JP2020170369A - Information sharing server and information sharing method - Google Patents

Abstract

To provide an information sharing server that shares personal information of a user among a plurality of service providers that provide services to a registered user to reduce a burden on the user when registering the user for each service, and appropriately maintains personal information up to date.SOLUTION: By a configuration in which a plurality of service providers providing individual services used by a user share personal information of the user managed by an online identification service provided by an information sharing server, a burden on the user for registering and updating personal information to each service provider is reduced, and by a configuration to confirm with the user whether or not the registered personal information has been changed when registering for a new service, even if the user does not voluntarily update the personal information managed by an online identification service, a mechanism is realized in which necessary updates are easily prompted and the updated personal information is reflected in all services.SELECTED DRAWING: Figure 1

Description

The present invention relates to an information sharing server and a method of sharing information for a plurality of service providers who provide services to registered users to share personal information of users.

Companies and the like often require customers who continuously provide services to register users, and such user registration is generally performed online via the Internet. When various services for user registration on the Internet are provided, it becomes complicated for users to input e-mail addresses, names, etc. for user registration for each service, and such troubles are eliminated. How to encourage many customers to register as a user is an issue for service providers.

For such a problem, for example, an authentication system in which personal information of a user is registered is provided, and when inputting information for user registration in each service, the personal information registered in the authentication system is entered in an input field. An invention that reduces the burden of user input work by embedding it in (for example, see Patent Document 1) and mutual provision of personal information necessary for user registration in cooperation between service providers, and each An invention (see, for example, Patent Document 2) that reduces the burden of user input work by embedding personal information received from another service provider in an input field when inputting information for user registration in a service. It is disclosed.

In addition, in recent years, in cooperation with SNS that users frequently use, it is possible to perform user registration using personal information registered in SNS and log in to the website of each service from the SNS account. , A mechanism called "social login" (see, for example, Non-Patent Document 3) has also become widely used.

JP-A-2002-55948 International Publication No. 2005/15421

"Social plus" website, "What is social login? Explaining the mechanism, advantages and disadvantages, introduction / implementation method to examples.", [Search on March 25, 2019], Internet <URL: https: // socialplus. jp / content / sociallogin ＞

According to the method of utilizing the personal information of the user registered in other services as in Patent Documents 1 and 2, it is possible to reduce the input burden of the user's name etc. when registering the user in the new service. However, since the personal information of the registered user is managed by each service provider, the user must notify each service provider of the change of the registered information when changing the address. The problem arises that it does not become. Patent Document 2 discloses that personal information of the same user is exchanged with each other and automatically updated (Patent Document 2, page 19, lines 43-49), but even with this method, until automatic update is performed. There will be a time lag.

In addition, with the expansion of services such as transfer and sharing of goods between individuals, not only is the service provider required to register contact information such as the user's e-mail address at the time of user registration, but the service provider is also presented with identity verification documents. The number of cases where identity verification is required is increasing, but in such cases, complicated procedures such as when registering a user or changing an address are likely to hinder the expansion of service usage.

On the other hand, according to the social login method, the personal information of the user is managed by the SNS account linked with other services, so that the user keeps only the personal information registered in the SNS account up to date. If you keep it at, you will not have to notify other services of your address change. However, since information such as when changing an address can be updated only with an SNS account, if the procedure for updating the information registered in the SNS account is forgotten, the personal information of the user who has not been updated will be lost. It will be provided for all services. In addition, even if the SNS is not used, the account of the SNS must be maintained and the registered user's personal information etc. must be updated to the latest state in order to use other services. There is also the problem of not being able to.

The present invention has been made in order to deal with such a problem, and a plurality of service providers who provide services to registered users share user's personal information and users to each service. It is an object of the present invention to provide an information sharing server and a method of sharing information, which is suitable for keeping personal information up-to-date while reducing the burden on the user at the time of registration.

