JP3106039U - E-commerce system - Google Patents

Abstract

An electronic commerce system capable of selling or purchasing a product with high accuracy using a computer network such as the Internet and providing credit information in a commercial transaction is provided.
A plurality of electronic terminals are connected by a computer network, and a certificate authority is connected to the computer network. An electronic certificate is provided to each of the electronic terminals under the examination of the certificate authority. When a commercial transaction is performed between one electronic terminal and another electronic terminal via the computer network, both the selling side and the purchasing side of the commercial transaction present the electronic certificate together.
[Selection diagram] Fig. 1

Description

  The present invention relates to an electronic commerce system that performs business transactions and document transmissions using a computer network (such as the Internet). The electronic commerce system is realized with particularly high accuracy and reliability, and enables smooth acquisition of business and corporate information. Related to commerce systems.

  For example, online shopping has been implemented in which a seller provides information on a product using a computer network such as the Internet, and a purchaser can view the information on the product and purchase the product. On the other hand, a service or the like for providing various information for a fee or for free using a computer network such as the Internet is being implemented.

  In this type of online shopping, the seller and the buyer of the product conduct business transactions by inputting data on the computer screen without seeing each other, so the buyer has a real existence of the seller and sells the product. I'm worried about whether or not they will give me, and if I'm a seller, I'm worried if the buyer is real and will really pay for the goods. However, in the conventional computer network, since the seller and the buyer have a business transaction with the above-mentioned anxiety, the trouble often occurs. On a network where the other party cannot be seen, there is a concern about fraud such as impersonating a non-existent company or another company.

JP-A-11-316779

  The market size of e-commerce is expected to increase further in the future. For this reason, there has been a strong demand for the emergence of a system in which both sellers and buyers can make business transactions with confidence.

  The present invention has been made in view of the above circumstances, and an object of the present invention is to be able to sell or purchase a product with high accuracy using a computer network such as the Internet with high accuracy, and to provide credit information in commercial transactions. And an electronic commerce system capable of reliably transmitting and storing a document such as a file.

The present invention relates to an electronic commerce system, and the object of the present invention is to connect a plurality of electronic terminals by a computer network, and connect a certificate authority to the computer network, and to provide the electronic terminal with the certificate authority An electronic certificate is given together with a company code under the examination of, and when conducting a business transaction between the one electronic terminal and another electronic terminal via the computer network, a selling side and a purchasing side of the commercial transaction This is achieved by presenting the electronic certificate together.
In addition, the object of the present invention is to connect a plurality of electronic terminals with a computer network, and the computer network is connected with a member database, an automatic approval database, an issuance database, a company information database, and an electronic document transmission storage database. An electronic certificate is attached to each of the electronic terminals together with a company code and a PIN under the examination of a certificate authority, and in the computer network, one electronic terminal is connected to another electronic terminal. This is achieved by conducting business transactions through the electronic certificate and providing company information by inputting the company code.

In order to solve the above-mentioned problem, in the invention according to claim 1,
A plurality of electronic terminals connected to the Internet and provided by a plurality of companies; a certificate authority provided to be connected to the Internet; and the Internet connecting the plurality of electronic terminals and the certificate authority. Is a system that conducts electronic commerce between the companies of the Internet via the Internet,
The certificate authority includes a member database storing data including a company code for identifying a company which is a member to which a company code has been assigned after being examined by a management center of the certificate authority, and a PIN for identifying a user of the company. An electronic authentication system comprising an automatic approval database configured to store data including an automatic approval server configured to perform automatic approval of issuance of an electronic certificate based on data registered in advance,
At least a company information server having a company information database that stores company information about a company that is a member identified based on the company code;
When accessing the company information server from the electronic terminal based on an electronic certificate, the device has a function of acquiring company information from a company information database and transmitting it to the electronic terminal,
Each of the electronic terminals includes the company code assigned to each of a plurality of companies, and an electronic certificate issued using a PIN for identifying each user who performs electronic commerce in the company. Is provided,
Further, each of the electronic terminals is provided with an e-mail program for transmitting and receiving the electronic certificate together with the e-mail via the Internet, using the e-mail program,
When performing electronic commerce between the electronic terminal of one of the electronic terminals and the electronic terminal of another company via the computer network, the electronic terminal of one company of the electronic commerce receives the other terminal from the electronic terminal of the other company. A first function of receiving an electronic certificate including a company code of a company, a second function of accessing a company information database provided by the company information server based on the received electronic certificate, and When conducting electronic commerce after obtaining and receiving the electronic terminal, the electronic certificate including the company code of the one company is sent from the electronic terminal of the one company to the electronic terminal of the other company. It is an electronic commerce system having a third function of transmitting.

