JP2020126521A - Transaction management system, transaction management method, and transaction management program - Google Patents

Abstract

To trade products while ensuring the safety of the card number of a postpaid card.SOLUTION: A transaction management system according to one aspect of the present disclosure includes a transaction management server. The transaction management server receives a credit inquiry including a customer ID of a customer who is about to purchase a product at a store from a store terminal, obtains an official card number and a tokenized card number corresponding to the received customer ID from a database that stores card data, transmits a credit inquiry request including the official card number to a settlement management server of a card company, receives a credit result of the official card number from the settlement management server, and transmits a credit response that includes the credit result and the tokenized card number but does not include the official card number to the store terminal. The store terminal trades the product based on the credit response without obtaining the official card number.SELECTED DRAWING: Figure 2

Description

One aspect of the present disclosure relates to a transaction management system, a transaction management method, and a transaction management program.

2. Description of the Related Art A mechanism for managing transactions of products using postpaid cards such as credit cards is known. For example, Patent Literature 1 describes a system for monitoring consumer behavior and providing secure electronic payment in exchange for goods and services. Patent Documents 2 and 3 describe systems that settle a refueling service based on information registered in advance.

Japanese Patent No. 4861604 Japanese Patent No. 5861233 Patent No. 5857332

The card number of the postpaid card is very important information for the owner of the card. Therefore, there is a demand for a mechanism for trading products while ensuring the security of the card number.

A transaction management system according to one aspect of the present disclosure includes a transaction management server that communicates with a store terminal provided in a store. The transaction management server receives a credit inquiry including a customer ID, which is an identifier for uniquely identifying a customer who wants to purchase a product at the shop, from the shop terminal, and the customer ID and the official card number of the customer's postpaid card, A formal card number corresponding to the received customer ID from a database storing card data associated with the tokenized card number of the postpaid card, obtained by tokenizing the formal card number; Obtain the tokenized card number, send a credit inquiry request containing the official card number to the payment management server of the card company that manages the payment of the postpaid card, and send the credit result of the official card number from the payment management server. The credit response is received and the credit response including the credit result and the tokenized card number and not including the official card number is transmitted to the store terminal. Based on the credit response, the store terminal executes the transaction of the product without acquiring the formal card number.

A transaction management method according to one aspect of the present disclosure is executed by a transaction management system that includes a transaction management server that communicates with a store terminal provided in a store. The transaction management method includes a step in which the transaction management server receives a credit inquiry including a customer ID, which is an identifier that uniquely identifies a customer who intends to purchase a product in a store, from the store terminal, and the transaction management server stores the customer ID in the store. , Received from a database storing card data associated with the official card number of the customer's postpaid card and the tokenized card number of the postpaid card obtained by tokenizing the official card number The step of obtaining the formal card number and tokenized card number corresponding to the generated customer ID, and the transaction management server issues a credit inquiry request including the formal card number to the card company that manages the payment of the postpaid card. Transmitting to the payment management server, the transaction management server receiving the credit result of the formal card number from the payment management server, the transaction management server including the credit result and the tokenized card number, and Sending a credit response to the store terminal that does not include the official card number. Based on the credit response, the store terminal executes the transaction of the product without acquiring the formal card number.

A transaction management program according to an aspect of the present disclosure issues a credit inquiry including a customer ID, which is an identifier that uniquely identifies a customer who wants to purchase a product in a store, to a computer that communicates with a store terminal provided in the store. The step of receiving from the store terminal, the customer ID, the official card number of the customer's postpaid card, and the tokenized card number of the postpaid card obtained by tokenizing the official card number are associated with each other. The step of obtaining the formal card number and tokenized card number corresponding to the received customer ID from the database storing the stored card data, and the credit inquiry request including the formal card number, and the postpaid card settlement. Including the step of transmitting to the payment management server of the card company that manages the credit card, the step of receiving the credit result of the official card number from the payment management server, and the official card number including the credit result and the tokenized card number. And a step of transmitting a credit response not containing Based on the credit response, the store terminal executes the transaction of the product without acquiring the formal card number.

In this aspect, the transaction of the product is executed without providing the official card number of the postpaid card to the store terminal. Since no one can know the card number at the store where the product is actually traded, the product can be traded while ensuring the security of the card number.

According to one aspect of the present disclosure, it is possible to trade products while ensuring the security of the card number of the postpaid card.

It is a figure showing an example of whole composition including a transaction management system concerning an embodiment. It is a figure showing an example of functional composition of a transaction management system concerning an embodiment. It is a figure which shows the general hardware constitutions of the computer used with the transaction management system which concerns on embodiment. It is a sequence diagram which shows an example of the transaction processing by the transaction management system which concerns on embodiment. It is a sequence diagram which shows an example of the closing process by the transaction management system which concerns on embodiment. It is a sequence diagram which shows another example of the closing processing by the transaction management system which concerns on embodiment.

Hereinafter, embodiments of the present disclosure will be described in detail with reference to the accompanying drawings. In the description of the drawings, the same or equivalent elements will be denoted by the same reference symbols, without redundant description.