The present invention that solves such a problem is an information sharing server for a plurality of service providers that provide services used by the user to share the personal information of the user, and any of the plurality of service providers. A receiving means for receiving a request for user registration to the service, which is accessed from a user terminal of a user who wishes to use the service provided by the user via a Web page for user registration to the service, and the user terminal. From the above, the determination means for receiving the identification information for identifying the user and determining whether the user is a registered user of personal information, and the determination means, the user is a registered user of personal information. If it is determined that, at least a part of the registered personal information of the user is presented to the user terminal to confirm whether or not the presented information has been changed, and the information is changed to the presented information by the confirmation means. If it is confirmed that there is no information, or if it is confirmed that at least a part of the information presented by the confirmation means has been changed, the changed information received from the user terminal is reflected and the user has been registered. The information sharing server is provided with an issuing means for issuing an authentication key necessary for a service provider providing the service to access the personal information of the user when the personal information is updated. ..

In the present invention, a plurality of service providers who provide services used by users share personal information of users registered in the information sharing server according to the present invention, thereby providing personal information to each service provider. The information sharing server according to the present invention is configured to reduce the burden on the user for registration and update, and to confirm with the user whether or not the registered personal information has been changed when registering for a new service. It is easy to be prompted for necessary updates without voluntarily updating the personal information registered in, and a mechanism is realized in which the updated personal information is reflected in all services.

Further, the present invention includes an authentication means that executes a predetermined process for personal authentication regarding the user when the determination means determines that the user is not a registered user of personal information, and the issuing means When the user is authenticated by the authentication means, the personal information of the user is newly registered, and it is necessary for the service provider who provides the service to access the personal information of the user. It can also be characterized by issuing an authentication key.

With this configuration, even a user whose personal information is not registered in the information sharing server according to the present invention can be newly registered as a user and can use the information sharing server according to the present invention.

Further, in the present invention, when it is confirmed by the confirmation means that at least a part of the presented information has been changed and the changed information corresponds to the predetermined personal information, the predetermined personal authentication for the user is performed. It is also possible to provide an update means for updating the personal information registered for the user when the user is authenticated as the person himself / herself by executing the process of.

With this configuration, for example, when important personal information such as the surname and address of the person is changed, they can be authenticated by using identity verification documents such as a driver's license and my number card. Information can be updated appropriately.

Further, in the present invention, the determination means identifies the user from the telephone number and e-mail address of the user received from the user terminal, and personal information of the user whose telephone number and e-mail address match is registered. If so, it may be characterized in that the user is determined to be a registered user of personal information.

To confirm whether or not the user is a registered user, the user can be identified by using a telephone number or an e-mail address without issuing a unique ID to the information sharing server according to the present invention. Even in irregular cases where one of them is used by another person due to a change in the phone number, etc. by identifying the user by matching both the phone number and the e-mail address, such as It becomes possible to accurately determine whether or not the user is a completed user.

Further, according to the present invention, when an access request to a user's personal information is received from any of the plurality of service providers, a user who provides the user using an authentication key issued by the issuing means as a key. It can also be characterized by identifying personal information of.

With this configuration, it is possible to appropriately control the access of the user's personal information from the service provider.

The present invention can also be specified as a method of sharing information executed by the information sharing server according to the present invention.

In the method of sharing information according to the present invention, one of the plurality of service providers provides an information sharing server for sharing the personal information of the user by a plurality of service providers who provide the service used by the user. The reception step for receiving a request for user registration to the service, which is accessed from the user terminal of the user who wants to use the service via the Web page for user registration to the service, and the information sharing server In the determination step of receiving the identification information for identifying the user from the user terminal and determining whether the user is a registered user of personal information, the information sharing server causes the user to determine in the determination step. When it is determined that the user is a registered user of this information, at least a part of the registered personal information of the user is presented to the user terminal, and a confirmation step for confirming whether or not the presented information has been changed, and a confirmation step. When the information sharing server confirms that the presented information has not changed in the confirmation step, or when it is confirmed that at least a part of the presented information has changed in the confirmation step, the user terminal confirms that there is no change. When the personal information registered for the user is updated to reflect the received changed information, the service provider who provides the service issues an authentication key necessary for accessing the personal information of the user. It is a method of sharing information characterized by having an issuing step.