Further, in order to solve the above problem, in the invention according to claim 2,
A plurality of electronic terminals connected to the Internet and provided by a plurality of companies; a certificate authority provided to be connected to the Internet; and the Internet connecting the plurality of electronic terminals and the certificate authority. Is a system that conducts electronic commerce between the companies of the Internet via the Internet,
The certificate authority includes a member database storing data including a company code for identifying a company which is a member to which a company code has been assigned after being examined by a management center of the certificate authority, and a PIN for identifying a user of the company. An electronic authentication system comprising an automatic approval database configured to store data including an automatic approval server configured to perform automatic approval of issuance of an electronic certificate based on data registered in advance,
At least a company information server having a company information database that stores company information about a company that is a member identified based on the company code;
When accessing the company information server from the electronic terminal based on an electronic certificate, the device has a function of acquiring company information from a company information database and transmitting it to the electronic terminal,
Each of the electronic terminals includes the company code assigned to each of a plurality of companies, and an electronic certificate issued using a PIN for identifying each user who performs electronic commerce in the company. Is provided,
Further, each of the electronic terminals transmits and receives the electronic certificate between the electronic terminal of one of the electronic terminals and an electronic terminal of another company via the Internet together with an access request to a web server which is an electronic terminal of the other party. A browser program to do this.
When transmitting and receiving data between the electronic terminal of one of the electronic terminals and the electronic terminal of another company via the computer network, the electronic terminal of one company of the electronic commerce is transmitted from the electronic terminal of the other company to the other terminal. A first function of receiving an electronic certificate including a company code of a company, a second function of accessing a company information database provided in the company information server based on the received electronic certificate, and a function provided to the electronic certificate. An electronic commerce system having a third function of controlling access to a web server, which is an electronic terminal provided by the one company, based on company information obtained from a company information database to which a company code is added. And

In order to solve the above-mentioned problem, in the device according to the third aspect,
The above-mentioned automatic approval server transmits a PIN including a PIN for identifying a company user who is a member of a company to which a company code is assigned from a user's electronic terminal stored in an automatic approval database in advance. A function for receiving, via a reception server, an electronic certificate issuance request data including a password and an e-mail address, and the automatic approval database based on the received electronic certificate issuance request data including the received PIN and e-mail address. When issuing the result of the collation, the data including the company code stored in the member database and the data including the PIN for identifying the user of the company stored in the automatic approval database are included. A function for automatically approving the issuance of a digital certificate based on data registered in advance. It is characterized in that the or an electronic commerce system according to any one of 2.

In order to solve the above-mentioned problem, in the device according to claim 4,
The said certification authority was provided with the function which deletes the data containing the PIN which identifies the user of the said company who stored the data containing the company code stored in the member database from the automatic approval database. 3. The electronic commerce system according to any one of 3.

  According to the electronic commerce system of the present invention, business transactions in a computer network can be performed safely and reliably using company information using a digital certificate and a company code as a medium. In other words, some companies have introduced public procurement of materials and other materials using the Internet, but they must supplement the part of whether the bidder is a real company or whether it is OK to place an order with that company. Exchange of documents such as bids, purchase orders, receipts, invoices, contracts, etc., and secure and secure electronic commerce by avoiding problems such as spoofing, document rejection, and falsification by storing documents It can be carried out.

