JP2022138838A - Delegation application system, delegation application method, and delegation application program - Google Patents

Abstract

To allow a mandator or a representative to easily create application data and delegation data required for delegation application of a procedure, and/or to assist a service provider in easily confirming a proxy right of the representative.SOLUTION: A delegation application system 100 includes a mandator terminal 102, a representative terminal 101, a verification support device 103 for providing the mandator terminal 102 or the representative terminal 101 with a format of application data required for procedure application and delegation data for proving delegation to the representative, and verifying the delegation data created on the basis of the format, and a service providing device 104 for providing a service applied by the application data in the case where a successful result about the delegation data submitted with the application data is acquired with the verification by the verification support device 103.SELECTED DRAWING: Figure 1

Description

The present invention relates to a delegation application system, a delegation application method, and a delegation application program.

In recent years, the Electronic Power of Attorney Act (Act on Popularization of Electronic Power of Attorney) has been enacted, and guidelines have been formulated for realizing digital first. The Electronic Power of Attorney Act mainly stipulates that employees of a corporation are entrusted with the authority to carry out the procedures by the representative of the corporation. On the other hand, in administrative and private procedures, delegation is carried out using powers of attorney, which are prepared by signing or affixing a seal on a piece of paper describing the content of the delegation between people who are not in an employment relationship.

As a technique for electronically realizing a power of attorney using paper, there is, for example, Patent Document 1. In the delegation system disclosed in Patent Document 1, a delegator or an agent electronically creates a power of attorney using a smart device or the like and transmits it to the delegator's or agent's smart device using short-range wireless communication. Create a token with signature. When receiving services such as procedures, the delegated agent holds the agent terminal over an IC card reader connected to the service providing terminal and sends the token to the service providing terminal. After performing authentication, check the delegation details. According to such a delegation system of Patent Document 1, it is possible to make a paperless application by proxy.

JP 2016-206982 A

However, in the delegation system of Patent Document 1, the delegator or agent needs to create the delegation content of the power of attorney by himself according to the procedure he wants to carry out, and the service provider confirms the content of the power of attorney, It was necessary to confirm with the agent whether he or she had authority to act on behalf of the service.

The present invention has been devised in consideration of the above points, so that even a delegator or agent who has little knowledge of procedures and delegation can easily create application form data and delegation data necessary for proxy application of procedures. and/or a delegation application system, a delegation application method, and a delegation application program capable of supporting a service provider to easily confirm the delegation authority of an agent.

In order to solve such problems, the present invention provides a delegation application system for supporting an application for a procedure for receiving a service provided by an agent entrusted by a delegator, comprising: a delegator terminal used by the delegator; An agent terminal used by an agent and a format of application form data necessary for applying for the procedure and delegation data certifying that the application is entrusted to the agent are provided to the delegator terminal or the agent terminal. a verification support device for verifying the delegation data created based on the format; and a service providing device for providing the service requested by the application form data.

Further, in order to solve such problems, the present invention provides a delegation application method using a delegation application system for supporting application for procedures for receiving service provision by an agent delegated by a delegator, wherein the delegation application system comprises , a delegator terminal used by the delegator, an agent terminal used by the agent, a verification support device, and a service providing device for providing a service; a first step in which the support device provides the delegator terminal or the agent terminal with a format of application form data necessary for the application of the procedure and delegation data certifying that the application is entrusted to the agent; a second step in which the verification support device receives and holds the application form data and the delegation data created based on each of the formats from the delegator terminal or the agent terminal; a third step of requesting the verification support device to verify the delegation data when the service providing device receives the application form data and the delegation data from the agent terminal; a fourth step of verifying the delegation data held before the application of the procedure, corresponding to the delegation data targeted, and responding to the service providing device with the verification result; and a fifth step of providing the service requested by the application form data received from the agent terminal when the verification result of the data is successful.

Further, in order to solve such problems, the present invention provides a delegation application program executed by a computer constituting a delegation application system, which supports application for procedures for receiving services provided by an agent entrusted by a delegator. The computer constituting the delegation application system includes a delegator terminal used by the delegator, an agent terminal used by the agent, a verification support device, and a service providing device for providing services. before applying for the procedure, the format of the application form data necessary for applying for the procedure and delegation data certifying that the application is to be delegated to the proxy is sent to the delegator terminal or causing the agent terminal to execute processing to be provided, and causing the verification support device to receive and hold the application form data and the delegation data created based on each of the formats from the delegator terminal or the agent terminal; and when the service providing device receives the application form data and the delegation data from the agent terminal at the time of applying for the procedure, the verification support device is requested to verify the delegation data. A process of causing the verification support device to verify the delegation data held before the application of the procedure, corresponding to the delegation data targeted by the request, and responding the verification result to the service providing device and causing the service providing device to execute processing for providing the service requested by the application form data received from the agent terminal when the verification result of the delegation data is successful. A program is provided.

According to the present invention, a delegator or an agent can easily create application form data and delegation data necessary for a proxy application for a procedure, and/or a service provider can easily confirm the proxy authority of the agent. can support

BRIEF DESCRIPTION OF THE DRAWINGS It is a block diagram which shows the whole structural example of the delegation application system 100 which concerns on one Embodiment of this invention. 3 is a block diagram showing a functional configuration example of an agent terminal 101 and a delegator terminal 102; FIG. 3 is a block diagram showing a functional configuration example of a verification support device 103; FIG. 3 is a block diagram showing a functional configuration example of the service providing apparatus 104; FIG. It is a figure which shows an example of personal information. FIG. 10 is a diagram showing an example of delegation history information; It is a figure which shows an example of an application data/delegation data format. It is a figure which shows an example of delegation data state information. It is a figure which shows an example of a verification rule. FIG. 11 is a sequence diagram showing an example of a processing procedure of delegation application processing executed by the delegation application system 100; 9 is a flowchart illustrating an example of a processing procedure of first verification processing; FIG. 11 is a flow chart showing an example of a processing procedure of a second verification process; FIG. FIG. 11 is a sequence diagram showing an example of a procedure for invalidation processing;

An embodiment of the present invention will be described in detail below with reference to the drawings. In addition, throughout the drawings, the same configurations and processes are denoted by the same reference numerals, and overlapping descriptions are omitted.

