JP2023010221A - Information management server, information management method and program - Google Patents

Abstract

To determine whether individual information related to a family of a user is correct information.SOLUTION: An information management server comprises: an acquisition part which acquires family information related to a family of a user that the user reports, the family information including a portable telephone number of and individual information of the family; a control part which transmits a message including information representing a specific site linked to the family information to the portable telephone number of the family; and a determination part which determines, when agreement is reported to the specific site, whether or not the family information is correct information by comprising the individual information of the family obtained from a certification medium of the family with the individual information included in the family information, wherein the certification medium is made to correspond to individual identification information uniquely specifying an individual and identifies the individual, and records at least one of the name, address, birthday, and sex of the individual.SELECTED DRAWING: Figure 4

Description

The present invention relates to an information management server, an information management method, and a program.

When the user performs various procedures, it is necessary to confirm whether the user's personal information used in the procedure is correct. Patent Literature 1 discloses a technique for sharing personal information of users and reducing the burden on users when registering users for each service.

JP 2020-170369 A

However, in various procedures, not only the user's information but also the family's information may be required. For example, in the case of procedures related to finance, dementia, inheritance, etc., assuming that the user cannot be contacted due to a disaster, moving, etc., it is possible to contact the family of the user who has been registered in advance. Some have systems in place. Various methods, including online methods, have been established to check whether information on users is correct, but information on users' families is correct. It is difficult to say that a method for confirming this has been established. Therefore, it has been desired to establish a method for determining whether or not the information regarding the user's family is correct.

The present invention has been made in view of such circumstances, and its object is to provide an information management server, an information management method, and a program that can determine whether or not personal information about a user's family is correct information. to do.

In order to solve the above-described problems, an information management server according to the present invention provides family information about the user's family notified by the user, which includes the family's mobile phone number and personal information. an acquisition unit for acquiring; and a control unit for transmitting a message including URL (Uniform Resource Locator) information indicating a specific site linked to the family information to the mobile phone number of the family member included in the family information. , the specific site is configured to be able to notify whether or not the family agrees to be registered as the user's family, and when the specific site is notified of the consent, the family member's certification medium a judgment unit that judges whether or not the family information is correct information by comparing the personal information of the family obtained from and the personal information contained in the family information; , a recording medium that is associated with personal identification information that uniquely identifies an individual and that certifies the identity of the individual, and that records at least one of the name, address, date of birth, and gender of the individual. is.

Further, according to the present invention, in the information management server described above, the acquisition unit acquires a password specified by the user, and the control unit transmits the password acquired by the acquisition unit to the specific site. set.

Further, according to the present invention, in the information management server described above, the acquisition unit acquires information indicating whether or not the user and the family live together, and the determination unit causes the acquisition unit to obtain the when information indicating that the person and the family live together is obtained, whether or not the user's pre-stored address matches the family's address obtained from the family's certification medium judge.

Further, in order to solve the above-described problems, the information management according to the present invention is such that the acquisition unit is family information related to the user's family notified by the user, and the mobile phone of the family. Family information including a number and personal information is acquired, and a control unit transmits a message including URL (Uniform Resource Locator) information indicating a specific site linked to the family information to the family member included in the family information. sent to the mobile phone number, and the judging unit is configured to be able to notify whether or not the family agrees that the specific site is registered as the user's family, and that the user agrees to the specific site is notified, it is determined whether or not the family information is correct information by comparing the personal information of the family obtained from the certification medium of the family with the personal information contained in the family information. , an information management method, wherein the certification medium is associated with personal identification information that uniquely identifies an individual, and is a certification medium that certifies the identity of the individual, wherein the name, address, and date of birth of the individual , and gender.

Further, in order to solve the above-described problems, the present invention provides a program for operating a computer as the information management server described above, comprising: It's a program.

According to the present invention, it is possible to determine whether or not the personal information regarding the user's family is correct information.

It is a block diagram which shows the structural example of the procedure information cooperation system 1 to which the information management server 20 which concerns on embodiment is applied. It is a sequence diagram which shows the flow of the process which the procedure information cooperation system 1 which concerns on embodiment performs. It is a sequence diagram which shows the flow of the process which the procedure information cooperation system 1 which concerns on embodiment performs. 2 is a block diagram showing a configuration example of an information management server 20 according to the embodiment; FIG. It is a figure which shows the structural example of the user information 220 which concerns on embodiment. It is a figure which shows the structural example of the family information 221 which concerns on embodiment. It is a figure which shows the structural example of the determination information 222 which concerns on embodiment.

An embodiment of the present invention will be described below with reference to the drawings.