  In the electronic commerce system of the present invention, by presenting an electronic certificate issued by a neutral third-party certificate authority so that both sellers and buyers of goods can conduct business transactions with peace of mind. , Both the existence of the transaction entity and the identity of the transaction entity can be confirmed. Further, in electronic commerce, regarding credit determination that requires careful attention together with confirmation of the existence and identity of a business partner, corporate information is disclosed only to the person who has presented the electronic certificate. Further, in communication means using a computer network, there are problems such as difficulty in confirming arrival of mail, falsification, and rejection of receipt. However, according to the present invention, communication of document transmission to a destination and transmission of reception of the document are performed. A server managed by a certificate authority that can send reports to users and confirm transmitted documents to each other is provided, so that important documents such as purchase orders and invoices can be sent electronically.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  FIG. 1 schematically shows the overall configuration of the present invention, in which electronic terminals (personal computers) # 1 to #n are connected to the Internet 1 as a computer network, and a neutral third party is connected to the Internet 1. Are connected via various servers. FIG. 1 shows one user (caller) and two users (receivers) as electronic terminals (PCs) # 1 to #n. The certification authority 10 is divided into a management center 10A that performs authentication and management operations and a support center 10B that provides support services for electronic commerce. The support center 10B includes a management site 11, an electronic authentication system 12, and an ID center 13. I have it. The management site 11 has an electronic document transmission storage server 111, an electronic document transmission storage database 112, a company information server 113, and a company information database 114. The electronic authentication system 12 has a member database 121 and an automatic approval server 122 having an automatic approval database 122. The ID center 13 includes a publishing server 131 and a publishing database 132.

  The user's electronic terminals (personal computers) # 1 to #n generally have a configuration as shown in FIG. That is, it is composed of a CPU unit 2 having a function of copying and driving a CD or FD, a display unit 3 of a CRT or liquid crystal, a keyboard 4 and a mouse 5 for inputting data, commands, and the like.

  In such a configuration, the electronic terminals # 1 to #n can communicate with each other via the Internet 1 and can perform commercial transactions and the like. Here, in the present invention, the certificate authority 10 is connected to the Internet, and these communications and commercial transactions are performed via the certificate authority 10 to realize safe and secure commercial transactions. Therefore, in the present invention, an electronic certificate is issued as proof that the user is a member of the certificate authority 10, and communication and commercial transactions are performed by presenting and confirming the electronic certificate.

First, an electronic certificate used in the present invention will be described.
FIG. 3 shows a usage form of the digital certificate. The company A has the digital certificate A1 issued from the certificate authority 10, and the company B has the electronic certificate B1 issued from the certificate authority 10. The companies A and B are both given company codes A2 and B2 from the certificate authority 10, respectively, and the company codes are added to their own digital certificates. Further, the company information of the companies A and B is stored in the database 114 of the company information server 113 by being organically combined in a format corresponding to the company codes A2 and B2. Then, when the company A and the company B conduct business, the company A presents the electronic certificate A1, and the company B presents the electronic certificate B1 to confirm that the two companies have been authenticated by the certificate authority 10. You can check. Also, by inputting a company code that has been assigned in advance, it is possible to know company information of a company corresponding to the company code. Accordingly, for example, the company A can know the performance, creditworthiness, etc. of the company B by inputting the company code of the company B.

  No information or elements relating to credit are added to the electronic certificate, and the certificate is issued only by confirming existence and identity. However, a certificate authority that issues a digital certificate by submitting a commercial registry or a seal of a representative, and a certificate authority that issues on-site confirmation and identity verification by issuing face-to-face confirmation and identity verification, naturally have the reliability of the certificate authority. Is different. The electronic certificate is issued on a company-by-company basis, but is not limited to a representative but may be a business unit or a department, and is ultimately issued to individuals within the company.