[System configuration]
The transaction management system 1 according to the embodiment is a computer system that manages a commodity transaction. Merchandise refers to any tangible or intangible object that is traded for a fee or free of charge, and is therefore a concept that includes the provision of services. The type of product is not limited at all. "Transaction of goods" means exchanging goods between two parties. Examples of transactions include buying, selling, lending, and exchanging. In the present embodiment, the transaction management system 1 more specifically manages the buying and selling of products using postpaid cards. The post-payment card is a card used for post-payment payment, which is a payment method in which a customer pays for a product after purchasing the product. An example of the postpaid card is a credit card, but the type of postpaid card is not limited to this. The method of realizing the post-payment card is not limited, and may be provided to the customer as a tangible card such as a general credit card, or may be provided as a virtual card represented by electronic data. A customer means a person who purchases a product, and can be restated as a consumer or a user.

An outline of the mechanism of the transaction management system 1 will be described with reference to FIG. FIG. 1 is a diagram showing an example of an overall configuration including a transaction management system 1.

In this embodiment, the customer 90 owns an IC tag (RF tag) 91 for purchasing a product with a postpaid card. The IC tag is constructed by embedding an IC chip capable of reading and writing data and a wireless antenna capable of transmitting and receiving data in a dielectric material such as resin or glass to form a tag (tag). It is a very small communication terminal. The IC tag is also called an RFID (Radio Frequency Identification). Electronic information in the IC chip can be read and written via wireless communication. Such IC tags are also used for passbooks used in financial institutions, cards for personal identification, and the like. The method of realizing the IC tag 91 is not limited, and the IC tag 91 may have a physical outer shape, for example. Alternatively, the IC tag 91 may be built in a card such as a credit card, a transportation card, a driver's license, a personal number card, or a mobile terminal such as a smartphone, a mobile phone, a wearable terminal (for example, a smart watch). It may be built-in.

In this embodiment, the IC tag 91 stores at least a customer ID that is an identifier that uniquely identifies the customer 90. The IC tag 91 may further store at least one of purchase setting information set in advance regarding purchase and a point card number that uniquely identifies a point card owned by the customer 90. The point card refers to a card for managing the points given to the customer 90 according to the transaction (specifically, purchase) of the product. The customer 90 can accumulate the points and use the points as at least a part of the purchase price of the product. The customer 90 holds the IC tag 91 over a non-contact IC card reader/writer 19 (hereinafter simply referred to as a “reader/writer”) connected to the shop terminal 10 when purchasing a product at an actual shop. In response to this operation, various processing such as credit and settlement of postpaid card, awarding or use of points, etc. is executed. Here, the actual store refers to a store that physically exists in the real world. In the present specification, the actual store is simply referred to as “store”.

The store terminal 10 is a computer provided in a store that handles products. The store terminal 10 can execute processing relating to post-payment settlement. The configuration of the store terminal 10 is not limited. For example, the store terminal 10 may be a general cash register, may have a POS (point of sale information management) function, or may be another type of device having a cash register function or a POS function. Although only one store terminal 10 is shown in FIG. 1, the transaction management system 1 can of course manage transactions at a plurality of store terminals 10 in a plurality of stores. Each store terminal 10 may be a component of the transaction management system 1 or a component not included in the transaction management system 1.

The transaction management system 1 includes a transaction management server 20, which is a computer that manages individual transactions. The transaction management server 20 can be communicatively connected to each of the at least one store terminal 10. The transaction management server 20 can also be communicatively connected to each of a card database 30 that stores card data relating to post-payment cards and a payment management server 40 of a card company that manages payment for post-payment cards. Furthermore, the transaction management server 20 can also be communicatively connected to each of the first sales management server 50 and the second sales management server 60 that collectively manage transactions at one or more stores. For example, the first sales management server 50 and the second sales management server execute closing processing for finalizing a transaction (sales). Each of the first sales management server 50 and the second sales management server 60 may be a component of the transaction management system 1 or a component not included in the transaction management system 1.

In addition to the transaction management server 20, the store terminal 10 can be communicatively connected to the first sales management server 50 or the second sales management server 60. Furthermore, the store terminal 10 can also be communicatively connected to a point management server 70 that manages a point card.

The configuration and type of communication network used for communication connection between computers are not limited in any way, and may be designed by any policy. For example, the communication network may be built by the Internet, an intranet, or a combination thereof. In addition, the communication network may be constructed by a wired network, a wireless network, or a combination thereof.

The flow of processing in one transaction, that is, one purchase procedure will be described with reference to FIG. When the customer 90 who wants to purchase a product at the store holds the IC tag 91 over the reader/writer 19, the customer ID stored in the IC tag 91 is transmitted to the store terminal 10 via the reader/writer 19. The store terminal 10 transmits the customer ID to the transaction management server 20 (step S11). The transaction management server 20 reads the formal card number of the postpaid card corresponding to the customer ID from the card database 30 and transmits the formal card number to the payment management server 40, thereby making a credit inquiry to the payment management server 40 ( A credit inquiry is requested (step S12). The settlement management server 40 executes a credit inquiry in response to the request, and sends the result (credit result) to the transaction management server 20 (step S13). The transaction management server 20 reads the tokenized card number of the postpaid card corresponding to the customer ID from the card database 30 and transmits the credit result and the tokenized card number to the store terminal 10 (step S14). If the credit result indicates approval of the transaction, the customer 90 can purchase the product at the store with a postpaid card.