<Configuration of procedure information linkage system 1>
The procedure information linkage system 1 is a system that provides procedure services. In the procedural service, various procedures required by each business operator are performed according to the user's request. Various procedures have a system in which personal information about the user's family can be registered with the consent of the user. The personal information about the family includes, for example, the family's name, address, mobile phone number, and the like. In the following description, personal information about family members is simply referred to as "family information."

For example, even if it becomes difficult to contact the user because the user moves, etc., it is possible to confirm the user's situation with the registered family by registering family information. become able to. In the procedure information linkage system 1, the user uses such a system to carry out procedures for registering family information.

Below, the case where the procedure service is provided via a message application (hereinafter referred to as a message application) using RCS (Rich Communication Services) will be described as an example. A message application is an application program that sends and receives messages including texts and images to and from a mobile phone number.

FIG. 1 is a block diagram showing a configuration example of a procedure information cooperation system 1 to which an information management server 20 according to an embodiment is applied. The procedure information cooperation system 1 includes, for example, a first user terminal 10, a second user terminal 11, an information management server 20, an authentication server 30, and a business operator server 40. These components (the first user terminal 10, the second user terminal 11, the information management server 20, the authentication server 30, and the operator server 40) in the procedure information cooperation system 1 are connected via the communication network NW are connected so that they can communicate with each other.

The first user terminal 10 is a computer having a communication function, such as a smart phone or mobile phone. The first user terminal 10 is operated by a user. It is assumed that a message application is installed in the first user terminal 10 and that a procedure service using the message application is available.

The second user terminal 11 is a computer having a communication function, such as a smart phone or mobile phone. The second user terminal 11 is operated by a family member. A family here indicates a user designated as a family by the user. The second user terminal 11 only needs to be capable of at least sending notifications to mobile phone numbers, such as SMS (Short Message Service). That is, the second user terminal 11 does not necessarily have the message application installed.

The information management server 20 is, for example, a computer such as a server, a cloud server, or a PC. The information management server 20 provides procedural services. The information management server 20 receives a procedure application from a user registered for the procedure service. The information management server 20 transmits information necessary for procedures to the provider server 40 in response to an application from a user. Thereby, the information management server 20 executes the procedure requested by the user.

The authentication server 30 is a computer such as a server, a cloud server, or a PC. The authentication server 30 performs processing related to public personal authentication using My Number cards. Specifically, the authentication server 30 manages the validity of the electronic certificate embedded in the My Number card of the user or family member. For example, in response to a request from the information management server 20, the authentication server 30 determines whether or not the electronic certificate is valid based on the expiration date indicated in the electronic certificate, and stores the determination result in information management. The server 20 is notified.

The provider server 40 is a computer such as a server, a cloud server, or a PC. The operator server 40 provides various services operated by the operator. The business server 40 performs procedures related to services using, for example, communication, water supply, electricity, gas, finance, and insurance. With the consent of the user, the business server 40 registers in advance information such as the name and contact information of the user's family so that, for example, the user's situation can be confirmed through the family. provide good service. The business server 40 acquires information such as the name and contact information of the user's family via the information management server 20, and uses the acquired information to perform procedures for registering information such as the family name and contact information. conduct.

<Process flow>
Here, a flow of processing for performing a procedure for registering user's family information by the procedure information cooperation system 1 will be described. FIG.2 and FIG.3 is a sequence diagram which shows the flow of the process which the procedure information cooperation system 1 of embodiment performs.

Step S0: In the procedure information cooperation system 1, it is assumed that the mobile phone number of the first user terminal 10 is specified. Specifically, the fact that the user uses the procedural service is registered, and the user's name, address, mobile phone number of the first user terminal 10 as a contact, etc. are stored in the information management server 20 in advance. It is assumed that

Step S1: The first user terminal 10 logs in to the procedure service. For example, the first user terminal 10 logs in to the procedure service by notifying the information management server 20 of the login ID and its password information entered on the login screen of the procedure service by the user's input operation.

Step S<b>2 : The first user terminal 10 transmits family information to the information management server 20 . For example, when the login to the procedure service is successful, the operation screen of the procedure service is displayed on the first user terminal 10 . An input field for inputting family information, a send button for sending family information, and the like are displayed on the operation screen. The user inputs family information by touching the screen of the first user terminal 10 . As a result, the first user terminal 10 displays the information input by the user in the input field as family information. The user visually confirms the family information displayed in the input field, and presses a send button to transmit the displayed content as family information. As a result, the first user terminal 10 transmits the content displayed in the input field to the information management server 20 as family information.