Next, issuance of an electronic certificate performed by the certificate authority 10 will be described.
For example, in order for the company A to register as a member, first, processing as shown in FIGS. 4 and 5 is performed. That is, first, the company A applies to the management section of the certificate authority 10 to apply for membership by filling in a predetermined application form with a name, a Roman character name, an e-mail address, and the like (step S1, FIG. 5). (1)). When there is an application, the certification authority 10 examines the company A as the applicant (step S2, (2) in FIG. 5). In the examination, the applicant is confirmed on a face-to-face basis. Confirm the existence of the company to which the company belongs by visual recognition on site. If the examination is passed, a registration application is made to the system operation department (step S3), whereby the system operation department sends the company information of the applying company A and the applicant information to the member database 121 in the electronic authentication system 12. (Step S4, (3) in FIG. 5). After transferring the data from the member database 121 to the automatic approval server 123 after confirming the registered data ((4) in FIG. 5), the PIN (Personal)
An identification number is generated (step S5, (5) in FIG. 5), and the transferred data is stored in the automatic approval server 123. When the registration is completed, the system operation section notifies the management section of completion (step S6), and the management section prints a PIN (step S7), and notifies the company A that the registration has been completed. Then, the generated PIN is sent and notified (step S8, (6) in FIG. 5).

  Thereafter, as shown in FIGS. 6 and 7, the company A generates one key pair (private key or public key) using the browser of the electronic terminal (step S10, (1) in FIG. 7), The public key, PIN, and e-mail address are transferred to the automatic approval server 123 via the reception server 124 of the certificate authority 10 via the Internet 1 (steps S11 and S12, (2) in FIG. 7). When the public key, PIN, and e-mail address are transferred to the automatic approval server 123, the automatic approval server 123 checks the data (PIN, E-mail address) registered in advance (step S13) and confirms the data. Then, a digital signature is performed on the transferred public key (step S14). Thereafter, the public key (including the name, company code, etc., which is the certificate description data) is transferred to the issuing server 131 of the ID center 13 (step S15, (3) in FIG. 7), and the issuing server 131 is transferred. A digital signature is issued to the public key (step S16), and an electronic certificate with a serial number and an expiration date is issued (step S17). The issued electronic certificate is transferred to the browser of the company A via the reception server 124 of the electronic authentication system 12 (steps S18 and S19) and stored (step S20). When the electronic certificate passes through the reception server 124, data such as an expiration date and a serial number are transferred to the member database 121 and stored.

  The digital certificate issued in this way has the contents shown in FIG. 8, and includes the name of the issuing authority, the name and address of the owner, the mail address, the issuing authority number, the company code, the serial number, the expiration date, etc. Is written.

  When issuing multiple electronic certificates to one member, select the person in charge of registration from the users who have already obtained the electronic certificate, and the person in charge of registration collects information on all users, Request issuance to the certificate authority 10 online or through an application form. Usually, this is the user who has obtained the first electronic certificate. In the case of online application, the user accesses the registration screen using the acquired electronic certificate to register the application, and in the case of application registration, an application is made via a person in charge of the certificate authority 10. In either case, the applicant will be contacted by telephone or other means to confirm his identity and presence.

  Next, an operation in which, for example, the company X and the company Z use the Internet 1 to perform a commercial transaction for sale / purchase of a product will be described with reference to FIG. In this example, an example will be described in which a company X sells a product and a company Z purchases a product.

  First, when the company X intends to conduct a business transaction on the network, the server X applies for a server certificate to the certificate authority 10 in order to prove that the website is installed by the company X (step S30). The certificate authority 10 performs an examination in the same manner as the issuance of an electronic certificate (step S31), and issues a server certificate to a website of a company that has passed the examination (step S32). A company code for identifying a company is stored in the server certificate, and company data can be referenced using the company code as a key. Company Z who wants to conduct business on the website of company X accesses the website of company X (step S32A) and confirms with the server certificate whether or not the website is really company X's (step S33). Then, it accesses the company information database 114 from the company code stored in the server certificate to obtain company information (step S34), and makes a credit judgment (step S35). Company Z determines whether to join the network according to the credit determination (step S36).

