JP5485037B2 - Common ID management system, service providing system, security level update system, and common ID management method - Google Patents

Description

  The present invention relates to a common ID management system, a service providing system, a security level update system, and a common ID management method, and in particular, can improve both safety and convenience of a service provided via a network. The present invention relates to an ID management system, a service providing system, a security level update system, and a common ID management method.

  Due to the widespread use of the Internet and broadbandization, face-to-face transactions that have been conventionally performed at stores and counters have been carried out in non-face-to-face transactions that do not require stores or counters (see, for example, Patent Document 1). As a result, business operators can reduce store assets and labor costs, and consumers can use desired services anytime and anywhere. For this reason, the demand for non-face-to-face transactions using the Internet will increase in the future.

  Non-face-to-face transactions are a cause of anxiety to users because their business partners are not visible, and in fact, crimes that take this in hand are also frequent. In order to establish and disseminate non-face-to-face transactions using the Internet, it is necessary to realize services with safety.

Japanese Patent Laid-Open No. 2003-67663

  As a method of improving the safety of such non-face-to-face transactions, service providers on the Internet can provide service users like Internet banking, which makes contracts and transactions involving money and assets over a certain amount. Face-to-face documents such as licenses and health insurance cards (public certificate) that can be used to prove the identity of the person are submitted in advance and registered after identification, and an ID and password are issued to the service user It is possible to do. If the ID and password issued in this way are used, the identity can be guaranteed, and a service with safety can be realized.

  However, when using a plurality of services, service users are forced to register their personal information with each service provider, and the combination of a plurality of IDs and passwords is complicated. There is a possibility that not only the convenience of services on the Internet is impaired, but also that personal information is dispersed on the Internet, and the safety may be impaired instead.

  In addition, as a service provider, you must own and manage the personal information you have registered to authenticate service users, and the personal information such as your name (real name), date of birth, address, and telephone number. The greater the subtlety, the greater the risk of leakage and the cost for preventing leakage. In addition, when registering, it is necessary to visually check whether the submitted document belongs to the party concerned, whether the location actually exists, and whether the validity period of the submitted public certificate has expired. It costs human costs. In addition, when the payout information from the service provider based on the confirmation result is performed on a mail basis, a work called mail is required.

One solution to the above problem is to realize a single ID (common ID) that can use multiple services provided by different service providers. Since the guarantee level required for each service is usually different, it is a further problem that the common ID needs to be able to flexibly cope with the difference in guarantee level.
As used herein, the “guarantee level” refers to the degree of assurance that the information to be authenticated, such as the ID and password, and the personal information of the user associated therewith, is indeed associated with the person. To do.

  The present invention has been made to solve the above-described problems, and can provide both a common ID management system, a service providing system, and a security capable of enhancing both safety and convenience of services provided via a network. An object is to provide a level update system and a common ID management method.

  In order to achieve the above object, the common ID management system according to the first aspect of the present invention provides a user terminal and a user of the user terminal with predetermined conditions (guarantee level, age, possession required by a service provider). A common ID (Identification Data) management device connected via the network to a service providing device that provides a predetermined service to the user terminal via a network when the asset satisfies the asset, the user terminal, An individual who is connected to the service providing apparatus and the common ID management apparatus via the network and registers the personal information of the user, which is created based on the public certificate of the user, and the login ID and password in association with each other A personal information management device comprising an information database, wherein the personal information management device is a front end of the common ID management device. In response to receiving the login ID and the password transmitted from the user terminal via the network, condition acquisition means for acquiring the predetermined condition via the network, the login ID and the password And a registration determination means for determining whether an account balance is registered in the personal information database, and the registration determination means determines that the login ID, the password, and an account balance are registered in the personal information database. Whether or not the user satisfies the predetermined condition acquired by the condition acquisition means based on the user personal information stored in the personal information database in association with the login ID and the password. A user discriminating means for discriminating between the user and the user discriminating means. And a condition satisfaction notifying means for notifying the common ID management device to that effect via the network when it is determined that the predetermined condition is satisfied, and the common ID management device includes the condition satisfaction When the notification means notifies that the user satisfies the predetermined condition, the user terminal allows the service providing apparatus to provide the predetermined service by logging in to the common ID management apparatus. A common ID is issued. The common ID management device provides the service when the user terminal logs into the common ID management device when the condition satisfaction notification means notifies that the user satisfies the predetermined condition. The attribute information of the common ID that enables the apparatus to provide the predetermined service may be managed (registered / updated / maintained).

  In the common ID management system, the personal information management device includes personal information acquisition means for acquiring the personal information of the user input by the user from the user terminal via the network, and the login by the registration determination means. When it is determined that the ID, the password, and the account balance are registered in the personal information database, the personal information of the user stored in the personal information database in association with the login ID and the password, and the personal And a match determination means for determining whether or not the personal information of the user acquired by the information acquisition means matches, and the condition satisfaction notification means includes the personal information of the user by the match determination means. It is determined that they match, and the user is determined by the user by the user determination means. If it is determined that the condition is satisfied, the user is notified to the common ID management device through the network to the effect that meets the predetermined condition, may be.

