shows the structure of the system 10G which concerns on the 7th modification (modification using a positional information) of the basic system 10 shown in FIG. It is a block diagram which shows the structure of the system 10H which concerns on the 8th modification (modification using a transmission time) of the basic system 10 shown in FIG.

  Hereinafter, the present invention will be described based on the illustrated embodiments.

<<< §1. Information delivery system according to basic embodiment >>
FIG. 1 is a block diagram showing a configuration of a basic system 10 according to a basic embodiment of the present invention. The basic system 10 is an information delivery system that includes a transmission device 100 and a reception device 200 and has a function of delivering arbitrary information from the transmission device 100 to the reception device 200. Here, information to be delivered from the transmission device 100 to the reception device 200 is referred to as delivery target information P.

  This delivery target information P is arbitrary information, and may actually be any data. For example, if this information delivery system is used for the login procedure from the user terminal to the server, the transmission device 100 is prepared as the user terminal and the reception device 200 is prepared as the server, and the user account and the password are transferred to the delivery target information P. It can be used for the process of passing as Alternatively, in the case of an online banking system, transfer instruction information “Transfer 100,000 yen to XX bank XX branch savings account XXXXXX” as delivery target information P It can be used for delivery processing. In this way, the delivery target information P in the present application may be arbitrary data indicating numbers, characters, and codes. Further, it may be data such as sound, image, and moving image as necessary.

  An important feature of the basic system 10 is that the transmission device 100 includes a first transmission unit 110 and a second transmission unit 120 as illustrated. These transmission units 110 and 120 are configured as separate units, and are actually grasped as two devices. In FIG. 1, the blocks of the transmission device 100 are indicated by alternate long and short dash lines, and the blocks of the transmission units 110 and 120 are indicated by solid lines because the transmission device 100 is actually grasped as two devices. is there.

  However, here, the basic system 10 includes two sets of components, that is, the transmission device 100 and the reception device 200, and the transmission device 100 includes two sets of transmission units 110 and 120. The term “device” is used for the receiving device 200, and the term “unit” is used for the first transmission unit 110 and the second transmission unit 120. On the other hand, for the constituent elements included in the receiving device 200 and each of the units 110 and 120, the word “XX” is used. In addition, based on these terms, communication performed between the transmission device 100 and the reception device 200 is referred to as “inter-device communication” and is performed between the first transmission unit 110 and the second transmission unit 120. This communication is called “inter-unit communication”.

  As illustrated, the first transmission unit 110 includes a delivery target information input unit 111, a first inter-device communication unit 112, and a first inter-unit communication unit 113. Here, the delivery target information input unit 111 is a component that inputs the delivery target information P. Actually, the delivery target information input unit 111 has an arbitrary function of inputting information from the outside, including input devices such as a keyboard, a mouse, and a touch panel. It can be constituted by equipment. Note that the input operation of the delivery target information P does not necessarily have to be performed by a user's operation of a keyboard or the like, and may be performed by an automatic input operation by a program function. For example, when the delivery target information P stored in the memory is read and input to the first transmission unit 110, the delivery target information input unit 111 is configured by some element that executes the readout process. Become.

  The delivery target information P input to the first transmission unit 110 in this way is transmitted to both the reception device 200 and the second transmission unit 120. That is, the first inter-device communication unit 112 performs a process of transmitting the delivery target information P input by the delivery target information input unit 111 to the receiving device 200, and the first inter-unit communication unit 113 inputs the delivery target information. The delivery target information P input by the unit 111 is transmitted to the second transmission unit 120.

  The second transmission unit 120 includes a second inter-unit communication unit 121 and a second inter-device communication unit 122. The second inter-unit communication unit 121 performs a process of receiving the delivery target information P transmitted from the first transmission unit 110, and the second inter-device communication unit 122 is the second inter-unit communication unit 121. The process of transmitting the delivery target information P received by the receiver 200 is performed.

  On the other hand, the receiving device 200 includes a first information receiving unit 210, a second information receiving unit 220, and a received information collating unit 230, as illustrated. The first information receiving unit 210 performs a process of receiving the delivery target information P transmitted from the first inter-device communication unit 112, and the second information receiving unit 220 is the second inter-device communication unit 122. The process which receives the delivery object information P transmitted from is performed.

  However, if an illegal act by a cracker is involved in the exchange of information by the inter-device communication between the transmission device 100 and the reception device 200, the contents of the delivery target information P may be falsified as described above. The information delivery system according to the present invention has a function of preventing the occurrence of actual harm by detecting the tampering on the receiving device 200 side. Therefore, in the following description, information received by the first information receiving unit 210 by inter-device communication is referred to as “information estimated as delivery target information P transmitted from the first inter-device communication unit 112”. The information received by the second information receiving unit 220 through inter-device communication is referred to as “information estimated as the delivery target information P transmitted from the second inter-device communication unit 122”.

  The reception information collation unit 230 estimates information received by the first information reception unit 210 (information estimated to be delivery target information P) and information received by the second information reception unit 220 (estimation of delivery target information P). Information) is verified. Specifically, this collation process is a process for determining whether or not two sets of information to be collated match. If the information is not falsified in the inter-device communication, the information received by the first information receiving unit 210 is the delivery target information P, and the information received by the second information receiving unit 220 is also the delivery target information P. There is a match between the two. The reception information collation unit 230 outputs a collation result indicating “collation success” if the two sets of information to be collated match, and outputs a collation result indicating “collation failure” if they do not match.

  Thus, how to use the information received by the receiving apparatus 200 is not within the scope of the present invention, and thus a detailed description thereof is omitted. Naturally, when a matching result indicating “successful matching” is output, A process for handling the information received by the first information receiving unit 210 (or the information received by the second information receiving unit 220) as regular information transmitted from the transmitting device 100 is performed. If the collation result indicating "is output", it is determined that some tampering has been performed, and processing for discarding these pieces of information will be performed.

  Next, a more specific embodiment of the basic system 10 shown in FIG. 1 will be described. Here, an example will be described in which the present invention is applied when transferring login information (account number and password) necessary for logging in to the online banking system. Specifically, the receiving device 200 is a device incorporated in an online banking Web server prepared on the bank side, and two transmission units 110 and 120 constituting the transmitting device 100 are prepared on the user side. Consider the case of two information processing apparatuses.

  As the two information processing devices constituting the transmission device 100, various electronic devices such as a personal computer, a smartphone, and a tablet electronic terminal can be used. The substance of an electronic device such as a personal computer, a smartphone, or a tablet electronic terminal is a computer with a built-in CPU, and functions as the first transmission unit 110 or the second transmission unit 120 by incorporating a dedicated application program. Can do.

  Here, as a most practical example, as shown in FIG. 2, an example in which a smartphone is used as the first transmission unit 110 and a tablet electronic terminal is used as the second transmission unit 120 will be shown. Actually, for example, as the first transmission unit 110, a smartphone owned by the user is used, and as the second transmission unit 120, a tablet electronic terminal lent to the user by the bank is used. It is possible to take an operational form to be used.

  Actually, the first transmission unit 110 is configured by incorporating a dedicated application program (or agent program) into the smartphone, and the second transmission unit 120 is configured as a dedicated application program (or agent for the tablet electronic terminal). Program). Of course, various components other than the components shown in FIG. 1 are incorporated in the actual smart phone 110 and the tablet-type electronic terminal 120. FIG. 1 shows the transmission device according to the present invention. Only the components necessary for the function as 100 are shown.

  An important point in carrying out the present invention is that communication between the first inter-unit communication unit 113 and the second inter-unit communication unit 121, that is, “inter-unit communication” is performed by near-field wireless communication. It is in the point to be made to be. This near-field wireless communication is communication based on a communication standard that assumes a short-range communication area of several centimeters to 10 cm among short-range wireless communication, and is generally referred to as “non-contact communication”, “ It is also called “proximity communication” or “proximity communication”, and is used when reading data from a non-contact type IC card or RFID tag.

  As specific communication standards for near-field wireless communication, an international standard for wireless communication called NFC (Near Field Communication) and an international standard for near-field RFID are defined as a communication standard for contactless ICs. . These standards are standards for wireless communication with a communication distance of 10 cm or less. Usually, communication is performed within a range in which power can be supplied wirelessly from one to the other. Also in ISO / IEC, standards such as ISO / IEC14443, ISO / IEC18092, ISO / IEC156693, ISO / IEC21481 are defined. Also in the basic system 10 shown in FIG. 1, “inter-unit communication” between the first inter-unit communication unit 113 and the second inter-unit communication unit 121 is performed by near-field wireless communication using the NFC standard. I am doing so.

  The reason for performing “inter-unit communication” in the present invention by near-field wireless communication is to reduce the possibility of communication interception. In the case of the basic system 10 shown in FIG. 1, when performing the process of transmitting the delivery target information P from the transmission device 100 to the reception device 200, the delivery target information is transmitted from the first transmission unit 110 to the second transmission unit 120. P is transmitted, but if communication interception is performed in this “inter-unit communication”, the delivery target information P is transferred to the cracker's hand, which is not preferable.

  When this “inter-unit communication” is performed via a wireless LAN (for example, Wi-Fi), the risk of communication interception increases. This is because the communication area of the wireless LAN is larger than the communication area of near-field wireless communication. In a general residential environment, wireless LAN radio waves reach adjacent rooms and outdoors, so that crackers can easily perform wireless interception. Of course, since encryption technology is used for communication using a wireless LAN, the contents of the delivery target information P are not immediately leaked by wireless interception, but the contents may be revealed by analysis of crackers. .

  In the present invention, since “inter-unit communication” is performed by near-field wireless communication, the risk of wireless interception is extremely low. Generally, near-field wireless communication is performed by bringing devices that are communication partners close to each other based on a user's intentional operation, and the communication area is limited to a range that the user's eyes can reach. In fact, as illustrated in FIG. 2, when performing near-field wireless communication between the smartphone 110 and the tablet electronic terminal 120, does the user intentionally touch both in front of his / her own eye? , The operation of making them close will be performed. In other words, in this near-field wireless communication, information is transmitted and received when two electronic devices placed within the reach of the user are brought close to each other by an intentional operation of the user. become.

  Normally, when transmission / reception of information is completed without any trouble by near-field wireless communication, an electronic device gives a signal indicating successful transmission (for example, an electronic sound of “pick!”). From this signal, it can be recognized that the “inter-unit communication” operation has been completed. In this way, if “inter-unit communication” is performed by near-field wireless communication, communication work is performed within the reach of the user's eyes under the user's intentional operation. The possibility of intercepting communications is extremely low. Of course, if a cracker sitting in front of the user's eyes is waiting with a receiving device, it is physically possible to intercept communication even in near-field wireless communication. However, realistically, under such circumstances, the user may not intentionally perform communication work.

  For this reason, using near-field wireless communication as “inter-unit communication” effectively reduces the risk of information leakage of the delivery target information P compared to using a wider communication method such as a wireless LAN. Can be reduced. In practice, the “inter-unit communication” between the first inter-unit communication unit 113 and the second inter-unit communication unit 121 is configured to be performed only by the near-field wireless communication. preferable. In the case of the specific example shown in FIG. 2, as a dedicated application program incorporated in the smartphone 110 and a dedicated application program incorporated in the tablet electronic terminal 120, a program in which communication between the two is performed only by near-field wireless communication Should be prepared.

  On the other hand, as “communication between devices”, it is preferable to carry out communication via the Internet in practice. Many electronic commerce transactions such as online banking are generally performed by accessing a web page. Therefore, also in the basic system 10 shown in FIG. 1, “inter-device communication” between the first inter-device communication unit 112 and the first information receiving unit 210 and the second inter-device communication unit 122 and the second The “inter-device communication” with the information receiving unit 220 uses communication via the Internet, more specifically, communication based on the TCP / IP protocol via the Internet.

