JP2022103695A - Personal identification information usage system, management device, personal identification information usage method, management method, and program - Google Patents

Abstract

To improve efficiency of a work of personal identification necessary to start usage of a certain service.SOLUTION: A personal identification information usage system of the present invention implements a step for presenting the personal identification information to a user before the personal identification information possessed by a data possession entity is presented to a data usage entity, and urging confirmation of the content. Then the personal identification information confirmed by the user is provided to the data usage entity. In this type of personal identification information usage system, a trouble where personal identification information left in old contents is provided to a data usage entity is effectively prevented.SELECTED DRAWING: Figure 1

Description

The present invention relates to an identity verification information utilization system, a management device, an identity verification information utilization method, a management method, and a program.

Identity verification may be required when starting to use a predetermined service provided by a predetermined business operator. For example, when opening an account at a bank, a securities company, or the like.

Non-Patent Document 1 discloses a technique for efficiently performing identity verification work online. In this technology, the identity verification information when a user who has an account at a certain bank opens an account at a certain securities company, the identity verification information managed by the bank, and the identity verification information presented by the user are used. It is realized by the collation of.

The related technique is disclosed in Patent Document 1. Patent Document 1 discloses an identity verification system having an identity verification request server, an identity verification infrastructure server, and an identity verification server of a plurality of mobile terminal communication carriers.

The identity verification request server receives the request from the user terminal and sends the identity verification request of the user of the user terminal to the identity verification infrastructure server. Then, the identity verification request server receives the address information of the authentication result performed by the identity assurance server, and acquires the authentication result using the address information.

The identity verification infrastructure server accepts an instruction to select one of the identity assurance servers from the user terminal. Then, the identity verification infrastructure server generates a first password based on the request from the identity guarantee server selected in the selection instruction, sends the generated first password to the mobile terminal, and inputs the generated first password from the user terminal. It authenticates whether or not the given second password and the first password match.

The identity assurance server stores the user information of the user of each mobile terminal that provides the communication service. Then, when the first password and the second password match, the identity assurance server authenticates the user information input from the user terminal with reference to the above-mentioned stored user information, and confirms the authentication result. Remember as. Then, the identity assurance server sends the stored authentication result address information to the identity verification request server via the identity verification infrastructure server.

Japanese Unexamined Patent Publication No. 2012-208856

"Introduction of identity verification support (individual) API service and its use cases", [online], July 11, 2019, Bank of Tokyo-Mitsubishi UFJ, [Search on November 20, 2020], Internet <https: // developer .portal.bk.mufg.jp/node/3874 ＞

By using the technique of Non-Patent Document 1, the work of identity verification becomes more efficient. However, the present inventors have found the following problems.

The identity verification information of each user is not unchanged and may change due to various factors such as moving, changing jobs, and changing the telephone number. Then, the identity verification information registered in the bank or the like may not be updated and may be left as it is. For example, if the identity verification information left as it is in the old contents is used in the identity verification at the time of opening an account of a securities company and collated with the identity verification information presented by the user, an error naturally occurs. A user who does not fully understand the identity verification mechanism realized by the technique of Non-Patent Document 1 cannot understand why the error occurred and cannot find a solution. As a result, the time and labor required for the work of identity verification becomes large. Although the explanation has been given here based on the examples of banks and securities companies in order to make the story easier to understand, the subject of the present invention is not limited to these fields.

An object of the present invention is to streamline the work of identity verification required when starting to use a certain service.

According to the present invention
It has a data holding main device that stores personal identification information of a plurality of users, and a management device that manages the transfer of personal identification information between the data holding main device and the data user main device. ,
The data holding main device is
An authentication means that communicates with the terminal of the end user who has transitioned to the login screen based on the transition information transmitted from the management device, receives the login information, and performs an authentication process based on the login information.
When the authentication is successful in the authentication process, the identification means of the logged-in user is read from the storage means and output to the terminal of the end user to prompt the confirmation of the identity verification information.
Upon receiving the confirmation information indicating that the identity verification information has been confirmed from the end user's terminal, the identity verification information transmitting means for transmitting the confirmed identity verification information to the management device, and
Have,
The management device is
Provided is an identity verification information utilization system having a relay means for transmitting the identity verification information received from the device of the data holding subject to the apparatus of the data utilization subject.

Further, according to the present invention,
A transition information transmission means that outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. A confirmation means that receives from the main device and outputs it to the terminal of the end user to prompt the confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the relay means for transmitting the confirmed identity verification information to the device of the data user, and the relay means.
A management device having the above is provided.

Further, according to the present invention,
A person who has a data holding main device that stores personal identification information of a plurality of users and a management device that manages the transfer of personal identification information between the data holding main device and the data user main device. Performed by the confirmation information utilization system,
The data holding main device is
It communicates with the terminal of the end user who has transitioned to the login screen based on the transition information transmitted from the management device, receives the login information, and performs the authentication process based on the login information.
When the authentication is successful in the authentication process, the identity verification information of the logged-in user is read from the storage means and output to the terminal of the end user to prompt the confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the confirmed identity verification information is transmitted to the management device.
The management device is
Provided is a method of using identity verification information, in which the identity verification information received from the device of the data holding subject is transmitted to the device of the data using subject.

Further, according to the present invention,
The computer
Outputs the transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. Received from the main device and output to the end user's terminal to prompt confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, a management method for transmitting the confirmed identity verification information to the device of the data user is provided.

Further, according to the present invention,
Computer,
Transition information transmission means that outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. A confirmation means that receives from the main device and outputs it to the end user's terminal to prompt confirmation of the identity verification information.
A relay means for transmitting the confirmed identity verification information to the device of the data user when the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user.
A program is provided that functions as.

According to the present invention, the work of identity verification required when starting to use a certain service is streamlined.

It is a figure for demonstrating the outline of the identity verification information utilization system of this embodiment. It is a figure for demonstrating an example of the process flow of the identity verification information utilization system of this embodiment. It is a figure for demonstrating an example of the screen transition realized by the identity verification information utilization system of this embodiment. It is an example of the functional block diagram of the management apparatus of this embodiment. It is an example of the functional block diagram of the apparatus of the data holding main body of this embodiment. It is a figure which shows an example of the hardware composition of the apparatus of this embodiment. It is an example of the functional block diagram of the management apparatus of this embodiment. It is a figure for demonstrating an example of the process flow of the identity verification information utilization system of this embodiment. It is an example of the functional block diagram of the apparatus of the data holding main body of this embodiment. It is an example of the functional block diagram of the management apparatus of this embodiment. It is an example of the functional block diagram of the management apparatus of this embodiment.