Step S3: The information management server 20 transmits information for displaying an authentication screen on the first user terminal 10. FIG. The authentication screen here is a screen for acquiring the information embedded in the Individual Number Card. An electronic certificate for signature (hereinafter referred to as an electronic certificate) is embedded in the My Number card. The electronic certificate shows the basic 4 information of the user. The basic 4 information is basic personal information when identifying or identifying an individual, and is information indicating name, address, date of birth, and gender.

Step S<b>4 : The first user terminal 10 displays an authentication screen, acquires information entered by performing an input operation on the displayed screen, and transmits the acquired information to the information management server 20 . Specifically, the first user terminal 10 displays a My Number card reading screen. The reading screen displays a message such as "Please enter the password for the electronic certificate". The user operates the touch panel of the first user terminal 10 according to the display of the reading screen and inputs the password. Thereby, the first user terminal 10 acquires the password.

Also, on the reading screen, for example, a message such as "please touch the card" is displayed. The user performs a touch operation to bring the card surface of the Individual Number card closer to the reading portion of the first user terminal 10 according to the display of the reading screen. Thereby, communication is performed between the My Number card and the first user terminal 10 . For example, when the correct password is notified to the My Number card from the first user terminal 10, the My Number card is sent to the first user terminal 10 with information including the electronic certificate embedded in the My Number card (referred to as authentication information). ). Thereby, the first user terminal 10 acquires the authentication information.

The first user terminal 10 notifies the information management server 20 of the input authentication information. The information management server 20 notifies the authentication server 30 of the authentication information received from the first user terminal 10 . Note that the authentication information may be notified directly to the authentication server 30 without going through the information management server 20 . In this case, the first user terminal 10 notifies the authentication server 30 of the authentication information.

Step S5: The authentication server 30 confirms the validity of the electronic certificate embedded in the user's My Number card based on the received authentication information. The authentication server 30 transmits the result of determining the validity of the electronic certificate to the information management server 20 as validity information.

Step S6: The information management server 20 acquires basic 4 information. For example, when the validity information received from the authentication server 30 indicates that the user's electronic certificate is valid, the information management server 20 acquires the basic 4 information from the electronic certificate included in the authentication information. Here, the information management server 20 performs identity verification of the user. Specifically, the information management server 20 compares the basic 4 information acquired from the user's electronic certificate with the user information 220, and determines whether or not they match. The information management server 20 determines that the person attempting to register the family information is the user himself/herself when both match. If the two do not match, the information management server 20 determines that the person attempting to register the family information is not the user himself/herself. As a result, the information management server 20 can confirm that the person attempting to register the family information is the user himself/herself, that is, the user's identity can be confirmed.

Step S7: The information management server 20 stores the family information notified by the user as the family information 221. FIG. For example, when the information management server 20 determines that the user's basic 4 information matches the user information 220 and the person who is trying to register family information is the user himself/herself, that is, the user's identity verification is correct. When it is determined that it has been performed, the family information notified by the user is stored as the family information 221. - 特許庁

If the user's electronic certificate is not valid, identity verification other than public personal authentication may be performed. For example, carrier authentication, image authentication, etc. are available as personal identification methods other than public personal authentication. Carrier authentication is a method of verifying a person's identity by, for example, entering a personal identification number registered at the time of signing a contract for a mobile phone. Image authentication is a method of verifying a person's identity using a captured image of a driver's license or the like.

In addition, when verifying the identity of the user by matching the basic 4 information with the user information 220, it may be determined that the identity verification has been performed correctly only when there is a complete match, or when there is a partial match, the identity verification is performed. may be determined to have been performed correctly. For example, if the address, name, date of birth, and gender all match, it may be determined that the identity verification has been performed correctly, or if the address and name match, another date of birth It may be determined that the identity confirmation has been performed correctly without confirming the identity and gender. It may be arbitrarily determined by the business operator, the procedure service, or the like, which is the destination of the procedure, when what kind of information matches in what way, and in what manner, it is determined that the identity verification has been performed correctly.

Step S8: Proceeding to FIG. 3, the information management server 20 transmits an individual URL (Uniform Resource Locator) to the second user terminal 11. FIG. A second user terminal 11 is a mobile phone of a user designated by the user as a family member. The individual URL is information indicating a site that obtains consent from users designated as family members by the user (hereinafter referred to as family members). The individual URL may be information indicating any site, but is preferably a secure site. For example, the individual URL is information indicating a so-called one-time URL that can be accessed only once, for a limited period of time, or for a limited number of times.