In this embodiment, the transaction management system 1 uses two types of card numbers, that is, a formal card number and a tokenized card number, as an identifier that uniquely identifies a postpaid card. The official card number is a number set by a card company when issuing a postpaid card. The official card number is notified to the customer 90 when the postpaid card is issued, so that the customer 90 can know his official card number. On the other hand, the tokenized card number is a card number obtained by replacing at least a part of the official card number with another character string by tokenization. Tokenization refers to a process of replacing an original character string with another character string without having a mathematical relationship with the original character string. The tokenization can be realized, for example, by generating the another character string with a random number. The original character string (character string before replacement) and another character string (character string after replacement) are associated on a one-to-one basis. Since there is no mathematical relationship between these two character strings, the original character string cannot be specified from the other character string by mathematical processing. In order to obtain the original character string, it is necessary to know the one-to-one correspondence. Tokenization differs from encryption in that there is no mathematical relationship between the data before and after the replacement. Since encryption is a process of converting original data into encrypted data by using an encryption algorithm and an encryption key, there is a mathematical relationship between the original data and the encrypted data due to the encryption algorithm and the encryption key. ..

When the IC tag 91 stores the point card number, the processing relating to points is further executed in one transaction (one purchase procedure). In this case, when the customer 90 holds the IC tag 91 over the reader/writer 19, the point card number stored in the IC tag 91 is further transmitted to the store terminal 10 via the reader/writer 19. The store terminal 10 transmits the point card number to the point management server 70 (step S15). The point management server 70 determines whether or not the point card number is valid, identifies the point balance corresponding to the point card number, and transmits the point balance to the store terminal 10 (step S16). If the point card number is valid, the customer 90 can obtain points corresponding to the purchase of the product or use at least a part of the point balance as at least a part of the purchase price.

The flow of the tightening process will be described with reference to FIG. The example of FIG. 1 shows two types of closing processing in response to the existence of two types of sales management servers, that is, a first sales management server 50 and a second sales management server 60. The store terminal 10 is communicatively connected to one of the first sales management server 50 and the second sales management server 60.

The first sales management server 50 is used in the first closing process. In this case, the shop terminal 10 transmits transaction information indicating one or more transactions to the first sales management server 50 (step S21). The transaction information includes individual tokenized card numbers corresponding to individual transactions, but not individual formal card numbers corresponding to individual transactions. The first sales management server 50 transmits one or more tokenized card numbers to the transaction management server 20 (step S22). The transaction management server 20 refers to the card database 30 and reads the corresponding official card number for each tokenized card number. Then, the transaction management server 20 transmits one or more official card numbers to the first sales management server 50 (step S23). The first sales management server 50 transmits payment information corresponding to the transaction information received from the shop terminal 10 to the payment management server 40. (Step S24). The payment information includes each legitimate card number corresponding to each transaction. After that, the card company executes the payment with the postpaid card.

The second sales management server 60 is used in the second closing process. In this case, the shop terminal 10 transmits transaction information indicating one or more transactions to the second sales management server 60 (step S31). The transaction information includes individual tokenized card numbers corresponding to individual transactions, but not individual formal card numbers corresponding to individual transactions. The second sales management server 60 transmits payment information corresponding to the transaction information to the transaction management server 20 (step S32). The transaction management server 20 refers to the card database 30 and reads the corresponding official card number for each tokenized card number. Then, the transaction management server 20 replaces one or more tokenized card numbers in the payment information with one or more formal card numbers, and sends the processed payment information to the payment management server 40 (step S33). After that, the card company executes the payment with the postpaid card.

As described above, the product to which the transaction management system 1 is applied is not limited at all, and therefore the type and form of the store are not limited at all. For example, the transaction management system 1 may be constructed for trading fuel oil (eg, gasoline, gas oil, etc.), other goods, or services at a gas station. That is, the product may be fuel oil or the like, and the store may be a gas station. In this case, the store terminal 10 may be a fuel dispenser having a cash register function or a POS function. Alternatively, the transaction management system 1 may be constructed for transaction of goods or services in retail stores such as department stores, supermarkets, convenience stores, bookstores and the like. Alternatively, the transaction management system 1 may be constructed for transaction of goods or services at service providing facilities such as restaurants, amusement parks, stadiums, and concert venues.

The functional elements related to the transaction management system 1 will be described with reference to FIG. FIG. 2 is a diagram showing an example of the functional configuration of the transaction management system 1.

The store terminal 10 includes a tag information acquisition unit 11 and a purchase processing unit 12 as functional elements. The tag information acquisition unit 11 is a functional element that acquires various kinds of information sent from the IC tag 91. The purchase processing unit 12 is a functional element that executes a process related to transaction (specifically, purchase) of a product.

The transaction management server 20 includes a credit request unit 21, a card data acquisition unit 22, and a payment information processing unit 23 as functional elements. The credit requesting unit 21 is a functional element that executes processing relating to credit check of a postpaid card. The card data acquisition unit 22 is a functional element that accesses the card database 30 and acquires card data. The payment information processing unit 23 is a functional element that relays the transfer of payment information from the second sales management server 60 to the payment management server 40.

The card database 30 is a device that stores card data relating to postpaid cards. The card database 30 may be a component of the transaction management system 1 or a component not included in the transaction management system 1. In the present embodiment, the card database 30 is a device different from the transaction management server 20, but may be a component of the transaction management server 20.

Each record of card data includes a customer ID and a set of formal and tokenized card numbers for postpaid cards. That is, this card data associates the customer ID, the official card number, and the tokenized card number. The card data is generated based on the credit card information provided by the customer 90 when the customer 90 applies for the issuance of the IC tag 91, and is stored in the card database 30. Each record in the card database may be encrypted for added security. The details of the procedure for registering card data and issuing the IC tag 91 are not limited, and the flow of the procedure may be arbitrarily determined. In any case, the tokenized card number is generated by tokenizing the formal card number of the postpaid card when generating and storing the card data. In the present embodiment, it is premised that the customer 90 has already acquired the IC tag 91 and the card data corresponding to the IC tag is stored in the card database 30.

