JP2024050387A - Information processing device and information processing method - Google Patents

Abstract

[Problem] To provide personal information that meets the accuracy required by a service provider to a service provider. [Solution] An information processing device (1) has a storage unit (12) that stores reliability information of institution-held information, which associates institution codes for identifying each of a plurality of institutions that hold personal information with held information reliability, which is the reliability of personal information held by the institution, a request receiving unit (136) that receives from a user terminal (2) an acquisition request, which is a request for the user to acquire personal information of a user from a specified institution in order for the user to make a specified application, and a provision control unit (138) that controls an institution server (3), which is a server of a specified institution, so that the institution server (3) can provide personal information of a user in response to a specified application, on condition that the held information reliability associated with the institution code of the specified institution in the reliability information of the institution-held information is equal to or higher than the requested reliability, which is the held information reliability required for the specified application. [Selected Figure] FIG.

Description

The present invention relates to an information processing device and an information processing method.

Conventionally, an institution that holds a user's personal information provides that personal information to another institution (see, for example, Patent Document 1).

JP 2013-20643 A

There are multiple institutions that hold personal information, and the accuracy of the personal information registered at each of these institutions may differ. On the other hand, when a user applies to use a service, the service provider may require a certain level of accuracy in the personal information to be registered, so there is a demand to be able to provide the service provider with personal information that meets the accuracy required by the service provider.

The present invention has been made in consideration of these points, and aims to make it possible to provide service providers with personal information that meets the accuracy required by the service providers.

The information processing device according to the first aspect of the present invention has a storage unit that stores reliability information of institution-held information that associates institution identification information for identifying each of a plurality of institutions that hold personal information with held information reliability, which is the reliability of the personal information held by the institution; a request receiving unit that acquires from the user's terminal an acquisition request that is a request to acquire personal information of a user from personal information held by a specified institution in order for the user to make a specified application; a reliability specification unit that, upon acquiring the acquisition request, specifies a requested reliability, which is the held information reliability requested for the specified application; and a provision control unit that controls the institution server, which is the server of the specified institution, so that the institution server can provide the personal information of the user in response to the specified application, on condition that the held information reliability associated with the institution identification information of the specified institution in the reliability information of the institution-held information is equal to or higher than the requested reliability specified by the reliability specification unit.

The provision control unit may specify the types of personal information necessary to make the specified application, and control the institution server so that the institution server is able to provide the user's personal information in response to the specified application, on the condition that the specified institution holds personal information corresponding to each of the specified types.

The information processing device further includes a list generating unit that, when the held information reliability associated with the institution identification information of the specified institution in the reliability information of the institution held information is less than the required reliability specified by the reliability specification unit, refers to the reliability information of the institution held information, identifies institution identification information associated with a held information reliability equal to or greater than the specified required reliability, and generates a list of institutions indicated by the identified institution identification information, and a list transmitting unit that transmits the generated list to the terminal. The provision control unit may control the institution server so that, when the held information reliability associated with the institution identification information of the specified institution in the reliability information of the institution held information is less than the required reliability specified by the reliability specification unit, when one institution is selected from the multiple institutions included in the list on the terminal, the institution server that is the server of the one institution can provide the personal information of the user in response to the specified application.

The information processing device according to the second aspect of the present invention includes a storage unit that stores reliability information of the institution-held information, which associates institution identification information for identifying each of a plurality of institutions that hold personal information with the held information reliability, which is the reliability of the personal information held by the institution; a request receiving unit that receives from the user's terminal an acquisition request, which is a request for the user to acquire personal information of the user from the personal information held by the institution in order for the user to make a specified application; a reliability specification unit that, upon receiving the acquisition request, specifies a requested reliability, which is the held information reliability requested for the specified application; a list generation unit that refers to the reliability information of the institution-held information, specifies institution identification information associated with a held information reliability equal to or higher than the specified requested reliability, and generates a list of institutions indicated by the specified institution identification information; a list transmission unit that transmits the generated list to the terminal; and a provision control unit that controls the institution server, which is the server of the institution, so that, when an institution is selected on the terminal from a plurality of institutions included in the list, the institution server of the institution is able to provide the personal information of the user for the specified application.

The list generation unit may identify the types of personal information required to make the specified application, identify institutions that hold personal information corresponding to each of the identified types, and generate the list showing the identified institutions.
The reliability specification unit may specify a type of the predetermined application, and specify a reliability required for the predetermined application based on the specified type.

The information processing device may further have an update unit that updates the reliability of held information associated with the institution identification information of the institution included in the reliability information of the institution held information based on the fulfillment status of a specified contract at the institution.
The update unit may lower the reliability of the held information associated with the institution identification information of the institution included in the reliability information of the institution held information when a default of a specified contract occurs at the institution.

The update unit may update the held information reliability based on the number of occurrences of non-performance of the predetermined contract within a unit period.
The update unit may update the held information reliability based on the length of time during which no breach of the specified contract has occurred.
The information processing device may further include a setting unit that sets an initial value of the reliability of held information associated with the institution based on the country to which the institution belongs and the type of the institution.