  Next, a specific information transmission work procedure using the basic system 10 shown in FIG. 1 will be described with reference to the operation screen shown in FIG. As described above, in the case of the embodiment shown here, the first transmission unit 110 is a user-owned smartphone in which a dedicated program (main program for online banking) is incorporated, and the second transmission unit 120 is This is a tablet electronic terminal loaned from a bank with a dedicated program (subprogram for online banking). The receiving apparatus 200 is an apparatus incorporated in an online banking Web server operated by a bank.

  When using the online banking, the user first activates the online banking main program of the smartphone 110. The main program for online banking may be prepared as a single application program, but may be prepared as an agent program that operates in cooperation with a Web browser program, for example. In any case, when the main program for online banking is activated, the online banking Web server (the server in which the receiving device 200 is incorporated) is accessed, and HTML-format Web page data is acquired.

  FIG. 3A is a diagram illustrating an example of a web page displayed on the display screen of the smartphone 110. This Web page is a page for logging in to online banking, and requests the user to input an account number and a password. In the case of the illustrated example, a state is shown in which the number “12345678” is input as the account number and the characters “PATENT” are input as the password. The input process is executed by the delivery target information input unit 111. Therefore, in this example, the delivery target information input unit 111 is configured by a character input interface using the touch panel of the smartphone 110.

  As shown in FIG. 3A, when the user completes the account number and password input operation, the user may tap the “Next” button. In the case of the embodiment shown here, the input account number and password (that is, delivery target information P) are transmitted to the receiving device 200 side by the first inter-device communication unit 112 by tapping the “Next” button. The On the other hand, the display screen of the smartphone 110 changes to a screen as shown in FIG. This screen is a screen for prompting the user to perform “inter-unit communication”, and “authentication tablet” indicates the tablet electronic terminal 120 lent by the bank.

  When the user brings the smartphone 110 and the tablet electronic terminal 120 close together with the tablet electronic terminal 120 started up (the online banking subprogram is activated), the near field wireless communication function is used. "Inter-unit communication" is performed. That is, the delivery target information P is transmitted from the first inter-unit communication unit 113 to the second inter-unit communication unit 121. At this time, the smart phone 110 presents a signal indicating a successful transmission (for example, an electronic sound “pick!”).

  The tablet electronic terminal 120 transmits the delivery target information P received by the second inter-unit communication unit 121 to the receiving device 200 via the second inter-device communication unit 122. The online banking subprogram incorporated in the tablet electronic terminal 120 may be prepared as a single application program, but may be prepared as an agent program that operates in cooperation with a Web browser program or the like. This online banking subprogram fulfills the function of transmitting the delivery target information P to the server in which the receiving device 200 is incorporated. In the case of this embodiment, as soon as the second inter-unit communication unit 121 receives the delivery target information P, processing for transmitting it to the receiving device 200 is performed.

  In addition, since it is not necessary for the tablet-type electronic terminal 120 to manually input the delivery target information P, it is not necessary to display a user operation screen on the display screen. Practically, it is preferable to perform some kind of screen display (for example, a display such as “Please make a smartphone approach for authentication”).

  Thus, the delivery target information P is transmitted from the first inter-device communication unit 112 to the first information receiving unit 210, and the second inter-device communication unit 122 is transmitted to the second information receiving unit 220. The delivery target information P is also transmitted. On the receiving device 200 side, the reception information collation unit 230 performs a collation process for determining whether or not the information transmitted from these two paths match, and the determination result is output as a collation result. As already mentioned.

  In the case of the example shown here, the delivery target information P is an account number and password for logging in to the online banking system, so when the result of successful collation is output from the received information collation unit 230, the online banking system The delivery target information P received by the first information receiving unit 210 or the second information receiving unit 220 is treated as a regular account number and password transmitted from the user, and the login process is continued. As a result, new web page data is transmitted to the smartphone 110 and presented to the user.

  On the other hand, when the result of collation failure is output from the reception information collation unit 230, the online banking system assumes that the information received by the first information reception unit 210 or the second information reception unit 220 is incorrect information. Judgment is made and error processing is performed. Also in this case, web page data for notifying an error is transmitted to the smartphone 110 and presented to the user.

  Thus, the processing after the delivery processing of the delivery target information P is executed from the transmission device 100 to the reception device 200 and the collation result is output from the reception information collation unit 230 is performed by the information delivery system according to the present invention. Since this is a process specific to the online banking system used, detailed explanation is omitted here.

  In the case of the example shown in FIG. 3A, the user performs an operation of inputting an account number and a password (delivery target information P) on the Web page. In order to obtain the delivery target information P, for example, a key logger can be used. That is, if the key logger function is provided in the main program for online banking incorporated in the smartphone 110, the character information can be acquired every time the user performs a character input operation on the Web page.

  Recently, in order to prevent fraud using a keylogger, character input using a software keyboard is often used. In such a case, since the delivery target information P cannot be obtained using a key logger, a method of incorporating a tool for capturing TCP packets into the online banking main program may be used instead. The delivery target information P input by the user on the Web page is transmitted to the receiving device 200 side as a TCP packet by the first inter-device communication unit 112. However, a tool for capturing the TCP packet can be incorporated. For example, the first inter-unit communication unit 113 can acquire the delivery target information P by the capture process using the tool.

  According to the procedure of the above-described embodiment, after the transmission processing of the delivery target information P by the first inter-device communication unit 112, the transmission processing of the delivery target information P by the second inter-device communication unit 122 is performed. However, the order of these “system communication” between the two systems may be the same or may be reversed (however, the delivery target information P is acquired using the above-described tool for capturing TCP packets). In this case, it is necessary to first perform the transmission process of the delivery target information P by the first inter-device communication unit 112).

  In the above-described embodiment, “inter-device communication” between the first inter-device communication unit 112 and the first information receiving unit 210 and the second inter-device communication unit 122 and the second information receiving unit 220. The example of performing data transmission to the Web server using the HTTP format protocol as the “inter-device communication” protocol has been described. However, as the “inter-device communication” protocol, any protocol such as FTP or telnet can be used. A communication protocol may be used.

  Eventually, in the information delivery system according to the present invention, information is transmitted using two communication paths using the two transmission units 110 and 120. Therefore, two-factor authentication and two-path authentication are performed. A synergistic effect as if they were fused is obtained. Moreover, according to the present invention, even when the transmission side device is infected with malware, it is possible to prevent the occurrence of damage due to fraud and to safely pass information.

  This is because when the cracker performs some kind of fraud on the information delivery system according to the present invention, the same kind of fraud processing is performed on both the first transmission unit 110 and the second transmission unit 120. This is because it is necessary to infect malware.

  For example, by infecting the first transmission unit 110 with malware, the route from the first inter-device communication unit 112 to the first information receiving unit 210 is detoured, and then delivered at the terminal device on the detour Assume that the target information P has been tampered with and an unauthorized process has been performed so that the first information receiving unit 210 receives the tampered information P ′. In this case, since the information received by the first information receiving unit 210 is the falsified information P ′, the information received by the second information receiving unit 220 is the regular delivery target information P. The collation unit 230 outputs a collation result indicating collation failure. Accordingly, unauthorized electronic commerce based on the altered information is prevented in advance.

  Of course, the second transmission unit 120 is also infected with the same type of malware, and the same falsification is performed on the delivery target information P by bypassing the path from the second inter-device communication unit 122 to the second information receiving unit 220. And the second information receiving unit 220 performs a fraud process such that the falsified information P ′ arrives, the received information collating unit 230 outputs a collation result indicating that the collation is successful, and the falsified information P ′ An illegal electronic commerce based on the above will be executed. However, in practice, it is very difficult to infect both the first transmission unit 110 and the second transmission unit 120 with malware that executes the same type of unauthorized processing. For this reason, according to the present invention, it is possible to provide an information delivery system capable of preventing damage caused by fraudulent acts and performing safe delivery of information even when infected with malware.

  In view of the above-described principle, practically, the first transmission unit 110 is configured by a first information processing apparatus incorporating an application program that operates under the management of the first OS, and the second transmission unit 110 When the unit 120 is configured by a second information processing apparatus that incorporates an application program that operates under the management of a second OS different from the first OS, the operational effects of the present invention can be further enhanced. That is, since general malware operates depending on the OS, in order to infect both the first transmission unit 110 and the second transmission unit 120 with malware that executes the same type of unauthorized processing, The malware for the first OS adopted by the first transmission unit 110 and the malware for the second OS adopted by the second transmission unit 120 need to be created separately and independently. For this reason, if the two OSs are different from each other, the labor of the cracker necessary for performing the illegal operation on the information delivery system according to the present invention will further increase, and the occurrence of damage due to the illegal operation will not occur. The effect of preventing this will be further enhanced.

<<< §2. Modified example using derived information >>>
Subsequently, a modification of the basic embodiment described in §1 will be described. First, a modified example using derivative information based on delivery target information will be described here. In the case of the basic system 10 shown in FIG. 1, the same delivery target information P is transmitted from both the first transmission unit 110 and the second transmission unit 120 to the reception device 200, and this 2 is received on the reception device 200 side. It is verified whether or not the delivery target information P received from one transmission path matches. However, when carrying out the present invention, it is not always necessary to transmit the same delivery target information P for two transmission paths, but the delivery target information P is transmitted through one transmission path, and this delivery is transmitted through the other communication path. It is also possible to adopt a method in which derived information Q derived from the target information P is transmitted. Rather, since the possibility of information leakage increases when the delivery target information P is transmitted from two transmission paths, it is preferable to transmit the derived information Q for one transmission path.

<2-1. Generation of derived information>
First, in order to explain the substance of “derivative information Q” used in the modification of §2, some examples will be given. FIG. 4 is a diagram showing a process for generating derivative information used in a system according to a modification of the basic system 10 shown in FIG. As illustrated, the derivation information Q is information obtained by performing a predetermined derivation process using the delivery target information P as original information. Here, the derivation process is a process for performing some processing on the original information P, and any process can be used as long as the derivation information Q that is uniquely determined for the original information P can be derived. It may be processing.

  Here, the information defining the content of the derivation process is referred to as “derivation process information X”. In FIG. 4, as the derivation processing information X, an algorithm A, fixed data D, variation data R, processing date Rd, and encryption key K are illustrated. The algorithm A is information indicating the content of processing performed on the original information P, and the fixed data D, fluctuation data R, processing date Rd, and encryption key K are information indicating data used for processing by the algorithm A. is there. When an algorithm that does not require any other data when generating derived information from the original information as algorithm A, fixed data D, variable data R, processing date Rd, encryption key K, etc. are not required. is there.

  For example, if an algorithm A “acting a specific function f” is defined, the derived information Q is expressed by an expression Q = f (P). Example 1 in FIG. 5 is an example in which the derivative information Q is defined using such a function f. As long as the function f is a monovalent function (that is, if the variable P is determined, the function value f (P) is uniquely determined), any function may be used.

  Examples 2 to 12 shown in FIG. 5 are examples in which the derived information Q is defined by an expression Q = f (P) using a predetermined function f in a broad sense. Here, the fixed data D , Several practical examples using the fluctuation data R, the processing date Rd, the encryption key K, etc. are listed.

  Example 2 is an example in which the derivation information Q is defined by the formula Q = P + D using predetermined fixed data D. In this example, the delivery target information P is a character string (including numbers and symbols: the same applies hereinafter), the fixed data D is also a character string, and the operator “+” is an operator that synthesizes the character string. Therefore, Example 2 is an example in which a processing method of “combining a character string (fixed data) D behind the delivery target information P” is adopted as the algorithm A. For example, when the delivery target information P is a character string “PATENT” and a character string “XYZ” is prepared as the fixed data D, the derived information Q is a composite character string “PATENTYXYZ”. Of course, if a synthesis rule such as “alternately synthesized one character at a time” is defined as algorithm A, the derived information Q becomes a synthesized character string “PXAYTZENT”.