Further, the information sharing method according to the present invention can also be specified as an information sharing method executed by each configuration of the information sharing server according to the present invention described above.

According to the present invention, a user who uses a service provided by a plurality of service providers is significantly reduced in the burden of registering a user with each service provider, and is registered in the information sharing server according to the present invention. The necessity of updating personal information is confirmed at the time of user registration of a new service, and when the registered personal information is updated, a mechanism is realized in which the updated information is reflected in all services used by the user. An environment is created in which users can easily use various services that require user registration.

For the service provider, the burden of managing the personal information of the user is reduced, and the hurdle for the user to newly register the user is lowered, so that the possibility of acquiring more users and expanding the service is increased. It can also be expected to have an effect on revitalizing economic activities.

It is a figure which shows the outline of the online identification service provided by the information sharing server which concerns on this invention. It is a figure which shows the outline of the embodiment of the online identification service server corresponding to the information sharing server which concerns on this invention. It is a block diagram which shows the functional configuration of the online identification service server corresponding to the information sharing server which concerns on this invention. It is the first flowchart which shows the flow of the registration / update process of the user's personal information by the online identification service server corresponding to the information sharing server which concerns on this invention. It is a second flowchart which shows the flow of the registration / update process of the user's personal information by the online identification service server corresponding to the information sharing server which concerns on this invention. It is a third flowchart which shows the flow of the registration / update process of the user's personal information by the online identification service server corresponding to the information sharing server which concerns on this invention. It is a fourth flowchart which shows the flow of the registration / update process of the user's personal information by the online identification service server corresponding to the information sharing server which concerns on this invention. FIG. 1 is a first diagram showing a flow of registering / updating a user's personal information in an online identity verification service server corresponding to the information sharing server according to the present invention. FIG. 2 is a second diagram showing a flow of registering / updating a user's personal information in an online identity verification service server corresponding to the information sharing server according to the present invention. FIG. 3 is a third diagram showing a flow of registering / updating a user's personal information in an online identity verification service server corresponding to the information sharing server according to the present invention. FIG. 4 is a fourth diagram showing a flow of registering / updating a user's personal information in an online identity verification service server corresponding to the information sharing server according to the present invention. FIG. 5 is a diagram showing a flow of registering / updating a user's personal information in an online identification service server corresponding to the information sharing server according to the present invention.

The embodiment for carrying out the present invention will be described in detail below with reference to the drawings. The following description describes the online identification service provided by the present invention as an example of the embodiment of the present invention, but the present invention is not limited to the embodiment described below.

An outline of the online identification service provided by the information sharing server according to the present invention will be described with reference to FIG. In FIG. 1, the information sharing server according to the present invention is an online that collectively manages personal information by performing user identification (identity authentication) on behalf of a plurality of service providers that provide various services to users. Used to provide identity verification services.

The personal information of users whose identities have been confirmed by identity verification documents such as driver's licenses and My Number cards is managed by the providers of online identity verification services, and service providers who provide individual services are provided with each service. You are given access to the personal information of registered users. When each service provider who provides an individual service wants to confirm the personal information of a registered user, he / she accesses and browses the personal information managed by the provider of the online identification service.

If a user registered for one of the individual services wants to use another individual service, it is necessary to register as a user for the newly used individual service, but an individual managed by the provider of the online identification service. By using the information, it is possible to reduce the burden of identification and information input that occurs at the time of user registration. At that time, by presenting the personal information of the user registered in the online identification service and confirming whether or not there is any change, it is possible to prompt the update of necessary personal information.