Hereinafter, embodiments of the present invention will be described with reference to the drawings. In all drawings, similar components are designated by the same reference numerals, and description thereof will be omitted as appropriate.

<First Embodiment>
"Overview"
First, the outline of the identity verification information utilization system of the present embodiment will be described with reference to FIG.

The illustrated data user and data retention subject are the subjects that provide services that require identity verification at the start of use. The data user and data holder are, for example, banks, securities companies, etc., and the services that require identity verification at the start of use are, for example, account opening. It should be noted that the examples here are merely examples and are not limited thereto.

The identity verification platform manages the transfer of identity verification information between the data user and the data holder. The data user-based device and the identity verification platform can perform data linkage, for example, via a predetermined API. Further, the device of the data holding subject and the identity verification platform can perform data linkage via, for example, a predetermined API.

The identity verification information utilization system of the present embodiment presents the identity verification information to the user before the identity verification information held by the data holding subject is provided to the data user, and executes a step of prompting the user to confirm the contents. .. Then, the identity verification information confirmed by the user is provided to the data user.

According to such an identity verification information utilization system, it is possible to effectively suppress the inconvenience that the identity verification information left as it is with the old contents is provided to the data user. As a result, it is possible to suppress inconveniences (errors in collation with the identity verification information presented by the user, etc.) caused by sending and receiving the identity verification information of old contents. As a result, the work of identity verification required when starting to use a certain service becomes more efficient.

"Functional configuration of identity verification information utilization system"
Next, the configuration of the identity verification information utilization system of the present embodiment will be described in detail with reference to FIG. The management device 10 corresponds to the identity verification platform shown in FIG. The data holding subject device 20 is a device managed and used by the data holding subject shown in FIG. The data user device 30 is a device managed and used by the data user shown in FIG. The end user terminal 40 is a device managed and used by the user shown in FIG. 1, and examples thereof include smartphones, tablet terminals, personal computers, smart watches, and mobile phones.

First, as shown in (1), the end user's terminal 40 and the data user's device 30 communicate with each other, and the service start application is transmitted from the end user's terminal 40 to the data user's device 30. As an example of realizing the transmission, processing via a web page or an application is exemplified, but the present invention is not limited thereto.

FIG. 3 shows an example of a screen displayed on the end user's terminal 40. 3 (1) to (8) and (11) are screens presented by the device 30 of the data user, and FIGS. 3 (9) and 3 (10) are presented by the device 20 of the data holding subject. It is the screen that was done. The screen of FIG. 3 is just an example, and the contents displayed on each screen, the display order of each screen, whether or not each screen is displayed, etc. can be changed within the range in which the effects of the present invention can be realized. Is.

In this figure, it is assumed that the data user and data holder are banks, securities companies, etc., and the service that requires identity verification at the start of use is opening an account. When the button for opening an account is operated on the screen of FIG. 3 (1), a service start application is transmitted from the end user's terminal 40 to the device 30 of the data user main body.

Next, as shown in FIG. 2 (2), the data user-based device 30 that has received the service start application requests the management device 10 for a list of the data-holding-based device 20 that can provide the identity verification information. Send.

For example, on the screen for selecting the identity verification method as shown in (6) of FIG. 3, the user selects "identity verification using the identity verification information held by the device 20 of the data holding subject" (in the figure, bank API linkage). (Operate the button of), and then, in response to the user agreeing to the terms of use as shown in (7) of FIG. May be transmitted to the management device 10. As an example, the screens (6) and (7) of FIG. 3 are displayed after various procedures are performed on the screens (2) to (5) of FIG.

Next, as shown in FIG. 2 (3), the management device 10 transmits a list of devices 20 of the data holding subject capable of providing identity verification information to the device 30 of the data using subject.

For example, the combination of entities that can send and receive identity verification information is determined in advance (identity verification information can be sent and received between bank A and bank B, and identity verification information can be sent and received between bank A and bank C. (Transmission and reception are not possible, etc.), and combination information indicating the combination is registered in the management device 10. Then, the management device 10 identifies the device 20 of the data holding subject capable of providing the identity verification information to the device 30 of the data user subject who has transmitted the request of (2) based on the combination information, and data the list thereof. It is transmitted to the device 30 of the user.

Next, as shown in FIG. 2 (4), the device 30 of the data usage subject transmits a list of data holding subjects capable of providing identity verification information to the end user terminal 40. As a result, as shown in FIG. 3 (8), a list of data holding subjects that can provide identity verification information is displayed on the terminal 40 of the end user.

Next, the end user's terminal 40 accepts a user input to select one from the above list. In the following embodiment, an example in which two or more can be selected will be described. The user selects an entity (eg, a bank that already has an account) in which his / her identity verification information is registered from the list. Then, as shown in FIG. 2 (5), the information indicating the selection content is transmitted from the terminal 40 of the end user to the device 30 of the data user main body.

Next, as shown in FIG. 2 (6), the data-using device 30 transmits the information indicating the selection content received in FIG. 2 (5) to the management device 10.

Next, as shown in FIG. 2 (7), the management device 10 transitions (redirects) the end user's terminal 40 to the login screen for logging in to the selected data holding subject device 20. The information is transmitted to the device 30 of the data user main body. Next, as shown in FIG. 2 (8), the device 30 of the data user main body transmits the transition information received in FIG. 2 (7) to the end user terminal 40. The end user's terminal 40 transitions to a login screen for logging in to the device 20 of the data holding subject based on the received transition information. As a result, as shown in FIG. 3 (9), the login screen of the device 20 that holds the data is displayed on the terminal 40 of the end user. Here, it suffices if the end user's terminal 40 can be redirected to the login screen of the selected data holding subject device 20, and the means for realizing this is not limited to the one exemplified here.

Next, as shown in FIG. 2 (9), the end user's terminal 40 transmits the login information (ID (identifier), password, etc.) input by the user to the device 20 that holds the data.