  In order to achieve the above object, a service providing system according to a second aspect of the present invention provides a predetermined service when connected to a user terminal via a network and the user of the user terminal satisfies a predetermined condition. A service providing device provided to the user terminal via the network, the user terminal and the service providing device connected to the user terminal via the network, and the user created based on the public certificate of the user; A personal information management device comprising a personal information database for registering personal information, a login ID and a password in association with each other, and a common connected to the user terminal, the service providing device, and the personal information management device via the network An ID management device, wherein the service providing device receives the predetermined service from the user terminal. In response to the request being made via the network, the confirmation determination means for determining whether or not the user has already been confirmed to satisfy the predetermined condition, and the confirmation determination means And a condition notification means for notifying the common ID management device of the predetermined condition via the network when it is determined that the user has not yet confirmed that the predetermined condition is satisfied. The ID management device includes condition notifying means for notifying the personal information management device of the predetermined condition in response to receiving the predetermined condition from the service providing device, and the personal information management device includes: In response to receiving the login ID and the password transmitted from the user terminal via the network, the login ID and the password. And a registration determination means for determining whether an account balance is registered in the personal information database, and the registration determination means determines that the login ID, the password, and an account balance are registered in the personal information database. If the user satisfies the predetermined condition notified by the condition notification means based on the personal information of the user stored in the personal information database in association with the login ID and the password Whether or not the user has already confirmed that the predetermined condition is satisfied after the determination by the user determination unit is performed. The service providing apparatus determines whether the user satisfies the predetermined condition by the confirmation determining means. In a case where it is determined that it is already confirmed, the predetermined service is provided to the user terminal via the network. When the service providing apparatus determines that the user does not satisfy the predetermined condition, the service providing apparatus stops provision of the predetermined service in advance, and does not satisfy the guarantee level required by the service provider. May be prevented from using the service.

  In the service providing system, the common ID management device allows the user to log in to the common ID management device from the user terminal, thereby enabling the service providing device to provide the predetermined service; and A common ID database for registering user security levels in association with each other, and responding that the user terminal has logged into the common ID management apparatus after transmitting the common ID to the service providing apparatus via the network Security level transmitting means for transmitting the security level of the user registered in association with the common ID in the common ID database to the service providing apparatus via the network, and the service providing apparatus By the security level transmission means Security level receiving means for receiving the received security level of the user, and when the security level of the user received by the security level receiving means is greater than or equal to a predetermined threshold, While it is determined that whether or not the predetermined condition is satisfied has been made, if the security level of the user is less than the predetermined threshold, whether or not the user satisfies the predetermined condition The personal information management apparatus determines that the user satisfies the predetermined condition by the user determination means, the fact is confirmed to the effect via the network. A condition satisfaction notifying unit for notifying the ID management device, wherein the common ID management device Security level updating means for updating the security level of the user registered in the common ID database to the predetermined threshold when the user is notified by the foot notification means that the predetermined condition is satisfied. The security level transmitting means transmits again the security level of the user updated by the security level updating means to the service providing apparatus via the network, and the confirmation determining means is the security level receiving means by the security level receiving means. When the security level of the user is received again, it may be determined again whether or not the user has already been confirmed to satisfy the predetermined condition.

  In order to achieve the above object, a security level update system according to a third aspect of the present invention provides a user terminal and a predetermined service via a network when a user of the user terminal satisfies a predetermined condition. A common ID (Identification Data) management device connected to the service providing device provided to the user terminal via the network, and connected to the user terminal, the service providing device, and the common ID management device via the network. A personal information management device comprising a personal information database that registers personal information of the user created based on the public certificate of the user in association with a login ID and password, and the common ID management device The service is performed when the user logs in to the common ID management device from the user terminal. A common ID database that enables provision of the predetermined service by the service providing device and the security level of the user, and a security level of the user registered in the common ID database. Is less than a predetermined threshold value, a condition for notifying the personal information management device via the network that the user has not yet confirmed whether or not the predetermined condition is satisfied. The personal information management device in response to receiving the login ID and the password transmitted from the user terminal via the network in response to receiving the login ID and the password and the account balance. Registration determination means for determining whether or not is registered in the personal information database; When it is determined by the record determination means that the login ID, the password, and the account balance are registered in the personal information database, the user ID stored in the personal information database in association with the login ID and the password is stored. Based on personal information, a user determination unit that determines whether or not the user satisfies the predetermined condition notified by the condition notification unit, and a determination result by the user determination unit through the network A determination result notification means for notifying the ID management apparatus, wherein the common ID management apparatus is configured to store the user registered in the common ID database based on the determination result notified by the determination result notification means. This further includes security level updating means for updating the security level. The features.

  In order to achieve the above object, a common ID management method according to a fourth aspect of the present invention provides a user terminal and a predetermined service via a network when a user of the user terminal satisfies a predetermined condition. A common ID (Identification Data) management device connected to the service providing device provided to the user terminal via the network, and connected to the user terminal, the service providing device, and the common ID management device via the network. A common ID management system comprising a personal information management device comprising a personal information database for registering the personal information of the user created based on the public certificate of the user in association with a login ID and a password. An ID management method, wherein the personal information management device is connected to the service providing device via the network. A condition acquisition step for acquiring the predetermined condition, and in response to the personal information management device receiving the login ID and the password transmitted from the user terminal via the network, the login ID And a registration determination step for determining whether or not the password and account balance are registered in the personal information database, and the personal information management device determines that the login ID, the password, and the account balance are stored in the individual by the registration determination step. If it is determined that the user is registered in the information database, the user has acquired the personal information database in the condition acquisition step based on the personal information of the user stored in association with the login ID and the password. A user who determines whether or not the predetermined condition is satisfied In another step, when the personal information management device determines that the user satisfies the predetermined condition in the user determination step, a condition is met for notifying the common ID management device to that effect via the network And when the common ID management device is notified by the condition satisfaction notification step that the user satisfies the predetermined condition, the user terminal logs in the common ID management device to A common ID issuing step of issuing a common ID that enables the service providing apparatus to provide the predetermined service. In the common ID management method, when the common ID management apparatus is notified that the user satisfies the predetermined condition in the condition satisfaction notification step, the user terminal logs into the common ID management apparatus. Then, a step of registering and managing a common ID that enables the service providing apparatus to provide the predetermined service may be provided.