Step S9: The second user terminal 11 notifies the authentication server 30 of the consent information. The consent information is information indicating that the family is definitely the user's family and that the family agrees to be registered as the user's family in the information management server 20 and the provider server 40 . The second user terminal 11 receives the individual URL from the information management server 20 and displays the received information. A family member touches the individual URL displayed on the second user terminal 11 . As a result, the second user terminal 11 accesses the site corresponding to the individual URL and displays the screen notified from the site. On the screen notified by the site, for example, "Are you sure you are a member of the user's family?" and "Do you agree to be registered as a user's family?" A selection button is shown that allows the selection of yes or no. The family member can indicate their intention by viewing the screen and selecting either "yes" or "no". When the screen is operated by the family member, consent information is notified from the second user terminal 11 to the site.

Step S10: When the information management server 20 receives the consent information from the second user terminal 11, it transmits to the second user terminal 11 information for displaying an authentication screen. The authentication screen is the same as the authentication screen sent to the first user terminal 10 in step S3.

The processing shown in steps S11 to S13 is the same as the processing shown in steps S4 to S6. Therefore, the description of the processing shown in steps S11 to S13 is omitted. However, the subjects are different. That is, the processing performed by the first user terminal 10 shown in steps S4 to S6 becomes the processing performed by the second user terminal 11 in steps S11 to S13.

Here, the information management server 20 performs identity verification of the family. Identification of the family means confirming that the person who notified the consent information (the person who agreed to be registered as a family member) is the family member. Identification of family members may be done in any manner. For example, methods of personal identification include carrier authentication and image authentication. Carrier authentication is a method of verifying a person's identity by, for example, entering a personal identification number registered at the time of signing a contract for a mobile phone. Image authentication is a method of verifying a person's identity using a captured image of a driver's license or the like. If the user information 220 of the family member is stored in the information management server 20, such as when the family member has already registered for the procedure service, the identity of the family member can be confirmed by performing the same processing as in step S6. may be performed. Specifically, the information management server 20 compares the basic 4 information acquired from the family's electronic certificate with the family's user information 220, and determines whether or not they match. As a result, it is possible to confirm that the person who has agreed to be registered as a family member is the family member, that is, the identity of the family member.

Step S14: The information management server 20 determines whether the family information 221 notified by the user is correct information. Here, assuming that the user and the family live together, the information management server 20 exemplifies a confirmation method for confirming whether the family's address in the family information 221 is correct. The information management server 20 determines whether or not the address of the user in the user information 220, the address of the user in the family information 221, and the addresses in the four basic information extracted from the electronic certificate of the family match each other. do. It should be noted that the same confirmation method can be applied when determining whether or not the information other than the address in the family information 221 notified by the user is correct.

In addition, when checking whether or not the family information 221 is correct by matching the basic 4 information with the family information 221, the family information 221 is determined to be correct information only when there is a complete match. Alternatively, if there is a partial match, it may be determined that the family information 221 is correct information. It may be arbitrarily determined by a business operator, a procedure service, or the like, which is the destination of the procedure, when what kind of information matches and in what manner, the family information 221 is determined to be correct information.

Step S<b>15 : The information management server 20 transmits to the first user terminal 10 a notice (completion notice) to the effect that confirmation of the family information has been completed. The completion notification may indicate, for example, the result of matching the family's basic 4 information with the family information 221 .

Step S16: Upon receiving the completion notification, the first user terminal 10 returns the response. Here, the first user terminal 10 transmits to the information management server 20 the consent and the procedure information. Consent means acknowledging that the confirmation of family information has been completed in the procedure service, and agreeing that the family information will be registered as the user's family information. The procedure information is information for carrying out procedures such as registering family information with a business operator as a destination of procedures. In addition, in the case where a document is required to be attached in the procedure performed by the business operator to whom the procedure is to be performed, the first user terminal 10 sends the procedure information to which the necessary document is attached to the information management server 20. Send.

Step S17: The information management server 20 transmits the procedure information received from the first user terminal 10 to the provider server 40 of the procedure destination. As a result, procedures for registering the personal information of the user's family members, etc., are carried out at the business operator to which the procedure is to be performed. The procedure performed by the business operator to which the procedure is performed includes not only the procedure to register personal information of family members, but also the user's account number registered as an account to be used for transfer etc. with the user's consent. may include a response such as notifying the family of the information from the business operator.

Here, if a document necessary for the procedure is attached to the procedure information, the information management server 20 may check whether the matters described in the document are complete. In this case, the information management server 20 notifies the first user terminal 10 of any incompleteness in the matters described in the document, and instructs the information management server 20 to transmit the document without any deficiencies. demand. The information management server 20 repeats communication with the first user terminal 10 until the incomplete document is resolved. When receiving a complete document from the first user terminal 10 , the information management server 20 transmits the complete document to the provider server 40 .