Next, when the login is successful, as shown in FIG. 2 (10), the data holding main device 20 reads out the user's identity verification information stored in the data holding main device 20, and the end user. It is output to the terminal 40 of the above to prompt the confirmation of the identity verification information.

For example, an information confirmation screen as shown in FIG. 3 (10) is displayed on the end user's terminal 40. A part of the identity verification information may be hidden on the information confirmation screen. For example, a part of the characters may be hidden, such as "Nipponta ●, Tokyo ●● Ward ...". As a result, it is possible to suppress the inconvenience that the information is stolen or illegally acquired.

Further, on the information confirmation screen, if the content of the identity verification information is different from the current content, the user may be notified that the change is urged. Then, the identity verification information may be changed on the information confirmation screen. That is, if the displayed information confirmation information remains old, the user may be able to perform an operation to change the identity confirmation information from the information confirmation screen. When the device 20 of the data holding subject accepts the operation of changing the identity verification information from the information confirmation screen, the device 20 of the data holding subject updates the identity verification information of the user stored in the own device based on the input contents. Then, the device 20 of the data holding main body outputs the changed identity verification information to the end user's terminal 40 to prompt the confirmation of the identity verification information.

Next, when the user confirms that the identity verification information is correct (when the operation for the confirmation button in FIG. 3 (10) is performed), the end user's terminal 40 is shown as shown in FIG. 2 (11). Transmits the input information indicating to that effect to the device 20 of the data holding main body.

After that, as shown in FIG. 2 (12), the device 20 of the data holding subject transmits the personal authentication completed notification to the management device 10. Then, as shown in FIG. 2 (13), the management device 10 transmits the personal authentication completed notification to the end user's terminal 40.

After that, as shown in FIG. 2 (14), the end user terminal 40 transmits a personal information acquisition request to the device 30 of the data user main body. Next, the device 30 of the data user main body transmits the received personal information acquisition request to the management device 10, as shown in FIG. 2 (15). Then, as shown in FIG. 2 (16), the management device 10 transmits a request for identity verification information to the device 20 which is the main body of data retention.

When the device 20 of the data holding subject receives the request for the identity verification information from the management device 10, the device 20 transmits the identity verification information confirmed by the user to the management device 10 as shown in FIG. 2 (17). When the identity verification information is changed on the information confirmation screen, the device 20 of the data holding subject transmits the changed identity verification information to the management device 10.

Next, as shown in FIG. 2 (18), the management device 10 transmits the received identity verification information to the device 30 of the data user main body. It is preferable that the management device 10 does not store the received personal identification information in the non-volatile storage device of its own device, but merely relays the data between the device 20 of the data holding subject and the device 30 of the data utilization subject. By avoiding storing the identity verification information in unnecessary many places, it is possible to suppress the inconvenience that the identity verification information is leaked or illegally acquired. In addition, the data holding entity can provide the identity verification information managed by itself to the outside with peace of mind. Further, the management device 10 may convert the format of the identity verification information received from the device 20 of the data holding subject into a unified format, and then transmit the identity verification information after the format conversion to the apparatus 30 of the data user subject. The details of the unified format are not particularly limited. For example, the unified format of the date of birth may be "YYYY-MM-DD" or the like. In this case, the date of birth expressed in a format such as "January 1, 1990" or "1900101" is converted to "1990-01-01".

The data-using device 30 acquires identity verification information from the end user's terminal 40, as shown in FIG. 2 (19). For example, a screen for shooting an identity verification document as shown in FIG. 3 (11) is displayed on the end user's terminal 40, and identity verification information is acquired from the screen. The timing of the process (19) in FIG. 2 is arbitrary and is not particularly limited.

Then, the device 30 of the data user main body performs a process of collating the personal identification information received from the device 20 of the data holding main body with the personal identification information received from the terminal 40 of the end user. The collation process may be a process of presenting two identity verification information to the operator, prompting the operator to perform the verification work, and accepting the input of the collation result, or the computer collates the two identity verification information. It may be what you do.

The means for associating various information transmitted and received between the devices to the user who has applied for the start of the service is not particularly limited, and any well-known means can be adopted.

"Functional configuration of management device 10"
Next, the functional configuration of the management device 10 will be described with reference to the functional block diagram of FIG. As shown in the figure, the management device 10 has a list information transmission unit 11, a transition information transmission unit 12, and a relay unit 13.

The list information transmission unit 11 transmits list information showing a list of devices 20 of the data holding subject capable of providing identity verification information to the device 30 of the data user subject.

When the transition information transmission unit 12 receives the selection information indicating the device 20 of the data holding subject selected from the list indicated by the list information from the device 30 of the data using subject, the transition information transmitting unit 12 causes the device 20 of the selected data holding subject to receive the selection information. The transition information for transitioning the terminal 40 of the end user is output to the login screen for logging in.

The relay unit 13 transmits the identity verification information received from the device 20 of the data holding subject to the device 30 of the data using subject. The relay unit 13 does not store the identity verification information received from the data holding main device 20 in the non-volatile storage device of its own device, but relays between the data holding main device 20 and the data utilization main device 30. It is preferable to do.

"Functional configuration of device 20 mainly for data retention"
Next, the functional configuration of the data holding main device 20 will be described with reference to the functional block diagram of FIG. As shown in the figure, the device 20 of the data holding main body has an authentication unit 21, a confirmation unit 22, and an identity verification information transmission unit 23. The device 20 which is the main body of data holding stores the identity verification information of a plurality of users.

The authentication unit 21 communicates with the terminal 40 of the end user who has transitioned to the login screen based on the transition information transmitted from the management device 10, receives the login information, and performs the authentication process based on the login information.

When the authentication is successful in the authentication process, the confirmation unit 22 reads the personal identification information of the logged-in user from the storage means and outputs it to the terminal 40 of the end user to prompt the confirmation of the personal identification information. The confirmation unit 22 can display the personal identification information and display the information confirmation screen in which a part of the personal identification information is hidden on the end user's terminal 40. Further, the confirmation unit 22 may be able to accept changes in the identity verification information output to the end user's terminal 40.