  Example 3 is an example in which the variation data R is used in place of the fixed data D, and the derived information Q is defined by the equation Q = P + R. Specifically, for example, a processing method of “combining a character string (variable data) R after the delivery target information P” as an algorithm A is defined, and the variation data R is defined as A → B → C →. If one letter that circulates the alphabet, such as → Z → A → B, is adopted, “PATENTA” is generated as derived information Q when “PATENT” is first given as the delivery target information P Then, when “JAPAN” is given as the delivery target information P, “JAPANB” is generated as the derived information Q, and so on, different fluctuation data R is synthesized at the end as follows. Become.

  Example 4 is an example in which the processing date Rd is used as the variation data R in Example 3. For example, if a character string indicating the date of execution of the derivation process is adopted as the process date Rd, the character string “PATENT” is derived as the delivery target information P on December 28, 2014. When the process is executed, a character string “PATENT201412228” is generated as the derived information Q.

  Example 5 is an example in which the fixed data D and the variation data (processing date) Rd are combined, and the derived information Q is defined by the formula Q = P + D + Rd. Also here, when the processing method of “combining fixed data D and fluctuation data Rd behind delivery target information P” is adopted as algorithm A, the character string “PATENT” is set as delivery target information P, and fixed data D is “XYZ” When the derivation process is executed on December 28, 2014 using the character string “”, the character string “PATENTXYZ201412228” is generated as the derivation information Q.

  Example 6 is a logical expression showing an algorithm for generating the derived information Q by performing an exclusive OR operation on the premise that the delivery target information P and the fixed data D are binary data. That is, the derivative information Q is defined by an expression Q = P XOR D.

  On the other hand, Example 7 is an expression showing an algorithm for generating the derived information Q by applying a hash function to the delivery target information P. In this case, the derivative information Q is defined by an expression Q = Hash (P). Example 8 and Example 9 show examples in which Example 2, Example 4 and Example 7 are combined. Derivation information Q is obtained by applying a hash function after performing character string composition processing. Become.

  Example 10 is an example in which the digital signature (signature using the encryption key K) obtained for the delivery target information P is derived information Q. The derived information Q is an expression Q = Sig (P, K). Defined by Example 11 shows an example in which Example 10 and Example 2 are combined, and a digital signature is obtained after synthesizing a character string. Example 12 is an example in which the secret key K1 based on the public key cryptosystem is used as the encryption key K in Example 10. In this case, as will be described later, the verification process on the receiving device 200 side is performed using the public key K2 corresponding to the secret key K1.

  As described above, some examples of the derivation process are shown in Example 1 to Example 12 in FIG. 5. Of course, various other derivation processes can be used. For example, in the above example, the operator “+” is defined as an operator for synthesizing a character string, taking the case where the delivery target information P, the fixed data D, and the fluctuation data R are character strings as an example. When numerical data is used as P, fixed data D, and fluctuation data R, the operator “+” can be handled as an arithmetic operator indicating normal addition. For example, when the delivery target information P is numerical data “12345678” and a numerical value “321” is prepared as the fixed data D, the derived information Q is a number “12345999”.

  In short, the derivation process used in the present invention is a process in which some processing is performed on the original information P, and the derivation information Q that is uniquely determined based on the original information P is derived. Any processing is acceptable. The derivation process may be a reversible conversion process that can restore the original information P from the obtained derivation information Q, or may be an irreversible conversion process that cannot restore the original information P. Good.

  For example, in the derivation process defined by the expression Q = f (P) in Example 1, if the function f is a reversible function that can define the inverse function f ′, it is derived by the expression P = f ′ (Q). The original information P can be restored from the information Q. Also, when the derivation process as shown in Examples 2 to 6 is performed, the original information P can be restored from the derivation information Q if the fixed data D, the fluctuation data R, and the processing date Rd are known. . On the other hand, since the derivation process as shown in Examples 7 to 12 is a conversion process using an irreversible function, the original information P cannot be restored from the derivation information Q.

  In this way, whether the reversible conversion process or the irreversible conversion process is used as the derivation process, if the content of the conversion process is known, the matching process can be performed on the receiving device 200 side. Is possible. Therefore, the derivation process in the present invention may be any conversion process.

<2-2. Variations of Modifications Using Derived Information>
FIG. 6 is a block diagram showing a variation of the collation method using the derived information. The column “basic collation” in the upper left of FIG. 6 shows a collation method in the basic embodiment described in §1. In this “basic collation”, collation is performed on the receiving device 200 side to determine whether or not the delivery target information P received from the two transmission paths match. Therefore, the first transmission unit 110 transmits the input delivery target information P to the reception device 200 and also transmits it to the second transmission unit 120. The second transmission unit 120 transmits the received delivery target information P to the reception device 200 as it is. Then, the receiving apparatus 200 performs a verification process as to whether or not the delivery target information P transmitted from the first transmission unit 110 matches the delivery target information P transmitted from the second transmission unit 120. It will be.

  On the other hand, the column “Derived information collation A” in the upper right of FIG. 6 shows a first method for performing collation using the above-described derived information. In this “derivation information collation A”, the first transmission unit 110A transmits the input delivery target information P to the reception device 200A and also transmits it to the second transmission unit 120A. On the other hand, the second transmission unit 120A performs the derivation process as exemplified in §2-1 based on the received delivery target information P, generates the derivation information Q, and transmits the derivation information Q to the reception device 200A. To do. Therefore, the receiving apparatus 200A performs a collation process to determine whether or not the delivery target information P transmitted from the first transmission unit 110A and the derived information Q transmitted from the second transmission unit 120A have consistency. Will do.

  The column “Verification B of Derived Information” in the lower left of FIG. 6 shows a second method for performing verification using the above-described derived information. In this “derivative information collation B”, the first transmission unit 110B transmits the input delivery target information P to the receiving device 200B, and as exemplified in §2-1 based on the delivery target information P. Derivation processing is performed to generate derivation information Q, and the derivation information Q is transmitted to the second transmission unit 120B. The second transmission unit 120B transmits the received derivative information Q as it is to the reception device 200B. The receiving device 200B performs a collation process to check whether or not the delivery target information P transmitted from the first transmission unit 110B and the derived information Q transmitted from the second transmission unit 120B have consistency. become.

  The column of “Derived information collation C” in the lower right of FIG. 6 shows a third method for performing collation using the above-described derived information. In this “derivation information collation C”, derivation processing in two stages is executed. First, the first transmission unit 110C transmits the input delivery target information P to the receiving device 200C, and based on the delivery target information P, the derivation process (first derivation process) exemplified in §2-1. The first derivative information Q1 is generated, and the first derivative information Q1 is transmitted to the second transmission unit 120C. On the other hand, the second transmission unit 120C performs the derivation process (second derivation process) exemplified in §2-1 based on the received first derivation information Q1, and generates the second derivation information Q2. Then, the second derivative information Q2 is transmitted to the receiving device 200C. Therefore, the receiving apparatus 200C determines whether or not the delivery target information P transmitted from the first transmission unit 110C and the second derivative information Q2 transmitted from the second transmission unit 120C have consistency. A verification process is performed.

  In any case, communication between the first transmission units 110 to 110C and the second transmission units 120 to 120C is performed by near-field wireless communication as described above. In FIG. 6, the near-field wireless communication path is indicated by a thick arrow. In FIG. 6, in any case, the delivery target information P is transmitted from the first transmission units 110 to 110 </ b> C to the reception devices 200 to 200 </ b> C. In FIG. 6, in order to clarify the main delivery route of the delivery target information P, the start and end characters P of the route are indicated by circles.

  By the way, in the case of “basic verification” in the upper left of FIG. 6, the verification processing performed on the receiving device 200 side is processing for determining whether or not two sets of delivery target information P match. In the case of “matching A to C”, this means processing for confirming the consistency between the delivery target information P and the derived information Q or Q2. Such consistency confirmation processing is possible if the content of the derivation processing performed on the transmission device side is grasped. That is, if the transmission device side performs processing for converting the delivery target information P into the derivative information Q using the derivation processing information X as shown in FIG. 4, the same derivation processing is performed on the reception device side. If the usage information X is prepared, the consistency between the received delivery target information P and the derived information Q can be confirmed.

  Specifically, also on the receiving device side, a derivation process using the same derivation process information X is performed on the received delivery target information P, and the obtained derivation information Q and the received derivation information Q are obtained. What is necessary is just to confirm whether it corresponds. Alternatively, when the derivation process performed on the transmission apparatus side is a reversible conversion process, the reception apparatus side is opposite to the derivation process performed on the transmission apparatus side for the received derivation information Q. It is also possible to restore the original delivery target information P by performing a conversion process and to check whether the restored delivery target information P and the received delivery target information P match.

  In the case of “derivation information collation C” in the lower right of FIG. 6, the matching of Q2 obtained by performing the conversion of P → Q1 → Q2 may be performed, or the derivation process is a reversible conversion process. In such a case, it is possible to confirm the coincidence of P obtained by performing the inverse transformation of Q2 → Q1 → P.

<2-3. Specific Configuration of Modified Example Using Derived Information>
Next, a specific configuration of a modified example for performing “derivative information collation A to C” illustrated in FIG. 6 will be described with reference to FIGS. 7 to 9.

<System 10A>
FIG. 7 is a block diagram showing a configuration of a system 10A according to a modified example for performing “derivation information collation A” shown in the upper right of FIG. This system 10A includes a transmission device 100A and a reception device 200A, and is an information delivery system that delivers delivery target information P from the transmission device 100A to the reception device 200A. The basic system 10 shown in FIG. There is no change, and the transmission apparatus 100A has the first transmission unit 110A and the second transmission unit 120A configured as separate units.

  Here, the first transmission unit 110A is a delivery target information input unit 111A for inputting delivery target information P, and a first device for transmitting the delivery target information P input by the delivery target information input unit 111A to the reception device 200A. The inter-communication unit 112A and the first inter-unit communication unit 113A that transmits the delivery target information P input by the delivery target information input unit 111A to the second transmission unit 120A. The configuration of the first transmission unit 110A is exactly the same as the configuration of the first transmission unit 110 shown in FIG.

  On the other hand, the second transmission unit 120A is received by the second inter-unit communication unit 121A that receives the delivery target information P transmitted from the first transmission unit 110A, and the second inter-unit communication unit 121A. A derivation information generation unit 123A that generates derivation information Q by executing a predetermined derivation process based on the delivery target information P, and a derivation information Q generated by the derivation information generation unit 123A is transmitted to the receiving device 200A. The inter-device communication unit 122A. Note that the communication between the first inter-unit communication unit 113A and the second inter-unit communication unit 121A is performed by near-field wireless communication as in the case of the basic system 10 shown in FIG.

  After all, it can be said that the second transmission unit 120A shown in FIG. 7 is obtained by further adding the derivative information generation unit 123A to the second transmission unit 120 shown in FIG. Here, the derivation process executed by the derivation information generation unit 123A is a process of deriving the derivation information Q that is uniquely determined for the original information P using the delivery target information P as the original information. Is as already exemplified in §2-1.

  On the other hand, the receiving device 200A includes a first information receiving unit 210A that receives information estimated from the delivery target information P transmitted from the first inter-device communication unit 112A, and a second inter-device communication unit 122A. The second information receiving unit 220A that receives the estimated information derived from the derived information Q, the information received by the first information receiving unit 210A, and the information received by the second information receiving unit 220A. A reception information collating unit 230A that executes a collation process for confirming consistency according to the derivation process performed by the derivation information generation unit 123A.

  Here, the reception information collation unit 230 shown in FIG. 1 performs collation by confirming the match of the pair of information estimated with the delivery target information P, whereas the reception information collation unit 230A shown in FIG. The collation is performed by confirming whether or not the information estimated as the information P and the information derived from the derived information Q are consistent. If it is confirmed that there is consistency, a collation result indicating collation success is output, and if not, a collation result indicating collation failure is output.