It should be noted that the information management server 20 only needs to hold the family information determined to be correct information in step S14. Specifically, the processing shown in steps S15 to S17 may be omitted here. Then, at the necessary timing, such as when the business operator of the procedure destination performs the procedure, the processing shown in steps S15 to S17 is executed, and the procedure information is transmitted to the business operator server 40 after obtaining the user's consent. can be

<Modified Example 1 of Process Flow>
In step S<b>2 , the first user terminal 10 may transmit the password set by the user to the information management server 20 . The password here is a password that is set when viewing family information. For example, on the operation screen displayed on the first user terminal 10 in step S2, an entry field for entering family information and a setting field for setting a password are displayed. The user sets an arbitrary password in the setting field. The password is notified to the information management server 20 together with the family information. The user informs the family of the password set here in advance. The information management server 20 sets the password notified from the first user terminal 10 as the password required when accessing the site corresponding to the individual URL. In step S9, when the individual URL is notified to the second user terminal 11, the family member accesses the site corresponding to the individual URL and enters the password provided by the user. Only when the password specified by the user is entered correctly, the family information is displayed on the second user terminal 11, and the family can browse the information. In this way, by setting a password specified by the user, it is possible to prevent an impersonating third party from accessing the site, thereby preventing information leakage.

<Modified Example 2 of Process Flow>
In step S2, the first user terminal 10 may transmit to the information management server 20 information indicating whether or not the first user terminal 10 lives with a family member. Also, if the user does not live with the family, the first user terminal 10 may send a document proving that the user is a family member to the information management server 20 . Alternatively, the first user terminal 10 transmits information indicating the address of the family living together to the information management server 20, and proves that the family is a family using the second user terminal 11 or mailing means. Documents may be registered with a procedural service. Documents certifying family members are, for example, a family register in which the names and addresses of family members are described. The type of document to be used as a document certifying that the person is a family member may be determined by the judgment of the registered business operator. Alternatively, in step S2, the information management server 20 determines whether or not the address of the family indicated in the family information matches the address of the user stored in the user information 220. If they do not match, Documents certifying that they are family members may be requested from the first user terminal 10 .

If the user and the family do not live together, in step S14, the information management server 20 stores the address of the user in the user information 220, the address of the family in the family information 221, and the address in the four basic family information. Instead of determining whether or not they match, it is determined whether or not the address of the family in the family information 221 and the address in the four basic family information match each other.

Further, when the user and the family do not live together and the information management server 20 receives a document certifying that the user is a family member in step S2, the information management server 20, in step S14, It may be determined whether or not the address described in the document certifying that the user is a family member matches the user's address in the user information 220 .

<Modified Example 3 of Process Flow>
If the identity of the user or family member has already been verified at the time of registration for the procedure service, the identity verification of the user or family member may be omitted in steps S6 and S13. In this case, for example, when registering for a procedural service, an authentication screen is transmitted from the information management server 20 to the first user terminal 10, and the processing shown in steps S4 to S6 is performed, so that the user Your identity will be verified. Then, when the identity of the user is correctly verified, the personal information of the user is stored in the storage unit 22 as the user information 220 . Similarly, for family members, an authentication screen is transmitted from the information management server 20 to the second user terminal 11, and the processes shown in steps S11 to S13 are performed to confirm the identity of the family members. Then, when the personal identification of the family is correctly performed, the family's personal information is stored in the storage unit 22 as the user information 220 .

<Configuration of Information Management Server 20>
Here, the configuration of the information management server 20 will be described. FIG. 4 is a block diagram showing the configuration of the information management server 20 of the embodiment. The information management server 20 includes a communication unit 21, a storage unit 22, and a control unit 23, for example. The communication unit 21 communicates with the first user terminal 10 , the second user terminal 11 , the authentication server 30 and the provider server 40 .

The storage unit 22 is a storage medium such as a HDD (Hard Disk Drive), a flash memory, an EEPROM (Electrically Erasable Programmable Read Only Memory), a RAM (Random Access read/write memory), a ROM (Read Only Memory), or any of these any combination of storage media. The storage unit 22 stores programs for executing various processes of the information management server 20 and temporary data used when performing various processes.

The storage unit 22 stores user information 220, family information 221, and determination information 222, for example.

FIG. 5 is a diagram showing a configuration example of user information 220 according to the embodiment. The user information 220 is information about the user who uses the procedural service. User information 220 is created, for example, when a user registers for a procedural service. The user information 220 includes, for example, information corresponding to items such as a user information ID, mobile phone number, login ID/PW (password), and user information. The user information ID is identification information that uniquely identifies the user information 220 . The mobile phone number is the user's mobile phone number registered in the procedure service. Login ID/PW is an ID and password for logging in to the procedure service. The user information is personal information of the user identified by the user information ID. User information is, for example, the user's name, date of birth, address, and the like. In this example, the mobile phone number "012-3456-7890", the name "TF Hanako", and the address "Shinjuku-ku, Tokyo" are shown as user information.