(1) Configuration FIG. 1 is a block diagram showing an overall configuration example of a delegation application system 100 according to one embodiment of the present invention. The delegation application system 100 assists the delegator or the agent in creating data (application form data and delegation data) necessary for proxy application for proxy application for various procedures for receiving service provision, It is a system that supports confirmation of a person's proxy authority. In this specification, application form data is electronic data required for application for procedures. Also, delegation data is electronic data that proves that the delegator delegates the application to the agent. As will be described later, when the agent is a corporation, the electronic data proving that the corporation delegates the application to the employee is also called delegation data. When the agent applies for the procedure by proxy, it is necessary to submit these application form data and delegation data to the service provider (service providing device 104).

As shown in FIG. 1, the delegation application system 100 includes a plurality of agent terminals 101 each used by an agent, a plurality of mandator terminals 102 each used by a mandator, mandate data and application form data. format and verifies entrusted data, a service providing device 104 that provides a predetermined service, a reading device 105 connected to the service providing device 104, and an external service provider. and an external server 106 connected to a network 107 such as the Internet.

The agent terminal 101 and delegator terminal 102 are implemented by general computers or smart devices. The verification support device 103 and the external server 106 are realized by a general server computer. The service providing device 104 is realized by a general computer.

The external server 106 has a function of providing predetermined external services and is implemented by a general server computer. The external server 106 provides, as an external service, information that is not held by the verification support apparatus 103, among the information necessary for the service provider to confirm the proxy authority of the proxy. and information indicating the relationship between the corporate representative and the employee.

A computer, a smart device, or a server computer that realizes each of the above devices (agent terminal 101, delegator terminal 102, verification support device 103, service providing device 104, external server 106) is a CPU (Central Processing Unit). ), memory, external storage devices, communication devices such as NICs (Network Interface Cards), input devices such as keyboards and mice, and output devices such as displays and printers. Configured. Note that each of the above hardware components is not limited to being installed in a single computer, smart device, or server computer. , other computers connected via the network 107 .

The reading device 105 is realized by an IC card reader or the like having a function of reading predetermined information using short-range wireless communication. In this example, an independent reading device 105 will be described as a specific example of means for acquiring predetermined information from the agent terminal 101 or delegator terminal 102 of the user who wants to receive the service. In the delegation application system 100 according to this embodiment, the reading device 105 is not necessarily an essential component, and may be replaced by other means for acquiring the predetermined information. You may prepare.

(1-1) Agent terminal 101, delegator terminal 102
FIG. 2 is a block diagram showing a functional configuration example of the agent terminal 101 and the delegator terminal 102. As shown in FIG. As shown in FIG. 2, the agent terminal 101 and the mandate terminal 102 are provided with a computing unit 201, a storage unit 202, a communication unit 203, and an input/output unit 204, which are connected by a bus or the like. The arithmetic unit 201 is implemented by a processor executing a program stored in a memory or an external storage device. Storage unit 202 is implemented by a memory or an external storage device. The communication unit 203 is implemented by a communication device. The input/output unit 204 is implemented by an input device or an output device.

The calculation unit 201 supports creation of delegation data and application form data, manages the state of delegation data, and signs the delegation data. The calculation unit 201 has a data creation support unit 205, a delegated data state management unit 206, and an electronic signature attachment unit 207 as functional units that implement these functions.

The data creation support unit 205 supports the agent or the delegator to create delegation data and application form data based on the information acquired from the verification support device 103 and the information held in the storage unit 202. . The delegation data status management unit 206 manages the status (valid or invalid) of delegation data stored in the verification support device 103 . The electronic signature attaching unit 207 attaches an electronic signature to the delegation data or application form data created by the own terminal.

The storage unit 202 holds personal information of each delegator or agent, and information on past delegations. As shown in FIG. 2 , the storage unit 202 has a personal information storage unit 208 and a delegation history storage unit 209 .

The personal information holding unit 208 holds personal information (see FIG. 5) indicating the name, date of birth, address, etc. of the delegator or agent. The delegation history holding unit 209 holds past delegation data, past application form data, and delegation history information (see FIG. 6) indicating past delegation history.

Communication unit 203 transmits and receives information to and from other devices in delegation application system 100 via the Internet (network 107) or short-range wireless communication. Specifically, the communication unit 203 transmits the result processed by the calculation unit 201 to another device (the agent terminal 101, the mandate terminal 102, the verification support device 103, the service providing device 104, or the reading device 105). Also, information necessary for processing in the calculation unit 201 and information held in the storage unit 202 are received from other devices.

The input/output unit 204 receives input from an agent or a delegator who operates the own terminal, and outputs predetermined information on a display or the like.

(1-2) Verification support device 103
FIG. 3 is a block diagram showing a functional configuration example of the verification support device 103. As shown in FIG. As shown in FIG. 3, the verification support device 103 includes an arithmetic unit 301, a storage unit 302, a communication unit 303, and an input/output unit 304, which are connected by a bus or the like. Arithmetic unit 301 is implemented by a processor executing a program stored in a memory or an external storage device. Storage unit 302 is implemented by a memory or an external storage device. The communication unit 303 is implemented by a communication device. The input/output unit 304 is implemented by an input device or an output device.

The computing unit 301 manages formats of application data and delegation data, manages or verifies delegation data, and manages mandate data and verification results as a trail. The computing unit 301 has a format management unit 305 , a delegated data management unit 306 , a delegated data verification unit 307 , and a trace management unit 308 as functional units that implement these functions.