The payment management server 40 includes a credit inquiry unit 41 and a payment unit 42 as functional elements. The credit inquiry unit 41 is a functional element that executes a credit inquiry in each transaction (settlement). The settlement unit 42 is a functional element that executes processing related to settlement.

The first sales management server 50 includes a detoken unit 51 and a transaction/settlement management unit 52 as functional elements. The detoken unit 51 is a functional element that acquires a formal card number from the transaction management server 20. The transaction/payment management unit 52 is a functional element that acquires transaction information from the store terminal 10 and transmits the payment information to the payment management server 40.

The second sales management server 60 includes a transaction/settlement management unit 61 as a functional element. The transaction/settlement management unit 61 is a functional element that acquires transaction information from the store terminal 10 and transmits the transaction information to the transaction management server 20.

The point management server 70 includes a point management unit 71 as a functional element. The point management unit 71 is a functional element that executes processing related to a point card.

FIG. 3 is a diagram showing a general hardware configuration of a computer 100 that can function as a server or a terminal related to the transaction management system 1. For example, the computer 100 includes a processor 101, a main storage unit 102, an auxiliary storage unit 103, a communication control unit 104, an input device 105, and an output device 106. The processor 101 executes an operating system and application programs. The main storage unit 102 is composed of, for example, a ROM and a RAM. The auxiliary storage unit 103 is composed of, for example, a hard disk or a flash memory, and generally stores a larger amount of data than the main storage unit 102. The auxiliary storage unit 103 stores a program 110 for causing at least one computer to function as a server or a terminal. The communication control unit 104 is composed of, for example, a network card or a wireless communication module. The input device 105 includes, for example, a keyboard, a mouse, a touch panel, and the like. The output device 106 is composed of, for example, a monitor and a speaker.

Each functional element of each device is realized by loading the program 110 onto the processor 101 or the main storage unit 102 and executing the program. The program 110 includes code for implementing each functional element of the corresponding server or terminal. The processor 101 operates the communication control unit 104, the input device 105, or the output device 106 according to the program 110 to read and write data in the main storage unit 102 or the auxiliary storage unit 103. By this processing, each functional element of the corresponding server or terminal is realized. The data or database required for processing may be stored in the main storage unit 102 or the auxiliary storage unit 103.

Each server may be composed of one or more computers. When a plurality of computers are used, these computers are connected to each other via a communication network to logically form one server.

Program 110 may correspond to a transaction management program. The program 110 may be provided after being fixedly recorded in a tangible recording medium such as a CD-ROM, a DVD-ROM, or a semiconductor memory. Alternatively, the program 110 may be provided as a data signal superimposed on a carrier wave via a communication network.

[System operation]
With reference to FIGS. 4 to 6, the operation of the transaction management system 1 will be described, and the transaction management method according to the present embodiment will be described. 4 to 6 are sequence diagrams showing an example of the operation of the transaction management system 1. More specifically, FIG. 4 shows a process in one transaction (one purchase procedure), and FIGS. 5 and 6 are diagrams showing examples of the closing process. 4 to 6 also show the correspondence with the steps shown in FIG.

First, the processing in one transaction will be described as a processing flow S1 with reference to FIG. In step S101, the tag information acquisition unit 11 of the store terminal 10 acquires the information in the IC tag 91. In response to the customer 90 holding the IC tag 91 over the reader/writer 19, the reader/writer 19 receives information from the IC tag 91 and transmits the information to the store terminal 10, whereby the store terminal 10 Receive that information. The IC tag 91 stores at least the customer ID, and further stores at least one of the purchase setting information and the point card number. Therefore, the store terminal 10 acquires at least the customer ID, and in some cases, further acquires one or both of the purchase setting information and the point card number. The store terminal 10 holds the information acquired from the IC tag 91.

In step S102, the purchase processing unit 12 of the store terminal 10 transmits a credit inquiry to the transaction management server 20. The credit inquiry is a data signal for confirming the credit status of the postpaid card corresponding to the customer ID. The credit inquiry includes the current date and time, a store ID that is an identifier for uniquely identifying the store in which the store terminal 10 is installed, the acquired customer ID, and a temporary purchase amount. The tentative purchase amount is a purchase amount temporarily set to execute a credit inquiry about a postpaid card, and is not a purchase amount of a product. As the tentative purchase price, an extremely low price is set. For example, the minimum value that can occur in a transaction (for example, 1 yen for Japanese yen) may be set as the tentative purchase price. The transaction management server 20 receives the credit inquiry.

In step S103, the card data acquisition unit 22 of the transaction management server 20 accesses the card database 30 and acquires the card data corresponding to the customer ID indicated in the credit inquiry. Through this processing, the card data acquisition unit 22 acquires two types of card numbers corresponding to the customer ID, that is, a formal card number and a tokenized card number.

In step S104, the credit request unit 21 of the transaction management server 20 transmits a credit inquiry request to the settlement management server 40. The credit inquiry request is a data signal for causing the payment management server 40 to execute the credit inquiry of the postpaid card corresponding to the customer ID. The credit inquiry request includes the current date and time, the formal card number acquired from the card database 30, and the tentative purchase amount indicated in the credit inquiry. The payment management server 40 receives the credit inquiry request.