When the identity verification information transmission unit 23 receives the confirmation information indicating that the identity verification information has been confirmed from the end user's terminal 40, the identity verification information transmission unit 23 transmits the confirmed identity verification information to the management device 10. When the confirmation unit 22 receives the change of the identity verification information, the identity verification information transmission unit 23 transmits the changed identity verification information to the management device 10.

"Hardware configuration of equipment"
An example of the hardware configuration of each device constituting the identity verification information utilization system will be described. The identity verification information utilization system includes a management device 10 and a data holding main device 20. The identity verification information utilization system may further include a device 30 that is the subject of data utilization. Further, the identity verification information utilization system may further have an end user terminal 40.

FIG. 6 is a diagram showing a hardware configuration example of each device. Each functional unit included in each device is stored in the CPU (Central Processing Unit) of an arbitrary computer, memory, a program loaded in the memory, and a storage unit such as a hard disk for storing the program (stored from the stage of shipping the device in advance). In addition to the existing programs, it can also store programs downloaded from storage media such as CDs (Compact Discs) and servers on the Internet), and is realized by any combination of hardware and software centered on the network connection interface. The program. And, it is understood by those skilled in the art that there are various variations in the method of realizing the device and the device.

As shown in FIG. 6, each device has a processor 1A, a memory 2A, an input / output interface 3A, a peripheral circuit 4A, and a bus 5A. The peripheral circuit 4A includes various modules. The notification system does not have to have the peripheral circuit 4A. In addition, each device may be composed of a plurality of physically and / or logically separated devices, or may be composed of one physically and logically integrated device. In the former case, each of the plurality of devices constituting each device can be provided with the above hardware configuration.

The bus 5A is a data transmission path for the processor 1A, the memory 2A, the peripheral circuit 4A, and the input / output interface 3A to transmit and receive data to each other. The processor 1A is, for example, an arithmetic processing unit such as a CPU or a GPU (Graphics Processing Unit). The memory 2A is, for example, a memory such as a RAM (Random Access Memory) or a ROM (Read Only Memory). The input / output interface 3A includes an interface for acquiring information from an input device, an external device, an external server, an external sensor, and the like, an interface for outputting information to an output device, an external device, an external server, and the like. The input device is, for example, a keyboard, a mouse, a microphone, or the like. The output device is, for example, a display, a speaker, a printer, a mailer, or the like. The processor 1A can issue a command to each module and perform a calculation based on the calculation result thereof.

"Action effect"
The identity verification information utilization system of the present embodiment presents the identity verification information to the user before the identity verification information held by the data holding subject is provided to the data user, and executes a step of prompting the user to confirm the contents. .. Then, the identity verification information confirmed by the user is provided to the data user.

According to such an identity verification information utilization system, it is possible to effectively suppress the inconvenience that the identity verification information left as it is with the old contents is provided to the data user. As a result, it is possible to suppress inconveniences (errors in collation with the identity verification information presented by the user, etc.) caused by sending and receiving the identity verification information of old contents. As a result, the work of identity verification required when starting to use a certain service becomes more efficient.

Further, in the identity verification information utilization system of the present embodiment, the identity verification information is displayed and one of the identity verification information is displayed in the process of presenting the identity verification information held by the data holding subject to the user and prompting the user to confirm the contents. The information confirmation screen with the hidden part can be displayed on the end user's terminal. As a result, it is possible to suppress the inconvenience that the information is stolen or illegally acquired.

Further, in the identity verification information utilization system of the present embodiment, the identity verification information held by the data holding subject can be presented to the user, and the change of the identity verification information can be accepted in the step of prompting the user to confirm the contents. Then, when the change is accepted, the changed identity verification information can be transmitted from the device of the data holding subject to the device of the data using subject. Since the identity verification information can be changed in the above steps, the user can open a separate page to change the identity verification information, or redo the procedure for starting the service that has been performed up to that point after the change. You can avoid the trouble of doing it.

Further, in the personal identification information utilization system of the present embodiment, the management device 10 does not store the personal identification information received from the device of the data holding main body in the non-volatile storage device of the own device, but simply the device 20 of the data holding main body. It is possible to relay only between the device 30 and the device 30 which is the main data user. By avoiding storing the identity verification information in unnecessary many places, it is possible to suppress the inconvenience that the identity verification information is leaked or illegally acquired. In addition, the data holding entity can provide the identity verification information managed by itself to the outside with peace of mind.

<Second embodiment>
The identity verification information utilization system of the present embodiment is different from the first embodiment in that a plurality of identity verification information utilization systems can be selected from a plurality of data retention subject apparatus 20 capable of providing identity verification information to the data utilization subject apparatus 30. different. For example, on the screen shown in FIG. 3 (8), the user can select a plurality of data holding subjects.

An example of the functional block diagram of the management device 10 of the present embodiment is shown in FIG. As shown in the figure, the management device 10 includes a list information transmission unit 11, a transition information transmission unit 12, a relay unit 13, and a determination unit 14.

When the transition information transmission unit 12 receives selection information indicating that a plurality of data holding subjects have been selected ((6) in FIG. 2), the transition information transmitting unit 12 logs in to each of the devices 20 of the selected plurality of data holding subjects. A plurality of transition information for transitioning the end user's terminal 40 to a plurality of login screens is output ((7) in FIG. 2).

As a result, the end user's terminal 40 is redirected to the login screen of each of the selected plurality of data holding subjects. Then, the user inputs login information and the like via each login screen ((9) in FIG. 2). Then, when the login is successful, the device 20 of each data holding subject outputs the identity verification information to the end user's terminal 40 as described in the first embodiment ((10) in FIG. 2), and then, after that, The confirmed identity verification information is transmitted to the management device 10 ((13) in FIG. 2).

When the determination unit 14 receives the identity verification information from each of the plurality of data holding subject devices 20, it determines whether or not the plurality of identity verification information match each other. Then, when the plurality of identity verification information do not match each other, the determination unit 14 notifies the devices 20 of the plurality of data holding subjects, which are the transmission sources of the plurality of identity verification information, to that effect. As a result, the device 20 of the data holding subject can recognize that the information managed by the own device may be incorrect.