FIG. 2 shows an outline of an embodiment of an online identity verification service server corresponding to the information sharing server according to the present invention for providing such an online identity verification service. For example, if the user wants to start using service A, he / she can access the Web server that provides service A from the user terminal and press the button requesting user registration to connect to the online identity verification service server and perform personal authentication. The user's personal information is registered in the database of the online identity verification service server. User registration is performed in a state where the user's personal information is not stored in the Web server of the service A, and when the provider of the service A is required, the online identification service server is accessed to confirm the user's personal information.

If a user who has registered as a user in service A and whose personal information is registered in the online identity verification service server wants to newly register as a user in service B, similarly from the user terminal to the Web server that provides service B. When you access and press the button requesting user registration, you are connected to the online identity verification service server and it is confirmed whether the personal information of the user is registered in the online identity verification service server. Although the details will be described later, the identification of the user for confirming whether or not the user is a registered user may be performed by using the telephone number and the e-mail address of the mobile phone.

In this case, since the personal information of the user is already registered in the online identity verification service server at the time of user registration to the service A, there is no need to perform a new personal authentication process, and the personal information of the user is based on the registered user's personal information. Therefore, the user is registered in the state where the personal information of the user is not saved in the Web server of the service B, and when the provider of the service B is required, the online identification service server is accessed to confirm the personal information of the user. It will be configured to.

In addition, at this timing, the user is urged to confirm whether or not the registered personal information has been changed, and if the personal information such as the address has been changed due to a move, etc., the necessary personal authentication processing is performed. Update personal information such as registered addresses. By such confirmation, even if the user forgets the procedure for notifying the change of personal information, the personal information can be updated at the timing of registering the user for a new service.

FIG. 3 shows a functional configuration of an online identification service server corresponding to the information sharing server according to the present invention. In FIG. 3, the online identity verification service server 10 corresponds to the information sharing server according to the present invention.

The online identity verification service server 10 is a server computer that can be connected to a user terminal 30 such as a smartphone, a tablet terminal, or a PC (personal computer) operated by the user via a network such as the Internet. The online identity verification service server 10 is configured to be able to send and receive information via a network such as the Internet with the service provider Web server 20 that provides services to users.

The online identity verification service server 10 is provided with an auxiliary storage device such as a CPU, main memory, and HDD, has a function of connecting to a network such as the Internet, and a computer functioning as a server is used and stored in the auxiliary storage device. A predetermined function is realized by reading the executed program into the main memory and executing arithmetic processing on the CPU. A computer having a similar configuration and function is also used for the service provider Web server 20.

The physical configuration of the computer constituting the online identity verification service server 10 is not particularly limited, and functions other than the personal information management function in the present invention may be provided in the same computer. In addition, each function required for the present invention may be physically realized by one computer, or may be realized by using a plurality of computers. The same applies to the service provider Web server 20.

The registration reception unit 11, the SMS authentication unit 12, the registration / update processing unit 13, the authentication processing unit 14, and the personal information providing unit 17 of the online identity verification service server 10 are all functionally specified, and the HDD. A program corresponding to the function of each part stored in the auxiliary storage device such as the above is read into the main memory, and the function corresponding to each part is realized by executing the arithmetic processing by the CPU. The information transmission / reception unit 21 and the personal information request unit 23 of the service provider Web server 20 are also functionally specified, and the main program corresponds to the function of each unit stored in the auxiliary storage device such as an HDD. The functions corresponding to each part are realized by being read into the memory and executing the arithmetic processing by the CPU.

The personal information storage unit 15 and the authentication key storage unit 16 of the online identity verification service server 10 and the user information storage unit 22 of the service provider Web server 20 are designated as auxiliary storage devices such as HDDs of computers constituting each of them. Storage space is allocated. These storage areas are not required to be physically provided in one computer, but may be provided in a plurality of computers such as computers constituting the database server.