A format management unit 305 manages formats of application data and delegation data. Specifically, for example, when a format provision request is received from the agent terminal 101 or the delegator terminal 102, the format management unit 305 provides the desired format held in the format holding unit 309 to the requester. . Further, for example, when the administrator of the verification support apparatus 103 performs an operation such as updating or deleting a format, the format management unit 305 performs processing corresponding to the operation on the target format.

The delegation data management unit 306 manages delegation data. Specifically, for example, delegation data management unit 306 receives delegation data transmitted from agent terminal 101 or delegator terminal 102 and stores it in delegation data status holding unit 310 . Further, for example, the delegation data management unit 306 manages the valid state (valid or invalid) of delegation data stored in the delegation data state holding unit 310, and responds to delegation data invalidation requests from other devices.

Upon receiving a request from the service providing apparatus 104 , the delegation data verification unit 307 verifies the delegation data based on the information held in the storage unit 302 and the information obtained from the external server 106 . The trail management unit 308 manages delegated data and manages trails indicating verification results.

The storage unit 302 holds formats of application data and delegation data, information indicating the state of delegation data, trail information, verification rules, and the like. As shown in FIG. 3 , the storage unit 302 has a format holding unit 309 , a delegation data state holding unit 310 , a trail information holding unit 311 and a verification rule holding unit 312 .

A format holding unit 309 holds formats of application form data and mandate data (see FIG. 7). As will be described later with reference to FIG. 7, this description shows a format (application data/delegation data format 530) in which application data and delegation data are integrated as an example of a format held by the format holding unit 309. However, the application data format and the delegation data format may be separately prepared and held in the format holding unit 309 .

The delegation data state holding unit 310 holds delegation data state information (see FIG. 8) indicating the validity state (valid or invalid) of delegation data. Further, the delegation data state holding unit 310 can also hold application form data and delegation data. The trail information holding unit 311 holds trail information recording results of management or verification of delegated data. The verification rule holding unit 312 holds verification rules based on laws and regulations and verification rules received from service providers (see FIG. 9).

Communication unit 303 transmits and receives information to and from other devices in delegation application system 100 via network 107 . Specifically, the communication unit 303 transmits the result processed by the calculation unit 301 to another device (the agent terminal 101, the delegator terminal 102, or the service providing device 104), It receives necessary information and information held in storage unit 302 from other devices (agent terminal 101, delegator terminal 102, service providing device 104, or external server 106).

The input/output unit 304 receives input from the administrator of the verification support apparatus 103 .

(1-3) Service providing device 104
FIG. 4 is a block diagram showing a functional configuration example of the service providing apparatus 104. As shown in FIG. As shown in FIG. 4, the service providing device 104 includes an arithmetic unit 401, a storage unit 402, a communication unit 403, and an input/output unit 404, which are connected by a bus or the like. Arithmetic unit 401 is implemented by a processor executing a program stored in a memory or an external storage device. Storage unit 402 is implemented by a memory or an external storage device. The communication unit 403 is implemented by a communication device. The input/output unit 404 is implemented by an input device or an output device.

The calculation unit 401 acquires information read by the reading device 105 using short-range wireless communication, requests verification of delegation data, and manages a trail of a series of processes related to an application. The calculation unit 401 has a read information acquisition unit 405 , a verification request unit 406 , and a trace management unit 407 as functional units that implement these functions.

The read information acquisition unit 405 acquires information on the application form data or the mandate data read by the reading device 105 . The verification request unit 406 requests the verification support apparatus 103 to verify the delegation data and receives the result. A trail management unit 407 manages a trail of a series of processes related to an application.

The storage unit 402 holds trail information. The storage unit 402 has a trail information holding unit 408 that holds trail information recording a trail of a series of processes related to an application.

Communication unit 403 transmits and receives information to and from other devices in delegation application system 100 via network 107 . Specifically, the communication unit 403 transmits the result processed by the calculation unit 401 to other devices (the agent terminal 101 and the verification support device 103), and also transmits information necessary for processing in the calculation unit 401 and a storage unit. Information held in 402 is received from another device (verification support device 103).

The input/output unit 404 receives input from the administrator of the service providing apparatus 104 and input from users who want to receive services provided by the service providing apparatus 104, and receives information read by the reading device 105. or

The internal configurations of the agent terminal 101, the delegator terminal 102, the verification support device 103, and the service providing device 104 have been described above with reference to FIGS. Various programs or parts thereof that are executed by the units 301 and 401 may be referred to as "units", "units", "means", "functions", "modules", and the like. Each storage unit 202, 302, 402 uses a different storage method such as RDB (Relational DataBase), file server, or KVS (Key-Value Store), depending on the size and format of the program or data to be stored. It may be configured by a plurality of storage units provided. In addition, part or all of the data equivalent to the programs or data stored in each storage unit 202, 302, 402 can be stored in one or more other non-temporary storage devices connected to the network 107 such as the Internet. or via a non-temporary storage medium. Also, each component shown in FIGS. 2 to 4 need not be physically separated, and for example, one component may serve as another. Also, components in one terminal or device may be divided and arranged in a plurality of devices.

(2) Data Structure Below, an example data structure of various data held in the delegation application system 100 according to this embodiment will be described.

FIG. 5 is a diagram showing an example of personal information. Personal information 510 shown in FIG. 5 is an example of personal information held by the personal information holding unit 208 in the agent terminal 101 and the delegator terminal 102 . Personal information 510 includes data items of name 511 , address 512 , date of birth 513 , and telephone number 514 . In the personal information 510, personal information is recorded one by one for each mandate or agent. Although only one person's information is shown in FIG. 5, the personal information 510 can hold information for multiple persons. Also, the data items recorded in the personal information 510 are not limited to the example in FIG. The personal information 510 may be set individually by the delegator or the agent, or may be read and recorded by the agent terminal 101 or the delegator terminal 102 from an IC card or the like held by the subject.