If the plurality of identity verification information do not match each other, the determination unit 14 determines the one with the highest reliability from the plurality of identity verification information, and transmits the determined identity verification information to the device 30 of the data user. ((14) in FIG. 2). When a plurality of identity verification information match each other, the determination unit 14 causes the device 30 of the data user to transmit the identity verification information.

For example, the identity verification information received from the device 20 of the data holding subject may include information indicating the update date of the information. Then, the determination unit 14 may determine the identity verification information with the latest update date as the one with the highest reliability.

In addition, the identity verification information received from the device 20 of the data holding subject may include information indicating the latest date when the above-mentioned identity verification information confirmation process (process of FIG. 3 (9)) is performed. Then, the determination unit 14 may determine the identity verification information with the latest date of the confirmation process as having the highest reliability.

In addition, the identity verification information received from the device 20 of the data holding subject may include information indicating the number of times the above-mentioned identity verification information confirmation process (process of FIG. 3 (9)) has been performed. Then, the determination unit 14 may determine the identity verification information having the maximum number of confirmation processes as having the highest reliability.

Other configurations of the identity verification information utilization system of the present embodiment are the same as those of the first embodiment.

As described above, according to the identity verification information utilization system of the present embodiment, the same effects as those of the first embodiment are realized. Further, according to the identity verification information utilization system of the present embodiment, identity verification information is collected from a plurality of data holding subject devices 20, and when the contents do not match each other, the reliability among them is the highest. The thing can be transmitted to the device 30 which is the main body of data use. As a result, it is possible to effectively suppress the inconvenience that the identity verification information left as it is with the old contents is provided to the data user.

Further, according to the identity verification information utilization system of the present embodiment, when the contents of the identity verification information collected from the devices 20 of the plurality of data holding subjects do not match each other, the management device 10 is the transmission source of the plurality of identity verification information. It is possible to notify a plurality of data holding main devices 20 to that effect. As a result, the device 20 of the data holding subject can recognize that the information managed by the own device may be incorrect.

<Third embodiment>
"Overview"
The identity verification information utilization system of the present embodiment manages the above-mentioned processing for the user to confirm the identity verification information (screen presentation in FIGS. 2 (10) and 3 (10)) instead of the data holding main device 20. It differs from the first embodiment in that the apparatus 10 performs.

"Functional configuration of identity verification information utilization system"
Next, the configuration of the identity verification information utilization system of the present embodiment will be described in detail with reference to FIG. The processing flow from (1) to (9) is the same as the processing flow from (1) to (9) in FIG. 2 described in the first embodiment. That is, as shown in FIG. 3 (9), the login screen for logging in to the device 20 of the data holding subject selected by the user is displayed on the terminal 40 of the end user, and the login process is executed. It is the same as the processing flow of the first embodiment.

When the login to the device 20 of the data holding subject is successful, the device 20 of the data holding subject transmits the personal authentication completed notification to the management device 10, as shown in FIG. 8 (10). After that, the management device 10 transmits a request for identity verification information to the device 20 of the data holding subject, as shown in FIG. 8 (11). Upon receiving the request from the management device 10, the data holding main device 20 reads and reads out the user's identity verification information stored in the data holding main device 20 as shown in FIG. 8 (12). The identity verification information is transmitted to the management device 10.

Next, as shown in FIG. 8 (13), the management device 10 outputs the identity verification information received from the device 20 of the data holding subject to the end user's terminal 40 to prompt the confirmation of the identity verification information. For example, the management device 10 generates an information confirmation screen as shown in FIG. 3 (10) and displays it on the end user's terminal 40. A part of the identity verification information may be hidden on the information confirmation screen. For example, a part of the characters may be hidden, such as "Nipponta ●, Tokyo ●● Ward ...". As a result, it is possible to suppress the inconvenience that the information is stolen or illegally acquired.

Further, on the information confirmation screen, if the content of the identity verification information is different from the current content, the user may be notified that the change is urged. Then, when it is input to input to change the identity verification information on the information confirmation screen, the management device 10 displays the end user on the screen of the device 20 (the screen for changing the identity verification information) of the data holding main body. Terminal 40 may be transitioned (redirected). Further, on the information confirmation screen, if the content of the identity verification information is different from the current content, it may be possible to call a screen for reselecting another data holding subject. When an input for calling the screen is made, the management device 10 notifies the device 30 of the data user to that effect. Then, as shown in FIG. 8 (4), the process of transmitting the list of data holding subjects to which the device 30 of the data using subject can provide the identity verification information to the end user's terminal 40 is performed.

Next, when the user confirms that the identity verification information is correct, the end user's terminal 40 transmits input information indicating that fact to the management device 10, as shown in FIG. 8 (14).

After that, as shown in FIG. 8 (15), the management device 10 transmits the personal identification information confirmed by the user to the device 30 of the data user main body. The management device 10 may transmit the identity verification information received in (12) to the device 30 of the data user main body, or after receiving the input information of (14), the device 20 of the data holding main body again. The identity verification information may be re-received from the device 30 and the newly received identity verification information may be transmitted to the device 30 of the data user. The management device 10 does not store the identity verification information received from the data holding main device 20 in the non-volatile storage device of its own device, but merely relays between the data holding main device 20 and the data utilization main device 30. It is preferable to do. By avoiding storing the identity verification information in unnecessary many places, it is possible to suppress the inconvenience that the identity verification information is leaked or illegally acquired. In addition, the data holding entity can provide the identity verification information managed by itself to the outside with peace of mind. Further, the management device 10 may convert the format of the identity verification information received from the device 20 of the data holding subject into a unified format, and then transmit the identity verification information after the format conversion to the apparatus 30 of the data user subject. The details of the unified format are not particularly limited. For example, the unified format of the date of birth may be "YYYY-MM-DD" or the like. In this case, the date of birth expressed in a format such as "January 1, 1990" or "1900101" is converted to "1990-01-01".

The data-using device 30 acquires identity verification information from the end user's terminal 40, as shown in FIG. 8 (16). For example, a screen for shooting an identity verification document as shown in FIG. 3 (11) is displayed on the end user's terminal 40, and identity verification information is acquired from the screen. The timing of the process of FIG. 8 (16) is arbitrary and is not particularly limited.