  According to the present invention, there are provided a common ID management system, a service providing system, a security level update system, and a common ID management method capable of improving both safety and convenience of a service provided via a network. be able to.

It is a block diagram which shows the structural example of a principal confirmation system. It is a block diagram which shows the structural example of a user terminal. It is a block diagram which shows the structural example of a service provision apparatus. It is a block diagram which shows the structural example of a common ID management apparatus. It is a figure which shows the structural example of common IDDB. It is a block diagram which shows the structural example of a personal information management apparatus. It is a figure which shows the structural example of user information DB. It is a flowchart which shows an example of a personal identification process. It is a figure which shows the example of a screen display of a display part. It is a flowchart which shows an example of a common ID registration process. It is a figure which shows the example of a screen display of a display part. It is a flowchart which shows an example of a common ID payment process. It is a flowchart which shows an example of a common ID payment process. It is a figure which shows the example of a screen display of a display part.

  Hereinafter, modes for carrying out the present invention will be described.

  First, the configuration of the identification system according to the present embodiment will be described with reference to the drawings.

  FIG. 1 is a block diagram illustrating a configuration example of the identity verification system.

  As shown in FIG. 1, the identity verification system 1 is roughly configured by a user terminal 10, a service providing device 20, a common ID (Identification Data) management device 30, and a personal information management device 40. They are connected to each other via a network.

  The user terminal 10 is operated by a user and includes, for example, a mobile communication terminal such as a mobile phone, and a communicable terminal such as a smart media, a game machine, an electronic book terminal, and a general-purpose computer.

  FIG. 2 is a block diagram illustrating a configuration example of the user terminal.

  As illustrated in FIG. 2, the user terminal 10 includes a display unit 11, an operation unit 12, a communication unit 13, and a control unit 14.

  The display unit 11 includes, for example, a liquid crystal display (LCD), and displays various input screens.

  The operation unit 12 includes, for example, a keyboard and a mouse, and is used when a user inputs a login ID, a password, and the like.

  The communication unit 13 is configured by, for example, a NIC (Network Interface Card) or the like, and transmits a common ID (for example, URL (Uniform Resource Locator)) or a password to the service providing apparatus 20 via a network, or a login ID or password. It is transmitted to the personal information management device 40 via the network, or a request destination code (for example, a financial institution code or the like) for designating a request destination for identity verification is transmitted to the common ID management device 30 via the network. The communication unit 13 receives a common ID transmitted from the common ID management device 30 via the network.

  The control unit 14 includes, for example, a CPU (Central Processing Unit), a ROM (Read Only Memory), a RAM (Random Access Memory), and the like. The CPU uses the RAM as a work memory, and a ROM and a storage unit (not shown). ) Etc. are appropriately executed to control the operation of each part of the user terminal 10.

  A service providing apparatus 20 shown in FIG. 1 is capable of providing a service via a network, and includes, for example, a server computer and a workstation.

  The services mentioned here include the prevention of “spoofing” and money management services such as electronic money transactions, which mainly involve Internet transactions, services that handle electromagnetic monetary values such as point exchanges, and other transactions on the Internet that involve monetary values. It is assumed that a certain guarantee level is required from the laundering regulation, or a delivery service such as a package or a document that requires a guarantee level of the user's address.

  FIG. 3 is a block diagram illustrating a configuration example of the service providing apparatus.

  As shown in FIG. 3, the service providing apparatus 20 includes a communication unit 21, a storage unit 22, and a control unit 23.

  The communication unit 21 includes, for example, a NIC and receives a common ID and password transmitted from the user terminal 10 via the network.

  The storage unit 22 includes, for example, a hard disk drive, and stores conditions (service provision conditions) for the user to receive a service provided from the service provision apparatus 20. For example, in the storage unit 22, whether the user's age is 20 years old or more, the transaction amount performed by the user is 100,000 yen or less, the user's account balance is 1 million yen or more, etc. It is stored as provision conditions. The service providing conditions may be determined for each service providing device 20, or may be determined for each service provided by the service providing device 20 or for each type of service.

  The control unit 23 includes, for example, a CPU, a ROM, a RAM, and the like. The CPU provides services by appropriately executing various programs stored in the ROM, the storage unit 22, and the like using the RAM as a work memory. The operation of each part of the apparatus 20 is controlled.

  The common ID management device 30 shown in FIG. 1 issues a common ID that enables the service providing device 20 to provide a service when a user logs in to the common ID management device 30, for example, a server computer or a workstation It is composed of

  FIG. 4 is a block diagram illustrating a configuration example of the common ID management apparatus.

  As shown in FIG. 4, the common ID management device 30 includes a communication unit 31, a storage unit 32, and a control unit 33.

  The communication unit 31 includes, for example, a NIC and receives a password transmitted from the service providing apparatus 20 via the network, or transmits a common ID and password to the user terminal 10 via the network.

  The storage unit 32 includes, for example, a hard disk drive and includes a common IDDB (Data Base) 320.

  FIG. 5 is a diagram illustrating a configuration example of the common IDDB.