The information processing method according to the third aspect of the present invention is an information processing method executed by a computer, comprising the steps of: acquiring, from a user's terminal, an acquisition request, which is a request for the user to acquire personal information of the user from a specified institution in order for the user to make a specified application; specifying, upon acquiring the acquisition request, a requested reliability indicating the held information reliability, which is the reliability of the personal information held by the institution, requested for the specified application; and controlling the institution server, which is the server of the specified institution, so that the institution server can provide the personal information of the user in response to the specified application, on condition that the held information reliability associated with the institution identification information of the specified institution in the institution-held information reliability information, which associates institution identification information for identifying each of a plurality of institutions that hold personal information with the held information reliability, which is the reliability of the personal information held by the institution, is equal to or higher than the specified requested reliability.

The present invention has the effect of being able to provide service providers with personal information that meets the accuracy required by the service providers.

1 is a diagram illustrating an overview of an information processing system according to a first embodiment. FIG. 2 is a diagram illustrating a functional configuration of an information processing device according to a first embodiment. FIG. 13 is a diagram showing an example of country-specific institution information. FIG. 13 is a diagram showing an example of reliability information of institution-held information. FIG. 11 is a diagram showing an example of application requirement information. FIG. 2 is a diagram illustrating a functional configuration of a user terminal according to the first embodiment. FIG. 2 is a sequence diagram showing a process flow in the information processing system according to the first embodiment. FIG. 8 is a sequence diagram showing a process flow subsequent to the process flow shown in FIG. 7 . FIG. 13 is a diagram showing an example of an application start screen. FIG. 13 is a diagram illustrating an example of a list screen. FIG. 13 illustrates an example of a permission screen. FIG. 11 is a sequence diagram showing a process flow in an information processing system according to a second embodiment.

[First embodiment]
[Overview of Information Processing System S]
1 is a diagram showing an overview of an information processing system S according to a first embodiment. The information processing system S is a system that enables a user to obtain personal information required for making a specified application from an institution such as a bank and make the specified application. The information processing system S has an information processing device 1, a user terminal 2 as a mobile communication terminal used by the user, and an institution server 3 used by the institution.

The specified application is, for example, an application to use various services or an application to use a product purchase service. The information processing device 1 functions as an application reception server that accepts the specified application. The user terminal 2 is, for example, a mobile phone such as a smartphone. The institution is, for example, a financial institution, a communication carrier, a store, etc., and the institution server 3 holds personal information of users who use the institution. The information processing device 1, the user terminal 2, and the institution server 3 are connected so as to be able to communicate with each other via a communication network such as the Internet or a wireless LAN. Note that, although one each of the user terminal 2 and the institution server 3 is shown in FIG. 1, it is assumed that in reality, multiple user terminals 2 and multiple institution servers 3 exist.

The user terminal 2 transmits an acquisition request to the information processing device 1, which is a request to acquire personal information of the user from a specific institution designated by the user in order for the user to make a specific application ((1) in FIG. 1). When the information processing device 1 acquires the acquisition request, it specifies the requested reliability, which is the reliability of the personal information held by the institution, which is requested for the specific application ((2) in FIG. 1). In the following description, the reliability of the personal information held by the institution is also referred to as the reliability of held information.

The information processing device 1 stores reliability information of institution-held information that associates an institution code as institution identification information that identifies each of multiple institutions with the reliability of held information, which is the reliability of personal information held by the institution. The information processing device 1 enables the institution server 3 corresponding to a specified institution to provide personal information of a user in response to a specified application, on the condition that the reliability of held information of a specified institution corresponding to an acquisition request, which is identified based on the reliability information of the institution-held information, is equal to or higher than the requested reliability required for the specified application.

For example, the information processing device 1 transmits display instruction information to the user terminal 2 instructing the user terminal 2 to display a consent screen in which the institution server 3 accepts consent to the institution server 3 providing personal information of the user in response to a specified application ((3) in FIG. 1).

When the user terminal 2 receives the display instruction information, it sends an authorization screen acquisition request to the institution server 3 corresponding to the selected institution ((4) in FIG. 1) and receives the authorization screen from the institution server 3 ((5) in FIG. 1). When the institution server 3 accepts authorization from the user terminal 2 to provide personal information of the user in response to a specified application ((6) in FIG. 1), it sends the personal information of the user of the user terminal 2 to the information processing device 1 ((7) in FIG. 1).

The information processing device 1 acquires personal information of the user for making a specified application from the institution server 3 and accepts the specified application. In this way, the information processing device 1 can provide personal information that meets the accuracy required by a provider of a service related to the specified application.

[Functional configuration of information processing device 1]
Next, a detailed description will be given of the configuration of the information processing device 1. Fig. 2 is a diagram showing the functional configuration of the information processing device 1 according to the first embodiment. The information processing device 1 has a communication unit 11, a storage unit 12, and a control unit 13.
The communication unit 11 is a communication interface for transmitting and receiving data to and from external devices such as the user terminal 2 and the institution server 3 via a network such as the Internet.