In the personal information 510, the name 511 is set with the name of the subject (agent or delegator). The address 512 is an item in which the address of the subject is set. A postal code or prefecture name may be set. The date of birth 513 is an item in which the date of birth of the subject is set, and is set according to the Gregorian calendar, the Japanese calendar, or the like. The phone number 514 is an item in which the phone number of the target person is set, and a plurality of phone numbers such as home, mobile phone, office phone, etc. may be set.

FIG. 6 is a diagram showing an example of delegation history information. Delegation history information 520 shown in FIG. 6 is an example of delegation history information held by the delegation history storage unit 209 in the agent terminal 101 and delegator terminal 102 . The delegation history information 520 includes data items of delegation data ID 521 , delegator information 522 , agent information 523 , delegation content 524 , and revocation status 525 .

The delegation data ID 521 is a unique identifier for each item of delegation information (delegation data), and a UUID (Universally Unique Identifier) may be used. 103 may issue sequentially.

The delegator information 522 and the agent information 523 are the personal information of the delegator and the agent in the target delegation data, and the items included in the personal information may be increased or decreased depending on the type of application. The delegation content 524 is set with the content that the delegator entrusts to the agent.

Revocation status 525 is set to indicate whether the target delegation data is currently valid or revoked. For example, if it has been used and has expired, it is described as "expired (used)" or the like. The reason for invalidation of delegation data may be due to the period of validity or the number of times of validity (see delegation period/number of times 537 in FIG. 7) predetermined in the delegation data, or the delegator's designation of revocation (see FIG. 13). (to be described later). When the delegation data is valid, the revocation status 525 may simply be described as "valid", or the number of times it can be used or an expiration date may be set.

FIG. 7 is a diagram showing an example of the application form data/delegation data format. The application form data/delegation data format 530 in FIG. 7 is an example of a format held by the format holding unit 309 of the verification support apparatus 103, and is a format in which one application form data and delegation data are integrated. It is shown. The application data/delegation data format 530 has data items such as an application data name 531, applicant information 532, application date 533, application-related information 534, delegation details 535, agent information 536, and delegation period/number of times 537. configured as Note that the application form data/delegation data format 530 may have different data items depending on the application target (for example, the application form data name 531).

The application form data name 531 is set with the name of the application form, such as "application form for publication of copy of resident's card, etc.". Applicant information 532 includes personal information such as the applicant's name, address, and telephone number. The applicant information 532 is not set by the verification support device 103 but is set by the agent terminal 101 or the delegator terminal 102 . The application date 533 is set with the date on which the application is made. The application date 533 may be entered by the applicant, or may be automatically set by the verification support device 103, the agent terminal 101, or the delegator terminal 102 at the time of application.

The application-related information 534 is set with specific content that the delegator or agent must specify or select regarding the application. Specifically, for example, if the content of the application is issuance of a copy of a resident's card, in the information 534 regarding the application, it is possible to select and set whether the resident's card to be issued is a resident's card or a removal of the resident's card. be done.

In the delegation content 535, the content to be delegated in the application is set, such as "acquisition of copy of resident's card". The delegation content 535 may be fixed or selective for each application. Personal information such as the name, address, and telephone number of the agent is set in the agent information 536 . The proxy information 536 is set by the proxy terminal 101 or the delegator terminal 102, not by the verification support device 103. FIG.

In the delegation period/number of times 537, effective conditions of delegation (effective number of times and effective period) in the delegation data are set. The effective conditions for delegation may be determined for each application form, or may be individually set by the applicant. As a specific setting, for example, if the use is valid only this time, it will be described as "once", and if the number of times of use is not specified and the use within one week will be valid, one week A later date is listed. Also, both the effective period and the effective number of times may be set. Note that the format held in the format holding unit 309 is not limited to a format in which the application data and the mandate data are integrated like the application data/delegation data format 530. may be managed separately. However, when managing them separately, it is necessary to associate and hold the formats for both uses.

FIG. 8 is a diagram showing an example of delegation data state information. The delegation data state information 540 in FIG. 8 is an example of delegation data state information held in the delegation data state holding unit 310 of the verification support device 103 . Delegation data state information 540 comprises delegation data ID 541 and revocation state 542 data items.

The delegation data ID 541 is the same as the delegation data ID 521 described in the delegation history information 520 of FIG. Also, the revocation state 542 is the same as the revocation state 525 described in the delegation history information 520 of FIG.

FIG. 9 is a diagram showing an example of verification rules. A verification rule 550 in FIG. 9 is an example of a verification rule held in the verification rule holding unit 312 of the verification support apparatus 103 . The verification rule 550 includes data items of an application form data name 551 and a verification rule 552 .

The application form data name 551 is the same as the application form data name 531 described in the application form data/delegation data format 530 of FIG. A verification rule for each application is set in the verification rule 552 . As specific verification rules, for example, it is set that the electronic signature of the applicant is essential, and that the legal entity is allowed to pass the maximum information to the employee.

(3) Processing Below, the processing executed in the delegation application system 100 according to this embodiment will be described in detail.

(3-1) Delegation Application Processing FIG. 10 is a sequence diagram showing a processing procedure example of delegation application processing executed by the delegation application system 100. As shown in FIG. Here, the delegation application system 100 supports a delegator or an agent to create application form data and delegation data before applying for a procedure, and supports verification of the delegation data on the service provider side when applying for a procedure. is called delegation application processing. In FIG. 10, of the agent terminals 101, the agent terminal 101B is the representative terminal of the corporation that receives the mandate from the delegator, and the agent terminal 101A is the employee terminal of the corporation.

According to FIG. 10, the delegator first operates the delegator's terminal 102 to obtain the format of the application form data and delegation data relating to the service to be provided from the verification support device 103 (step S101).

Next, the delegator operates the delegator terminal 102 to create application form data and delegation data according to the format acquired in step S101 (step S102). At this time, the data creation support unit 205, based on the delegator's personal information held in the personal information holding unit 208 and past application data and delegation data held in the delegation history holding unit 209, By pre-printing (presenting) information about the application and the agent, it assists the delegator in creating application form data and delegation data. A legal entity can be designated as the delegated agent, and when a legal entity is designated, information such as the corporate name and representative is entered in the agent information.