  Specifically, as described above, the same derivation process as the derivation process executed by the derivation information generation unit 123A is performed on the information estimated to be the delivery target information P, and “obtained by the derivation process” is obtained. What is necessary is just to confirm whether "derivation information" and "information estimated with the received derivative information Q" correspond. Alternatively, when the derivation process executed by the derivation information generation unit 123A is a reversible conversion process, the conversion process opposite to the derivation process is performed on “information estimated as received derivation information Q”. It is possible to restore the original information by applying the method and confirm whether or not the restored information matches the received delivery target information P.

<System 10B>
FIG. 8 is a block diagram illustrating a configuration of a system 10B according to a modified example that performs “derivative information collation B” illustrated in the lower left of FIG. This system 10B is an information delivery system that includes a transmission device 100B and a reception device 200B, and delivers delivery target information P from the transmission device 100B to the reception device 200B. There is no change, and the transmission device 100B is also the same in that it has a first transmission unit 110B and a second transmission unit 120B configured as separate units.

  Here, the first transmission unit 110B receives the delivery target information input unit 111B that inputs the delivery target information P, and the first device that transmits the delivery target information P input by the delivery target information input unit 111B to the reception device 200B. An inter-communication unit 112B, a derivation information generation unit 114B that generates derivation information Q by executing a predetermined derivation process based on the delivery target information P input by the delivery target information input unit 111B, and a derivation information generation unit 114B A first inter-unit communication unit 113B that transmits the generated derivative information Q to the second transmission unit 120B.

  After all, it can be said that the first transmission unit 110B shown in FIG. 8 is obtained by further adding the derivative information generation unit 114B to the first transmission unit 110 shown in FIG. Here, the derivation process executed by the derivation information generation unit 114B is a process of deriving the derivation information Q that is uniquely determined for the original information P using the delivery target information P as the original information. Is as already exemplified in §2-1.

  On the other hand, the second transmission unit 120B includes a second inter-unit communication unit 121B that receives the derivation information Q transmitted from the first transmission unit 110B, and a derivation information that is received by the second inter-unit communication unit 121B. And a second inter-device communication unit 122B that transmits Q to the receiving device 200B. The configuration of such second transmission unit 120B is substantially the same as the configuration of second transmission unit 120 shown in FIG. The communication between the first inter-unit communication unit 113B and the second inter-unit communication unit 121B is performed by near-field wireless communication as in the case of the basic system 10 illustrated in FIG.

  On the other hand, the receiving device 200B includes a first information receiving unit 210B that receives information estimated as the delivery target information P transmitted from the first inter-device communication unit 112B, and a second inter-device communication unit 122B. The second information receiving unit 220B that receives the information that is estimated to be derived information Q that has been transmitted, the information received by the first information receiving unit 210B, and the information received by the second information receiving unit 220B, A reception information matching unit 230B that executes a matching process for confirming consistency according to the derivation process executed by the derivation information generation unit 114B.

  Here, the reception information collation unit 230 shown in FIG. 1 performs collation by confirming a match between the pair of information estimated as the delivery target information P, whereas the reception information collation unit 230B shown in FIG. The collation is performed by confirming whether or not the information estimated as the information P and the information derived from the derived information Q are consistent. If it is confirmed that there is consistency, a collation result indicating collation success is output, and if not, a collation result indicating collation failure is output. The function of this reception information collation unit 230B is exactly the same as the function of reception information collation unit 230A shown in FIG.

<System 10C>
FIG. 9 is a block diagram showing a configuration of a system 10C according to a modified example that implements “derivation information collation C” shown in the lower right of FIG. The system 10C includes a transmission device 100C and a reception device 200C, and is an information delivery system that delivers delivery target information P from the transmission device 100C to the reception device 200C. There is no change, and the same is true in that the transmission device 100C includes a first transmission unit 110C and a second transmission unit 120C configured as separate units.

  Here, the first transmission unit 110C is a delivery target information input unit 111C that inputs the delivery target information P, and a first device that transmits the delivery target information P input by the delivery target information input unit 111C to the reception device 200C. The first derivation information generating unit 114C that generates the first derivation information Q1 by executing the first derivation process based on the delivery target information P input by the intercom communication unit 112C and the delivery target information input unit 111C; A first inter-unit communication unit 113C that transmits the first derivation information Q1 generated by the first derivation information generation unit 114C to the second transmission unit 120C. Here, the first derivation process is a process of deriving the first derivation information Q1 that is uniquely determined with respect to the original information by using the delivery target information P as the original information. It is as illustrated in §2-1. Such a configuration of the first transmission unit 110C is substantially the same as the configuration of the first transmission unit 110B shown in FIG.

  On the other hand, the second transmission unit 120C includes a second inter-unit communication unit 121C that receives the first derivative information Q1 transmitted from the first transmission unit 110C, and the second inter-unit communication unit 121C. The second derivation information generation unit 123C that generates the second derivation information Q2 by executing the second derivation process based on the received first derivation information Q1, and the second derivation information generation unit 123C A second inter-device communication unit 122C that transmits the generated second derivative information Q2 to the receiving device 200C. Here, the second derivation process is a process of deriving second derivation information Q2 that is uniquely determined with respect to the original information Q1 using the first derivation information Q1 as the original information. The configuration of the second transmission unit 120C is substantially the same as the configuration of the second transmission unit 120A shown in FIG. In this case as well, communication between the first inter-unit communication unit 113C and the second inter-unit communication unit 121C is performed by near-field wireless communication as in the case of the basic system 10 illustrated in FIG. .

  On the other hand, the receiving device 200C receives from the first information receiving unit 210C that receives information estimated from the delivery target information P transmitted from the first inter-device communication unit 112C, and from the second inter-device communication unit 122C. The second information receiving unit 220C that receives the transmitted information that is estimated as the second derivative information Q2, the information received by the first information receiving unit 210C, and the information received by the second information receiving unit 220C And a matching process for confirming consistency according to the first derivation process executed by the first derivation information generation unit 114C and the second derivation process executed by the second derivation information generation unit 123C. Receiving information collating unit 230C.

  Here, the reception information collation unit 230 shown in FIG. 1 performs collation by confirming a match between the pair of information estimated as the delivery target information P, whereas the reception information collation unit 230C shown in FIG. The verification is performed by checking whether or not the information estimated as the information P and the information estimated as the second derived information Q2 have consistency. If it is confirmed that there is consistency, a collation result indicating collation success is output, and if not, a collation result indicating collation failure is output. The function of the reception information collation unit 230C is as described in §2-2.

<2-4. Specific verification method of derived information>
Here, the collation method executed in the reception information collation units 230A to 230C of the modified examples shown in FIGS. 7 to 9 will be described based on a more specific example. FIG. 5 shows specific examples of derivation processing as Examples 1 to 12.

  The derivation process executed in the present invention is not necessarily a function expressed by any mathematical expression as long as the function f (P) is defined, and some information f (P) based on the given original information P ), The obtained information f (P) is the derived information Q as shown in Example 1 of FIG.

  As described above, the derivation process executed by the derivation information generation units 123A and 114B, the first derivation process executed by the first derivation information generation unit 114C, or the second derivation information generation unit 123C. A second derivation process (hereinafter simply referred to as a derivation process on the transmission device side) performs a predetermined function f (P) or f (f) on the original information P or information P ′ derived from the original information P. When the process including P ′) is performed, the reception information collation units 230A to 230C can execute the collation process using the function or the inverse function of the function. Of course, the reception information collation units 230A to 230C need to recognize the function or the inverse function of the function (in short, the derivation processing information X is shared between the transmission device side and the reception device side). There is a need).

  That is, when performing the collation process using the function, the same process as the derivation process performed on the transmission device side is performed on the delivery target information P, thereby generating the derivation information Q or Q2. What is necessary is just to confirm whether it corresponds compared with the received information. On the other hand, when collation processing is performed using an inverse function, an inverse function is applied to the received information to generate information estimated as the original delivery target information P, and this is compared with the received information. Can be confirmed.

  Since the example 2 and subsequent examples in FIG. 5 show examples using more specific functions as the function f (P), a specific collation process for each example will be briefly described below. deep.

  First, as in Example 2, when the derivation process on the transmission device side includes the process of synthesizing predetermined fixed data D with the original information or the information derived from the original information, the received information matching unit 230A to 230C can execute the matching process using the fixed data D. For example, when adopting the rule (algorithm A) that uses the character string “XYZ” as the fixed data D and adds the character string to the end of the original information, the received information matching unit If the algorithm A and the fixed data D are also prepared in 230A to 230C, the collating process can be performed using them.

  Specifically, for example, when the delivery target information P is a character string “PATENT” and a character string “XYZ” is used as the fixed data D, the derived information Q is a composite character string “PATENTYXYZ”. In the reception information collation units 230A to 230C, the character string “PATENTYZ” is generated by adding “XYZ” (fixed data D) to the received character string “PATENT” (delivery target information P). It may be confirmed whether or not it matches the received derivative information Q. Alternatively, whether or not the character string “XYZ” (fixed data D) can be removed from the end of the received character string “PATENTYZ”, and the delivery target information P received by the character string “PATENT” after the removal. You may confirm whether it corresponds.

  As the fixed data D, any data may be used as long as the same data can be prepared on the transmission device side and the reception device side. In the case of the above example, the same character string “XYZ” may be stored as fixed data D in both. Specifically, for example, a serial number (terminal identifier: UDID, IMSI, IMEI, MEID, etc.) unique to the first transmission unit or the second transmission unit can be used as the fixed data D. If these serial numbers are stored in advance on the receiving device side, the same fixed data D can be shared between the transmitting device side and the receiving device side. Note that the fixed data D is not necessarily prepared in the transmitting device or the receiving device, but may be prepared in an external storage location. In this case, the transmitting device and the receiving device obtain the fixed data D from the external storage location.

  Example 3 in FIG. 5 shows an example in which the fluctuation data R is used instead of the fixed data D. If the variation data R is used in this way, the method of generating the derived information Q changes every time, so that an effect of further reducing fraud by the cracker can be obtained. That is, in the case of Example 3, the derivation process on the transmission device side is performed for the fluctuation data generation process for generating different fluctuation data R each time based on a predetermined algorithm and the original information or information derived from the original information. And fluctuation data synthesis processing for synthesizing the generated fluctuation data R.

  Even when the variation data R is used in this way, if the generation algorithm of the variation data R is shared between the transmission device side and the reception device side, the reception information collation units 230A to 230C use the same generation algorithm as the generation algorithm. Based on this, correct fluctuation data R can be generated every time, and the matching process can be executed using the correct fluctuation data R.

  For example, Example 4 shows an example in which the processing date Rd is used as the variation data R in Example 3. If a character string indicating the date of execution of the derivation process is adopted as the processing date Rd, the derivation process is executed on December 28, 2014 with the character string “PATENT” as the delivery target information P. When executed, a character string “PATENT201412228” is generated as the derived information Q. In this case, as long as the fluctuation data generation process on the receiving device side is performed on the same day (that is, as long as the processing date Rd on the transmitting device side and the processing date Rd on the receiving device side are the same), the data is generated. Since the derived information Q is also the same, correct verification is performed.

  In general, since information communication via the Internet is completed within a few minutes at the latest, the data on the year, month, day, day of the week, or time at the time of processing execution is used as variable data generation processing on the transmission device side. An algorithm generated as variable data may be adopted. Of course, if even the information indicating the second is entered as “data related to the time”, there is a possibility that it will not match with the processing execution time on the receiving device side. There will be no hindrance.

  Examples 7 to 9 in FIG. 5 show examples in which the derivative information Q is generated by applying a hash function to the delivery target information P. In this case, the derived information Q is defined by an expression such as Q = Hash (P), Q = Hash (P + D), Q = Hash (P + Rd). As described above, when a hash function or other one-way function is used as the function to be operated, the conversion from the delivery target information P to the derived information Q becomes irreversible. Although it cannot be restored, the reception information collating units 230A to 230C can perform collation by generating derived information using the same one-way function as the one-way function used on the transmission device side.