The memory unit 12 is a storage medium that stores various data, and includes a ROM (Read Only Memory), a RAM (Random Access Memory), a hard disk, and an SSD (Solid State Drive). The memory unit 12 stores programs that, when executed by the control unit 13, cause the control unit 13 to function as a registration unit 131, an update unit 132, a start reception unit 133, a list generation unit 134, a list transmission unit 135, a request reception unit 136, a reliability determination unit 137, a provision control unit 138, and an application reception unit 139.

The storage unit 12 also stores country-specific institution information indicating institutions in each of a plurality of countries. FIG. 3 is a diagram showing an example of country-specific institution information. As shown in FIG. 3, the country-specific institution information is information that associates a country name, an institution code of an institution available in the country indicated by the country name, an institution type, an institution name, and held personal information that is personal information held by the institution. An institution included in the country-specific institution information is an institution that permits the provision of personal information of the user with the user's permission. The institution code is institution identification information for identifying each of a plurality of institutions. The country-specific institution information is referenced to generate an institution list for selecting an institution used by the user.

Personal information may include, for example, the user's name, date of birth, age, sex, residential address, family composition, etc. Personal information may also include account information at financial institutions used by the user.

The storage unit 12 also stores reliability information of institution-held information that associates an institution code indicating an institution with the reliability of held information, which is the reliability of personal information held by the institution. Figure 4 is a diagram showing an example of reliability information of institution-held information. As shown in Figure 4, it can be seen that the reliability of held information is associated with each of the institution codes of multiple institutions.

The storage unit 12 also stores application requirement information that associates an application ID for identifying the type of each of multiple applications for which the information processing device 1 accepts application for use, the reliability of held information requested for the application, and the type of personal information required. Figure 5 is a diagram showing an example of application requirement information. As shown in Figure 5, it can be seen that the application ID of each of multiple applications is associated with the reliability of held information requested for the application and the type of personal information required. In the following description, the reliability of held information requested for an application is also referred to as the requested reliability.

The control unit 13 is, for example, a CPU (Central Processing Unit). By executing the programs stored in the memory unit 12, the control unit 13 functions as a registration unit 131, an update unit 132, a start reception unit 133, a list generation unit 134, a list transmission unit 135, a request reception unit 136, a reliability determination unit 137, a provision control unit 138, and an application reception unit 139.

The registration unit 131 accepts registration of country-specific institution information from a management terminal (not shown) used by an administrator of the information processing device 1, etc. For example, when the registration unit 131 accepts a country name, institution type, institution name, and held personal information from the management terminal, it generates an institution code. The registration unit 131 associates the generated institution code with the accepted country name, institution type, institution name, and held personal information, and stores them in the memory unit 12 as country-specific institution information.

The registration unit 131 also functions as a setting unit, and associates the institution code with the reliability of the held information and stores it in the memory unit 12 as reliability information of the institution-held information. For example, the registration unit 131 may set an initial value of the reliability of the held information associated with the institution based on the country to which the institution belongs and the type of institution, and store the set reliability of the held information in association with the institution code.

The update unit 132 updates the reliability of the held information associated with the institution code included in the reliability information of the institution held information based on the status of execution of a specific contract at the institution. The specific contract is, for example, a contract related to a specific loan or a contract related to various periodic payments such as mobile communication service fees.

When a default on a specified contract occurs at an institution, the update unit 132 lowers the reliability of the held information associated with the institution's institution code included in the reliability information of the institution's held information. For example, the update unit 132 calculates the ratio of the number of people who have defaulted on their contract to the number of contract holders who have entered into a specified contract with the institution. The update unit 132 then updates the reliability of the held information so that the higher the ratio of the number of people who have defaulted on their contract, the lower the reliability of the held information becomes.

For example, if there are a large number of people who have defaulted on a contract, there is a high probability that there are many users with low credibility, and the more low-credibility users there are, the lower the accuracy of the personal information of multiple users managed by the institution is likely to be. In response to this, the information processing device 1 can update the reliability of the held information to an appropriate value by updating the reliability of the held information so that the reliability becomes lower the higher the proportion of people who have defaulted on a contract.

Note that, when a default on a specified contract occurs, the update unit 132 lowers the held information reliability associated with the institution's institution code included in the reliability information of the institution held information, but this is not limited to this. The update unit 132 may update the held information reliability based on the number of times a default on a specified contract occurs in a unit period. In this case, the update unit 132 updates the held information reliability so that the higher the number of times a default on a specified contract occurs in a unit period, the lower the held information reliability.

The update unit 132 may also update the reliability of the held information based on the length of the period during which no breach of a specified contract has occurred. In this case, the update unit 132 updates the reliability of the held information so that the longer the period during which no breach of a specified contract has occurred, the higher the reliability of the held information becomes. In this way, the reliability of the held information can be updated to an appropriate value, similar to the case of updating the reliability of the held information based on the proportion of the number of people who have breached a contract.

The functions of the start reception unit 133, list generation unit 134, list transmission unit 135, request reception unit 136, reliability determination unit 137, provision control unit 138, and application reception unit 139 will be described in detail later.