  As shown in FIG. 5, the common ID DB 320 includes a common identification number, a common ID, a password, a security level indicated by a number such as “0” to “4”, a registration determination execution date / time, and the like. The user discrimination condition, the user discrimination result, the user discrimination execution date / time, the match discrimination result, and the match discrimination execution date / time are stored in association with each other.

  The security level indicates the level of the guarantee level of the common ID. If no identity verification has been obtained and the email address is registered by self-report, the security level is, for example, “1”. "Is set. On the other hand, if the user's name, address, telephone number, and e-mail address are verified by referring to information held by a third-party organization, the security level is set to “2”. The In addition, when the name, date of birth, and address are confirmed based on a non-face-to-face public certificate (with photo), the security level is set to “3” and the face-to-face public certificate (with photo) Based on the above, if the person is visually confirmed, the name, the date of birth, and the address are confirmed, the security level is set to “4”.

  The control unit 33 illustrated in FIG. 4 includes, for example, a CPU, a ROM, a RAM, and the like. The CPU uses the RAM as a work memory and appropriately executes various programs stored in the ROM, the storage unit 32, and the like. Thus, the operation of each part of the common ID management device 30 is controlled.

  The personal information management device 40 shown in FIG. 1 is operated by a financial institution or the like where strict identity confirmation is performed, and is composed of, for example, a server computer and a workstation.

  FIG. 6 is a block diagram illustrating a configuration example of the personal information management apparatus.

  As shown in FIG. 6, the personal information management device 40 includes a communication unit 41, a storage unit 42, and a control unit 43.

  The communication unit 41 includes, for example, a NIC and receives a login ID and a password transmitted from the user terminal 10 via the network.

  The storage unit 42 includes, for example, a hard disk drive and includes a user information DB 420.

  FIG. 7 is a diagram illustrating a configuration example of the user information DB.

  As shown in FIG. 7, the user information DB 420 supports common identification numbers, user group identification numbers, user names, addresses, genders, dates of birth, telephone numbers, e-mail addresses, account balances, login IDs, passwords, etc. The personal information (user information) of the user to be added and registered is stored.

  Of these, the user's name, address, gender, and date of birth are registered at the financial institution's window after verifying their identity by presenting a public certificate such as a driver's license or health insurance card. Therefore, the guarantee level is extremely high. In addition, by using other factor authentication that combines passwords corresponding to login IDs with passwords using random numbers tables and passwords of different methods such as one-time passwords, the assurance level of login IDs can be made extremely high. it can.

  The control unit 43 illustrated in FIG. 6 includes, for example, a CPU, a ROM, a RAM, and the like, and the CPU appropriately executes various programs stored in the ROM, the storage unit 42, and the like using the RAM as a work memory. Thus, the operation of each part of the personal information management device 40 is controlled.

  Next, an operation executed by the identification system having the above configuration will be described with reference to the drawings.

  First, an identity verification process that is commonly executed in both a common ID management process and a common ID settlement process, which will be described later, will be described.

  FIG. 8 is a flowchart illustrating an example of the identity verification process.

  First, in response to the fact that the control unit 14 of the user terminal 10 has received the identity confirmation instruction request from the common ID management device by the communication unit 13, the identity confirmation intention display screen shown in FIG. indicate.

  Thereafter, the control unit 14 determines whether or not an identification confirmation instruction has been given (step S1).

  Then, when an instruction for identity verification is made (step S1; Yes), the control unit 14 transmits an identity confirmation request from the communication unit 13 to the common ID management device 30 via the network (step S2).

  In the common ID management device 30, the control unit 33 starts the personal identification certification process in response to receiving the personal identification request by the communication unit 31 (steps S <b> 3 to S <b> 15). At this time, the process proceeds to control by a predetermined personal information management device 40. At this time, the name, address, telephone number, e-mail address, and service provision conditions of the user included in the identity verification request are transmitted from the communication unit 31 to the personal information management device 40 via the network. If the service providing condition is not included in the identity verification request, the service providing condition stored in the storage unit 22, in other words, the condition for registering the ID is transmitted (step S3).

  In the personal information management device 40, after the control is transferred, the control unit 43 receives the user's name, address, telephone number, e-mail address, and service provision conditions by the communication unit 41 (step S4), and the user belongs to A user group identification number designation request for requesting input of the identification number of the user group to be transmitted is transmitted from the communication unit 41 to the user terminal 10 via the network (step S5).

  In the user terminal 10, the control unit 14 displays the user group identification number input screen shown in FIG. 9B on the display unit 11 in response to receiving the user group identification number designation request by the communication unit 13 ( Step S6).

  Thereafter, the control unit 14 determines whether or not a user group identification number is input by the operation of the operation unit 12 by the user. When the user group identification number is input, the control unit 14 The identification number is transmitted from the communication unit 13 to the personal information management device 40 via the network (step S7).

  In the personal information management device 40, the control unit 43 receives the user group identification number at the communication unit 41, and in response to the user group identification number, sends a login request for requesting login from the communication unit 41 via the network. It transmits to the terminal 10 (step S8).

  In the user terminal 10, in response to the login request received by the communication unit 13, the control unit 14 displays the login screen shown in FIG. 9C on the display unit 11 (step S9).

  Thereafter, the control unit 14 determines whether or not the login ID and the password are input by the operation of the operation unit 12 by the user. When the login ID and the password are input, the control unit 14 is input. The login ID and password are transmitted from the communication unit 13 to the personal information management device 40 via the network (step S10).