  Further, examples 10 to 12 in FIG. 5 show examples in which the derived information Q is a digital signature (signature using the encryption key K) obtained for the delivery target information P or the like. Derived information Q in the case of Example 10 is defined by an expression Q = Sig (P, K), and a digital signature using the encryption key K for the delivery target information P itself is derived information Q. On the other hand, the derived information Q in the case of Example 11 is defined by the equation Q = Sig (P + D, K), and the fixed data D is added to the delivery target information P, and the encryption key K for the whole is used. The received digital signature becomes the derived information Q.

  As described above, the derivation process on the transmission device side includes a process of creating an electronic signature using a predetermined encryption key for the original information or information derived from the original information, and the electronic signature is included. When the derivative information is generated, the received information matching units 230A to 230C may perform a matching process including a process for confirming the validity of the electronic signature. When the derivation information Q is an electronic signature, conversion from the delivery target information P or the like to the derivation information Q is irreversible. Therefore, the delivery target information P cannot be restored from the derivation information Q, but the received information matching unit 230A ˜C may output a collation result indicating that the collation is successful if the validity of the electronic signature can be confirmed, and that the collation fails if the electronic signature is not confirmed.

  In the case of Example 10 and Example 11, the received information collating units 230A to 230C are provided with a function that stores the encryption key K used at the time of electronic signature on the transmission device side or can be obtained by some method. It is necessary to keep. On the other hand, Example 12 is an example in which the secret key K1 based on the public key cryptosystem is used as the encryption key K in Example 10. In this case, the secret key K1 may be stored on the transmitting device side, and the public key K2 corresponding to the secret key K1 may be stored on the receiving device side. Then, the verification process executed in the reception information verification units 230A to 230C is executed as a process for confirming the validity of the electronic signature created using the secret key K1 on the transmission device side using the public key K2. can do.

<<< §3. Modified example in which the role of the transmission unit is reversed >>
In §2-2, three variations of “derivation information collation A to C” shown in FIG. 6 are shown as modified examples using the derived information. In §2-3, specific examples of these three variations are shown. The configuration has been described with reference to FIGS. In all of these three variations, the first transmission units 110A to 110C to which the delivery target information P is input serve to transmit the delivery target information P to the receiving devices 200A to 200C. The second transmission unit 120A to C play a role of transmitting the derivative information Q or Q2 to the receiving devices 200A to 200C. Here, a modified example in which the roles of the pair of transmission units are reversed will be described.

<3-1. Variations of Reverse Variation Using Derived Information>
FIG. 10 is a block diagram showing a variation of the collation method in a modified example in which the role of the transmission unit is reversed. The column of “Derived information collation D” on the left side of FIG. 10 shows a first method of performing collation using the reverse modification. In this “derivation information collation D”, the first transmission unit 110D performs the derivation process as exemplified in §2-1 based on the inputted delivery target information P to generate the derivation information Q. Information Q is transmitted to receiving apparatus 200D. Further, the input delivery target information P is transmitted as it is to the second transmission unit 120D.

  Here, as described above, the communication between the first transmission unit 110D and the second transmission unit 120D is performed by near-field wireless communication. Also in FIG. 10, this near-field wireless communication path is indicated by a thick arrow. The second transmission unit 120D transmits the received delivery target information P as it is to the reception device 200D. On the other hand, the receiving device 200D performs a collation process to check whether or not the derived information Q transmitted from the first transmission unit 110D and the delivery target information P transmitted from the second transmission unit 120D have consistency. Will do.

  On the other hand, the column “Verification E of Derived Information” on the right of FIG. 10 shows a second method of performing verification using the reverse modification. Also in this “derivation information collation E”, the first transmission unit 110E performs the derivation process as exemplified in §2-1 based on the inputted delivery target information P, and generates the derivation information Q. Derivation information Q is transmitted to receiving apparatus 200E. Further, the inputted delivery target information P is transmitted as it is to the second transmission unit 120E. The second transmission unit 120E transmits the received delivery target information P to the reception device 200E as it is. Then, the receiving apparatus 200E performs a collation process to determine whether or not the derived information Q transmitted from the first transmission unit 110E and the delivery target information P transmitted from the second transmission unit 120E have consistency. Will do.

  Accordingly, the collation method by “derivation information collation E” is basically the same as the collation method by “derivation information collation D”. However, in the case of “derivation information verification E”, the second transmission unit 120E transmits the derivation processing information X to the first transmission unit 110E, and the first transmission unit 110E A derivation process is executed based on the information X. Here, the derivation processing information X is information indicating an algorithm A, fixed data D, variation data R, processing date Rd, encryption key K, etc. used in the derivation processing, as illustrated in FIG.

  Eventually, when the collation method based on “derivation information collation E” is adopted, it is the first transmission unit 110E that executes the derivation process for converting the delivery target information P into the derivation information Q. The processing information X is held by the second transmission unit 120E. Moreover, as indicated by the bold arrows in the figure, the communication between the first transmission unit 110E and the second transmission unit 120E is performed by near-field wireless communication.

  Therefore, when the collation method based on this “derivative information collation E” is adopted, a pair of transmission units 110E and 120E are prepared on the transmission device side, and near-field wireless communication is performed between the two, thereby delivering information to be delivered. It is assumed that an operation of exchanging P and derivation processing information X is performed. This is more effective in preventing fraud by crackers.

  That is, in the collation method based on “derivative information collation D”, as shown in the left of FIG. 10, the second transmission unit 120D simply receives the delivery target information P delivered from the first transmission unit 110D as it is. However, in the collation method based on “derivation information collation E”, the second transmission unit 120E receives the delivery target delivered from the first transmission unit 110E as shown in the right of FIG. In addition to transferring the information P as it is to the receiving device 200E, it also serves to deliver the derivation processing information X to the first transmission unit 110E. For this reason, the effect which makes the attack with respect to the 2nd transmission unit 120E of a cracker more difficult is acquired.

  In each case shown in FIG. 6, the delivery target information P is transmitted from the first transmission units 110 to 110C to the receiving devices 200 to 200C. In each case shown in FIG. The data is transmitted from the first transmission unit 110D, E to the reception device 200D, E via the second transmission unit 120D, E. In FIG. 10, in order to clarify the main delivery route of the delivery target information P, each character P on the route is indicated by a circle.

  By the way, in FIG. 2, as the most practical configuration example of the information delivery system according to the present invention, the first transmission unit 110 is configured by a smartphone owned by the user himself, and the second transmission unit 120 is configured. An example is shown in which the bank is configured with a tablet electronic terminal lent to the user. Both can be realized by incorporating a dedicated application program (or agent program) into a general-purpose smartphone or tablet electronic terminal.

  The above practical configuration example is also suitable in the case where a collation method based on “derivative information collation E” shown on the right side of FIG. 10 is adopted. For example, when a device that incorporates Android (registered trademark) as an OS is used as a smartphone or tablet-type electronic terminal, an NFC standard near-field type equipped with an HCE (Host Card Emulation) function is used in Ver. 4.4 or later. Equipped with wireless communication. By using this HCE function, it is possible to operate each device by switching to either the card emulation mode or the R / W mode (reader / writer mode). Even devices that do not have the HCE function can be added to the card emulation mode by adding a chip called SE (Secure Element), so it is also possible to switch to either the card emulation mode or the R / W mode. Can be operated.

  When the collation method based on “derivation information collation E” shown on the right side of FIG. 10 is adopted, as shown by a thick arrow in the figure, the near-field wireless between the first transmission unit 110E and the second transmission unit 120E is used. Communication requires information exchange processing between the delivery target information P and the derivation processing information X. As the first transmission unit 110E and the second transmission unit 120E, the card emulation mode and the R / W mode described above are used. If an apparatus having both is used, the information exchange process can be easily performed. Recently, devices equipped with a mutual communication mode called P2P mode have become widespread, and if a device equipped with P2P mode is used as both transmission units, information exchange processing can be performed in that mode. It is.

  FIG. 11 is a diagram showing such an information exchange processing operation. Specifically, first, as shown in FIG. 11 (a), the first transmission unit (smart phone) 110E is operated in the card emulation mode, and the second transmission unit (tablet electronic terminal) 120E is set to R / W. Operate in the mode, and NFC standard near field wireless communication is performed between the two. In this work, the first transmission unit (smart phone) 110E behaves as an IC card recording the delivery target information P, and the second transmission unit (tablet electronic terminal) 120E receives the delivery target information P from the IC card. Behave as a reader / writer device for reading As a result, the delivery target information P recorded at a predetermined location in the memory of the first transmission unit (smart phone) 110E is read by the second transmission unit (tablet electronic terminal) 120E.

  Subsequently, as shown in FIG. 11 (b), the first transmission unit (smart phone) 110E is operated in the R / W mode, and the second transmission unit (tablet electronic terminal) 120E is operated in the card emulation mode. NFC standard near field wireless communication is implemented between the two. In this work, the second transmission unit (tablet type electronic terminal) 120E behaves as an IC card recording the derivation processing information X, and the first transmission unit (smart phone) 110E is used for derivation processing from the IC card. It behaves as a reader / writer device that reads information X. As a result, the derivation processing information X recorded at a predetermined location in the memory of the second transmission unit (tablet electronic terminal) 120E is read out by the first transmission unit (smartphone) 110E.

  Thus, as shown by the thick arrows on the right side of FIG. 10, the information exchange process between the delivery target information P and the derivation process information X is completed between the first transmission unit 110E and the second transmission unit 120E. Since the switching between the card emulation mode and the R / W mode is automatically performed by an application program (or agent program) incorporated in each apparatus, the work actually performed by the user is, for example, FIG. The smartphone 110E and the tablet electronic terminal 120E are brought close to each other on the basis of the screen illustrated in FIG. By this operation, both operations in FIGS. 11A and 11B are continuously executed, and the information exchange process between the delivery target information P and the derivation process information X is completed.

<3-2. Specific configuration of reverse modification using derived information>
Next, a specific configuration of a modified example for performing “derivative information collation D and E” illustrated in FIG. 10 will be described with reference to FIGS. 12 and 13.

<System 10D>
FIG. 12 is a block diagram showing a configuration of a system 10D according to a modified example for performing “derivative information collation D” shown on the left side of FIG. This system 10D includes a transmission device 100D and a reception device 200D, and is an information delivery system that delivers delivery target information P from the transmission device 100D to the reception device 200D. There is no change, and the transmission apparatus 100D has the same configuration in that it includes a first transmission unit 110D and a second transmission unit 120D configured as separate units.

  Here, the first transmission unit 110D executes a predetermined derivation process based on the delivery target information input unit 111D for inputting the delivery target information P and the delivery target information P input by the delivery target information input unit 111D. Derivation information generation unit 114D that generates derivation information Q, first inter-device communication unit 112D that transmits derivation information Q generated by derivation information generation unit 114D to receiving device 200D, and delivery target information input unit 111D And the first inter-unit communication unit 113D that transmits the delivery target information P to the second transmission unit 120D. Here, the derivation process executed by the derivation information generation unit 114D is a process of deriving the derivation information Q that is uniquely determined for the original information P using the delivery target information P as the original information. Is as already exemplified in §2-1.

  On the other hand, the second transmission unit 120D includes the second inter-unit communication unit 121D that receives the delivery target information P transmitted from the first transmission unit 110D, and the delivery received by the second inter-unit communication unit 121D. A second inter-device communication unit 122D that transmits the target information P to the receiving device 200D. The configuration of such second transmission unit 120D is substantially the same as the configuration of second transmission unit 120 shown in FIG. The communication between the first inter-unit communication unit 113D and the second inter-unit communication unit 121D is performed by near-field wireless communication as in the case of the basic system 10 illustrated in FIG.