Then, the device 30 of the data user main body performs a process of collating the personal identification information received from the device 20 of the data holding main body with the personal identification information received from the terminal 40 of the end user. The collation process may be a process of presenting two identity verification information to the operator, prompting the operator to perform the verification work, and accepting the input of the collation result, or the computer collates the two identity verification information. It may be what you do.

"Functional configuration of device 20 mainly for data retention"
Next, the functional configuration of the data holding main device 20 will be described with reference to the functional block diagram of FIG. As shown in the figure, the device 20 which is the main body of data holding has an authentication unit 21 and an identity verification information transmission unit 23.

The authentication unit 21 communicates with the terminal 40 of the end user who has transitioned to the login screen based on the transition information transmitted from the management device 10, receives the login information, and performs the authentication process based on the login information. When the authentication is successful in the authentication process, the identity verification information transmission unit 23 reads the identity verification information of the logged-in user from the storage means and transmits it to the management device 10.

"Functional configuration of management device 10"
Next, the functional configuration of the management device 10 will be described with reference to the functional block diagram of FIG. As shown in the figure, the management device 10 has a list information transmission unit 11, a transition information transmission unit 12, a relay unit 13, and a confirmation unit 15.

The list information transmission unit 11 transmits list information showing a list of devices 20 of the data holding subject capable of providing identity verification information to the device 30 of the data user subject.

The transition information transmission unit 12 outputs transition information for transitioning the end user's terminal 40 to the login screen for logging in to the device 20 of the data holding subject. Specifically, when the transition information transmission unit 12 receives the selection information indicating the data holding subject selected from the list indicated by the list information from the device 30 of the data using subject, the device of the selected data holding subject The transition information for transitioning the terminal 40 of the end user is output to the login screen for logging in to 20.

When the terminal 40 of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device 20 of the data holding main body via the login screen, the confirmation unit 15 holds the identity confirmation information of the logged-in user. Received from the main device 20. Then, the confirmation unit 15 outputs the received identity verification information to the end user's terminal 40 to prompt the confirmation of the identity verification information. The confirmation unit 15 can display the personal identification information and display the information confirmation screen in which a part of the personal identification information is hidden on the end user's terminal 40.

When the relay unit 13 receives the confirmation information indicating that the identity verification information has been confirmed from the end user's terminal 40, the relay unit 13 transmits the confirmed identity verification information to the device 30 of the data user. The relay unit 13 does not store the identity verification information received from the data holding main device 20 in the non-volatile storage device of its own device, but relays between the data holding main device 20 and the data utilization main device 30. It is preferable to do.

"Hardware configuration of equipment"
An example of the hardware configuration of each device constituting the identity verification information utilization system is the same as that of the first and second embodiments.

"Action effect"
The identity verification information utilization system of the present embodiment realizes the same effects as those of the first embodiment. Further, according to the identity verification information utilization system of the present embodiment, the above-mentioned process for the user to confirm the identity verification information can be performed by the management device 10 instead of the data holding main device 20. As a result, the processing load of the device 20 that holds the data is reduced.

<Fourth Embodiment>
The identity verification information utilization system of the present embodiment is different from the third embodiment in that a plurality of identity verification information utilization systems can be selected from a plurality of data retention subject apparatus 20 capable of providing identity verification information to the data utilization subject apparatus 30. different. For example, in the screen shown in FIG. 3 (8), the user can select a plurality of data holding subjects.

An example of the functional block diagram of the management device 10 of the present embodiment is shown in FIG. As shown in the figure, the management device 10 includes a list information transmission unit 11, a transition information transmission unit 12, a relay unit 13, a determination unit 14, and a confirmation unit 15.

When the transition information transmission unit 12 receives selection information indicating that a plurality of data holding subjects have been selected ((6) in FIG. 8), the transition information transmitting unit 12 logs in to each of the devices 20 of the selected plurality of data holding subjects. A plurality of transition information for transitioning the end user's terminal 40 to a plurality of login screens is output ((7) in FIG. 8).

As a result, the end user's terminal 40 is redirected to the login screen of each of the selected plurality of data holding subjects. Then, the user inputs login information and the like via each login screen ((9) in FIG. 8). Then, when the login is successful, the device 20 of each data holding subject is sent through the transmission of the personal authentication completed notification ((10) in FIG. 8) and the reception of the request for the personal identification information ((11) in FIG. 8). As described in the third embodiment, the identity verification information is transmitted to the management device 10 ((12) in FIG. 8). After that, the management device 10 outputs a plurality of identity verification information received from the devices 20 of the plurality of data holding subjects to the terminal 40 of the end user, and prompts the confirmation of the identity verification information ((13) in FIG. 8). For example, the management device 10 may generate an information confirmation screen that displays a list of a plurality of identity verification information and display it on the end user's terminal 40, or generate an information confirmation screen that sequentially displays a plurality of identity verification information. However, it may be displayed on the end user's terminal 40, or an information confirmation screen of other configurations may be generated and displayed on the end user's terminal 40.

Since the configuration of the determination unit 14 is the same as that described in the second embodiment, the description here will be omitted.

Other configurations of the identity verification information utilization system of the present embodiment are the same as those of the third embodiment.

As described above, according to the identity verification information utilization system of the present embodiment, the same operation and effect as those of the third embodiment are realized. Further, according to the identity verification information utilization system of the present embodiment, the determination unit 14 included in the management device 10 realizes the same operation and effect as the second embodiment.

Although the embodiments of the present invention have been described above with reference to the drawings, these are examples of the present invention, and various configurations other than the above can be adopted.

In addition, in this specification, "acquisition" means "the own device goes to fetch the data stored in another device or storage medium" based on the user input or the instruction of the program (actively). Acquisition) ”, for example, requesting or inquiring about other devices to receive, accessing and reading other devices or storage media, etc., and based on user input or program instructions,“ Entering data output from another device into your own device (passive acquisition) ”, for example, receiving data to be delivered (or transmitted, push notification, etc.), and received data or information. Select and acquire from among, and generate new data by editing the data (text conversion, data sorting, partial data extraction, file format change, etc.), and the new data Includes at least one of "acquiring data".