[Functional configuration of user terminal 2]
Next, a detailed description will be given of the configuration of the user terminal 2. Fig. 6 is a diagram showing the functional configuration of the user terminal 2 according to the first embodiment. The user terminal 2 has an operation unit 21, a communication unit 22, an imaging unit 23, a display unit 24, a storage unit 25, and a control unit 26.

The operation unit 21 is an operation device that accepts operations by the user, and is, for example, a touch panel provided on the surface of the display unit 24. The operation unit 21 notifies the control unit 26 of a signal indicating the position touched by the user.
The communication unit 22 is a communication interface for transmitting and receiving data to and from external devices such as the information processing device 1 and the engine server 3 via a network such as the Internet.

The imaging unit 23 is, for example, a camera.
The display unit 24 is a display that displays various types of information.
The storage unit 25 is a storage medium that stores various data, and includes a ROM, a RAM, a hard disk, an SSD, etc. The storage unit 25 stores programs executed by the control unit 26. The storage unit 25 stores programs that cause the control unit 26 to function as an application request unit 261, a list acquisition unit 262, a selection acceptance unit 263, an approval acceptance unit 264, a personal information acquisition unit 265, and an application unit 266.

The control unit 26 is, for example, a CPU. The control unit 26 executes the programs stored in the storage unit 25 to function as an application request unit 261, a list acquisition unit 262, a selection acceptance unit 263, a permission acceptance unit 264, a personal information acquisition unit 265, and an application unit 266.

Next, the functions of the control unit 13 and the control unit 26 related to the process of accepting a specified application will be described in detail with reference to a sequence diagram showing the process flow in the information processing system S. FIG. 7 is a sequence diagram showing the process flow in the information processing system S according to the first embodiment. FIG. 8 is a sequence diagram showing the process flow following the process flow shown in FIG. 7.

First, when the application request unit 261 of the user terminal 2 receives a display operation of an application start screen for starting an application related to a specific application from the user, the application request unit 261 transmits a display request of the application start screen to the information processing device 1 (S1). In this embodiment, the information processing device 1 accepts applications to use multiple services, and the application request unit 261 accepts an application to use a service selected by the user from among the applications to use the multiple services. The display request of the application start screen includes an application ID corresponding to the type of application selected by the user.

In response to receiving the request to display the application start screen, the start reception unit 133 of the information processing device 1 transmits the application start screen to the user terminal 2 (S2). The application request unit 261 displays the received application start screen on the display unit 24.

Figure 9 is a diagram showing an example of an application start screen. As shown in Figure 9, the application start screen displays a list that accepts the selection of one country in a pull-down format from among multiple countries, in order to have the user terminal 2 acquire filtering information for narrowing down the institutions that have stored the user's personal information. Also, Figure 9 shows a decision button, and when the decision button is pressed, country selection information indicating the selected country is sent to the information processing device 1 as filtering information.

The filtering information is not limited to country selection information indicating the selected country, but may be information for identifying the country to which the user belongs. In this case, the application start screen may display a message such as "Please read the two-dimensional code on the boarding pass," and may be provided with a start button for starting the imaging unit 23. The application request unit 261 may start the imaging unit 23 in response to pressing the start button on the application start screen, and obtain information extracted from the two-dimensional code captured by the imaging unit 23 as filtering information for identifying the country to which the user belongs.

When the list generation unit 134 of the information processing device 1 receives country selection information from the user terminal 2 (S3), it selects an institution from among multiple institutions based on the country selection information and generates an institution list that includes the selected institutions (S4).

Specifically, the list generation unit 134 identifies the country to which the user of the user terminal 2 belongs based on the received country selection information. Note that when the list generation unit 134 receives information extracted from a two-dimensional code captured by the imaging unit 23 as the narrowing down information, it may identify the country to which the user belongs by analyzing the narrowing down information. For example, the list generation unit 134 may identify the country from which the user originates based on information extracted from a two-dimensional code on an airline boarding pass. The list generation unit 134 selects institutions associated with the identified country from the country-specific institution information stored in the memory unit 12, and generates an institution list including the selected institutions.

The list generation unit 134 generates a list screen including the generated list of institutions. FIG. 10 is a diagram showing an example of the list screen. In FIG. 10, it can be seen that a list is displayed that accepts the selection of one institution in a pull-down format from among multiple institutions included in the institution list. Also, in FIG. 10, a decision button is provided that displays "Log in with bank ID", and when the decision button is pressed, selection information indicating the selected institution is sent to the information processing device 1.

The list sending unit 135 of the information processing device 1 sends a list screen including the generated institution list to the user terminal 2 (S5). The list acquiring unit 262 of the user terminal 2 acquires the list screen showing the institution list.

The selection receiving unit 263 of the user terminal 2 displays the list screen acquired by the list acquisition unit 262 on the display unit 24 and accepts the selection of an institution from among the institutions included in the institution list shown on the list screen. In response to the selection of an institution on the list screen, the selection receiving unit 263 transmits an acquisition request, which includes institution selection information indicating the selected institution (predetermined institution) and is a request to acquire personal information from the selected institution, to the information processing device 1 (S6).