FIG. 6 is a diagram showing a configuration example of family information 221 according to the embodiment. The family information 221 is information about the family designated by the user. The family information 221 is created, for example, when the user notifies the procedure service of the family information. The family information 221 includes, for example, information corresponding to items such as family information ID, mobile phone number, user information ID, and family information. The family information ID is identification information that uniquely identifies the family information 221 . The mobile phone number is the family's mobile phone number notified by the user. The user information ID is identification information of the user who applied for the family information specified by the family information ID. The family information is personal information of the family identified by the family information ID. The family information is, for example, family name, date of birth, address, and the like. In the example of this figure, it is shown that the mobile phone number "034-5678-9012", the name "TF Taro", and the address "Shinjuku-ku, Tokyo" have been applied as the family information of the user "TF Hanako". ing.

FIG. 7 is a diagram illustrating a configuration example of determination information 222 according to the embodiment. The determination information 222 is information used for identity verification of each of the user and family. The determination information 222 is composed of, for example, information corresponding to each item such as a subject, confirmation items and confirmation results, and confirmation date and time. The target person includes the user and the family, and for each of them, information indicating check items, check results, and check date and time is stored.

Information corresponding to each item of the electronic certificate for signature and the comparison with the basic 4 information is shown as the confirmation items of the user. Information indicating whether or not the user's electronic certificate is valid is stored as the verification result of the signature electronic certificate. Also, information indicating the confirmation date and time of the signature electronic certificate is stored. In the comparison with the basic 4 information, the result of comparing the user information 220 and the basic 4 information extracted from the user's electronic certificate is shown as the confirmation result. Also, the date and time of comparison with the basic 4 information is stored as information indicating the confirmation date and time. In the example of this figure, the user's electronic certificate is "valid", and the result of comparison with the basic 4 information shows that each of the name, address, date of birth, and gender "matches". .

As confirmation items of the family, information corresponding to each item of consent to registration, information to be registered, electronic certificate for signature, and comparison with basic 4 information is shown. As a confirmation result of consent to registration, information is stored that indicates whether or not the family has consented to being registered as the user's family. Also, the date and time when consent to registration is obtained is stored as information indicating the date and time of confirmation. As items of information to be registered, information to be registered as family information with a business operator to be a procedure destination is shown. Information indicating whether or not the family's electronic certificate is valid is stored as a check item for the signature electronic certificate. In the comparison with the basic 4 information, the result of comparing the family information 221 with the basic 4 information extracted from the family's electronic certificate is shown as the confirmation result. Also, the date and time of comparison with the basic 4 information is stored as information indicating the confirmation date and time. The example in this figure indicates that the user has already agreed to be registered as the user's family, and that the family's name and address will be registered as family information. In addition, the electronic certificate of the family is "valid", and the result of comparison with the basic 4 information shows that the name, address, date of birth, and gender are "matched".

Returning to the description of FIG. 4 , the control unit 23 controls each component of the information management server 20 . The control unit 23 is implemented, for example, by the CPU (Central Processing Unit) of the information management server 20 executing a program stored in advance in the storage unit 22 . Also, the control unit 23 may be implemented as an integrated circuit such as an ASIC (Application Specific Integrated Circuit). The control unit 23 includes an acquisition unit 230, a determination information generation unit 231, a determination unit 232, an application control unit 233, and a device control unit 234, for example.

Acquisition unit 230 acquires various types of information. Also, the acquisition unit 230 acquires various types of information notified from the first user terminal 10 , the second user terminal 11 , or the authentication server 30 via the communication unit 21 . The acquisition unit 230 outputs the acquired information to the functional units (determination information generation unit 231, application control unit 233, and device control unit 234) that perform processing using the information. For example, the acquisition unit 230 acquires family information notified from the first user terminal 10 via the communication unit 21 and outputs the acquired family information to the application control unit 233 . The acquisition unit 230 acquires the validity information notified from the authentication server 30 via the communication unit 21 and outputs the acquired validity information to the determination information generation unit 231 and the application control unit 233 . The acquisition unit 230 acquires the consent information notified from the second user terminal 11 via the communication unit 21 and outputs the acquired consent information to the determination information generation unit 231 and the application control unit 233 . The acquisition unit 230 acquires procedure information from the first user terminal 10 and outputs the acquired procedure information to the application control unit 233 .