Next, the delegator operates the delegator's terminal 102 to add an electronic signature to the application form data and delegation data created in step S102 (step S103). Attachment of the electronic signature is executed by the electronic signature attachment unit 207 . At this time, the electronic signature of the application form data may be omitted depending on the service to be provided. Further, the electronic signature attaching unit 207 may create signature data using a private key stored in an IC card or the like when attaching an electronic signature.

Next, the delegator operates the delegator terminal 102 to transmit the created application form data and delegation data to the verification support device 103 (step S104). The verification support device 103 assigns a unique delegation data ID to each delegation data, stores the received application form data and delegation data in the delegation data state holding unit 310, and sends the delegation data to the delegator terminal 102. An acceptance response including an ID is made (step S105).

Next, the delegator transmits the application form data and delegation data from the delegator terminal 102 to the agent terminal 101 using short-range wireless communication or the Internet (network 107) (step S106). Note that FIG. 10 shows the processing of steps S106 to S111 on the assumption that a corporation is specified as the agent, but the designated agent is not a corporation but an individual (for example, using the agent terminal 101A). person), the application form data and the delegation data are directly transmitted from the delegator terminal 102 to the agent terminal 101A in step S106, and the processing of steps S107 to S111 is skipped.

If a corporation is designated as the agent, the representative of the corporation that received the application form data and the entrusted data in step S106 operates the agent terminal 101B to create entrusted data for the employee (step S107). , gives an electronic signature (step S108). Next, the corporate representative operates the agent terminal 101B to transmit the delegation data created in steps S107 and S108 and the application form data received in step S106 to the verification support apparatus 103 (step S109). ). In step S109, at least information indicating the delegation relationship between the corporation and the employee (for example, delegation data from the corporation to the employee) and information that can specify the content of the application delegated from the corporation to the employee (for example, application form data) are transmitted to the verification support device 103, the verification support device 103 can use these data to verify the legitimacy of the delegation from the corporation to the employee in verification of delegation data described later. After receiving the data in step S109, the verification support apparatus 103 assigns a unique delegation data ID to each delegation data, stores the received application form data and delegation data in the delegation data state holding unit 310, An acceptance response including the delegation data ID is sent to the human terminal 101B (step S110). After step S110, the corporate representative operates the agent terminal 101B to transmit the application form data and the delegation data to the agent terminal 101A (step S111).

In step S107, the corporate representative can create delegation data for the employee in association with the delegation data received in step S106. Specifically, for example, by describing the delegation data ID of the delegation data received in step S106 in the delegation content of the delegation data to the employee, the delegation data that associates the delegation to the corporation with the delegation from the corporation to the employee. can be created. Further, the processing (steps S107 to S110) relating to the delegation by the corporation to the employee may be performed in advance as delegation content for permitting a plurality of applications at a timing before step S101.

The processing of steps S101 to S111 described above is processing that is performed before applying for a procedure, and is processing that assists the delegation application system 100 in creating application form data and delegation data. The processing of steps S112 to S119, which will be described below, is processing that is performed when applying for a procedure, and is processing that assists the delegation application system 100 in verifying delegation data.

When applying for a procedure, the agent (corporate employee) holds the agent terminal 101A over the reading device 105 attached to the service providing device 104, and the application form data and the delegation data received in step S111 are read by the reading device 105. is read (step S112). At the same time, the agent presents the identity verification document to the service provider, or causes the reading device 105 to read the identity verification information stored in the IC card or the like. The reading device 105 then transmits these reading results to the service providing device 104 (step S113).

Next, the service provider uses the service providing apparatus 104 to request the verification support apparatus 103 to verify the entrusted data (step S114). Specifically, the verification request unit 406 of the service providing apparatus 104 sends the network 107 along with predetermined information included in the delegation data, application form data, etc. A delegation data verification request is transmitted to the delegation data verification unit 307 of the verification support apparatus 103 via the verification support apparatus 103 .

Upon receiving the verification request, verification support apparatus 103 (delegation data verification unit 307) checks whether verification is possible with only the data held in storage unit 302, and if verification is not possible, there is insufficient data for verification. The external server 106 is requested to provide the data (verification data) stored in the client (step S115). As a response to the request, the external server 106 that provides a predetermined external service transmits verification data such as the agent's qualification information to the verification support device 103 (step S116).

Next, the verification support apparatus 103 (delegation data verification unit 307) verifies the delegation data using the data held in the storage unit 302 and the verification data received in step S116 (step S117). The verification result is returned to the service providing apparatus 104 (step S118). At this time, the verification support apparatus 103 may hold the verification result as the trail information in the trail information holding unit 311 . Details of verification processing by the verification support apparatus 103 will be described later with reference to FIGS. 11 and 12 .

Next, the service provider confirms the agency authority of the agent based on the verification result received by the service providing apparatus 104, and if the agency authority regarding this application is approved, the service requested by the application form data is confirmed. is provided to the agent (step S119). The service may be provided directly to the agent, or may be sent from the service providing device 104 to the agent terminal 101A or the agent terminal 101B.

By performing the processing of steps S101 to S119 in FIG. 10, the delegation application system 100 can support creation of application form data and delegation data, and support verification of the delegation data.

Among the processes shown in FIG. 10, acquisition of formats of application form data and delegation data (step S101) and creation of application form data and delegation data (step S102) are performed by the agent using the agent terminal 101 ( 101A, 101B), in which case the agent sends the created application form data and mandate data from the agent terminal 101 via short-range wireless communication or the Internet (network 107). A process of transmitting to the mandate terminal 102 is executed.

The service may also be provided over the network 107. In that case, the agent sends the application form data and the mandate data from the agent terminal 101 (101A, 101B) via the network 107 in step S112. Send to the providing device 104 .