  In the personal information management device 40, in response to the control unit 43 receiving the login ID and password by the communication unit 41, the user information including the received login ID and password is stored in the user information DB 420. Whether or not the user account exists is determined (registration determination) (step S11). In the process of step S11, the existence of the account is proved on the condition that the received login ID and password exist, but the present invention is not limited to this, and the received The existence of the account may be verified on the condition that the balance information of the user (= existence of account information) exists in addition to the presence of the login ID and password.

  Here, when it is determined that the user account exists (step S11; Yes), the control unit 43 receives the user name, address, telephone number, and e-mail address received in the process of step S3. It is determined whether the user name, address, telephone number, and e-mail address stored in the user information DB 420 match (match determination) (step S12).

  Further, based on the user's date of birth (age) and the amount of assets held (account balance) stored in the user information DB 420, it is determined whether or not the service provision conditions received in the process of step S11 are satisfied ( User discrimination) is performed (step S13).

  For example, when the service providing condition is that the user's age is 20 years or older, the current age is calculated from the date of birth included in the user information, and the current age is 20 years or older. In this case, it is determined that the service provision condition is satisfied. Further, if the service provision condition is that the user's account balance is equal to or greater than a predetermined amount (for example, “1 million yen”), the account balance included in the user information is equal to or greater than the predetermined amount. It is determined that the service provision conditions are satisfied.

  Based on the result of the match determination in step S12 or the user determination in step S13, the control unit 43 transmits the identity verification result notification to the common ID management device 30 via the network and performs logout processing (step S14), the identity verification process is terminated.

  On the other hand, when it is determined that the user account does not exist (step S11; No), the control unit 43 sends an identity verification proof failure notification for notifying that the identity verification is impossible via the network. After transmitting to the common ID management device 30 and performing logout processing (step S15), the identity verification processing is terminated.

  Next, the common ID registration process using the above-described identity verification process will be described.

  When the user terminal 10 is accessing the service providing apparatus 20 and the user is instructed to register the common ID by operating the operation unit 12, the identity verification system 1 starts the common ID registration process.

  FIG. 10 is a flowchart illustrating an example of the common ID registration process.

  In the common ID registration process, as shown in FIG. 10, first, the control unit 14 of the user terminal 10 sends a common ID registration request for requesting common ID registration from the communication unit 13 to the common ID management device 30 via the network. Transmit (step S101).

  In the common ID management device 30, in response to the control unit 33 receiving the common ID registration request at the communication unit 31, an ID character string desired by the user, a password character string, a user name, an address, a telephone number, A user registration request for requesting registration of an e-mail address is transmitted from the communication unit 31 to the user terminal 10 via the network (step S102).

  In the user terminal 10, the control unit 14 displays the user registration screen shown in FIG. 11 on the display unit 11 in response to receiving the user registration request (step S103).

  Thereafter, the control unit 14 transmits the ID character string, the password character string, the user's name, address, telephone number, and e-mail address, which are input by the operation of the operation unit 12 by the user, from the communication unit 13 to the network. To the common ID management device 30 (step S104).

  The common ID issuance / management apparatus 30 receives the ID character string and password character string desired by the user and the user's name, address, telephone number, and e-mail address at the communication unit 31, and the control unit 33 uses them in common. The ID is registered in the IDDB 320, and a common identification number for uniquely identifying the ID in association with the ID DB 320 and an initial value “0” of the security level of the ID are provisionally registered (step S105). The data is transmitted from the unit 31 to the user terminal 10 via the network (step S106). Then, in the user terminal 10, the control unit 14 starts executing the personal identification process shown in FIG. 8 in response to receiving the personal identification instruction request (step S107).

  After execution of the personal identification process shown in FIG. 8, in the common ID management device 30, the control unit 33 receives the personal identification certification result notification by the communication unit 31, and determines whether or not the security level promotion condition is satisfied ( Step S108).

  At this time, if the identification verification failure notification has been received, it is determined that the security level promotion condition is not satisfied (step S108; No), and the control unit 33 ends the common ID registration process as it is.

  On the other hand, when the identification confirmation result notification is received and it is determined that the security level promotion condition is satisfied (step S108; Yes), the control unit 33 performs steps in the identification process shown in FIG. Based on the service provision conditions received in the process of S3, the security level stored in the common ID DB 320 in association with the shared ID and password is formally set (step S109), and registered in association with the common ID DB 320 ( Step S110).

  For example, the assurance level of identity verification may differ depending on the user group to which the user belongs, and when the identity verification success notification is obtained from a user group with a high assurance level, or identity verification success notifications are received from multiple user groups If “3” is obtained, “3” is set as a higher security level.

  Thereafter, the control unit 33 notifies the user terminal 10 from the communication unit 31 via the network that the common ID and password have been registered in the process of step S110, and ends the common ID registration process. (Step S111).

  In the user terminal 10, the control unit 14 receives the notification that the common ID and password are officially registered by the communication unit 13 (step S <b> 112), and ends the common ID registration process.

  Subsequently, a common ID settlement process using the above-described identity verification process will be described.

  When the user terminal 10 is accessing the service providing apparatus 20, when the user provides the service using the common ID and the settlement thereof by the operation of the operation unit 12, the identity verification system 1 displays the common ID. Start the payment process.

  12 and 13 are flowcharts showing an example of the common ID settlement process.

  In the common ID settlement process, first, the control unit 14 of the user terminal 10 displays the common ID input screen shown in FIG. 14A on the display unit 11 (step S201 shown in FIG. 12). Thereafter, the control unit 14 determines whether or not the common ID is input by the operation of the operation unit 12 by the user (step S202).