  When the company Z decides to start a transaction in the step S36, the company X applies for an electronic certificate defined as a transaction condition (step S40). The processing is the same as that described with reference to FIGS. 4 and 5. The certificate authority 10 that has received the application examines the company Z, and if the examination passes, an electronic certificate is issued. Communication means on the network uses e-mail, but e-mail used for transactions with company X is digitally signed with an electronic certificate. The digital signature makes it possible to confirm the identity (steps S42 and S44). Further, the company information is obtained by accessing the company information database 114 from the stored company code (step S46), and the credit judgment is performed. Yes (step S47).

  Company X determines whether or not to approve the transaction from the credit judgment (step S50). If the transaction is not to be performed, company X is notified of the non-trading (step S51). The transaction conditions are determined (step S52), and the company Z is notified of the sales consent (step S53).

  Electronic certificates can also be used to control access to websites. For example, when the company Z accesses the website of the company X, the server requests the presentation of the electronic certificate, determines whether the presented electronic certificate is legitimate, and rejects the access if it is not legitimate. If it is, it is possible to permit access. The electronic certificate presented in the same manner as used in the electronic mail enables the company X to confirm the identity and obtain the company information.

  In the open space of the Internet, the use of IDs and passwords poses a problem in terms of security, so the present invention requires the presentation of a digital certificate. Further, the user (company Z in the example of FIG. 9) refers to company information through the Internet using a browser such as Netscape Navigator or Internet Explorer. Therefore, connection support is basically the responsibility of the provider.

  For example, if member X transmits data to member Z using a secure network provided by a certificate authority (e-commerce support department), member X presents an electronic certificate to enter the network. It is determined whether or not the electronic certificate is legitimate. If it is not legitimate, participation in the network is rejected. If it is legitimate, participation is permitted, and data transmission becomes possible. The member X transmits the data to be transmitted to the member Z and the message to the member Z to the server of the network. The server stores the data, adds information to the message of the member X, and transmits the message to the member Z. The member Z receiving the message makes a data transmission request to the network, but presents an electronic certificate like the member X to enter the network. The member Z who has entered the network receives the data by instructing the server to transmit data. The server records the data reception of the member Z, and the member X can confirm the arrival of the data by accessing the server on the network.

  FIG. 10 shows an operation example of an electronic document transmission / storage service for exchanging data and documents between the member X and the member Z. When the member X transmits data to the member Z (step S60), It is determined whether or not the electronic certificate of the member X transmitted together with the data is legitimate (step S61). If it is not legitimate, acceptance is prohibited (step S62). (Step S63). Thereafter, a message from the member X is transmitted (step S64), and necessary information such as a storage location is added to the message (step S70). After receiving the data, the reception server notifies the member Z that is the transmission destination that the transmission data to the member Z exists (step S71). As a result, the member Z makes a data transmission request to the network (step S72), and determines whether the electronic certificate presented to the member Z is also valid (step S73). If not, the reception is prohibited (step S74), and if it is legal, data transmission is instructed to the electronic document transmission / storage server 111 (step S75), and the data is transmitted to the member Z (step S76). The member X can confirm the arrival of data to the electronic document transmission / storage server 111 (step S77).

  FIG. 11 shows the state of the personal service described with reference to FIG. 10. When the sender A (member) sends a file or a message to the recipient B (may be a non-member), the file is sent directly to the recipient B. Instead, the certificate is sent to the electronic document transmission / storage server 111 of the certificate authority 10. Upon receiving the notification, the certificate authority 10 notifies the recipient B that the communication has come from the sender A, and thereby the recipient B accesses the electronic document transmission / storage server 111 and sends the message from the sender A. Receive things. The operation that the recipient B retrieves the data from the electronic document transmission / storage server 111 can confirm that the delivery of A has arrived at B. The certificate authority 10 also stores the transmission data, and the sender can select and specify the storage period at the time of transmission. The stored data can be retrieved at any time, but cannot be changed, and cannot be deleted until the expiration date.