The determination information generator 231 generates determination information 222 . When the validity information is notified from the authentication server 30 to the information management server 20 in step S<b>5 , the determination information generation unit 231 acquires the validity information via the acquisition unit 230 . The determination information generation unit 231 stores the acquired validity information in the storage unit 22 as information indicating whether or not the user's electronic certificate in the determination information 222 is valid.

In step S6, the determination information generation unit 231 stores the result of comparing the four basic information extracted from the user's electronic certificate with the user's personal information stored in the user information 220 in the storage unit 22. It is stored in the storage unit 22 as information indicating the result of comparison with the basic 4 information of the user.

When the information management server 20 is notified of the consent information from the second user terminal 11 in step S<b>9 , the determination information generation unit 231 acquires the consent information via the acquisition unit 230 . The determination information generation unit 231 stores the acquired consent information in the storage unit 22 as information indicating whether or not consent to registration has been obtained in the determination information 222 .

When the family information is notified from the first user terminal 10 to the information management server 20 in step S<b>2 , the determination information generation unit 231 acquires the family information via the acquisition unit 230 . The determination information generation unit 231 determines the type of acquired family information. For example, when the acquired family information is the family's address, the determination information generation unit 231 determines that the type of family information is the address. The determination information generation unit 231 stores the type of family information in the storage unit 22 as information registered as family information in the determination information 222 .

When the authentication server 30 notifies the information management server 20 of the validity information in step S<b>12 , the determination information generation section 231 acquires the validity information via the communication section 21 . The determination information generation unit 231 stores the acquired validity information in the storage unit 22 as information indicating whether or not the family's electronic certificate in the determination information 222 is valid.

In step S13, the determination information generation unit 231 stores the result of comparing the basic 4 information extracted from the family's electronic certificate with the family's personal information stored in the family information 221 as the family's basic 4 information in the storage unit 22. The information is stored in the storage unit 22 as information indicating the result of comparison with the information.

Based on the determination information 222, the determination unit 232 determines whether the family information 221 is correct information. The determination unit 232 determines whether or not the family information 221 is correct information by performing the process shown in step S14.

The application control unit 233 provides procedural services. Application control unit 233 performs a procedure service by executing an application program that performs the procedure service. For example, the application control unit 233 performs the procedure service by performing the processes shown in steps S3, S6, S7, S8, S10, S13, S15, and S17. It should be noted that the information management server 20 is not limited to these processes, and the information management server 20 may perform processes according to the contents of the services provided by the procedure services. Further, even if part of the processing performed by the application control unit 233 includes the processing performed by the determination information generation unit 231 and the determination unit 232 that determines whether or not the personal information included in the family information is correct information. good.

The device control unit 234 comprehensively controls the information management server 20 . For example, the device control unit 234 controls the communication unit 21, and outputs various information received by the communication unit 21 from the first user terminal 10, the second user terminal 11, and the authentication server 30 to the acquisition unit 230. Let Further, the device control unit 234 outputs screen information such as an authentication screen output from the application control unit 233 to the communication unit 21 and causes the first user terminal 10 to transmit it.

As described above, the information management server 20 of the embodiment includes the acquisition unit 230, the application control unit 233, and the determination unit 232. The acquisition unit 230 acquires family information notified from the first user terminal 10 . The family information includes at least the family's mobile phone number and the family's personal information. Application control unit 233 transmits the message to the family's mobile phone number included in the family information. The message includes URL information indicating a specific site linked to family information. The specific site is configured to be able to notify whether or not the family agrees to be registered as the user's family. The determination unit 232 determines whether or not the personal information included in the family information is correct information. When the consent information is notified to the specific site, the determination unit 232 determines whether the personal information included in the family information is correct based on the family's personal information obtained from the electronic certificate (certification medium) of the family's My Number card. It is determined whether or not. My Number cards and electronic certificates are associated with personal identification information (My Number) that uniquely identifies an individual. My number cards and electronic certificates are proof media for personal identification. At least one of an individual's name, address, date of birth, and gender is recorded in the electronic certificate of My Number Card. As a result, the information management server 20 of the embodiment uses the personal information included in the family information notified by the user as the personal information indicated in the electronic certificate of the My Number card (name, address, date of birth, and gender). Therefore, it is possible to determine whether or not the family's personal information is correct information.

Also, in the information management server 20 of the embodiment, the acquisition unit 230 acquires the password specified by the user. Application control unit 233 sets the password acquired by acquisition unit 230 to the specific site. This allows access to a specific site only when the password is entered correctly. Therefore, it is possible to prevent a third party other than the family from accessing the specific site and viewing the family information, thereby keeping the family information secure.