The request receiving unit 136 of the information processing device 1 receives from the user terminal 2 an acquisition request, which is a request for acquiring personal information from an institution selected by the user to make a given application.
The reliability specification unit 137 of the information processing device 1 specifies a requested reliability, which is a retained information reliability required for a given application (S7). For example, the reliability specification unit 137 specifies a type of the given application, and specifies a requested reliability based on the specified type.

Specifically, the reliability identification unit 137 identifies the type of a specific application by acquiring an application ID included in a request to display an application start screen. The reliability identification unit 137 refers to the application requirement information stored in the memory unit 12, and identifies the requested reliability of the held information associated with the acquired application ID as the requested reliability.

The provision control unit 138 controls the institution server 3, which is the server of the institution, so that the institution server 3 can provide personal information in response to a specified application, on the condition that the reliability of the held information associated with the institution code of the selected institution in the reliability information of the institution-held information stored in the memory unit 12 is equal to or higher than the required reliability specified by the reliability specification unit 137.

For example, first, the provision control unit 138 refers to the reliability information of the institution-held information stored in the memory unit 12, and identifies the reliability of the held information associated with the institution code of the selected institution. Next, if the reliability of the held information identified for the selected institution is equal to or higher than the required reliability identified by the reliability identification unit 137 (YES in S8), the provision control unit 138 causes the user terminal 2 to display a consent screen for the institution server 3 to accept consent for the institution server 3 to provide the user's personal information in response to a specified application.

Here, the provision control unit 138 may identify the types of personal information required to make a given application, and allow the institution server 3 to provide the user's personal information for the given application, on the condition that the selected institution holds personal information corresponding to each of the identified types.

For example, the provision control unit 138 refers to the application requirement information stored in the memory unit 12, and identifies the type of personal information associated with the application ID included in the request to display the application start screen, thereby identifying the type of personal information necessary to make a specified application. The provision control unit 138 also refers to the country-specific institution information, and identifies the types of personal information held by the selected institution. Then, the provision control unit 138 enables the institution server 3 to provide personal information for the specified application, on the condition that the selected institution holds personal information corresponding to each of the identified types. In this way, the information processing device 1 can prevent a shortage of personal information necessary to make a specified application.

The provision control unit 138, for example, controls the institution server 3 to display a consent screen on the user terminal 2 in accordance with the processing flow defined in IDA (OpenID Connect for Identity Assurance) and to enable the institution server 3 to provide personal information in response to a specified application.

For example, the provision control unit 138 transmits display instruction information to the user terminal 2 instructing the display of a consent screen in order to cause the user terminal 2 to display a consent screen on which the institution server 3 accepts consent to the institution server 3 providing personal information in response to a specified application (S9). The display instruction information is addressed to the institution server 3 corresponding to the selected institution and includes the URL of a login screen for authenticating the user.

When the permission acceptance unit 264 of the user terminal 2 receives the display instruction information, it sends a request to acquire a login screen to the institution server 3 based on the URL of the login screen included in the display instruction information (S10). When the institution server 3 receives the request to acquire a login screen, it sends the login screen to the user terminal 2 (S11). The permission acceptance unit 264 displays the login screen on the display unit 24, and in response to accepting input of login information from the user, sends the login information to the institution server 3 (S12).

The institution server 3 authenticates the user based on the login information. If the institution server 3 determines that the authentication of the user is successful, it transmits to the user terminal 2 a consent screen that accepts consent for the institution server 3 to provide personal information in response to the specified application (S13). The consent acceptance unit 264 of the user terminal 2 displays the consent screen on the display unit 24 and accepts consent from the user for the institution server 3 to provide personal information in response to the specified application.

Figure 11 is a diagram showing an example of a consent screen. In the example shown in Figure 11, it can be confirmed that consent has been accepted from Bank A to provide personal information to Service X corresponding to a specific application. When the consent acceptance unit 264 accepts consent from the user, it transmits consent information indicating that consent has been granted to the institution server 3 (S14).

Now let us turn to FIG. 8 for explanation. When the institution server 3 receives the permission information, it transmits an authorization code to the user terminal 2 to identify that the information processing device 1 that accepts the specified application is the recipient of the personal information (S15). The permission acceptance unit 264 of the user terminal 2 receives the authorization code from the institution server 3.

In response to the permission acceptance unit 264 accepting permission, the personal information acquisition unit 265 of the user terminal 2 acquires personal information from an institution's institution server 3, or causes the information processing device 1 to acquire personal information from the institution server 3. In addition, after the institution server 3 accepts permission from the user terminal 2 to provide personal information, the application acceptance unit 139 of the information processing device 1 acquires personal information held by the institution server 3 and accepts a specified application.

Specifically, the personal information acquisition unit 265 of the user terminal 2 transmits the authorization code received from the institution server 3 to the information processing device 1 (S16). The application acceptance unit 139 of the information processing device 1 receives the authorization code from the user terminal 2.

The application reception unit 139 transmits the authorization code received from the user terminal 2 to the institution server 3 (S17). The institution server 3 determines whether the authorization code received from the information processing device 1 matches the authorization code transmitted to the user terminal 2. If the institution server 3 determines that the authorization codes match, it identifies the information processing device 1 as the recipient of the personal information, issues an ID token, and transmits it to the information processing device 1 (S18). The ID token is associated with a user ID that identifies the user providing the personal information, i.e., the user of the user terminal 2. When the application reception unit 139 of the information processing device 1 receives the ID token, it transmits a request to obtain the personal information including the ID token to the institution server 3 (S19).