Some or all of the above embodiments may also be described, but not limited to:
1. 1. It has a data holding main device that stores personal identification information of a plurality of users, and a management device that manages the transfer of personal identification information between the data holding main device and the data user main device. ,
The data holding main device is
An authentication means that communicates with the terminal of the end user who has transitioned to the login screen based on the transition information transmitted from the management device, receives the login information, and performs an authentication process based on the login information.
When the authentication is successful in the authentication process, the identification means of the logged-in user is read from the storage means and output to the terminal of the end user to prompt the confirmation of the identity verification information.
Upon receiving the confirmation information indicating that the identity verification information has been confirmed from the end user's terminal, the identity verification information transmitting means for transmitting the confirmed identity verification information to the management device, and
Have,
The management device is
An identity verification information utilization system having a relay means for transmitting the identity verification information received from the data holding subject device to the data utilization subject device.
2. 2. The identity verification information utilization system according to 1, wherein the verification means displays the identity verification information and displays an information confirmation screen in which a part of the identity verification information is hidden on the end user's terminal.
3. 3. The confirmation means receives a change in the identity verification information output to the terminal of the end user, and receives the change.
The identity verification information transmitting means according to 1 or 2, wherein when the change of the identity verification information is accepted by the confirmation means, the identity verification information after the change is transmitted to the management device.
4. The management device is
1 to 3 for relaying between the data holding main device and the data using main device without storing the identity verification information received from the data holding main device in the non-volatile storage device of the own device. Identity verification information utilization system described in either.
5. The management device is
A list information transmitting means for transmitting list information indicating a list of the data holding subjects capable of providing the identity verification information to the device of the data using subject, and a list information transmitting means.
When the selection information indicating the data holding subject selected from the list shown in the list information is received from the device of the data using subject, the login screen for logging in to the selected device of the data holding subject is displayed. A transition information transmission means for outputting the transition information for transitioning the terminal of the end user, and
The identity verification information utilization system according to any one of 1 to 4.
6. When the transition information transmitting means receives the selection information indicating that the plurality of data holding subjects have been selected, the transition information transmitting means displays the plurality of login screens for logging in to each of the selected devices of the plurality of data holding subjects. A plurality of the transition information for transitioning the terminal of the end user is output, and the transition information is output.
The management device is
The identity verification information utilization system according to 5, further comprising a determination means for determining whether or not the plurality of identity verification information match each other when the identity verification information is received from each of the plurality of devices of the data holding subject.
7. The determination means is
When the plurality of identity verification information do not match each other, the one having the highest reliability is determined from the plurality of identity verification information, and the determined identity verification information is transmitted to the device of the data user. Identity verification information utilization system.
8. The determination means is
The identity verification information utilization system according to 6 or 7, wherein when the plurality of identity verification information do not match each other, the plurality of devices of the data holding subject, which are the transmission sources of the plurality of identity verification information, are notified to that effect.
9. A transition information transmission means that outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. A confirmation means that receives from the main device and outputs it to the terminal of the end user to prompt confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the relay means for transmitting the confirmed identity verification information to the device of the data user, and the relay means.
Management device with.
10. 9. The management device according to 9, wherein the confirmation means displays the identity verification information and displays an information confirmation screen in which a part of the identity verification information is hidden on the end user's terminal.
11. 9 or 10 that does not store the identity verification information received from the data holding main device in the non-volatile storage device of the own device, but relays between the data holding main device and the data utilization main device. The management device described.
12. It also has a list information transmission means for transmitting list information indicating a list of data holding subjects that can provide identity verification information to the device of the data user subject.
The transition information transmitting means is
When the selection information indicating the data holding subject selected from the list shown in the list information is received from the device of the data using subject, the login screen for logging in to the selected device of the data holding subject is displayed. The management device according to any one of 9 to 11, which outputs the transition information for transitioning the terminal of the end user.
13. When the transition information transmitting means receives the selection information indicating that the plurality of data holding subjects have been selected, the transition information transmitting means displays the plurality of login screens for logging in to each of the selected devices of the plurality of data holding subjects. A plurality of the transition information for transitioning the terminal of the end user is output, and the transition information is output.
When the end user's terminal succeeds in logging in to each of the plurality of devices of the data holding entity via each of the plurality of login screens, the confirmation means obtains the identity verification information of the logged-in user into the plurality of data. Received from each of the holding main devices and output to the end user's terminal to prompt confirmation of the plurality of identity verification information received from each of the plurality of data holding main devices.
12. The above-described 12. Management device.
14. The determination means is
When the plurality of identity verification information do not match each other, the one having the highest reliability is determined from the plurality of identity verification information, and the determined identity verification information is transmitted to the device of the data user. Management device.
15. The determination means is
13. The management device according to 13 or 14, wherein when the plurality of identity verification information do not match each other, the plurality of devices of the data holding subject, which are the sources of the plurality of identity verification information, are notified to that effect.
16. A person who has a data holding main device that stores personal identification information of a plurality of users and a management device that manages the transfer of personal identification information between the data holding main device and the data user main device. Performed by the confirmation information utilization system,
The data holding main device is
It communicates with the terminal of the end user who has transitioned to the login screen based on the transition information transmitted from the management device, receives the login information, and performs the authentication process based on the login information.
When the authentication is successful in the authentication process, the identity verification information of the logged-in user is read from the storage means and output to the terminal of the end user to prompt the confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the confirmed identity verification information is transmitted to the management device.
The management device is
A method of using personal identification information for transmitting the personal identification information received from the device of the data holding subject to the device of the data user.
17. The computer
Outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. Received from the main device and output to the end user's terminal to prompt confirmation of the identity verification information.
A management method in which when the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the confirmed identity verification information is transmitted to the device of the data user.
18. Computer,
Transition information transmission means that outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. A confirmation means that receives from the main device and outputs it to the end user's terminal to prompt confirmation of the identity verification information.
A relay means for transmitting the confirmed identity verification information to the device of the data user when the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user.
A program that functions as.