Further, in the information management server 20 of the embodiment, the acquisition unit 230 acquires information indicating whether or not the user and family members live together. When the acquisition unit 230 acquires information indicating that the user and the family live together, the determination unit 232 determines whether the address of the user stored in the user information 220 and the address included in the family information is obtained. It is determined whether or not they match. As a result, it is possible to confirm whether or not the address stored in the user information 220 is the latest address, and the latest information is stored in the user information 220 of the user at the timing when the family information is registered. You can check if it is

In the above-described embodiment, the case where consent information is notified to a site corresponding to an individual URL (specific site) by accessing the site (specific site) by the second user terminal 11 or the like has been exemplified and explained. However, it is not limited to this. The information management server 20 may acquire consent information by exchanging messages with the second user terminal 11 via a message application. In this case, for example, the information management server 20 notifies a message indicating a selection button for selecting "Yes" or "No" along with confirmation items such as "Are you sure that the user is a family member?" do. The family visually recognizes the message displayed on the second user terminal 11 and selects either "yes" or "no". Thereby, the consent information is notified from the second user terminal 11 to the information management server 20 via the message application.

All or part of the information management server 20 in the above-described embodiment may be realized by a computer. In that case, a program for realizing this function may be recorded in a computer-readable recording medium, and the program recorded in this recording medium may be read into a computer system and executed. It should be noted that the "computer system" referred to here includes hardware such as an OS and peripheral devices. The term "computer-readable recording medium" refers to portable media such as flexible discs, magneto-optical discs, ROMs and CD-ROMs, and storage devices such as hard discs incorporated in computer systems. Furthermore, "computer-readable recording medium" means a medium that dynamically retains a program for a short period of time, like a communication line when transmitting a program via a network such as the Internet or a communication line such as a telephone line. It may also include something that holds the program for a certain period of time, such as a volatile memory inside a computer system that serves as a server or client in that case. Further, the program may be for realizing a part of the functions described above, or may be capable of realizing the functions described above in combination with a program already recorded in the computer system. It may be implemented using a programmable logic device such as an FPGA (Field Programmable Gate Array).

Although the embodiment of the present invention has been described in detail with reference to the drawings, the specific configuration is not limited to this embodiment, and design and the like are included within the scope of the gist of the present invention.

1... procedure information cooperation system, 10... first user terminal, 11... second user terminal, 20... information management server, 21... communication unit, 22... storage unit, 220... user information, 221... family information, 222... determination information, 23... control unit, 230... acquisition unit, 231... determination information generation unit, 232... determination unit, 233... application control unit, 234... device control unit, 30... authentication server 30, 40... provider server

Claims (5)

an acquisition unit that acquires family information about the user's family notified by the user, which includes the family's mobile phone number and personal information;
a control unit that transmits a message including URL (Uniform Resource Locator) information indicating a specific site linked to the family information to the mobile phone number of the family member included in the family information;
The specific site is configured to be able to notify whether or not the family agrees to be registered as the user's family, and when the specific site is notified of the consent, from the family member's certification medium a determination unit that determines whether or not the family information is correct information by comparing the obtained personal information of the family with personal information contained in the family information;
with
The certification medium is associated with personal identification information that uniquely identifies an individual and certifies the identity of the individual, and includes at least one of the name, address, date of birth, and sex of the individual. A recording medium for recording,
Information management server. The acquisition unit acquires a password specified by the user,
the control unit sets the password acquired by the acquisition unit to the specific site;
The information management server according to claim 1. The acquisition unit acquires information indicating whether the user and the family member live together,
When the acquisition unit acquires information indicating that the user and the family live together, the determination unit obtains the user's address stored in advance and the family member's authentication media. Determining whether the address of the family matches,
The information management server according to claim 1 or 2. an acquisition unit acquires family information about the user's family notified by the user, which includes the family's mobile phone number and personal information;
A control unit transmits a message including URL (Uniform Resource Locator) information indicating a specific site linked to the family information to the mobile phone number of the family member included in the family information,
The determining unit is configured to be able to notify whether the family agrees to the specific site being registered as the user's family, and when the specific site is notified of the consent, the family determining whether or not the family information is correct information by comparing the personal information of the family obtained from the certification medium of and the personal information contained in the family information;
An information management method comprising:
The certification medium is associated with personal identification information that uniquely identifies an individual and certifies the identity of the individual, and includes at least one of the name, address, date of birth, and sex of the individual. A recording medium for recording,
Information management method. 4. A program for causing a computer to operate as the information management server according to any one of claims 1 to 3, the program causing the computer to function as each unit provided in the information management server.

Images