When the institution server 3 receives a request to acquire personal information, it transmits the user's personal information associated with the ID token included in the received request to the information processing device 1 (S20). When the application acceptance unit 139 of the information processing device 1 receives the user's personal information from the institution server 3, it inputs the personal information required for a specific application from the received personal information into an input screen that accepts input of personal information. The application acceptance unit 139 then transmits the input screen with the personal information input to the user terminal 2 (S21) and accepts the specific application. The application unit 266 of the user terminal 2 displays the input screen on the display unit 24 and accepts the specific application from the user. The input screen displays the personal information acquired from the institution server 3 without the user having to input anything, reducing the burden on the user.

When the application unit 266 accepts a specific application from a user, it transmits the application information to the information processing device 1 (S22). The application information includes the personal information entered on the input screen. The application acceptance unit 139 accepts the specific application by receiving the application information from the user terminal 2.

Note that, in the sequences shown in Figures 7 and 8, the processing flow is described when the reliability of held information associated with an institution identified by referring to the reliability information of the institution-held information is equal to or greater than the required reliability identified by the reliability identification unit 137. However, the reliability of held information associated with an identified institution may be less than the required reliability identified by the reliability identification unit 137.

In response to this, if the held information reliability corresponding to an identified institution is less than the required reliability identified by the reliability identification unit 137 (NO in S8), the list generation unit 134 refers to the reliability information of the institution held information and identifies an institution code associated with the country to which the user belongs and a held information reliability equal to or greater than the required reliability identified by the reliability identification unit 137. Then, the list generation unit 134 regenerates a list screen including a list of institutions indicated by the identified institution codes. The list transmission unit 135 retransmits the generated list screen to the user terminal 2.

When the reliability of information held corresponding to an identified institution is less than the required reliability specified by the reliability specification unit 137, the provision control unit 138 controls the institution server 3 so that when an institution is selected from among the institutions included in the list resent by the list transmission unit 135 in the user terminal 2, the institution server 3, which is the server of the institution, is able to provide personal information for a specified application. In this way, even if the reliability of information held corresponding to an institution initially selected by the user from the institution list is less than the required reliability required for a specified application, the user can be made to select another institution and personal information that meets the required reliability can be displayed on the input screen.

[Modification 1]
In the above embodiment, the list generation unit 134 generates an institution list indicating institutions corresponding to institution codes associated with the country indicated by the country selection information received from the user terminal 2, but this is not limited to the above. The list generation unit 134 may receive one or more institution types from the user terminal 2 and generate an institution list that includes institutions corresponding to the received institution types and does not include institutions corresponding to the unreceived institution types. In this way, the user can select an institution corresponding to the institution type desired by the user as the institution from which personal information will be obtained.

[Modification 2]
In the above embodiment, the application request unit 261 reads a two-dimensional code and obtains the information indicated by the two-dimensional code as the narrowing-down information, but this is not limited to the above. The application request unit 261 may read a barcode displayed on a boarding pass or an image of travel information displayed on a display unit of a boarding gate when the user presents the boarding pass at the boarding gate, and obtain the information indicated by the barcode or image as the narrowing-down information.

The application request unit 261 may also acquire the telephone number assigned to the user terminal 2 as the filtering information. In this case, a message such as "Please send an empty message to #1234" is displayed on the application start screen to cause the user terminal 2 to acquire the telephone number as filtering information. When the application request unit 261 accepts an operation to send a short message from the user, it acquires the telephone number assigned to the user terminal 2 and stored in the memory unit 25, and uses the telephone number to send a short message to the information processing device 1 or a linked device linked to the information processing device 1.

The list generation unit 134 of the information processing device 1 receives a short message sent by the user terminal 2 from the user terminal 2 or a linked device, and acquires the telephone number assigned to the user terminal 2, which is the sender of the short message, as filtering information. The list generation unit 134 then identifies the country to which the user belongs based on the telephone number as filtering information. In this way, the information processing device 1 can identify the country to which the user belongs by having the user perform the simple operation of sending a short message.

[Effects of the information processing device 1 according to the first embodiment]
As described above, when the information processing device 1 according to the first embodiment receives from the user terminal 2 an acquisition request which is a request for the user to acquire personal information of the user from a specified institution in order to make a specified application, the information processing device 1 specifies a requested reliability which is the reliability of the held information required for the specified application. The information processing device 1 then controls the institution server 3, which is the server of the specified institution, so that the institution server 3 can provide the user's personal information for the specified application, on the condition that the reliability of the held information associated with the institution code of the specified institution is equal to or higher than the specified requested reliability. In this way, the information processing device 1 can provide the service provider with personal information that meets the accuracy required by the service provider.