  FIG. 12 shows a state of an electronic document storage service by a group. In this case, participants are limited to members having an electronic certificate. The group can be set freely online, and the group is managed by the digital certificate holder (A in this example) that set the group. The administrator can add and delete group participants, delete data, and the like. When each member accesses the electronic document transmission and storage server 111 of the certificate authority 10 using an electronic certificate, the operation is performed between members. The user can refer to the communication history or download and view the stored data.

  FIGS. 13 and 14 show the operation of discarding the issued digital certificate. The management department of the certificate authority 10 performs a destruction examination based on, for example, a destruction application from the member A (steps S80 and S81, ( 1)). This destruction examination may be performed by an application or may be performed by the certification authority 10 on the basis of fluctuation information independently obtained. According to the result of the examination, if the electronic certificate is to be discarded, an application for deleting the electronic certificate is made to the system operation section (step S82), and the system operation section further notifies the responsible section of the serial number (step S83). . The responsible department discards this application (step S84, (2) in FIG. 14), notifies completion to the system operation department and the management department (step S85), and corrects the discard list provided for each. Alternatively, it is added (step S86, (3) in FIG. 14). Thereafter, the management section notifies the member A that the destruction of the digital certificate office of the applicant has ended (step S87, (4) in FIG. 14).

  As described above, according to the electronic commerce system of the present invention, business transactions in a computer network can be performed safely and reliably by using company information using a digital certificate and a company code as a medium. In other words, some companies have introduced public procurement of materials and other materials using the Internet, but they must supplement the part of whether the bidder is a real company or whether it is OK to place an order with that company. Exchange of documents such as bids, purchase orders, receipts, invoices, contracts, etc., and secure and secure electronic commerce by avoiding problems such as spoofing, document rejection, and falsification by storing documents It can be carried out.

FIG. 1 is a block diagram showing a schematic overall configuration of an electronic commerce system according to the present invention. FIG. 3 is a diagram illustrating a configuration example of an electronic terminal used in the present invention. FIG. 4 is a diagram showing a relationship between a digital certificate and a company code used in the present invention. 4 is a time chart showing an operation example of issuing a digital certificate used in the present invention. FIG. 2 is a system flow diagram showing a state of issuing an electronic certificate used in the present invention. 4 is a time chart showing an operation example of issuing a digital certificate used in the present invention. FIG. 2 is a system flow diagram showing a state of issuing an electronic certificate used in the present invention. FIG. 4 is a screen view showing an example of an electronic certificate used in the present invention. 4 is a time chart showing an example of a commercial transaction operation in the present invention. 5 is a time chart illustrating an operation example of the electronic document storage service according to the present invention. FIG. 9 is a diagram illustrating a personal use example of an electronic document storage service. FIG. 11 is a diagram illustrating an example of using a group of the electronic document storage service. 4 is a time chart showing an example of the operation of discarding an electronic certificate used in the present invention. FIG. 2 is a system flow diagram showing a state of discarding an electronic certificate used in the present invention.

Explanation of reference numerals

DESCRIPTION OF SYMBOLS 1 Internet 2 CPU unit 3 Display unit 4 Keyboard 10 Certificate authority 11 Management site 12 Electronic authentication system 13 ID center 111 Electronic document transmission storage server 112 Electronic document transmission storage database 113 Corporate information server 114 Corporate information database 121 Member database 122 Automatic approval database 123 automatic approval server 124 reception server 131 issue server 132 issue database

Claims (4)