In step S105, the credit inquiry unit 41 of the payment management server 40 executes a credit inquiry for the postpaid card corresponding to the formal card number indicated by the credit inquiry request, and sends the result to the transaction management server 20 as a credit result. To do. The credit inquiring unit 41 determines whether or not the postpaid card can be used in the transaction at the store by referring to data indicating the status of the postpaid card, the usage limit amount, and the like. Since the tentative purchase price is extremely low (for example, the minimum value that can occur in transactions), unless there are special circumstances such as the postpaid card being suspended or already exceeding the credit limit, credit inquiry Department 41 approves the use of postpaid cards. The credit inquiry unit 41 transmits the result of the credit inquiry to the transaction management server 20 as a credit result. The transaction management server 20 receives the credit result.

In step S106, the credit requesting unit 21 of the transaction management server 20 sends a credit response to the store terminal 10. The credit response is a data signal indicating the answer to the credit inquiry, and includes the credit result received from the payment management server 40 and the tokenized card number acquired from the card database 30. The store terminal 10 receives the credit response. This credit response does not include the official card number. That is, the credit requesting unit 21 transmits the tokenized card number to the store terminal 10 without transmitting the formal card number to the store terminal 10. Since the store terminal 10 does not obtain the official card number, the clerk does not recognize the official card number of the postpaid card of the customer 90 in the transaction.

In step S107, the purchase processing unit 12 of the store terminal 10 transmits a point inquiry to the point management server 70. The point inquiry is a data signal for confirming the status of the point card corresponding to the customer ID, and includes the point card number. The point management server 70 receives the point inquiry.

In step S108, the point management unit 71 of the point management server 70 determines the status of the point card based on the point card number indicated in the point inquiry, and transmits the point result indicating the inquiry result to the store terminal 10. The point management unit 71 accesses a database (not shown) that stores data regarding the point card, reads the data corresponding to the point card number, and acquires the status of the point card based on the data. The status of the point card (that is, the point status) indicates, for example, information on whether the point card is valid and the point balance. The store terminal 10 receives the point status.

Steps S107 and S108 are not essential processes. If the point card number is not stored in the IC tag 91, these two steps are omitted.

In step S109, the purchase processing unit 12 of the store terminal 10 executes the setting related to the purchase of the product. The purchase processing unit 12 executes the setting based on the purchase setting information acquired from the IC tag 91. The specific method for setting the purchase of the product is not limited. For example, if the product is a fuel oil such as gasoline or light oil, the purchase setting information may indicate a preset default value for refueling (for example, fuel type, refueling amount). The store terminal 10 displays the purchase setting information (default value) on the monitor and inquires of the customer 90 whether or not to purchase the product according to the information. The customer 90 can operate the store terminal 10 to determine the details of the product to be purchased. For example, the customer 90 operates a refueling machine which is an example of the store terminal 10 to select refueling based on a default value, or requests refueling after changing the fuel type or refueling amount from the default value. be able to. As described above, the type of product is not limited at all, and correspondingly, the content of the purchase setting information is not limited at all. Step S109 is not an essential process. If the purchase setting information is not stored in the IC tag 91, step S109 is omitted.

In step S110, the purchase processing unit 12 of the store terminal 10 executes a purchase process (settlement process) for finalizing a transaction. The purchase processing unit 12 executes the payment by the post-payment card only when the credit result indicates that the post-payment card can be used. When the floor limit is set for the purchase using the postpaid card, the purchase processing unit 12 accepts only transactions within a predetermined upper limit amount. The floor limit is a fixed amount of money that requires credit inquiry (credit inquiry). Purchases that exceed the floor limit require approval from the credit card company, and below the floor limit, no credit inquiry (credit inquiry) is performed. For example, if the floor limit is 15,000 yen, the purchase processing unit 12 accepts the purchase and payment by the postpaid card only when the purchase amount is 15,000 yen or less. At this point, since the credit inquiry using an extremely low amount (for example, the minimum value that can occur in the transaction) has been completed, it is possible to make a payment on the condition of the floor limit. For example, when the store terminal 10 is a refueling machine at a gas station, the refueling machine controls refueling so that the purchase price does not exceed the floor limit.

When there is a point balance of the point card, the purchase processing unit 12 inquires of the customer 90 whether to use at least a part of the points for purchasing the product, and based on the selection of the customer 90 and the purchase price. To add or subtract points on the point card. When the customer 90 uses points for purchase, the purchase processing unit 12 accepts a transaction if the purchase amount is less than or equal to the total of the floor limit and the points used.

When the purchase process is completed, the purchase processing unit 12 issues a receipt, generates a record of transaction information indicating one transaction, and stores the record in a predetermined storage unit. One record of transaction information indicates, for example, transaction date and time, store ID, tokenized card number, and product information. The product information indicates, for example, the name, unit price, quantity, and purchase price (=unit price×quantity) of each of one or more products.

In the processing flow S1, when the store terminal 10 executes the settlement of the product based on the credit response, the store terminal 10 receives the tokenized card number, but does not receive the official card number. That is, the store terminal 10 executes the settlement of the product based on the credit response without acquiring the official card number.

In each store terminal 10, the processing flow S1 is executed every time each transaction (settlement) is performed, whereby transaction information is accumulated in each store terminal 10. The accumulated transaction information is transmitted to the first sales management server 50 or the second sales management server 60 by the closing process.