[Second embodiment]
Next, a second embodiment will be described. The information processing system S according to the second embodiment differs from the first embodiment in that, when the information processing device 1 receives an acquisition request, which is a request to acquire personal information to make a specific application, the information processing system 1 creates a list of institutions that hold personal information with a held information reliability equal to or higher than the requested reliability, which is the held information reliability required for the specific application. The information processing system S according to the second embodiment will be described below. Note that the same parts as in the first embodiment will not be described as appropriate.

Figure 12 is a sequence diagram showing the flow of processing in the information processing system S according to the second embodiment. First, when the application request unit 261 of the user terminal 2 receives a display operation of an application start screen for starting an application related to a specific application from a user, the application request unit 261 transmits a display request of the application start screen to the information processing device 1 (S101).

In response to receiving a request to display the application start screen, the start reception unit 133 of the information processing device 1 transmits the application start screen to the user terminal 2 (S102). The application request unit 261 causes the received application start screen to be displayed on the display unit 24. The application start screen is the same as the screen shown in FIG. 9. When a country is selected and the decision button is pressed, the application request unit 261 of the user terminal 2 transmits country selection information to the information processing device 1 as an acquisition request, which is a request for the user to acquire personal information in order to make a specified application (S103).

The request receiving unit 136 of the information processing device 1 receives an acquisition request from the user terminal 2 .
The reliability specification unit 137 specifies a requested reliability, which is the possessed information requested for a given application (S104).
When the reliability specification unit 137 specifies the required reliability, the list generation unit 134 refers to the reliability information of the institution-held information stored in the memory unit 12, and specifies institution codes associated with a retained information reliability equal to or higher than the specified required reliability. The list generation unit 134 then refers to the country-specific institution information, and further specifies, from the specified institution codes, institution codes associated with the country indicated by the received country selection information, and generates an institution list that is a list of institutions indicated by the specified institution codes (S105).

Here, the list generation unit 134 may identify the types of personal information required to make a specified application, and generate a list of institutions that hold personal information corresponding to each of the identified types and that correspond to a held information reliability equal to or higher than the required reliability identified by the reliability identification unit 137.

In this case, the list generation unit 134 refers to the application requirement information stored in the memory unit 12, and identifies information indicating the types of personal information necessary to make a specified application. The list generation unit 134 also refers to the country-specific institution information, and selects multiple institutions that hold all the types of personal information necessary to make a specified application from among institutions corresponding to the held information reliability equal to or higher than the required reliability specified by the reliability specification unit 137. Then, the list generation unit 134 generates an institution list that includes only the selected institutions. In this way, the information processing device 1 can prevent the selection of an institution that lacks personal information to make a specified application.
The list transmission unit 135 transmits a list screen including the generated institution list to the user terminal 2 (S106).

The selection receiving unit 263 of the user terminal 2 displays the list screen acquired by the list acquisition unit 262 on the display unit 24, and accepts the selection of an institution from among the institutions included in the list shown on the list screen. In response to the selection of an institution on the list screen, the selection receiving unit 263 transmits institution selection information indicating the selected institution to the information processing device 1 (S107).

When an institution is selected from among multiple institutions included in the institution list shown on the list screen on the user terminal 2, the provision control unit 138 of the information processing device 1 controls the institution server 3, which is the server of the selected institution, so that the institution server 3 can provide personal information in response to a specified application. The process flow from S108 onwards in the information processing system S according to the second embodiment is the same as the process flow from S9 onwards shown in Figures 7 and 8, so a description thereof will be omitted.

[Effects of the information processing device 1 according to the second embodiment]
As described above, when the information processing device 1 according to the present embodiment receives from the user terminal 2 an acquisition request, which is a request for acquiring personal information of a user from personal information held by a specified institution in order for the user to make a specified application, it specifies the held information reliability, which is the reliability of the personal information held by the institution requested for the specified application, generates an institution list of institutions indicated by institution codes associated with held information reliability equal to or higher than the specified held information reliability in the reliability information of the institution-held information, and transmits the list to the user terminal 2. Then, when one institution is selected from a plurality of institutions included in the institution list, the information processing device 1 controls the institution server 3, which is the server of the selected institution, so that the institution server 3 can provide the user's personal information for the specified application. In this way, the information processing device 1 can provide the service provider with personal information that meets the accuracy required by the service provider, as in the first embodiment.

In addition, personal information held by one institution may be assigned a single reliability level, but each of the multiple pieces of personal information held by the institution may also be assigned a different reliability level (for example, if institution A holds personal information 1 and personal information 2, personal information 1 and personal information 2 may be assigned different scores).

Furthermore, this invention will make it possible to contribute to Goal 9 of the United Nations' Sustainable Development Goals (SDGs), which is "Build resilient infrastructure, promote inclusive and sustainable industrialization, and promote innovation and infrastructure."

Although the present invention has been described above using embodiments, the technical scope of the present invention is not limited to the scope described in the above embodiments, and various modifications and changes are possible within the scope of the gist of the invention. For example, all or part of the device can be configured by distributing or integrating functionally or physically in any unit. In addition, new embodiments resulting from any combination of multiple embodiments are also included in the embodiments of the present invention. The effect of the new embodiment resulting from the combination also has the effect of the original embodiment.