  On the other hand, the receiving device 200D transmits from the first information receiving unit 210D that receives information estimated from the derived information Q transmitted from the first inter-device communication unit 112D, and from the second inter-device communication unit 122D. The second information receiving unit 220D that receives the estimated information to be delivered P, the information received by the first information receiving unit 210D, and the information received by the second information receiving unit 220D. A reception information matching unit 230D that executes a matching process for confirming consistency according to the derivation process executed by the derivation information generation unit 114D.

  Here, the reception information collation unit 230 shown in FIG. 1 performs collation by confirming a match between the pair of information estimated as the delivery target information P, whereas the reception information collation unit 230D shown in FIG. The collation is performed by confirming whether or not the information estimated as the information P and the information derived from the derived information Q are consistent. If it is confirmed that there is consistency, a collation result indicating collation success is output, and if not, a collation result indicating collation failure is output. The function of this reception information collation unit 230D is exactly the same as the function of reception information collation unit 230A shown in FIG.

<System 10E>
FIG. 13 is a block diagram showing a configuration of a system 10E according to a modified example for performing “derivation information collation E” shown on the right side of FIG. This system 10E includes a transmission device 100E and a reception device 200E, and is an information delivery system that delivers delivery target information P from the transmission device 100E to the reception device 200E, and is different from the system 10D shown in FIG. In addition, the transmission apparatus 100E includes the first transmission unit 110E and the second transmission unit 120E that are configured as separate units.

  In addition, the first transmission unit 110E executes a predetermined derivation process based on the delivery target information input unit 111E for inputting the delivery target information P and the delivery target information P input by the delivery target information input unit 111E. Derived information generation unit 114E that generates derivation information Q, first inter-device communication unit 112E that transmits derivation information Q generated by derivation information generation unit 114E to receiving device 200E, and delivery target information input unit 111E input The first unit communication unit 113E that transmits the delivery target information P to the second transmission unit 120E is the same as the system 10D illustrated in FIG.

  However, the first inter-unit communication unit 113E has a function of transmitting the delivery target information P to the second transmission unit 120E and a function of receiving the derivation processing information X transmitted from the second transmission unit 120E. Have. The derivation processing information X received by the first inter-unit communication unit 113E is transferred to the derivation information generation unit 114E, and the derivation information generation unit 114E executes the derivation processing using the derivation processing information X. become. The derivation process is a process of deriving derivation information Q that is uniquely determined using the derivation process information X with respect to the original information P using the delivery target information P as original information. As already described in §2-1. Therefore, the derived information Q delivered from the derived information generation unit 114E to the first inter-device communication unit 112E is information determined based on both the delivery target information P and the derivation processing information X.

  On the other hand, the second transmission unit 120E includes the second inter-unit communication unit 121E that receives the delivery target information P transmitted from the first transmission unit 110E, and the delivery received by the second inter-unit communication unit 121E. And a second inter-device communication unit 122E that transmits the target information P to the receiving device 200E. The configuration of the second transmission unit 120E is the same as that of the second transmission unit 120D illustrated in FIG. The configuration is substantially the same.

  However, the second transmission unit 120E further includes a derivation process information storage unit 124E that stores derivation process information X used for the derivation process, and the second inter-unit communication unit 121E performs the first transmission. In addition to the function of receiving the delivery target information P transmitted from the unit 110E, it also has the function of transmitting the derivation processing information X stored in the derivation processing information storage unit 124E to the first transmission unit 110E. doing. As described above, the derivation processing information X is used for derivation processing by the derivation information generation unit 114E.

  Here, the communication between the first inter-unit communication unit 113E and the second inter-unit communication unit 121E is performed by near-field wireless communication as in the case of the basic system 10 shown in FIG. Information exchange processing between the delivery target information P and the derivation processing information X is performed between the units. The information exchange processing is practically performed by sequentially switching between the card emulation mode and the R / W mode by NFC standard near-field wireless communication having an HCE function as exemplified in FIG. The points that can be performed are as described above.

  On the other hand, the configuration of receiving apparatus 200E is exactly the same as the configuration of receiving apparatus 200D shown in FIG. That is, the receiving device 200E transmits from the first information receiving unit 210E that receives information estimated from the derived information Q transmitted from the first inter-device communication unit 112E, and from the second inter-device communication unit 122E. The second information receiving unit 220E that receives the estimated information to be delivered P, the information received by the first information receiving unit 210E, and the information received by the second information receiving unit 220E. A reception information collating unit 230E that executes a collation process for confirming consistency according to the derivation process executed by the derivation information generation unit 114E.

<<< §4. Other variations >>
Here, some modified examples will be described.

<4-1. Modification using transaction number: System 10F>
The systems 10 to 10E described so far are systems based on the premise that information is exchanged in a one-to-one correspondence between the transmission apparatuses 100 to 100E and the reception apparatuses 200 to 200E. However, in practice, a case where one transmission device transmits information to a plurality of reception devices or a case where one reception device receives information from a plurality of transmission devices is more common. It is.

  For example, in the case where a bank uses the basic system 10 shown in FIG. 1 for an online banking system, the receiving device 200 is a device incorporated in an online banking Web server prepared on the bank side, and constitutes the transmitting device 100. The two transmission units 110 and 120 that perform the processing are two information processing devices prepared on the user side. In this case, since the user is an individual depositor, the reception device 200 transmits a plurality of transmissions. Information is received from the apparatus 100.

  In this case, the first information reception unit 210 receives the delivery target information P transmitted from a plurality of different transmission devices 100, and the second information reception unit 220 receives the plurality of different transmission devices 100. The transmitted delivery target information P is received. Therefore, when the received information matching unit 230 performs the matching process, the specific delivery target information P received by the first information receiving unit 210 and the specific delivery target information P received by the second information receiving unit 220 are used. It is necessary to perform a matching process on a pair of delivery target information P associated with each other (as a matter of course, a pair of information transmitted from the same transmission device 100 is associated).

  Therefore, in practice, when performing inter-device communication from the transmission device 100 to the reception device 200, it is preferable to link a predetermined transaction number for transmission. FIG. 14 is a block diagram of a system 10F configured by further introducing a transaction number into the basic system 10 shown in FIG. Here, the basic functions of the components of the system 10F are the same as the basic functions of the components of the basic system 10 shown in FIG. However, in the system 10F, since the transaction number T is handled, the letter “F” is added to the end of the code of each block shown in FIG. 14 to distinguish it from the code of each block shown in FIG. In other words, the handling function of the transaction number T is added to the component having the letter “F” added to the code.

  The feature of the system 10F is that when the first inter-device communication unit 112F transmits specific information to the receiving device 200F, the specific information is associated with a predetermined transaction number T and transmitted. When the second inter-device communication unit 122F transmits information corresponding to the specific information to the receiving device 200F, the same transaction number as the predetermined transaction number is associated with the corresponding information. This is the point to send.

  Specifically, in the case of the illustrated example, when the specific delivery target information P is transmitted from the first inter-device communication unit 112F to the receiving device 200F, a predetermined transaction number T is transmitted in association with it. ing. Similarly, specific delivery target information P from the second inter-device communication unit 122F to the receiving device 200F (corresponding to the specific delivery target information P transmitted from the first inter-device communication unit 112F to the receiving device 200F) Information), a predetermined transaction number T (the same as the transaction number T associated with the specific delivery target information P transmitted from the first inter-device communication unit 112F to the receiving device 200F) Transaction number T) is associated and transmitted.

  On the other hand, the first information receiving unit 210F and the second information receiving unit 220F on the receiving device 200F side receive each information in a state where the transaction number T is associated. The received information collating unit 230F has been transmitted from the information transmitted from the first inter-device communication unit 112F (information received by the first information receiving unit 210F) and from the second inter-device communication unit 122F. Of the information (information received by the second information receiving unit 220F), a pair of information associated with the same transaction number T is recognized as a collation target, and collation processing is executed.

  As described above, if the transaction number T is linked and transmitted, the same transaction number T is linked even when one receiving device 200F receives information transmission from a plurality of transmitting devices 100F. Since the matching process can be performed on the pair of received information, the correct operation is always possible. Of course, the transaction number T is assigned a unique number by each of the plurality of transmission apparatuses 100F. Further, since there is a case where one transmission device 100F transmits information to the reception device 200F multiple times, practically, for each individual transmission device 100F and for each individual session, respectively. It is preferable that a unique transaction number T is given.

  In the case of the system 10F shown in FIG. 14, a function for giving a transaction number T to the delivery target information input unit 111F is provided. That is, each time the delivery target information P is input, the delivery target information input unit 111F generates and links a unique transaction number T to the delivery target information P based on a predetermined generation rule. Thereafter, the delivery target information P is handled in such a way that the transaction number T assigned is always associated with it. Specifically, as described above, the first inter-device communication unit 112F performs transmission to the receiving device 200F with the transaction number T linked to the delivery target information P, and the first inter-unit communication unit 113F. Performs transmission to the second transmission unit 120F with the transaction number T associated with the delivery target information P, and the second transmission unit 120F performs the transmission with the transaction number T associated with the delivery target information P. Transmission to the receiving apparatus 200F may be performed.

  As described above, if information transmission is performed by assigning a unique transaction number T to each individual transmitting device 100F and each individual session, the receiving device 200F side sets this transaction number T. It is possible to recognize a pair of pieces of information to be collated with reference to each other, and to perform correct collation processing.

  Note that the function for generating the transaction number T is not necessarily provided to the delivery target information input unit 111F. For example, the first inter-device communication unit 112F is provided with a function of generating a transaction number T, which is transferred to the first inter-unit communication unit 113F and transmitted to the second transmission unit 120F. Is also possible. For example, when using HTTP as a protocol for communication between devices between the first device-to-device communication unit 112F and the first information reception unit 210F, the cookie is protected while protecting the security of the route such as SSL / TLS. There is known a technique for session management by using.

  As mentioned above, although the modification which uses a transaction number was described about the basic system 10 shown in FIG. 1, of course, it can use a transaction number similarly also about the systems 10A-10E which concern on another modification. In this case, if the transaction number associated with the original information is inherited as it is in the derived information, the same transaction number is associated with the original information and the corresponding derived information. become.

<4-2. Modification Example Using Position Information: System 10G>
FIG. 15 is a block diagram of a system 10G configured by further introducing position information into the basic system 10 shown in FIG. A feature of the system 10G is that a first position recognition unit 115G is added as a new component to the first transmission unit 110G, and a second position recognition unit 125G is added as a new component to the second transmission unit 120G. Is a point. Here, the first position recognition unit 115G is a component that recognizes its own current position L1 (the current position of the first transmission unit 110G itself), and the second position recognition unit 125G has its own current position. This is a component that recognizes L2 (the current position of the second transmission unit 120G itself).

  For the recognition of the current position, technologies using GPS information, mobile phone base station information, Wi-Fi base station information, etc. are known. Portable information processing devices are becoming standard equipment. The first position recognizing unit 115G and the second position recognizing unit 125G can be configured using these standard functions.

  The basic functions of the other components of the system 10G are the same as the basic functions of the components of the basic system 10 shown in FIG. However, in the system 10G, since the handling of the position information L1 and L2 is added, the letter “G” is added to the end of the code of each block shown in FIG. 15 to distinguish it from the code of each block shown in FIG. .

  In this system 10G, the first transmission unit 110G further includes a first position recognition unit 115G for recognizing its current position L1, and the first inter-device communication unit 112G is connected to the reception device 200G. When transmitting information, the first position information L1 recognized by the first position recognition unit 115G is transmitted in combination. Similarly, the second transmission unit 120G further includes a second position recognition unit 125G for recognizing its current position L2, and the second inter-device communication unit 122G transmits information to the reception device 200G. When the transmission is performed, the second position information L2 recognized by the second position recognition unit 125G is transmitted in combination.

  In FIG. 15, the first inter-device communication unit 112G transmits a combination of the first position information L1 together with the delivery target information P to the receiving device 200G, and the second inter-device communication unit 122G receives the receiving device. A state in which the second position information L2 is transmitted in combination with the delivery target information P with respect to 200G is shown.