(3-2) Verification Processing As explained in step S117 of FIG. Verification processing is performed to verify the delegation data using the verification data. A detailed processing procedure of the verification processing will be described below.

FIG. 11 is a flowchart illustrating a processing procedure example of the first verification processing. The first verification process corresponds to a series of processes commonly executed regardless of the type of application form data among the verification processes of the delegation data in this embodiment.

According to FIG. 11, first, the delegation data verification unit 307 acquires delegation data, application form data, and personal identification information received from the service providing apparatus 104, and verification data received from the external server 106 (step S201). ).

Next, the delegation data verification unit 307 confirms whether the application date described in the application form data is within the delegation period described in the delegation data (step S202). Note that if the delegation data does not specify the delegation period but the delegation number of times, the check in step S202 may be skipped. The term of delegation designates the effective period of the delegation data, and the number of times of delegation designates the effective number of times of use of the delegation data. If the application date is within the mandate period (YES in step S202), the process proceeds to step S203. On the other hand, if the application date is outside the delegation period (NO in step S202), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

In step S203, the delegation data verification unit 307 refers to the delegation data state information held in the delegation data state holding unit 310 (for example, the delegation data state information 540 in FIG. 7), and checks the delegation data ID given to the delegation data. Check the revocation status corresponding to . If the revocation status corresponding to the delegation data ID is "valid" (YES in step S203), the process proceeds to step S204. On the other hand, if the revocation status corresponding to the delegation data ID is "revoked" (NO in step S203), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

In step S204, the delegation data verification unit 307 verifies the electronic signature of the delegation data and confirms whether the verification is successful. In addition, if the corporation has delegated to the employee, confirm the electronic signature for each of the two delegated data, the data delegated from the delegator to the corporation and the data delegated from the corporation to the employee. conduct. If the electronic signature is valid (YES in step S204), the process proceeds to step S205. On the other hand, if the electronic signature is invalid (NO in step S204), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

In step S205, the delegation data verification unit 307 verifies the electronic signature of the application form data and confirms whether the verification is successful. If the electronic signature is valid (YES in step S205), the process proceeds to step S206. On the other hand, if the electronic signature is invalid (NO in step S205), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

In step S206, the delegation data verification unit 307 collates the agent's identity verification information with the agent information described in the delegation data (for example, the agent information 536 in FIG. 7). ” and other information match. If the identity verification information matches the agent information of the delegation data (YES in step S206), the process proceeds to step S207. On the other hand, if the identity verification information and the agent information of the delegation data do not match (NO in step S206), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

In step S207, the delegation data verification unit 307 confirms whether the application form data and the delegation data correspond to each other. This is to confirm whether or not the delegation data corresponding to the application form data has been sufficiently created, and can be realized by confirming whether or not all the items required to be entered in the delegation data are complete. As another method, it can also be realized by confirming whether the application form data name and the details of delegation correspond to each other. If there is no correspondence between the application form data and the delegation data (NO in step S207), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

On the other hand, if the application form data and the delegation data correspond to each other in step S207 (YES in step S207), all confirmations in steps S202 to S207 have been successfully completed. It is determined that the data verification was successful, and the process ends.

By executing the processing of steps S201 to S207 in FIG. 11, the delegation data verification unit 307 can verify the delegation data by common verification processing regardless of the type of application form data. In addition, when the corporation has delegated to the employee, each confirmation process is performed for each of the two delegated data, the delegated data from the delegator to the corporation and the delegated data from the corporation to the employee. you can

Note that the execution order of each confirmation process shown in steps S202 to S207 may be changed. Further, each check item is not limited to the example in FIG. 11, and the check item may be changed according to changes in laws, regulations, security standards, and the like.

FIG. 12 is a flowchart illustrating a processing procedure example of the second verification processing. The second verification process corresponds to a series of processes executed by applying a verification rule according to the type of application form data among the verification processes of the delegation data in the present embodiment. The verification rule is held in the verification rule holding unit 312 of the verification support device 103 . The second verification process is performed in addition to the first verification process described above.

According to FIG. 12, first, the delegation data verification unit 307 receives the delegation data and application form data received from the service providing apparatus 104, the verification data received from the external server 106, and the verification rule holding unit 312. Verification rules are acquired (step S301). It should be noted that the information acquired in the first verification process does not need to be acquired again in step S301, and the identity verification information of the agent may also be acquired in step S301.

Next, the delegation data verification unit 307 confirms whether or not there is a problem with the delegator's electronic signature in the application form data (step S302). If the application data does not require the electronic signature of the delegator, or if the application data requires the electronic signature of the delegator and is attached (YES in step S302), the process proceeds to step S303. On the other hand, if the electronic signature is not attached to the application form data even though the electronic signature is required (NO in step S302), the delegation data verification unit 307 determines that verification of the delegation data has failed. End the process.

In step S303, the delegation data verification unit 307 confirms whether there is any problem with the change of the application form data by the agent. If the application data has not been changed by the agent or if the application data can be changed by the agent (YES in step S303), the process proceeds to step S304. On the other hand, if the application data has been changed even though it is impossible for the agent to change the application data (NO in step S303), the delegation data verification unit 307 verifies the delegation data. Determine that it has failed, and terminate the process.

In step S304, the delegation data verification unit 307 confirms whether there is any problem in the delegation from the corporation to the employee. If delegation data by the employee has not been created, or if delegation from the corporation to the employee is possible and delegation data has been created by the employee (YES in step S304), the process proceeds to step S305. On the other hand, if delegation data is created by the employee even though delegation from the corporation to the employee is permitted or delegation from the corporation to the employee is not permitted (NO in step S304). , the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

In step S305, the delegation data verification unit 307 confirms whether there is any problem with the agent's qualifications. If the agent requires qualifications, the delegation data verification unit 307 uses the result of the inquiry to the external server 106 (verification data) to check whether the agent has a predetermined professional qualification or the like. Confirm. If the authentication information necessary for the proxy cannot be confirmed (NO in step S305), the delegation data verification unit 307 determines that verification of the delegation data has failed, and terminates the process.