REFERENCE SIGNS LIST 1 Information processing device 2 User terminal 3 Agency server 11 Communication unit 12 Memory unit 13 Control unit 131 Registration unit 132 Update unit 133 Start acceptance unit 134 List transmission unit 135 List transmission unit 136 Request acceptance unit 137 Reliability specification unit 138 Provision control unit 139 Application acceptance unit 21 Operation unit 22 Communication unit 23 Imaging unit 24 Display unit 25 Memory unit 26 Control unit 261 Application request unit 262 List acquisition unit 263 Selection acceptance unit 264 Permission acceptance unit 265 Personal information acquisition unit 266 Application unit

Claims (12)

a storage unit that stores institution-held information reliability information, which associates institution identification information for identifying each of a plurality of institutions that hold personal information with held information reliability, which is the reliability of personal information held by the institution;
a request receiving unit that receives, from a terminal of the user, a request to obtain personal information of the user from personal information held by a predetermined institution in order for the user to make a predetermined application;
a reliability specification unit that specifies a requested reliability, which is a retained information reliability required for the predetermined application, when the request for acquisition is received;
a provision control unit that controls the institution server, which is the server of the specified institution, so that the institution server can provide the personal information of the user in response to the specified application, on the condition that the held information reliability associated with the institution identification information of the specified institution in the reliability information of the institution held information is equal to or higher than the required reliability specified by the reliability specification unit;
An information processing device having the above configuration. the provision control unit specifies the types of personal information necessary to make the specified application, and controls the institution server so that the institution server can provide the user's personal information in response to the specified application, on the condition that the specified institution holds personal information corresponding to each of the specified types;
The information processing device according to claim 1 . a list generating unit that, when the held information reliability associated with the institution identification information of the specified institution in the reliability information of the institution held information is less than the required reliability specified by the reliability specifying unit, refers to the reliability information of the institution held information, identifies institution identification information associated with held information reliability equal to or greater than the required reliability specified, and generates a list of institutions indicated by the identified institution identification information;
a list transmission unit that transmits the generated list to the terminal;
and
the provision control unit, when the held information reliability associated with the institution identification information of the specified institution in the reliability information of the institution held information is lower than the required reliability specified by the reliability specification unit, controls the institution server such that, when one institution is selected from the multiple institutions included in the list on the terminal, the institution server that is the server of the one institution is able to provide the personal information of the user in response to the specified application;
3. The information processing device according to claim 1 or 2. a storage unit that stores institution-held information reliability information, which associates institution identification information for identifying each of a plurality of institutions that hold personal information with held information reliability, which is the reliability of personal information held by the institution;
a request receiving unit that receives, from a terminal of the user, a request to obtain personal information of the user from personal information held by an institution in order for the user to make a specified application;
a reliability specification unit that specifies a requested reliability, which is a retained information reliability required for the predetermined application, when the request for acquisition is received;
a list generating unit that refers to the reliability information of the institution-held information, identifies institution identification information associated with the reliability of the held information equal to or higher than the specified required reliability, and generates a list of institutions indicated by the identified institution identification information;
a list transmission unit that transmits the generated list to the terminal;
a provision control unit that controls an institution server that is a server of the institution selected from among the institutions included in the list on the terminal so that the institution server can provide personal information of the user in response to the specified application;
An information processing device having the above configuration. the list generation unit identifies types of personal information necessary for making the predetermined application, identifies institutions that hold personal information corresponding to each of the identified types, and generates the list indicating the identified institutions.
The information processing device according to claim 4. the reliability specification unit specifies a type of the predetermined application, and specifies a reliability required for the predetermined application based on the specified type;
The information processing device according to claim 1 . an update unit that updates the reliability of the information held by the institution, which is included in the reliability information of the information held by the institution and is associated with the institution identification information of the institution, based on the status of execution of a specified contract by the institution;
The information processing device according to claim 1 . the update unit, when a default of a predetermined contract occurs at the institution, lowers the reliability of the held information associated with the institution identification information of the institution included in the reliability information of the institution held information;
The information processing device according to claim 7. The update unit updates the retained information reliability based on the number of occurrences of non-performance of the predetermined contract within a unit period.
The information processing device according to claim 7. The update unit updates the retained information reliability based on a length of time during which no default on the specified contract has occurred.
The information processing device according to claim 7. a setting unit that sets an initial value of the reliability of the information held by the institution based on a country to which the institution belongs and a type of the institution;
The information processing device according to claim 1 . The computer executes
acquiring, from a terminal of the user, a request for acquiring personal information of the user from a predetermined institution in order for the user to make a predetermined application;
When the request is received, a step of specifying a requested reliability indicating a retained information reliability, which is a reliability of personal information retained by the institution, requested for the given application;
a step of controlling an institution server, which is a server of a specified institution, so as to enable the institution server to provide the personal information of the user in response to the specified application, on condition that the held information reliability associated with the institution identification information of the specified institution in reliability information of institution held information, which associates institution identification information for identifying each of a plurality of institutions holding personal information with held information reliability, which is the reliability of personal information held by the institution, is equal to or higher than a specified required reliability;
An information processing method comprising the steps of:

Images