  When the common ID is input (step S202; Yes), the control unit 14 transmits the input common ID from the communication unit 13 to the service providing apparatus 20 via the network (step S203).

  In the service providing apparatus 20, the control unit 23 responds to the reception of the common ID by the communication unit 21 by connecting the user terminal 10 to the web page specified by the received common ID (URL) ( Step S204), the common ID settlement process is shifted to the control by the common ID management device 30. At this time, the common ID and password are transmitted to the common ID management device.

  The common ID management device 30 transmits a login request (common ID management device 30) to the user terminal 10 (step S205), and the user terminal 10 displays a login screen to the common ID management device 30 shown in FIG. (Step S206). When the user inputs the common ID password to the user terminal 10, this is transmitted to the common ID management device 30 (step S207).

  In the common ID management device 30, in response to the control unit 33 receiving the password at the communication unit 31, the received password and the URL (common ID) of the web page to which the password is transmitted are stored in the common ID DB 320. It is confirmed that the user's account exists based on whether or not it is stored in association (step S208).

  When the presence of the user account is confirmed in the process of step S205, the control unit 33 reads the common ID attribute information (security level, user determination condition, and the like) stored in the common ID DB 32 corresponding to the common ID and the password. The user discrimination result, the user discrimination execution date / time, and the match discrimination result and the match discrimination execution date / time) are transmitted from the communication unit 31 to the service providing apparatus 20 via the network (step S209). .

  In the service providing apparatus 20, the control unit 23 performs common ID attribute information (security level, user determination condition, user determination result, user determination execution date / time, match determination result, and match determination execution date / time. (Time) is received by the communication unit 21 (step S210), and a service selection request for requesting service is transmitted from the communication unit 21 to the user terminal 10 via the network (step S211).

  In the user terminal 10, the control unit 14 displays a service selection screen on the display unit 11 in response to receiving the service selection request by the communication unit 13 (step S212).

  Thereafter, the control unit 14 determines whether or not a desired service is selected by the operation of the operation unit 12 by the user. When the desired service is selected, the control unit 14 provides the selected service. The requested service provision request is transmitted from the communication unit 13 to the service providing apparatus 20 via the network (step S213).

  In the service providing apparatus 20, the control unit 23 responds to the service providing request received by the communication unit 21 and receives the common ID attribute information (security level, user determination condition, and user determination) received in the process of step S210. As a result, based on the user determination execution date / time, the match determination result and the match determination execution date / time), and the service provision conditions stored in the storage unit 22, the service provision request is issued. In other words, it is determined whether or not it is already confirmed that the user satisfies the service provision conditions (step S214 shown in FIG. 13). At this time, based on the requested service providing condition, the service providing apparatus 20 receives the common ID attribute information received in the process of step S210 (security level, user determining condition, user determining result, and user determining execution date / A necessary item may be selected and discriminated from among the time, the match determination result, and the match determination implementation date / time.

  For example, when the service providing condition is that the security level is “2” or more and the user's age is 20 years or older, the common ID attribute information received in the process of step S210 If the security level, the user determination condition, and the result do not satisfy this, it is determined that the service cannot be provided. On the other hand, if it is satisfied, the service is determined to be possible. In particular, in order to maintain the guarantee level, it is determined that services that cannot be provided for a certain period of time based on the date and time of the previous determination of each attribute among the common ID attribute information cannot be provided. And urge you to verify your identity again.

  Here, when it is determined that the service cannot be provided, in other words, when it is determined that the user has not yet confirmed that the service providing condition is satisfied (step S214; No), the control unit 23 A service provision failure notification and a common ID update instruction request are transmitted to the user terminal 10 (steps S215 and S216). After the user terminal 10 receives the common ID update instruction request, if the user performs the common ID update (step S217; Yes), the user terminal 10 transmits the common ID update request to the service providing apparatus 20 (step S218). The service providing apparatus that has received the common ID update request shifts the common ID settlement process to control by the common ID management apparatus 30. At this time, the service provision condition is transmitted from the communication unit 21 to the common ID management device 30 via the network (step S219).

  In the common ID management device 30, the control unit 33 transmits a personal identification instruction request from the communication unit 31 to the user terminal 10 via the network (step S220).

  Then, in response to the control unit 14 of the user terminal 10 receiving the identity confirmation instruction request, when the user instructs the user terminal 10 to perform identity confirmation, the identity confirmation processing request is sent to the common ID management device 30. By transmitting, the execution of the personal identification process shown in FIG. 8 is started (step S221).

  After execution of the personal identification process shown in FIG. 8, in the common ID management device 30, the control unit 33 notifies the common ID attribute information stored in the common ID DB 320 in association with the common ID, the personal identification certification result notification, and the personal identification confirmation. A determination is made based on which of the unprovable notifications is received by the communication unit 31 and the service provision conditions determined in step S4 in the identity verification process shown in FIG. 8 (step S222). The attribute information is updated (step S223).

For example, when the identification confirmation proof result notification is received, based on this, the control unit 33 updates the common ID attribute information stored in the common ID DB 320 in association with the common ID.
Also, the assurance level of identity verification may differ depending on the user group to which the user belongs, and when the identity verification success notification is obtained from a user group with a high assurance level, or the identity verification success notification is received from multiple user groups If “3” is obtained, “3” is set as a higher security level.
On the other hand, when the identification verification failure notification is received, the security level is updated to “1”.

  Thereafter, the common ID management device 30 shifts the common ID settlement processing to control by the service providing device 20. At this time, the control unit 33 transmits the common ID attribute information updated in the process of step S223 from the communication unit 31 to the service providing apparatus 20 via the network (step S224).