On the other hand, if it is confirmed in step S305 that the agent is not required to have any qualifications or that the agent has the necessary qualification information (YES in step S305), all the confirmations in steps S302 to S305 have ended with a normal determination. Therefore, the delegation data verification unit 307 determines that verification of the delegation data is successful, and terminates the process.

By executing the processing of steps S301 to S305 in FIG. 12, the delegation data verification unit 307 can verify the delegation data through verification processing that applies verification rules according to the type of application form data. .

Then, when the result of verification success is obtained in the first verification process in the case of the application for which the verification rule is not set, both the first verification process and the second verification process are performed in the case of the application for which the verification rule is set. When a successful verification result is obtained, the delegation data verification unit 307 determines that verification of the delegation data related to the application has been successful. When the verification of the delegation data is successful, if the delegation number of times is set in the delegation data (for example, refer to the delegation period/number of times 537 of the application form data/delegation data format 530 in FIG. 7), the delegation data management unit 306 updates the delegation data state information held in the delegation data state holding unit 310 (for example, the delegation data state information 540 of FIG. 8). Specifically, when the verification of the delegation data is successful, the delegation count is consumed once. is updated to "revoke (used)".

On the other hand, in the case of an application for which a verification rule is not set, when the result of verification failure is obtained in the first verification process, in the case of an application for which a verification rule is set, at least the first verification process or the second verification process When a result of verification failure is obtained in any one of them, the delegation data verification unit 307 determines that the verification of the delegation data related to the application has failed.

Further, the trail management unit 308 records the verification result of the delegation data by the delegation data verification unit 307 as trail information, and causes the trail information holding unit 311 to store the trail information. In recording the trail information, not only the verification result but also the reason why the verification failed may be recorded. Note that the trail management unit 308 may transmit the trail information to the service providing apparatus 104. In this case, the trail management unit 407 of the service providing apparatus 104 causes the trail information holding unit 408 to hold the received trail information.

(3-3) Invalidation Processing In this embodiment, when the delegator operates the delegator terminal 102, the delegation data state management unit 206 of the delegator terminal 102 changes the delegation data stored in the verification support device 103. can be revoked. This revocation process can be executed at a timing determined or desired by the delegator. In addition, by executing invalidation processing at a predetermined cycle, delegation data for which a delegation period is specified can be revoked when the delegation period expires. A detailed processing procedure of the invalidation process will be described below.

FIG. 13 is a sequence diagram illustrating a processing procedure example of invalidation processing. FIG. 13 shows a processing procedure example on the assumption that the revocation processing is executed according to the delegator's judgment or desire.

According to FIG. 13, first, the delegator operates the delegator terminal 102 to select delegation data to be revoked (step S401). Next, delegation data status management unit 206 of delegator terminal 102 sends a revocation request requesting revocation of the delegation data selected in step S401 to verification support device 103 (step S402). At this time, the delegation data ID attached to the selected delegation data is sent together with the revocation request.

Next, the delegation data management unit 306 of the verification support apparatus 103 changes the delegation data corresponding to the delegation data ID received in step S402 out of the delegation data held in the delegation data state holding unit 310 to the revocation state. is changed to "revoke" (step S403). Before revoking the delegation data in step S403, the delegation data management unit 306 first ( In step S104) of FIG. 10, the delegator who first sent the delegation data confirms whether it is the same as the delegator terminal when the delegation data was sent, or authenticates the delegator who instructed the revocation request. and check if it is the same as

Next, the verification support device 103 (delegation data management unit 306) responds to the delegator terminal 102, which sent the revocation request, with the result of the revocation executed in step S403 (step S404). Then, delegation data state management unit 206 of delegator terminal 102 changes the revocation state of the delegation data subject to the revocation request, held in delegation history storage unit 209, to "revoke" (step S405), and performs revocation processing. exit.

By executing the processes of steps S401 to S405 in FIG. 13, the delegation application system 100 invalidates the delegation data according to the request of the delegator or the elapse of the specified effective period (delegation period). Therefore, it is possible to prevent abuse and unauthorized use of delegated data.

As described above, according to the delegation application system 100 according to the present embodiment, even a delegator or an agent who has little knowledge of procedures and delegation can be provided with a format from the verification support device 103. , it is possible to easily create delegation data and application form data necessary for proxy application for procedures. Further, according to the delegation application system 100 according to the present embodiment, when a service application is made using the delegation data and the application form data created as described above, the verification support device 103 verifies the delegation data. is performed, the service provider can easily confirm the delegation authority of the deputy. In addition, in the verification of delegation data, it is possible to verify the validity of not only the delegation data delegated by the delegator to the agent, but also the delegation data delegated by the agent of the corporation to the employee of the corporation. , it is possible to deal with application procedures for various realistic services.

In addition, the present invention is not limited to the above-described embodiments, and includes various modifications. For example, the above-described embodiments have been described in detail in order to explain the present invention in an easy-to-understand manner, and are not necessarily limited to those having all the configurations described. Moreover, it is possible to add, delete, or replace a part of the configuration of the embodiment with another configuration.

Further, each of the above configurations, functions, processing units, processing means, and the like may be realized by hardware, for example, by designing a part or all of them using an integrated circuit. Moreover, each of the above configurations, functions, etc. may be realized by software by a processor interpreting and executing a program for realizing each function. Information such as programs, tables, and files that implement each function can be stored in recording devices such as memories, hard disks, SSDs (Solid State Drives), or recording media such as IC cards, SD cards, and DVDs.

Further, in the drawings, control lines and information lines are shown as necessary for explanation, and not all control lines and information lines are necessarily shown on the product. In fact, it may be considered that almost all configurations are interconnected.