10 Management device 11 List information transmission unit 12 Transition information transmission unit 13 Relay unit 14 Judgment unit 15 Confirmation unit 20 Data retention main device 21 Authentication unit 22 Confirmation unit 23 Identity verification information transmission unit 30 Data user main device 40 End user Terminal 1A Processor 2A Memory 3A I / O I / F
4A peripheral circuit 5A bus

Claims (18)

It has a data holding main device that stores personal identification information of a plurality of users, and a management device that manages the transfer of personal identification information between the data holding main device and the data user main device. ,
The data holding main device is
An authentication means that communicates with the terminal of the end user who has transitioned to the login screen based on the transition information transmitted from the management device, receives the login information, and performs an authentication process based on the login information.
When the authentication is successful in the authentication process, the identification means of the logged-in user is read from the storage means and output to the terminal of the end user to prompt the confirmation of the identity verification information.
Upon receiving the confirmation information indicating that the identity verification information has been confirmed from the end user's terminal, the identity verification information transmitting means for transmitting the confirmed identity verification information to the management device, and
Have,
The management device is
An identity verification information utilization system having a relay means for transmitting the identity verification information received from the data holding subject device to the data utilization subject device. The identity verification information utilization system according to claim 1, wherein the verification means displays the identity verification information and displays an information confirmation screen in which a part of the identity verification information is hidden on the end user's terminal. The confirmation means receives a change in the identity verification information output to the terminal of the end user, and receives the change.
The identity verification information transmitting means according to claim 1 or 2, wherein when the change of the identity verification information is accepted by the confirmation means, the identity verification information after the change is transmitted to the management device. system. The management device is
From claim 1, the identity verification information received from the data holding main device is not stored in the non-volatile storage device of the own device, and is relayed between the data holding main device and the data using main device. The identity verification information utilization system described in any one of 3. The management device is
A list information transmitting means for transmitting list information indicating a list of the data holding subjects capable of providing the identity verification information to the device of the data using subject, and a list information transmitting means.
When the selection information indicating the data holding subject selected from the list shown in the list information is received from the device of the data using subject, the login screen for logging in to the selected device of the data holding subject is displayed. A transition information transmitting means for outputting the transition information for transitioning the terminal of the end user, and
The identity verification information utilization system according to any one of claims 1 to 4. When the transition information transmitting means receives the selection information indicating that the plurality of data holding subjects have been selected, the transition information transmitting means displays the plurality of login screens for logging in to each of the selected devices of the plurality of data holding subjects. A plurality of the transition information for transitioning the terminal of the end user is output, and the transition information is output.
The management device is
The identity verification information utilization system according to claim 5, further comprising a determination means for determining whether or not the plurality of identity verification information match each other when the identity verification information is received from each of the plurality of devices of the data holding subject. .. The determination means is
When the plurality of identity verification information do not match each other, the one having the highest reliability is determined from the plurality of identity verification information, and the determined identity verification information is transmitted to the device of the data user. Identity verification information utilization system described in. The determination means is
The identity verification information utilization system according to claim 6 or 7, wherein when the plurality of identity verification information do not match each other, the plurality of devices of the data holding subject, which are the transmission sources of the plurality of identity verification information, are notified to that effect. .. A transition information transmission means that outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. A confirmation means that receives from the main device and outputs it to the terminal of the end user to prompt the confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the relay means for transmitting the confirmed identity verification information to the device of the data user, and the relay means.
Management device with. The management device according to claim 9, wherein the confirmation means displays the identity verification information and displays an information confirmation screen in which a part of the identity verification information is hidden on the end user's terminal. 9. 10. The management device according to 10. It also has a list information transmission means for transmitting list information indicating a list of data holding subjects that can provide identity verification information to the device of the data user subject.
The transition information transmitting means is
When the selection information indicating the data holding subject selected from the list shown in the list information is received from the device of the data using subject, the login screen for logging in to the selected device of the data holding subject is displayed. The management device according to any one of claims 9 to 11, which outputs the transition information for transitioning the terminal of the end user. When the transition information transmitting means receives the selection information indicating that the plurality of data holding subjects have been selected, the transition information transmitting means displays the plurality of login screens for logging in to each of the selected devices of the plurality of data holding subjects. A plurality of the transition information for transitioning the terminal of the end user is output, and the transition information is output.
When the terminal of the end user succeeds in logging in to each of the plurality of devices of the data holding entity via each of the plurality of login screens, the confirmation means uses the plurality of data to confirm the identity of the logged-in user. Received from each of the holding main devices and output to the end user's terminal to prompt confirmation of the plurality of identity verification information received from each of the plurality of data holding main devices.
The twelfth claim further comprises a determination means for determining whether or not the plurality of confirmed identity verification information match each other when the confirmation information indicating that the plurality of identity verification information has been confirmed is received from the end user's terminal. The management device described. The determination means is
When the plurality of identity verification information do not match each other, the one having the highest reliability is determined from the plurality of identity verification information, and the determined identity verification information is transmitted to the device of the data user. The management device described in. The determination means is
The management device according to claim 13 or 14, wherein when the plurality of identity verification information do not match each other, the plurality of devices of the data holding subject, which are the sources of the plurality of identity verification information, are notified to that effect. A person who has a data holding main device that stores personal identification information of a plurality of users and a management device that manages the transfer of personal identification information between the data holding main device and the data user main device. Performed by the confirmation information utilization system,
The data holding main device is
It communicates with the terminal of the end user who has transitioned to the login screen based on the transition information transmitted from the management device, receives the login information, and performs the authentication process based on the login information.
When the authentication is successful in the authentication process, the identity verification information of the logged-in user is read from the storage means and output to the terminal of the end user to prompt the confirmation of the identity verification information.
When the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the confirmed identity verification information is transmitted to the management device.
The management device is
A method of using personal identification information for transmitting the personal identification information received from the device of the data holding subject to the device of the data user. The computer
Outputs the transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. Received from the main device and output to the end user's terminal to prompt confirmation of the identity verification information.
A management method in which when the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user, the confirmed identity verification information is transmitted to the device of the data user. Computer,
Transition information transmission means that outputs transition information for transitioning the end user's terminal to the login screen for logging in to the device that holds the data.
When the terminal of the end user who has transitioned to the login screen based on the transition information succeeds in logging in to the device of the data holding subject via the login screen, the identity verification information of the logged-in user is held in the data. A confirmation means that receives from the main device and outputs it to the end user's terminal to prompt confirmation of the identity verification information.
A relay means for transmitting the confirmed identity verification information to the device of the data user when the confirmation information indicating that the identity verification information has been confirmed is received from the terminal of the end user.
A program that functions as.

Images