  On the other hand, the first information receiving unit 210G and the second information receiving unit 220G on the receiving device 200G side receive each information P in a state where the position information L1 and L2 are combined. Here, the important point is that the received information matching unit 230G receives the first information (information estimated as delivery target information P in this example) transmitted from the first inter-device communication unit 112G and the second information. This is combined with the first information when collating with the second information transmitted from the inter-device communication unit 122G (in this example, information that is also estimated to be the delivery target information P). The point is that a collation process is executed with the condition that the positional information L1 and the positional information L2 combined with the second information are information within a predetermined neighborhood range as one condition of the collation success.

  As described above, if the operation is performed with the position information L1 and L2 as verification targets, it is more effective in preventing an illegal act by a cracker. This is based on the premise that “inter-unit communication” is performed by near-field wireless communication in the present invention. Therefore, in the case of the system 10G shown in FIG. This is because it is considered that the distance is within the range of the near-field wireless communication (several centimeters to 1 m) unless the above is performed. Therefore, when the distance difference between the position information L1 and L2 is 10 m, for example, there is a suspicion that some sort of fraud is being performed.

  Of course, the accuracy of the position information L1 and L2 depends on the recognition accuracy of the position recognition device employed by the first position recognition unit 115G and the second position recognition unit 125G. There may be cases where it is not possible to accurately determine whether the distance difference of L2 is 1 m or less. Therefore, in practice, in consideration of position recognition accuracy, it is only necessary to set a collation standard (distance that defines a neighborhood range to be imposed as a condition for successful collation) regarding the position information performed by the reception information collation unit 230G to an appropriate value. .

  As mentioned above, although the modification which uses position information was described about the basic system 10 shown in FIG. 1, of course, position information can be similarly used also about the systems 10A-10F which concern on other modifications.

<4-3. Modification using transmission time: System 10H>
FIG. 16 is a block diagram of a system 10H configured by further introducing a transmission time into the basic system 10 shown in FIG. Here, the basic functions of the components of the system 10H are the same as the basic functions of the components of the basic system 10 shown in FIG. However, in the system 10H, since the handling of the transmission time t is added, the letter “H” is added to the end of the code of each block shown in FIG. 16 to distinguish it from the code of each block shown in FIG.

  The feature of this system 10H is that when the first inter-device communication unit 112H transmits information to the first information receiving unit 210H, the transmission time t is shared between the two and the first unit When the communication unit 113H transmits information to the second transmission unit 120H, the communication unit 113H transmits the transmission time t in combination, and the second inter-device communication unit 122H transmits information to the second information reception unit 220H. When transmitting, the transmission time t transmitted from the first inter-unit communication unit 113H is transmitted together.

  Specifically, in the case of the illustrated example, when the specific delivery target information P is transmitted from the first inter-device communication unit 112H to the receiving device 200H, the first inter-device communication unit 112H The time is acquired as the transmission time t, and the delivery target information P and the transmission time t are combined and transmitted to the receiving device 200H. However, since the transmission time t has only to be shared as the same time between the first inter-device communication unit 112H and the first information receiving unit 210H, for example, it is acquired on the first information receiving unit 210H side. The transmitted time may be transmitted to the first inter-device communication unit 112H side as the transmission time t.

  Thus, the shared transmission time t is transmitted from the first inter-device communication unit 112H to the first inter-unit communication unit 113H. The first inter-unit communication unit 113H combines the transmission target information P given from the delivery target information input unit 111H with the transmission time t and transmits it to the second inter-unit communication unit 121H. The second inter-unit communication unit 121H delivers the combination of the delivery target information P and the transmission time t as it is to the second inter-device communication unit 122H, and the second inter-device communication unit 122H transfers to the second information reception unit 220H. On the other hand, a combination of the delivery target information P and the transmission time t is transmitted.

  On the other hand, the second information receiving unit 220H on the receiving device 200H side receives the combination of the delivery target information P and the transmission time t. Further, the first information receiving unit 210H shares the transmission time t when receiving the delivery target information P. Therefore, the reception information matching unit 230H includes the first information transmitted from the first inter-device communication unit 112H (in this example, information estimated as the delivery target information P) and the second inter-device communication unit. The transmission time shared by the first information receiving unit 210H when collating with the second information transmitted from 122H (in this case, information that is also estimated to be the delivery target information P). Collation processing is performed with one condition for successful collation that t and the transmission time t received by the second information receiving unit 220H match.

  In this way, if the operation is performed with the transmission time t as a verification target, it is more effective in preventing fraud by the cracker. That is, since the transmission time t at which information transmission is performed from the first inter-device communication unit 112H to the first information receiving unit 210H cannot be predicted in advance, for example, the cracker sends to the second transmission unit 120H. When an illegal action is to be performed using an alternative fake unit, it is necessary to set malware on the first transmission unit 110H for obtaining the transmission time t illegally. For this reason, cheating by a cracker can be made more difficult.

  As mentioned above, although the modification which uses transmission time was described about the basic system 10 shown in FIG. 1, of course, transmission time can be used similarly also about the systems 10A-10G which concern on other modifications.

<4-4. Further Modifications>
The basic embodiments and various modifications described so far can be implemented in appropriate combination as necessary. The present specification does not cover all of these possible combinations as examples, but the basic embodiment and various modifications can be arbitrarily combined and implemented as long as no contradiction arises.

  Further, in the modified examples described so far, when the derivative information Q is transmitted from one communication path, the delivery target information P may be transmitted together. For example, in the modified example shown as the collation A of the derivative information shown in FIG. 6, only the derivative information Q is transmitted from the second transmission unit 120A to the receiving device 200A, but the delivery target information P is also added. You may send it. In this case, in the receiving apparatus 200A, the collation process for determining whether or not the delivery target information P transmitted from the two communication paths matches, and whether the delivery target information P and the derived information Q are consistent. Both the verification process for determining whether or not can be performed.

  Furthermore, the inter-device communication and inter-unit communication in the present invention can be performed by encrypted communication if necessary. For example, when transmitting the delivery target information P and the derivative information Q, it is possible to adopt a configuration in which encryption is performed at the time of transmission and decryption is performed at the time of reception.

<<< §5. Summary of the present invention >>
So far, various embodiments of the information delivery system according to the present invention have been described. Finally, the gist of the present invention will be briefly summarized.

  First, the basic system 10 described in §1 and the systems 10A to 10C according to the modifications described in §2 include a transmission device and a reception device, and deliver delivery target information from the transmission device to the reception device. It is an information delivery system, and the transmission device has a first transmission unit and a second transmission unit, and these two sets of transmission units have a function of performing inter-unit communication by near-field wireless communication with each other. And a function of performing inter-device communication with respect to the receiving device.

  In addition, the first transmission unit uses the inter-device communication function to transmit the delivery target information to the receiving device, and uses the inter-unit communication function to the second transmission unit. The second transmission unit receives the information transmitted from the first transmission unit, and receives the information transmitted from the first transmission unit. Using the function, the received information or derived information derived from the received information is transmitted as verification information. In addition, the receiving apparatus collates information estimated to be delivery target information transmitted from the first transmission unit, using information estimated from collation information transmitted from the second transmission unit.

  If such an invention is grasped as an invention of an information delivery method for delivering delivery target information from a transmission device to a reception device, the method invention is composed of the following stages.

  (1) A unit preparation stage in which two transmission units having a function of performing inter-unit communication by near-field wireless communication and a function of performing inter-device communication with respect to a reception device are prepared as transmission devices.

  (2) A delivery target information transmission stage in which the first transmission unit transmits delivery target information to the receiving device using the inter-device communication function.

  (3) An inter-unit communication stage in which the first transmission unit transmits the delivery target information or derivative information derived from the delivery target information to the second transmission unit using the inter-unit communication function.

  (4) The second transmission unit receives the information transmitted from the first transmission unit, and derives from the received information or the received information using the inter-device communication function for the receiving device. A verification information transmission stage for transmitting the derived information as verification information.

  (5) The receiving apparatus collates the information estimated to be the delivery target information transmitted in the delivery target information transmission stage using the information estimated in the verification information transmission stage and the estimated information. Verification stage.

  On the other hand, systems 10D and 10E according to the modification described in §3 are information delivery systems that include a transmission device and a reception device, and deliver delivery target information from the transmission device to the reception device. Has a first transmission unit and a second transmission unit, and these two sets of transmission units perform inter-unit communication with each other by near-field wireless communication and perform inter-device communication with respect to the receiving device. And has a function.

  Moreover, the first transmission unit transmits the delivery target information to the second transmission unit using the inter-unit communication function, and uses the inter-device communication function to the receiving device. Then, the derivative information derived from the delivery target information is transmitted as verification information, and the second transmission unit transmits the delivery target information transmitted from the first transmission unit to the receiving device for inter-device communication. Send using the function. In addition, the receiving apparatus collates the information estimated as the delivery target information transmitted from the second transmission unit using the information estimated from the verification information transmitted from the first transmission unit.

  If such an invention is grasped as an invention of an information delivery method for delivering delivery target information from a transmission device to a reception device, the method invention is composed of the following stages.

  (1) A unit preparation stage in which two transmission units having a function of performing inter-unit communication by near-field wireless communication and a function of performing inter-device communication with respect to a reception device are prepared as transmission devices.

  (2) A verification information transmission stage in which the first transmission unit transmits, to the reception device, derived information derived from the delivery target information as verification information using the inter-device communication function.

  (3) An inter-unit communication stage in which the first transmission unit transmits the delivery target information to the second transmission unit using the inter-unit communication function.

  (4) A delivery target information transmitting stage in which the second transmission unit transmits the delivery target information transmitted from the first transmission unit to the receiving device using the inter-device communication function.

  (5) The receiving apparatus collates the information estimated to be the delivery target information transmitted in the delivery target information transmission stage using the information estimated in the verification information transmission stage and the estimated information. Verification stage.

10: Basic systems 10A to 10H according to basic embodiment: Systems 100, 100A to 100H according to modified examples: Transmitters 110, 110A to 110H: First transmission units 111, 111A to 111H: Delivery target information input unit 112 112A to 112H: First inter-device communication unit 113, 113A to 113H: First inter-unit communication unit 114B to 114E: Derived information generation unit 115G: First position recognition unit 120, 120A to 120H: Second Transmission unit 121, 121A-121H: second inter-unit communication unit 122, 122A-122H: second inter-device communication unit 123A, 123C: derivation information generation unit 124E: derivation processing information storage unit 125G: second position Recognizing units 200, 200A to 200H: receiving devices 210, 210A to 210H: first information reception 220, 220A to 220H: second information receiving unit 230, 230A to 230H: received information matching unit A: algorithm D: fixed data f: function Hash: hash function K: encryption key K1: secret key K2: public key L1, L2: Position information P: Delivery target information Q, Q1, Q2: Derived information R: Fluctuating data Rd: Processing date Sig: Digital signature T: Transaction number t: Transmission time X: Derived processing information

Claims (24)