A plurality of electronic terminals connected to the Internet and provided by a plurality of companies; a certificate authority provided to be connected to the Internet; and the Internet connecting the plurality of electronic terminals and the certificate authority. Is a system that conducts electronic commerce between the companies of the Internet via the Internet,
The certificate authority includes a member database storing data including a company code for identifying a company which is a member to which a company code has been assigned after being examined by a management center of the certificate authority, and a PIN for identifying a user of the company. An electronic authentication system comprising an automatic approval database configured to store data including an automatic approval server configured to perform automatic approval of issuance of an electronic certificate based on data registered in advance,
At least a company information server having a company information database that stores company information about a company that is a member identified based on the company code;
When accessing the company information server from the electronic terminal based on an electronic certificate, the device has a function of acquiring company information from a company information database and transmitting it to the electronic terminal,
Each of the electronic terminals includes the company code assigned to each of a plurality of companies, and an electronic certificate issued using a PIN for identifying each user who performs electronic commerce in the company. Is provided,
Further, each of the above electronic terminals is provided with an electronic mail program for transmitting and receiving the electronic certificate together with an electronic mail via the Internet, using the electronic mail program,
When performing electronic commerce between the electronic terminal of one of the electronic terminals and the electronic terminal of another company via the computer network, the electronic terminal of one company of the electronic commerce receives the other terminal from the electronic terminal of the other company. A first function of receiving an electronic certificate including a company code of a company, a second function of accessing a company information database provided by the company information server based on the received electronic certificate, and When conducting electronic commerce after obtaining and receiving the electronic terminal, the electronic certificate including the company code of the one company is sent from the electronic terminal of the one company to the electronic terminal of the other company. An electronic commerce system comprising a third function of transmitting. A plurality of electronic terminals connected to the Internet and provided by a plurality of companies; a certificate authority provided to be connected to the Internet; and the Internet connecting the plurality of electronic terminals and the certificate authority. Is a system that conducts electronic commerce between the companies of the Internet via the Internet,
The certificate authority includes a member database storing data including a company code for identifying a company which is a member to which a company code has been assigned after being examined by a management center of the certificate authority, and a PIN for identifying a user of the company. An electronic authentication system comprising an automatic approval database configured to store data including an automatic approval server configured to perform automatic approval of issuance of an electronic certificate based on data registered in advance,
At least a company information server having a company information database that stores company information about a company that is a member identified based on the company code;
When accessing the company information server from the electronic terminal based on an electronic certificate, the device has a function of acquiring company information from a company information database and transmitting it to the electronic terminal,
Each of the electronic terminals includes the company code assigned to each of a plurality of companies, and an electronic certificate issued using a PIN for identifying each user who performs electronic commerce in the company. Is provided,
Further, each of the electronic terminals transmits and receives the electronic certificate between the electronic terminal of one of the electronic terminals and an electronic terminal of another company via the Internet together with an access request to a web server which is an electronic terminal of the other party. A browser program to do this.
When transmitting and receiving data between the electronic terminal of one of the electronic terminals and the electronic terminal of another company via the computer network, the electronic terminal of one company of the electronic commerce is transmitted from the electronic terminal of the other company to the other terminal. A first function of receiving an electronic certificate including a company code of a company, a second function of accessing a company information database provided in the company information server based on the received electronic certificate, and a function provided to the electronic certificate. An electronic commerce system comprising: a third function of controlling access to a web server, which is an electronic terminal provided by the one company, based on company information obtained from a company information database to which a company code is added. The automatic approval server may be configured to transmit data including a PIN for identifying a company user who is a member to which a company code is assigned from a user's electronic terminal stored in an automatic approval database in advance. A function for receiving, via a reception server, an electronic certificate issuance request data including a password and an e-mail address, and the automatic approval database based on the received electronic certificate issuance request data including the received PIN and e-mail address. When issuing the result of the collation, the data including the company code stored in the member database and the data including the PIN for identifying the user of the company stored in the automatic approval database are included. It has a function to automatically approve the issuance of digital certificates based on pre-registered data. To, e-commerce system according to claim 1 or 2. The certificate authority has a function of deleting data including a PIN for identifying a user of the company in which data including a company code stored in a member database is stored from an automatic approval database. An electronic commerce system according to any one of claims 1 to 3.