As the user terminal 30, as described above, a network terminal capable of connecting to a network such as the Internet such as a smartphone, a tablet computer, or a PC is used, but the configuration thereof is not particularly limited.

The processing flow for registering and updating the personal information of the user executed by the online identification service server 10 having the above configuration is described below with reference to FIG. 8-12 according to the flowchart of FIG. 4-7. explain.

The flowchart of FIG. 4 shows a processing flow for confirming whether the user requesting user registration for a new service is a registered user whose personal information is registered in the online identification service server 10. As shown in FIG. 8, when the user accesses the service provider Web server 20 from the user terminal 30 and opens the Web page of the application screen for requesting the user registration necessary for receiving the service provision, The Web page is provided with a registration button (a button marked with "R" in FIG. 8) that links to the online identity verification service server 10. When the user presses this registration button, the user terminal 30 is connected to the online identification service server 10 and the registration reception unit 11 is started.

The user terminal 30 that connects to the online identity verification service server 10 and requests user registration for a new service is displayed with input fields for the telephone number and e-mail address of the mobile phone, and the user carries the mobile phone in these input fields. Enter your phone number and email address. The mobile phone number and e-mail address entered here are the mobile phones registered in the online identity verification service server 10 if the user is a registered user who has already registered personal information in the online identity verification service server 10. Enter your phone number and email address.

The mobile phone phone number and e-mail address input to the user terminal 30 are sent to the online identification service server 10, and when the registration reception unit 11 receives the information (S01), the received mobile phone phone number and e-mail The address is compared with the mobile phone phone number and the e-mail address included in the personal information of the registered user stored in the personal information storage unit 15, and it is confirmed whether there is a registered user who matches both ( S02). If there is no registered user (S02 is No), the initial registration process is executed, and if there is a registered user (S02 is Yes), the second and subsequent registration processes are executed.

Here, the user who is requesting the user registration to the new service is identified by the telephone number and the e-mail address of the mobile phone, but only by one of them or in the online identification service server 10. An ID or the like that identifies the issued user may be used. However, considering the convenience of the user, it is preferable to use the telephone number or e-mail address of the mobile phone that the user uses on a daily basis rather than issuing a unique ID, and in that case, it is necessary to match both. By doing so, for example, it is possible to deal with a case where the user changes the telephone number after registering the personal information and the telephone number is assigned to another person.

The flowchart of FIG. 5 shows a processing flow of initial registration executed when there is no registered user in S02 of the flowchart of FIG. 4 (S02 is No). In the online identity verification service server 10, the SMS authentication unit 12 is activated, and SMS authentication is performed using the telephone number of the mobile phone received from the user terminal 30 (S03). Specifically, as shown in FIG. 9, the SMS authentication unit 12 issues an OTP (one-time password) to call the mobile phone number received from the user terminal 30. When the OTP received by the user is input to the user terminal 30 and transmitted to the online identity verification service server 10, the owner of the mobile phone for which the user has received the phone number is checked by the SMS authentication unit 12 to see if the OTP matches. Authentication is performed (S04).

If the OTPs do not match (S04 is No), an error will occur, but if they match (S04 is Yes), the registration / update processing unit 13 will be activated, and as shown in FIG. 9, the driver's license or My Number card will be activated. An instruction screen for guiding the procedure of photographing and transmitting the identity verification document (ID certificate) such as the above is displayed on the user terminal 30.

Subsequently, as shown in FIG. 10, an image file in which the user has taken an identity verification document (ID certificate) such as a driver's license or My Number card, and an image in which the user has taken a self-portrait (so-called "self-portrait") of his / her face. The files are transmitted from the user terminal 30 to the online identity verification service server 10, and these image files are received by the registration / update processing unit 13 of the online identity verification service server 10 (S05).

From the image file in which the received identity verification document (ID certificate) is taken, the user's personal information such as address and name is read by OCR processing. As shown in FIG. 10, the personal information read by the OCR process is embedded in the form of the confirmation screen that can be modified and displayed on the user terminal 30, and the information confirmed or modified by the user is registered as a user. It is accepted by the registration / update processing unit 13 as personal information used for (S06).