Next, with reference to FIG. 5, a closing process via the first sales management server 50 will be described as a process flow S2. This closing process is generally a daily process, but the execution timing of the process flow S2 is not limited to this, and may be executed at any timing.

In step S201, the purchase processing unit 12 of the store terminal 10 sends transaction information indicating one or more transactions (more specifically, one or more transactions that occurred after the last closing processing) to the first sales management server 50. Send. The first sales management server 50 receives the transaction information.

In step S202, the detoken unit 51 of the first sales management server 50 sends a detoken request to the transaction management server 20. The detoken request is a data signal for obtaining the official card number of the postpaid card, and includes one or more tokenized card numbers indicated by the transaction information. The transaction management server 20 receives the detoken request.

In step S203, the card data acquisition unit 22 of the transaction management server 20 accesses the card database 30 by the card data acquisition unit 22 to detect one or more tokenized card numbers indicated by the detoken request. Get the official card number. Since the formal card number and the tokenized card number have a one-to-one correspondence, the card data acquisition unit 22 can obtain the formal card number for each of the one or more tokenized card numbers. ..

In step S204, the card data acquisition unit 22 transmits a detoken response to the first sales management server 50. The detoken response is a data signal indicating a response to the detoken request, and includes one or more pairs of a formal card number and a tokenized card number. The first sales management server 50 receives the detoken response.

In step S205, the transaction/settlement management unit 52 of the first sales management server 50 transmits settlement information corresponding to the transaction information to the settlement management server 40. Specifically, the transaction/settlement management unit 52 generates settlement information by replacing each of the one or more tokenized card numbers indicated by the transaction information with an official card number. This replacement is called detoken. The transaction/settlement management unit 52 transmits this settlement information to the settlement management server 40. The payment management server 40 receives the payment information, and the payment unit 42 executes payment based on the payment information. In addition, the transmission of the payment information by the first sales management server 50 (step S205) may or may not correspond to the transmission of the transaction information by the store terminal 10 (step S201). For example, both transaction information transmission and payment information transmission may be daily processing. Alternatively, the transaction information may be transmitted daily and the payment information may be transmitted monthly or semi-monthly.

Next, with reference to FIG. 6, the closing process via the second sales management server 60 will be described as a process flow S3. Similar to the process flow S2, this closing process may be a daily process or may be executed at another arbitrary timing.

In step S301, the purchase processing unit 12 of the store terminal 10 sends transaction information indicating one or more transactions (more specifically, one or more transactions that occurred after the last closing processing) to the second sales management server 60. Send. The second sales management server 60 receives the transaction information.

In step S302, the transaction/settlement management unit 61 of the second sales management server 60 transmits the transaction information as transaction information to the transaction management server 20. Unlike the first sales management server 50, the second sales management server 60 (transaction/settlement management unit 61) does not execute detoken. The transaction management server 20 receives the payment information. In addition, the transmission of the payment information by the second sales management server 60 (step S302) may or may not correspond to the transmission of the transaction information by the store terminal 10 (step S301). For example, both transaction information transmission and payment information transmission may be daily processing. Alternatively, the transaction information may be transmitted daily and the payment information may be transmitted monthly or semi-monthly.

In step S303, the card data acquisition unit 22 and the payment information processing unit 23 of the transaction management server 20 cooperate to replace the tokenized card number in the payment information with the official card number. The card data acquisition unit 22 accesses the card database 30 and acquires one or more formal card numbers corresponding to one or more tokenized card numbers shown in the payment information. The payment information processing unit 23 replaces each of the one or more tokenized card numbers indicated by the payment information with an official card number.

In step S304, the payment information processing unit 23 transmits the processed payment information to the payment management server 40. The payment management server 40 receives the payment information, and the payment unit 42 executes payment based on the payment information.

[effect]
As described above, the transaction management system according to one aspect of the present disclosure includes the transaction management server that communicates with a store terminal provided in a store. The transaction management server receives a credit inquiry including a customer ID, which is an identifier that uniquely identifies a customer who wants to purchase a product at the shop, from the shop terminal, and the customer ID and the official card number of the customer's postpaid card, A formal card number corresponding to the received customer ID from a database storing card data associated with the tokenized card number of the postpaid card, obtained by tokenizing the formal card number; Acquire the tokenized card number, send a credit inquiry request including the official card number to the payment management server of the card company that manages the payment of the postpaid card, and send the credit result of the official card number from the payment management server. The credit response is received and the credit response including the credit result and the tokenized card number and not including the official card number is transmitted to the store terminal. Based on the credit response, the store terminal executes the transaction of the product without acquiring the formal card number.

A transaction management method according to one aspect of the present disclosure is executed by a transaction management system that includes a transaction management server that communicates with a store terminal provided in a store. The transaction management method includes a step in which the transaction management server receives a credit inquiry including a customer ID, which is an identifier that uniquely identifies a customer who intends to purchase a product in a store, from the store terminal, and the transaction management server stores the customer ID in the store. , Received from a database storing card data associated with the official card number of the customer's postpaid card and the tokenized card number of the postpaid card obtained by tokenizing the official card number The step of obtaining the formal card number and tokenized card number corresponding to the generated customer ID, and the transaction management server issues a credit inquiry request including the formal card number to the card company that manages the payment of the postpaid card. Transmitting to the payment management server, the transaction management server receiving the credit result of the formal card number from the payment management server, the transaction management server including the credit result and the tokenized card number, and Sending a credit response to the store terminal that does not include the official card number. Based on the credit response, the store terminal executes the transaction of the product without acquiring the formal card number.

A transaction management program according to an aspect of the present disclosure issues a credit inquiry including a customer ID, which is an identifier that uniquely identifies a customer who wants to purchase a product in a store, to a computer that communicates with a store terminal provided in the store. The step of receiving from the store terminal, the customer ID, the official card number of the customer's postpaid card, and the tokenized card number of the postpaid card obtained by tokenizing the official card number are associated with each other. The step of obtaining the formal card number and tokenized card number corresponding to the received customer ID from the database storing the stored card data, and the credit inquiry request including the formal card number, and the postpaid card settlement. Including the step of transmitting to the payment management server of the card company that manages the credit card, the step of receiving the credit result of the official card number from the payment management server, and the official card number including the credit result and the tokenized card number. And a step of transmitting a credit response not containing Based on the credit response, the store terminal executes the transaction of the product without acquiring the formal card number.

In this aspect, the transaction of the product is executed without providing the official card number of the postpaid card to the store terminal. Since no one can know the card number at the store where the product is actually traded, the product can be traded while ensuring the security of the card number. The correspondence between the tokenized card number and the official card number can be obtained only from the transaction management server, and the correspondence can not be acquired from the store side, so the official card number itself is kept secret ( The security of the card number can be further enhanced as compared with the case of encryption). Further, since it is not necessary to encrypt or decrypt the card number in the transaction management server and the store terminal, it is possible to reduce the consumption amount of hardware resources (eg, processor, memory) in each computer.

The transaction management system according to another aspect may further include a sales management server that comprehensively manages the transaction of products at the store terminal. The sales management server receives transaction information indicating one or more transactions at the store from the store terminal (the transaction information includes a tokenized card number corresponding to each transaction, and corresponds to each transaction. The tokenized card number corresponding to each transaction may be transmitted to the transaction management server in order to provide the transaction management server with the payment information based on the transaction information). The transaction management server may refer to the database to obtain the formal card number corresponding to each tokenized card number corresponding to each transaction received from the sales management server. The transaction management server or the sales management server may send payment information including a formal card number corresponding to each transaction to the payment management server. Through this series of processing, it is possible to provide the official card number to the card company while executing the transaction without providing the official card number to the store terminal.

The transaction management system according to another aspect may further include a store terminal. The store terminal may acquire the customer ID from the customer's IC tag that stores the customer, and may send a credit inquiry including the customer ID to the transaction management server. By introducing IC tags, customers can purchase products without presenting post-payment cards, which contributes to the convenience of product transactions.

In the transaction management system according to another aspect, the IC tag may further store a point card number, which is an identifier that uniquely identifies a point card that manages points given to a customer according to a transaction of a product. The store terminal further acquires the point card number from the IC tag, transmits the point card number to the point management server that manages the point card, receives the point status indicating the inquiry result of the point card number from the point management server, and sells the product. In the transaction, the processing regarding the point card may be further executed. In this case, the customer can purchase the product and accumulate or use points along with the purchase without presenting both the postpaid card and the point card. This contributes to the convenience of commodity trading.

In the transaction management system according to another aspect, the product may include fuel oil and the store terminal may be a refueling machine. In this case, the fuel oil transaction is executed without providing the official card number of the postpaid card to the fuel dispenser (store terminal). Since no one can know the card number at the store, it is possible to trade fuel oil while ensuring the safety of the card number.

[Modification]
The foregoing has been a detailed description based on the embodiment of the present disclosure. However, the present disclosure is not limited to the above embodiment. The present disclosure can be variously modified without departing from the gist thereof.

Although the card number of the postpaid card is tokenized in the above embodiment, the card number may be secreted by a method other than tokenization. For example, the card number may be encrypted. In this case, when the transaction management server receives a credit inquiry including the customer ID from the store terminal, the transaction management server acquires the formal card number corresponding to the customer ID from the database. Then, the transaction management server transmits a credit inquiry request including the formal card number to the payment management server of the card company, and receives the credit result of the formal card number from the payment management server. Then, the transaction management server transmits a credit response including the credit result and the encrypted card number and not including the official card number itself to the store terminal. The transaction management server may encrypt the official card number, or may obtain the already encrypted card number from the database. Based on the credit response, the store terminal executes the transaction of the product without acquiring the official card number itself.

When the card number is encrypted, the sales management server receives transaction information indicating one or more transactions at the store from the store terminal. This transaction information includes the encrypted card number corresponding to each transaction and does not include the official card number corresponding to each transaction. The sales management server transmits the encrypted card number corresponding to each transaction to the transaction management server in order to provide the settlement management server with the payment information based on the transaction information. The transaction management server acquires a formal card number based on the encrypted card number corresponding to each transaction received from the sales management server. The transaction management server may obtain the formal card number by decrypting the encrypted card number, or may obtain the formal card number from the database. The transaction management server or the sales management server transmits payment information including a formal card number corresponding to each transaction to the payment management server.

In the present disclosure, a concept including both tokenization and encryption is referred to as "secretion". Further, a concept including both a tokenized card number and a secreted card number is referred to as “secreted card number”. By secreting the official card number of the postpaid card, the secreted card number of the postpaid card is obtained.

As described above, the processing regarding the point card is not essential, and thus the point management server 70 is not essential. Although the first sales management server 50 and the second sales management server 60 exist as the sales management server in the above embodiment, the sales management server may be only one of these two types.

The configuration of the payment management server, which is a card company server, is not limited. For example, a card company may be divided into a server that executes a credit inquiry and a server that processes payment information.

When comparing the magnitude relationship of two numbers in a transaction management system, either of the two criteria of "greater than or equal to" and "greater than" may be used, and the two criteria of "less than or equal to" and "less than". Either of these may be used. The selection of such a criterion does not change the technical significance of the process of comparing the magnitude relationship of two numerical values.

The processing procedure of the transaction management method executed by at least one processor is not limited to the example in the above embodiment. For example, some of the steps (processes) described above may be omitted, or each step may be executed in a different order. Further, any two or more of the steps described above may be combined, and some of the steps may be modified or deleted. Alternatively, other steps may be executed in addition to the above steps.

DESCRIPTION OF SYMBOLS 1... Transaction management system, 10... Store terminal, 11... Tag information acquisition part, 12... Purchase processing part, 19... Non-contact IC card reader/writer, 20... Transaction management server, 21... Credit request part, 22... Card data Acquisition unit, 23... Payment information processing unit, 30... Card database, 40... Payment management server, 41... Credit inquiry unit, 42... Payment unit, 50... First sales management server, 51... Token unit, 52... Payment management unit , 60... Second sales management server, 61... Payment management unit, 70... Point management server, 71... Point management unit, 90... Customer, 91... IC tag.

Claims (7)

Equipped with a transaction management server that communicates with the store terminal provided in the store,
The transaction management server is
Receiving a credit inquiry including a customer ID, which is an identifier for uniquely identifying a customer who intends to purchase a product at the store, from the store terminal;
Store card data in which the customer ID, the official card number of the customer's postpaid card, and the tokenized card number of the postpaid card obtained by tokenizing the formal card number are associated with each other. From the database to obtain the formal card number and the tokenized card number corresponding to the received customer ID,
Send a credit inquiry request including the formal card number to the payment management server of the card company that manages the payment of the postpaid card,
Receiving the credit result of the formal card number from the payment management server,
Sending a credit response including the credit result and the tokenized card number, and not including the formal card number to the store terminal,
The store terminal executes a transaction of the product based on the credit response without acquiring the formal card number,
Transaction management system. Further comprising a sales management server that comprehensively manages the transaction of the product at the store terminal,
The sales management server is
Transaction information indicative of one or more transactions at the store is received from the store terminal, wherein the transaction information includes the tokenized card number corresponding to each of the transactions, and the individual transactions. Does not include the official card number corresponding to
Transmitting the tokenized card number corresponding to each transaction to the transaction management server to provide the payment management server with payment information based on the transaction information,
The transaction management server, by referring to the database, acquires the formal card number corresponding to each of the tokenized card numbers corresponding to the individual transactions received from the sales management server,
The transaction management server or the sales management server transmits the payment information including the formal card number corresponding to the individual transaction to the payment management server.
The transaction management system according to claim 1. Further comprising the store terminal,
The store terminal acquires the customer ID from an IC tag of the customer that stores the customer, and transmits the credit inquiry including the customer ID to the transaction management server.
The transaction management system according to claim 1. The IC tag further stores a point card number, which is an identifier that uniquely identifies a point card that manages points given to the customer according to the transaction of the product,
The store terminal is
Further acquiring the point card number from the IC tag,
Send the point card number to a point management server that manages the point card,
Receiving from the point management server the point status indicating the result of the inquiry of the point card number,
In the transaction of the merchandise, further execute the processing relating to the point card,
The transaction management system according to claim 3. The product includes fuel oil,
The store terminal is a refueling machine,
The transaction management system according to any one of claims 1 to 4. A transaction management method executed by a transaction management system including a transaction management server that communicates with a store terminal provided in a store,
The transaction management server receiving a credit inquiry from the store terminal, the credit inquiry including a customer ID that is an identifier that uniquely identifies a customer who wants to purchase a product at the store;
The transaction management server associates the customer ID, the official card number of the postpaid card of the customer, and the tokenized card number of the postpaid card obtained by tokenizing the official card number. Obtaining the formal card number and the tokenized card number corresponding to the received customer ID from a database storing stored card data,
The transaction management server transmits a credit inquiry request including the formal card number to a payment management server of a card company that manages payment of the postpaid card,
The transaction management server receiving a credit result of the formal card number from the payment management server;
The transaction management server includes a step of transmitting a credit response including the credit result and the tokenized card number and not including the formal card number to the store terminal,
The store terminal executes a transaction of the product based on the credit response without acquiring the formal card number,
Transaction management method. On the computer that connects to the store terminal provided in the store for communication,
Receiving a credit inquiry from the store terminal, the credit inquiry including a customer ID that is an identifier that uniquely identifies a customer who wants to purchase a product at the store;
Store card data in which the customer ID, the official card number of the customer's postpaid card, and the tokenized card number of the postpaid card obtained by tokenizing the formal card number are associated with each other. Obtaining the formal card number and the tokenized card number corresponding to the received customer ID from the database,
Transmitting a credit inquiry request including the formal card number to a payment management server of a card company that manages payment of the postpaid card;
Receiving the credit result of the formal card number from the payment management server,
A step of transmitting a credit response including the credit result and the tokenized card number and not including the formal card number to the store terminal,
The store terminal executes a transaction of the product based on the credit response without acquiring the formal card number,
Transaction management program.

Images