REFERENCE SIGNS LIST 100 delegation application system 101 agent terminal 102 delegator terminal 103 verification support device 104 service providing device 105 reading device 106 external server 107 network 201, 301, 401 calculation unit 202, 302, 402 storage unit 203, 303, 403 communication unit 204 , 304, 404 input/output unit 205 data creation support unit 206 delegation data state management unit 207 electronic signature attachment unit 208 personal information storage unit 209 delegation history storage unit 305 format management unit 306 delegation data management unit 307 delegation data verification unit 308 trail management Unit 309 Format holding unit 310 Delegation data state holding unit 311 Trace information holding unit 312 Verification rule holding unit 405 Reading information acquisition unit 406 Verification request unit 407 Trace management unit 407
408 Trail Information Storage Unit 510 Personal Information 520 Delegation History Information 530 Application Form Data/Delegation Data Format 540 Delegation Data Status Information 550 Verification Rules

Claims (12)

A delegation application system that supports application for procedures for receiving services provided by an agent delegated by a delegator,
a delegator terminal used by the delegator;
an agent terminal used by the agent;
providing the delegator terminal or the agent terminal with a format of application form data necessary for application of the procedure and delegation data proving that the application is entrusted to the agent, and created based on the format; a verification support device that verifies the delegation data;
a service providing device for providing a service requested by the application form data when a successful result is obtained in the verification by the verification support device for the delegation data submitted together with the application form data;
A delegation application system comprising: Before applying for said procedure,
The verification support device transmits formats of the application form data and the delegation data to the delegator terminal or the agent terminal, and transmits the application form data and the delegation data created based on each format to the delegation data. receiving and holding from the terminal of the party concerned or the said agent terminal;
At the time of application for said procedure,
When the service providing device receives the application form data and the delegation data from the agent terminal, the service providing device requests the verification support device to verify the delegation data,
The verification support device verifies the delegation data held before the application of the procedure, corresponding to the delegation data subject to the request, and responds to the service providing device with the verification result,
2. The service providing apparatus according to claim 1, wherein, when the verification result of the delegation data is successful, the service providing apparatus provides the service requested by the application form data received from the agent terminal. Delegation application system. 2. The delegation application system according to claim 1, wherein the delegation data is provided with an electronic signature of the delegator at the time of creation. The delegation data includes first delegation data delegated by the delegator to a corporation as the agent, and second delegation data delegated by the corporation to an employee of the corporation,
The first delegation data is created by the delegator terminal, the first delegation terminal used by the corporation creates the second delegation data based on the first delegation data, and When sending to a second said agent terminal used by a servant,
The verification support device receives and holds the first delegation data from the delegator terminal, and receives and holds the second delegation data from the first agent terminal,
When the second delegation data is submitted together with the application form data from the second agent terminal to the service providing device,
3. The verification support device according to claim 2, wherein the verification support device verifies not only the second delegation data but also the related first delegation data in response to the request from the service providing device. Delegation application system. The delegation data can specify a delegation period representing the validity period of the delegation data or a delegation number representing the number of times the delegation data is effectively used,
3. The delegation application system according to claim 2, wherein the verification support device verifies the delegation data based on the delegation period or the number of delegations specified in the delegation data. the verification support device holds delegation data state information for managing the validity state of each of the delegation data held by itself;
3. The delegation application system according to claim 2, wherein the verification support device verifies the delegation data based on the delegation data state information. 7. The delegation application system according to claim 6, wherein said verification support device revokes the valid state of said delegation data held by itself in response to a request from said delegator terminal. The verification support device holds verification rules according to the type of the application data, and the verification support device according to the type of the application data submitted to the service providing device together with the delegation data subject to the request. 3. The delegation application system according to claim 2, wherein verification rules are used to verify the delegation data. The verification support device obtains information lacking for verification of the delegation data from an external server that provides a predetermined external service, and uses the obtained information and information held by itself to obtain the 3. The delegation application system according to claim 2, wherein the delegation data is verified. 10. The delegation application system according to claim 9, wherein the information acquired from the external server is the agent's qualification information. A delegation application method using a delegation application system for supporting an application for a procedure for receiving a service provided by an agent delegated by a delegator, comprising:
The delegation application system includes a delegator terminal used by the delegator, an agent terminal used by the agent, a verification support device, and a service providing device for providing services,
Before applying for said procedure,
A first step in which the verification support device provides to the delegator terminal or the agent terminal a format of application form data necessary for application of the procedure and delegation data certifying that the application is entrusted to the agent. When,
a second step in which the verification support device receives and holds the application form data and the delegation data created based on each of the formats from the delegator terminal or the agent terminal;
At the time of application for said procedure,
a third step of requesting the verification support device to verify the delegation data when the service providing device receives the application form data and the delegation data from the agent terminal;
a fourth step in which the verification support device verifies the delegation data held before the application of the procedure, corresponding to the delegation data targeted for the request, and responding the verification result to the service providing device; ,
a fifth step in which the service providing device provides the service requested by the application form data received from the agent terminal when the verification result of the delegation data is successful;
A delegation application method characterized by comprising: A delegation application program to be executed by a computer constituting a delegation application system for supporting application of procedures for receiving service provision by an agent delegated by a delegator,
The computer constituting the delegation application system includes a delegator terminal used by the delegator, an agent terminal used by the agent, a verification support device, and a service providing device for providing services. be,
Before applying for said procedure,
executing a process of providing the verification support device with the delegation data format necessary for applying for the procedure and delegation data certifying delegation of the application to the delegator terminal or the delegator terminal; let
causing the verification support device to receive and hold the application form data and the delegation data created based on each of the formats from the delegator terminal or the agent terminal;
At the time of application for said procedure,
When the service providing device receives the application form data and the delegation data from the agent terminal, causing the verification support device to perform a process of requesting verification of the delegation data,
cause the verification support device to verify the delegation data held before the application of the procedure, corresponding to the delegation data subject to the request, and to execute processing of responding the verification result to the service providing device; ,
A delegation application characterized by causing the service providing device to execute a process of providing the service requested by the application form data received from the agent terminal when the verification result of the delegation data is successful. program.

Images