  In the service providing device 20, the control unit 23 receives the common ID attribute information by the communication unit 21 (step S <b> 225), and receives the received common ID attribute information and the service providing conditions stored in the storage unit 22. Based on this, it is determined again whether the service requested by the service provision request can be provided (step S226).

  When it is determined that the service can be provided in any one of the processes of step S214 and step S226, in other words, when it is determined that the user satisfies the service providing condition (step S214; Yes, In step S226; Yes), the control unit 23 performs a predetermined settlement process to provide the service via the network (step S227), and sends a settlement completion notification to that effect to the user terminal 10 via the network. Transmit (step S228).

  In the user terminal 10, the control unit 14 displays a payment completion screen notifying that the payment is completed on the display unit 11 in response to receiving the payment completion notification by the communication unit 13 (step S229). The common ID settlement process is terminated.

  On the other hand, when it determines again that service provision is impossible (step S226; No), the control part 23 may perform the process of step S215 further here.

  As described above, in the identity verification system 1 in the present embodiment, only the personal information management device 40 holds and manages the personal information (user information) of the user created based on the user's public certificate, The identity verification performed by the service providing apparatus 20 and the common ID management apparatus 30 is supplemented to ensure a high assurance level.

  As a result, the service providing device 20 and the common ID management device 30 can avoid possession and management of more sensitive information among the user's personal information (user information). (Information) is held and managed by a plurality of devices, and leakage of personal information with high user sensitivity can be prevented as much as possible. Further, the service providing apparatus 20 and the common ID management apparatus 30 can reduce the operational cost caused by possessing and managing personal information with high user sensitivity.

  Further, the user can register a common ID in the common ID management device 30 without submitting an official certificate to the operator of the service providing device 20 or the common ID management device 30 to verify the identity, Since the service provided by the providing device 20 can be received, it is possible to receive a service that requires a higher level of personal identification without impairing the convenience of the Internet.

  On the other hand, the service providing apparatus 20 may provide a service to the user after having the user's personal information (user information) created based on the user's public certificate perform identity verification at a higher assurance level. Therefore, it is possible to maintain and improve the safety of Internet transactions.

  As a result, in the identity verification system 1 in the present embodiment, both the safety and convenience of services provided via the network can be improved.

  Further, according to the identity verification system 1 in the present embodiment, when a user intends to receive a service provided by the service providing apparatus 20 using the issued common ID, a service provision for the user to receive the service is provided. If confirmation of whether the condition is satisfied has not yet been performed, the service providing apparatus 20 requests the confirmation from the personal information management apparatus 40 via the common ID management apparatus 30 without waiting for an instruction from the user. , Improve safety and convenience.

DESCRIPTION OF SYMBOLS 1 Identity confirmation system 10 User terminal 11 Display part 12 Operation part 13 Communication part 14 Control part 20 Service provision apparatus 21 Communication part 22 Storage part 23 Control part 30 Common ID management apparatus 31 Communication part 32 Storage part 33 Control part 40 Personal information management Device 41 Communication unit 42 Storage unit 43 Control unit 320 Common IDDB
420 User information DB

Claims (6)