An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A first inter-unit communication unit that transmits the delivery target information input by the delivery target information input unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit for receiving delivery target information transmitted from the first transmission unit;
A second inter-device communication unit that transmits the delivery target information received by the second inter-unit communication unit to the receiving device;
Have
The receiving device is:
A first information receiving unit that receives information estimated as delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated as delivery target information transmitted from the second inter-device communication unit;
A received information collating unit that collates information received by the first information receiving unit with information received by the second information receiving unit;
Have
The information delivery system, wherein communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication. An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A first inter-unit communication unit that transmits the delivery target information input by the delivery target information input unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit for receiving delivery target information transmitted from the first transmission unit;
A derivation information generation unit that generates derivation information by executing a predetermined derivation process based on the delivery target information received by the second inter-unit communication unit;
A second inter-device communication unit that transmits the derivative information generated by the derivative information generation unit to the receiving device;
Have
The receiving device is:
A first information receiving unit that receives information estimated as delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit for receiving information estimated as derivative information transmitted from the second inter-device communication unit;
A received information collating unit that collates the information received by the first information receiving unit and the information received by the second information receiving unit by a collating process for confirming consistency according to the derivation process;
Have
The derivation process is a process of deriving derivation information that is uniquely determined with respect to the original information, using the delivery target information as the original information.
The information delivery system, wherein communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication. An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A derivation information generating unit that generates derivation information by executing a predetermined derivation process based on the delivery target information input by the delivery target information input unit;
A first inter-unit communication unit that transmits the derivative information generated by the derivative information generation unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives derivative information transmitted from the first transmission unit;
A second inter-device communication unit that transmits the derivative information received by the second inter-unit communication unit to the receiving device;
Have
The receiving device is:
A first information receiving unit that receives information estimated as delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit for receiving information estimated as derivative information transmitted from the second inter-device communication unit;
A received information collating unit that collates the information received by the first information receiving unit and the information received by the second information receiving unit by a collating process for confirming consistency according to the derivation process;
Have
The derivation process is a process of deriving derivation information that is uniquely determined with respect to the original information, using the delivery target information as the original information.
The information delivery system, wherein communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication. An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A first inter-device communication unit that transmits the delivery target information input by the delivery target information input unit to the receiving device;
A first derivation information generating unit that generates first derivation information by executing a first derivation process based on the delivery target information input by the delivery target information input unit;
A first inter-unit communication unit that transmits the first derivation information generated by the first derivation information generation unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit that receives first derivative information transmitted from the first transmission unit;
A second derivation information generator for generating second derivation information by executing a second derivation process based on the first derivation information received by the second inter-unit communication unit;
A second inter-device communication unit that transmits the second derivative information generated by the second derivative information generation unit to the receiving device;
Have
The receiving device is:
A first information receiving unit that receives information estimated as delivery target information transmitted from the first inter-device communication unit;
A second information receiving unit for receiving information estimated as second derivative information transmitted from the second inter-device communication unit;
The information received by the first information receiving unit and the information received by the second information receiving unit are collated by the first derivation process and the collation process for confirming the consistency according to the second derivation process. A received information matching unit to
Have
The first derivation process is a process of deriving first derivation information that is uniquely determined with respect to the original information, using the delivery target information as the original information, and the second derivation process includes the first derivation process. A process of deriving second derived information that is uniquely determined with respect to the original information, using the derived information of 1 as the original information,
The information delivery system, wherein communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication. An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission device includes a first transmission unit and a second transmission unit configured as separate units,
The first transmission unit is
A delivery target information input unit for inputting delivery target information;
A derivation information generating unit that generates derivation information by executing a predetermined derivation process based on the delivery target information input by the delivery target information input unit;
A first inter-device communication unit that transmits the derivative information generated by the derivative information generation unit to the receiving device;
A first inter-unit communication unit that transmits the delivery target information input by the delivery target information input unit to the second transmission unit;
Have
The second transmission unit is
A second inter-unit communication unit for receiving delivery target information transmitted from the first transmission unit;
A second inter-device communication unit that transmits the delivery target information received by the second inter-unit communication unit to the receiving device;
Have
The receiving device is:
A first information receiving unit for receiving information estimated from the derivative information transmitted from the first inter-device communication unit;
A second information receiving unit that receives information estimated as delivery target information transmitted from the second inter-device communication unit;
A received information collating unit that collates the information received by the first information receiving unit and the information received by the second information receiving unit by a collating process for confirming consistency according to the derivation process;
Have
The derivation process is a process of deriving derivation information that is uniquely determined with respect to the original information, using the delivery target information as the original information.
The information delivery system, wherein communication between the first inter-unit communication unit and the second inter-unit communication unit is performed by near-field wireless communication. In the information delivery system according to claim 5,
The second transmission unit further includes a derivation process information storage unit that stores derivation process information used for the derivation process,
A second inter-unit communication unit further has a function of transmitting the derivation processing information to the first transmission unit;
The first inter-unit communication unit further has a function of receiving the derivation processing information transmitted from the second inter-unit communication unit,
An information delivery system, wherein a derivation information generation unit executes derivation processing using the derivation processing information received by the first inter-unit communication unit. In the information delivery system in any one of Claims 2-6,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is the original Including combining predetermined fixed data with information or information derived from the original information,
An information delivery system, wherein a received information collating unit executes collation processing using the fixed data. In the information delivery system in any one of Claims 2-6,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is a predetermined process. Variation data generation processing for generating different variation data each time based on an algorithm, and variation data synthesis processing for combining the variation data with the original information or information derived from the original information,
An information delivery system, wherein the received information matching unit executes a matching process using variation data generated each time based on the same algorithm as the algorithm. In the information delivery system according to claim 8,
An information delivery system for generating data relating to a year, month, day, day of week, or time at the time of processing execution as fluctuation data in the fluctuation data generation process. In the information delivery system in any one of Claims 2-6,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is the original Including a process of operating a predetermined function on information or information derived from the original information,
An information delivery system, wherein the received information matching unit executes a matching process using the function or an inverse function of the function. In the information delivery system according to claim 10,
An information delivery system using a hash function or other one-way function as a function to be operated. In the information delivery system in any one of Claims 2-6,
The derivation process executed by the derivation information generation unit, the first derivation process executed by the first derivation information generation unit, or the second derivation process executed by the second derivation information generation unit is the original Including a process of creating an electronic signature using a predetermined encryption key for the information or information derived from the original information, so that derivative information including the electronic signature is generated,
An information delivery system, wherein the received information matching unit executes a matching process including a process of confirming the validity of the electronic signature. The information delivery system according to claim 12,
A secret key based on the public key cryptosystem is stored on the transmitting device side, and a public key corresponding to the secret key is stored on the receiving device side,
The information delivery system, wherein the verification process includes a process of confirming the validity of the electronic signature created using the secret key on the transmitting apparatus side using the public key on the receiving apparatus side. In the information delivery system in any one of Claims 1-13,
When the first inter-device communication unit transmits specific information to the receiving device, the first inter-device communication unit transmits a specific transaction number associated with the specific information,
When the second inter-device communication unit transmits the information corresponding to the specific information to the receiving device, the second inter-device communication unit transmits the corresponding information with the same transaction number as the predetermined transaction number. ,
The received information collation unit is a pair of information in which the same transaction number is associated with the information transmitted from the first inter-device communication unit and the information transmitted from the second inter-device communication unit. An information delivery system characterized by recognizing as a verification target. In the information delivery system in any one of Claims 1-14,
The first transmission unit further includes a first position recognition unit for recognizing its current position, and when the first inter-device communication unit transmits information to the reception device, the first transmission unit The first position information recognized by the first position recognition unit is transmitted in combination;
The second transmission unit further includes a second position recognition unit for recognizing its current position, and when the second inter-device communication unit transmits information to the reception device, the second transmission unit The second position information recognized by the second position recognition unit is transmitted in combination,
When the received information verification unit performs verification on the first information transmitted from the first inter-device communication unit and the second information transmitted from the second inter-device communication unit, the first information Information delivery characterized in that a condition for successful collation is that the position information combined with the first information and the position information combined with the second information are information within a predetermined neighborhood range. system. In the information delivery system in any one of Claims 1-15,
When the first inter-device communication unit transmits information to the first information receiving unit, the transmission time is shared between the two,
When the first inter-unit communication unit transmits information to the second transmission unit, the first unit communication unit transmits the information by combining the transmission times,
The second inter-device communication unit transmits the transmission time transmitted from the first inter-unit communication unit when transmitting information to the second information receiving unit,
When the received information verification unit performs verification on the first information transmitted from the first inter-device communication unit and the second information transmitted from the second inter-device communication unit, the first information An information delivery system characterized in that a condition for successful collation is that a transmission time shared by one information receiving unit and a transmission time received by the second information receiving unit match. In the information delivery system in any one of Claims 1-16,
The communication between the first inter-device communication unit and the first information receiving unit and the communication between the second inter-device communication unit and the second information receiving unit are performed using the TCP / IP protocol via the Internet. And performing communication between the first inter-unit communication unit and the second inter-unit communication unit using the NFC standard. In the information delivery system in any one of Claims 1-17,
The first transmission unit is configured by a first information processing apparatus incorporating an application program that operates under the control of the first OS, and the second transmission unit is different from the first OS. An information delivery system comprising a second information processing apparatus incorporating an application program that operates under the management of an OS.   The 1st transmission unit or the 2nd transmission unit in the information delivery system in any one of Claims 1-18.   The program which makes a computer function as a 1st transmission unit or a 2nd transmission unit in the information delivery system in any one of Claims 1-18. An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission apparatus includes a first transmission unit and a second transmission unit, and these two sets of transmission units perform a function of performing inter-unit communication by near-field wireless communication with each other, and an apparatus for the reception apparatus A function of performing inter-communication,
The first transmission unit transmits the delivery target information to the receiving device using the inter-device communication function, and transmits the inter-unit communication to the second transmission unit. Using the function, send the delivery target information or derived information derived from the delivery target information,
The second transmission unit receives the information transmitted from the first transmission unit, and uses the inter-device communication function to the reception device from the received information or the received information. Send the derived information as matching information,
The receiving device collates the information estimated as the delivery target information transmitted from the first transmission unit using the information estimated from the verification information transmitted from the second transmission unit. An information delivery system characterized by An information delivery method for delivering delivery target information from a transmission device to a reception device,
A unit preparation stage for preparing two transmission units each having a function of performing inter-unit communication by near-field wireless communication and a function of performing inter-device communication with respect to a reception device as a transmission device;
A delivery target information transmitting stage in which a first transmission unit transmits the delivery target information to the receiving device using the inter-device communication function;
An inter-unit communication stage in which the first transmission unit transmits the delivery target information or derivative information derived from the delivery target information using the inter-unit communication function to the second transmission unit;
The second transmission unit receives the information transmitted from the first transmission unit, and uses the inter-device communication function to the reception device, from the received information or the received information. A verification information transmission stage in which the derived information is transmitted as verification information;
A collation in which the receiving device collates the information estimated to be the delivery target information transmitted in the delivery target information transmission stage using the information estimated to be the collation information transmitted in the verification information transmission stage. Stages,
An information delivery method characterized by comprising: An information delivery system comprising a transmitting device and a receiving device, and delivering delivery target information from the transmitting device to the receiving device,
The transmission apparatus includes a first transmission unit and a second transmission unit, and these two sets of transmission units perform a function of performing inter-unit communication by near-field wireless communication with each other, and an apparatus for the reception apparatus A function of performing inter-communication,
The first transmission unit transmits the delivery target information to the second transmission unit using the inter-unit communication function, and transmits the inter-device communication to the reception device. Using the function, the derivative information derived from the delivery target information is transmitted as verification information,
The second transmission unit transmits the delivery target information transmitted from the first transmission unit to the reception device using the inter-device communication function,
The receiving device collates the information estimated as the delivery target information transmitted from the second transmission unit using the information estimated from the verification information transmitted from the first transmission unit. An information delivery system characterized by An information delivery method for delivering delivery target information from a transmission device to a reception device,
A unit preparation stage for preparing two transmission units each having a function of performing inter-unit communication by near-field wireless communication and a function of performing inter-device communication with respect to a reception device as a transmission device;
A verification information transmission stage in which a first transmission unit transmits, to the reception device, derivative information derived from the delivery target information as verification information, using the inter-device communication function;
An inter-unit communication stage in which the first transmission unit transmits the delivery target information to the second transmission unit using the inter-unit communication function;
A delivery target information transmitting step in which the second transmission unit transmits the delivery target information transmitted from the first transmission unit to the receiving device using the inter-device communication function;
A collation in which the receiving device collates the information estimated to be the delivery target information transmitted in the delivery target information transmission stage using the information estimated to be the collation information transmitted in the verification information transmission stage. Stages,
An information delivery method characterized by comprising:

Images