Further, the authentication processing unit 14 is activated to collate the image file of the user's face photo included in the identity verification document (ID certificate) with the image file of the face photo taken by the user in SELPHY. Process (S07). At the same time, the process of authenticating the e-mail address received in S01 is performed (S08).

The method of personal authentication processing using a face image is shown in FIG. 10, and the method of e-mail address authentication processing is shown in FIG. 11. However, the e-mail address authentication processing is unique for authentication by the online identity verification service server 10. A URL is set, and an authentication completion screen with a link to this URL is sent to the email address received in S01. If the user presses the link and the URL is accessed from the user terminal 30, it is authenticated that the user is the user of the e-mail address.

If either personal authentication or e-mail address authentication using these face images is not authenticated (S09 is No), an error will occur, but if both are authenticated (S09 is Yes), the user who received earlier will be accepted. The personal information used for registration is stored in the personal information storage unit 15, and the registration of the user's personal information is completed (S10).

Further, the registration / update processing unit 13 issues an authentication key necessary for accessing the personal information of the user from the service provider Web server 20. The authentication key issued here is unique to the combination of the service provider who operates the service provider Web server 20 and the user, and when accessing the personal information of the user from the service provider Web server 20. The access token used for authentication may be issued as an authentication key, but in consideration of security, an authorization code that can be exchanged for the access token is issued at this stage, and online identity verification is performed from the service provider Web server 20. It is preferable that the authorization code is transmitted to the service server 10 to acquire the corresponding access token. The authentication key issued here (“access token” or “authorization code exchangeable for an access token”) is stored in the authentication key storage unit 16 in association with the personal information stored in the personal information storage unit 15. The issued authentication key is transmitted to the user terminal 30 in order to redirect the issued authentication key to a predetermined Web page of the service provider Web server 20 and transmit it (S11).

The authentication key redirected to the predetermined Web page of the service provider Web server 20 and transmitted is received by the information transmission / reception unit 21 of the service provider Web server 20, and if the authentication key is the above-mentioned access token, it is as it is. It is stored in the user information storage unit 22. When the authentication key is the above-mentioned authorization code, the service provider Web server 20 sends an authorization code to the online identity verification service server 10, and the online identity verification service server 10 that receives this is unique corresponding to the authorization code. Is issued and stored in the authentication key storage unit 16 in association with the personal information stored in the personal information storage unit 15. The issued access token is returned to the service provider Web server 20 and stored in the user information storage unit 22. In the user information storage unit 22, in addition to the personal information stored in the personal information storage unit 15 of the online identification service server 10, user information including information required by the service provider for the registered user is stored in the user information storage unit 22. It will be stored.

When the service provider wants to confirm the personal information of the user stored in the personal information storage unit 15 of the online identity verification service server 10, the access token corresponding to the user to be confirmed is read from the user information storage unit 22 and the personal information is read. The request unit 23 attaches the read access token and requests the online identity verification service server 10 to transmit personal information. In the online identity verification service server 10, the personal information providing unit 17 receives this request, searches the authentication key storage unit 16 using the received access token as a key, confirms the existence of the access token, and if the corresponding access token exists. For example, the associated personal information is read from the personal information storage unit 15 and returned to the service provider Web server 20.

The flowcharts of FIGS. 6 and 7 show the processing flow of the second and subsequent registrations executed when the registered user exists in S02 of the flowchart of FIG. 4 (S02 is Yes). In this case as well, the online identity verification service server 10 activates the SMS authentication unit 12 and performs SMS authentication using the telephone number of the mobile phone received from the user terminal 30 (S12), but the specific authentication process is performed. The method is the same as the authentication process described with reference to FIG. 9 for S03-S04 in the flowchart of FIG.

If the OTP does not match (S13 is No) in the SMS authentication, an error will occur, but if they match (S13 is Yes), the registration / update processing unit 13 will be activated and identified from the mobile phone's phone number and email address. For the registered user, the predetermined personal information that needs to be confirmed to be the latest information is read from the personal information storage unit 15, and the personal information confirmation screen is displayed on the user terminal 30 as shown in FIG. ..

If there is no change in the personal information displayed on the confirmation screen of the user terminal 30 (S14 is No), the registration / update processing unit 13 describes S11 of the flowchart of FIG. 5 in the same manner as described with reference to FIG. , A unique authentication key is issued for the combination of the service provider and the user, and is stored in the authentication key storage unit 16 in association with the personal information stored in the personal information storage unit 15, and the issued authentication key is stored. It is transmitted to the user terminal 30 in order to redirect to a predetermined Web page of the service provider Web server 20 and transmit it (S21). The usage of the authentication key redirected to the Web page of the service provider Web server 20 is the same as the above description.

When there is a change in the personal information displayed on the confirmation screen of the user terminal 30 (S14 is Yes), and when the changed information corresponds to information that requires confirmation by identity verification documents such as address and last name (S15 is). In Yes), the image file of the identity verification document (ID certificate) taken by the user and the face photograph taken by SELPHY are shown in S05-S07 of the flowchart of FIG. 5, as in the process described with reference to FIG. A process in which the registration / update processing unit 13 of the online identity verification service server 10 receives an image file from the user terminal 30 (S16) and accepts corrections and confirmations of the latest (changed) personal information read by the OCR process (S16). S17), the personal authentication process (S18) using the face image is executed.

If the personal authentication using the face image is not authenticated (S19 is No), an error occurs, but if it is authenticated (S19 is Yes), the personal information of the user stored in the personal information storage unit 15 is first input. Update to the latest (after change) personal information received in S17, and register the change of personal information such as the user's address (S20).

Further, the registration / update processing unit 13 issues a unique authentication key to the combination of the service provider and the user in the same manner as described with reference to FIG. 11 for S11 in the flowchart of FIG. In order to store the issued authentication key in the authentication key storage unit 16 in association with the personal information stored in the personal information storage unit 15 and redirect the issued authentication key to a predetermined Web page of the service provider Web server 20, the user can send the information. It is transmitted to the terminal 30 (S21). The usage of the authentication key redirected to the Web page of the service provider Web server 20 is the same as the above description.

In S15 of the flowchart of FIG. 6, when the information to be changed does not correspond to the information requiring confirmation by the identity verification document such as the address and the last name (S15 is No), there is a change as shown in the flowchart of FIG. If the information does not correspond to the e-mail address (S22 is No), the changed information of the user's personal information stored in the personal information storage unit 15 is updated and the change of the user's personal information is registered ( S26).

Further, in this case as well, as in the above description, a unique authentication key is issued for the combination of the service provider and the user, and the authentication key storage unit is associated with the personal information stored in the personal information storage unit 15. In addition to being stored in 16, the issued authentication key is transmitted to the user terminal 30 in order to redirect the issued authentication key to a predetermined Web page of the service provider Web server 20 and transmit it (S21). The usage of the authentication key transmitted by redirecting to the predetermined Web page of the service provider Web server 20 is also the same as the above description.

When the information to be changed is an e-mail address (S22 is Yes), the e-mail address is authenticated for S08 in the flowchart of FIG. 5 in the same manner as described with reference to FIG. 11 (S23), and the e-mail is sent. If the address is not authenticated (S24 is No), an error will occur, but if it is authenticated (S24 is Yes), the email address included in the user's personal information stored in the personal information storage unit 15 will be updated. Then, the change of the user's e-mail address is registered (S25).

Further, in this case as well, as in the above description, a unique authentication key is issued for the combination of the service provider and the user, and the authentication key storage unit is associated with the personal information stored in the personal information storage unit 15. In addition to being stored in 16, the issued authentication key is transmitted to the user terminal 30 in order to redirect the issued authentication key to a predetermined Web page of the service provider Web server 20 and transmit it (S21). The usage of the authentication key redirected to the Web page of the service provider Web server 20 is the same as the above description.

FIG. 12 shows the processing flow at the time of the second and subsequent registrations described using the flowcharts of FIGS. 6 and 7, but if there is no change in the personal information, the authorization code is issued as it is and the service is provided. If you are redirected to the provider and there is a change, different processing will be performed depending on whether it is personal information to be confirmed by identity verification documents such as address, email address, or other information.

10 Online identity verification service server 11 Registration reception unit 12 SMS authentication unit 13 Registration / update processing unit 14 Authentication processing unit 15 Personal information storage unit 16 Authentication key storage unit 17 Personal information provision unit 20 Service provider Web server 21 Information transmission / reception unit 22 User information storage unit 23 Personal information request unit 30 User terminal

Claims (6)

An information sharing server for sharing user's personal information among a plurality of service providers that provide services used by users.
A request for user registration to the service, which is accessed from a user terminal of a user who wishes to use the service provided by any of the plurality of service providers via a Web page for user registration to the service. Reception means to accept and
A determination means for receiving identification information for identifying the user from the user terminal and determining whether the user is a registered user of personal information.
When the determination means determines that the user is a registered user of personal information, at least a part of the registered personal information of the user is presented to the user terminal, and whether or not the presented information is changed is determined. Confirmation means to confirm and
When the confirmation means confirms that the presented information has not changed, or when the confirmation means confirms that at least a part of the presented information has changed, the changed information received from the user terminal. Issuing means for issuing an authentication key necessary for the service provider providing the service to access the personal information of the user when the personal information registered for the user is updated in reflection of the above.
An information sharing server characterized by being equipped with. When the determination means determines that the user is not a registered user of personal information, the determination means includes an authentication means that executes a predetermined process for personal authentication of the user.
When the user is authenticated by the authentication means, the issuing means newly registers the personal information of the user, and the service provider who provides the service accesses the personal information of the user. The information sharing server according to claim 1, wherein an authentication key required for the purpose is issued. When it is confirmed by the confirmation means that at least a part of the presented information has been changed and the changed information corresponds to the predetermined personal information, a predetermined process for personal authentication regarding the user is executed. The information sharing server according to claim 1 or 2, further comprising an update means for updating personal information registered for the user when the user is authenticated as the person himself / herself. The determination means identifies the user from the telephone number and email address of the user received from the user terminal, and when the personal information of the user whose telephone number and email address match is registered, the user The information sharing server according to any one of claims 1 to 3, wherein is determined to be a registered user of personal information. When an access request to a user's personal information is received from any of the plurality of service providers, the personal information of the user to be provided is specified using the authentication key issued by the issuing means as a key. The information sharing server according to any one of claims 1 to 4, characterized in that. A user whose information sharing server for sharing user's personal information by a plurality of service providers who provide a service used by a user wishes to use a service provided by one of the plurality of service providers. A reception step for receiving a request for user registration to the service, which is accessed from the terminal via a Web page for user registration to the service.
A determination step in which the information sharing server receives identification information for identifying the user from the user terminal and determines whether the user is a registered user of personal information.
When the information sharing server determines that the user is a registered user of the information in the determination step, at least a part of the registered personal information of the user is presented to the user terminal and presented. A confirmation step to confirm whether the information you have changed
When the information sharing server confirms that the presented information has not changed in the confirmation step, or when it is confirmed that at least a part of the presented information has changed in the confirmation step, the user terminal confirms that there is no change. When the personal information registered for the user is updated to reflect the received changed information, the service provider providing the service issues an authentication key necessary for accessing the personal information of the user. Issuance steps and
A method of sharing information, which is characterized by having.