A common ID (Identification Data) connected via the network to the user terminal and a service providing apparatus that provides a predetermined service to the user terminal via the network when the user of the user terminal satisfies a predetermined condition ) Management device,
Connected to the user terminal, the service providing apparatus, and the common ID management apparatus via the network, and corresponds to the personal information of the user created based on the public certificate of the user, a login ID, and a password. A personal information management device comprising a personal information database to be registered;
With
The personal information management device includes:
Condition acquisition means for acquiring the predetermined condition from the common ID management device via the network;
In response to receiving the login ID and the password transmitted from the user terminal via the network, it is determined whether or not the login ID, the password, and an account balance are registered in the personal information database. Registration discriminating means,
The user stored in the personal information database in association with the login ID and the password when the registration determining means determines that the login ID, the password, and the account balance are registered in the personal information database User determination means for determining whether or not the user satisfies the predetermined condition acquired by the condition acquisition means based on the personal information;
When the user determining means determines that the user satisfies the predetermined condition, condition satisfaction notifying means for notifying the common ID management device to that effect via the network;
Including
The common ID management device includes:
When the condition satisfaction notification means notifies that the user satisfies the predetermined condition, the user terminal logs in to the common ID management apparatus to provide the predetermined service by the service providing apparatus. Issue a common ID to enable,
A common ID management system. The personal information management device includes:
Personal information acquisition means for acquiring personal information of the user input by the user from the user terminal via the network;
The user stored in the personal information database in association with the login ID and the password when the registration determining means determines that the login ID, the password, and the account balance are registered in the personal information database Match determination means for determining whether or not the personal information of the user and the personal information of the user acquired by the personal information acquisition means match,
Further including
The condition satisfaction notifying means determines that the personal information of the user is matched by the match determining means, and if the user determines that the user satisfies the predetermined condition, Notifying the common ID management device via the network that the predetermined condition is satisfied;
The common ID management system according to claim 1. A service providing device connected to a user terminal via a network and providing a predetermined service to the user terminal via the network when a user of the user terminal satisfies a predetermined condition;
Personal information that is connected to the user terminal and the service providing apparatus via the network and registers the personal information of the user, the login ID, and the password associated with each other, created based on the public certificate of the user A personal information management device comprising a database;
A common ID management device connected to the user terminal, the service providing device, and the personal information management device via the network;
With
The service providing apparatus includes:
Confirmation determination for determining whether or not the user satisfies the predetermined condition in response to a request for provision of the predetermined service from the user terminal via the network Means,
Condition notifying means for notifying the common ID management device of the predetermined condition via the network when the confirmation determining means determines that the user has not yet been confirmed to satisfy the predetermined condition; ,
Including
The common ID management device includes a condition transfer means for notifying the personal information management device of the predetermined condition in response to receiving the predetermined condition from the service providing device,
The personal information management device includes:
In response to receiving the login ID and the password transmitted from the user terminal via the network, it is determined whether or not the login ID, the password, and an account balance are registered in the personal information database. Registration discriminating means,
The user stored in the personal information database in association with the login ID and the password when the registration determining means determines that the login ID, the password, and the account balance are registered in the personal information database User determination means for determining whether or not the user satisfies the predetermined condition notified by the condition transfer means based on the personal information;
Including
After the determination by the user determination unit is performed, the confirmation determination unit again determines whether or not the user has already been confirmed to satisfy the predetermined condition,
The service providing device provides the predetermined service to the user terminal via the network when the confirmation determining unit determines that the user has already been confirmed to satisfy the predetermined condition. ,
A service providing system characterized by that. The common ID management device includes:
A common ID that enables the service providing apparatus to provide the predetermined service by logging in to the common ID management apparatus from the user terminal and the security level of the user in association with each other. An ID database;
After the user terminal transmits the common ID to the service providing apparatus via the network, the user terminal is registered in the common ID database in association with the common ID in response to logging in to the common ID management apparatus. Security level transmitting means for transmitting the security level of the user to the service providing apparatus via the network;
Including
The service providing apparatus further includes security level receiving means for receiving the security level of the user transmitted by the security level transmitting means,
The confirmation determination unit determines that the user has already confirmed whether or not the predetermined condition is satisfied when the security level of the user received by the security level reception unit is equal to or higher than a predetermined threshold. On the other hand, if the security level of the user is less than the predetermined threshold, it is determined that whether or not the user satisfies the predetermined condition has not yet been confirmed,
The personal information management device further includes condition satisfaction notification means for notifying the common ID management device via the network when the user determination means determines that the user satisfies the predetermined condition. Including
The common ID management device, when notified by the condition satisfaction notification means that the user satisfies the predetermined condition, sets the security level of the user registered in the common ID database to the predetermined threshold value. Further includes a security level updating means for updating to
The security level transmission means transmits again the security level of the user updated by the security level update means to the service providing apparatus via the network,
The confirmation determination unit performs again determination as to whether or not the user has already been confirmed to satisfy the predetermined condition when the security level reception unit receives the security level of the user again.
The service providing system according to claim 3. A common ID (Identification Data) connected via the network to the user terminal and a service providing apparatus that provides a predetermined service to the user terminal via the network when the user of the user terminal satisfies a predetermined condition ) Management device,
Connected to the user terminal, the service providing apparatus, and the common ID management apparatus via the network, and corresponds to the personal information of the user created based on the public certificate of the user, a login ID, and a password. A personal information management device comprising a personal information database to be registered;
With
The common ID management device includes:
A common ID that enables the service providing apparatus to provide the predetermined service by logging in to the common ID management apparatus from the user terminal and the security level of the user in association with each other. An ID database;
If the security level of the user registered in the common ID database is less than a predetermined threshold, it is assumed that the user has not yet confirmed whether or not the user satisfies the predetermined condition. Condition notifying means for notifying the personal information managing device via the network;
Including
The personal information management device includes:
In response to receiving the login ID and the password transmitted from the user terminal via the network, it is determined whether or not the login ID, the password, and an account balance are registered in the personal information database. Registration discriminating means,
The user stored in the personal information database in association with the login ID and the password when the registration determining means determines that the login ID, the password, and the account balance are registered in the personal information database User determination means for determining whether or not the user satisfies the predetermined condition notified by the condition notification means based on the personal information;
A determination result notifying means for notifying the determination result by the user determining means to the common ID management device via the network;
Including
The common ID management device includes:
Security level update means for updating the security level of the user registered in the common ID database based on the determination result notified by the determination result notification means;
A security level update system characterized by that. A common ID (Identification Data) connected via the network to the user terminal and a service providing apparatus that provides a predetermined service to the user terminal via the network when the user of the user terminal satisfies a predetermined condition ) Personal information and login ID of the user connected to the management device, the user terminal, the service providing device, and the common ID management device via the network and created based on the public certificate of the user And a personal information management device comprising a personal information management device comprising a personal information database that registers and associates passwords with each other,
A condition acquisition step in which the personal information management device acquires the predetermined condition from the service providing device via the network;
In response to receiving the login ID and the password transmitted from the user terminal via the network from the user terminal, the login ID, the password, and the account balance are registered in the personal information database. A registration determination step for determining whether or not
When the personal information management device determines that the login ID, the password, and the account balance are registered in the personal information database in the registration determination step, the personal information management device associates the login ID and the password with the personal information database. A user determination step for determining whether the user satisfies the predetermined condition acquired by the condition acquisition step based on the personal information of the user stored in
When the personal information management device determines that the user satisfies the predetermined condition in the user determination step, a condition satisfaction notification step for notifying the common ID management device to that effect via the network;
When the common ID management device is notified by the condition satisfaction notification step that the user satisfies the predetermined condition, the user terminal logs in to the common ID management device and the service providing device A common ID issuing step for issuing a common ID enabling the provision of the predetermined service;
A common ID management method comprising: