JP6027485B2 - Electronic trading system, electronic trading method, and program - Google Patents

Description

  The present invention relates to an electronic transaction technology.

  Electronic transactions using electronic certificates have become widespread in transactions involving various contracts such as sales contracts associated with ordering of products and the like, particularly continuous transactions between companies. Here, a company, a user, a terminal, a document, or the like, which is the subject of an electronic commerce contract, is authenticated or certified by an electronic certificate (or an electronic signature using the electronic certificate).

  As a technology related to this, for example, Japanese Patent Application Laid-Open No. 2011-45016 (Patent Document 1) discloses a terminal certificate issued in common to a plurality of terminal devices and a service certificate that enables provision of a predetermined service. Contract information associated with a contract identification code that can individually identify a contract for providing a predetermined service is stored in advance, and a service certificate corresponding to the contract identification code received from the terminal device authenticated by the terminal certificate is stored in the terminal device. When the server certificate to be transmitted to and the terminal certificate are stored in advance, the contract identification code established after the provision contract of the predetermined service is established, and authenticated from the server apparatus using the terminal certificate, A communication system including a terminal device that receives a service certificate corresponding to a contract identification code is described. As a result, when providing a service via the Internet, it is possible to authenticate the service provider and the device used to provide the service using an electronic certificate, and to communicate safely and easily between the device and the server. To do.

  Also, in Japanese Patent Laid-Open No. 10-327147 (Patent Document 2), contract information including contract details is transmitted from a service providing apparatus to a service receiving apparatus of each service receiver who is a contractor, and each contract information received is received. The service receiving device creates one-party signed contract information in which the service receiver's signature is added to the contract information and transmits the contract information to the service providing device. The service providing device transmits the one-party signed contract information transmitted from each service receiving device. E-commerce in an open network environment by creating and storing service provider-signed contract information signed by the service provider, storing it, and sending it to each service receiving device. Describes the technology to realize the authentication and notarization services required for.

JP 201145016 A Japanese Patent Laid-Open No. 10-327147

  When building an electronic contract system to support contract processing in electronic commerce, a certificate authority that issues electronic certificates to authenticate and certify users, terminals, and documents using electronic certificates In this case, there are cases where a so-called certified certificate authority is used and a non-certified certificate authority is used.

  The accredited certificate authority refers to a certificate authority that has been accredited by a certification business accreditation system under the so-called electronic signature law. In general, when using a certificate authority, the security and reliability of the electronic certificate itself is relatively high, but the certificate acquisition procedure is complicated, expensive, and the burden on the acquirer is high, making it difficult to spread widely. is there. On the other hand, when using non-accredited certificate authorities other than accredited certificate authorities, safety and reliability may be inferior. Although it depends on the operating company, it is relatively easy, so it is superior in terms of ease of use.

  When constructing an electronic contract system that performs contract processing using an electronic signature using an electronic certificate, a non-certified certificate authority is selected as the certificate issuer in consideration of ease of use such as cost and flexible response. Even when used, the following problems may arise. For example, in a company or the like, a process is often performed in which a person in charge of a subordinate or the like makes a decision on behalf of an agent (for example, electronically signs a contract) instead of a busy decision-making authority directly making a decision. At this time, the other party does not know whether the decision (electronic signature) was actually made by the decision-maker or based on the intention of the decision-maker Therefore, the other party is forced to conclude a contract while taking the risk that the contract will be denied.

  For companies that introduce electronic commerce mechanisms and services based on electronic contracts, for example, every time a basic contract is signed with a business partner to make the service available, the electronic certificate for that business partner is not certified. It is necessary to obtain and pass it from the station (or to obtain it separately from the non-certified certification authority), and the operation becomes complicated. In addition, when there are multiple companies that have signed a basic contract for a business partner, if these companies have different systems and systems for electronic commerce by electronic contract, it is necessary to use a different system for each company. And the operation becomes complicated.

  Accordingly, an object of the present invention is to reduce the operational load of an enterprise or business partner that introduces an electronic transaction service such as an electronic contract, and electronically such as a secure conclusion of an electronic contract between a business partner and a service introduction enterprise It is to provide an electronic transaction system that enables various transactions.

  The above and other objects and novel features of the present invention will be apparent from the description of this specification and the accompanying drawings.

  Of the inventions disclosed in this application, the outline of typical ones will be briefly described as follows.

  An electronic transaction system according to a representative embodiment of the present invention is a system that supports an electronic transaction between a first transaction entity and a second transaction entity, and the one or more first transaction entities. An electronic signature unit that performs an electronic signature on a document related to an electronic transaction for the first transaction entity, and an approval process when performing an electronic signature on the document for the first transaction entity. A signature application processing unit that performs the document application, and a document recording unit that holds the document for each of the first transaction entities.

  The signature application processing unit accepts an application for an electronic signature for the document from the first transaction entity, and for each one or more first approval rights holders in the first transaction entity included in the application Generating a first password, creating a first electronic message including information identifying the first password and the document, and sending the first electronic message to each of the first authorizers; When a reply to the first electronic message is received from the right holder, and each reply includes content that matches the first password assigned to the corresponding first authorizer, An electronic signature is performed on the document by the electronic signature unit corresponding to the first transaction entity.

  Among the inventions disclosed in the present application, effects obtained by typical ones will be briefly described as follows.

  In other words, according to the representative embodiment of the present invention, it is possible to reduce the operational load of the enterprise introducing the electronic transaction service and the business partner, and the business partner can safely conduct electronic transactions with the service introducing enterprise. It becomes possible.

It is the figure which showed the outline | summary about the structural example of the electronic transaction system which is Embodiment 1 of this invention. It is the figure which showed the outline | summary about the structural example of the electronic transaction service using the non-certified certification authority in Embodiment 1 of this invention. It is the figure which showed the outline | summary about the example of the flow of a process until the service introduction company in Embodiment 1 of this invention can use an electronic transaction service. It is the figure which showed the outline | summary about the example of the flow of a process when the service introduction company in Embodiment 1 of this invention receives an estimate request from a potential customer. It is the figure which showed the outline | summary about the example of the flow of a process in case the service introduction company in Embodiment 1 of this invention has concluded the basic contract of a transaction with a new customer. It is the figure which showed the outline | summary about the example of the flow of a process in case the contract of an individual transaction is concluded between the service introduction company and customer in Embodiment 1 of this invention. It is the figure which showed the outline | summary about the example of the flow of an electronic signature application process for obtaining the predetermined | prescribed approval required in order to perform an electronic signature on the document in Embodiment 1 of this invention. It is the figure which showed the outline | summary about the example of the flow of the electronic signature application process in Embodiment 2 of this invention. It is the figure which showed the outline | summary about the example of the flow of a process when the service introduction company in Embodiment 3 of this invention concludes the basic contract of a transaction with a new customer. It is the figure which showed the outline | summary about another example of the flow of a process when the service introduction company in Embodiment 3 of this invention has concluded the basic contract of a transaction with a new customer. It is the figure which showed the outline | summary about the structural example of the electronic contract service using the accredited certification authority in a prior art. It is the figure which showed the outline | summary about the structural example of the electronic contract service using the non-certified certificate authority in a prior art. It is the figure which showed the outline | summary about the other structural example of the electronic contract service using the non-certified certificate authority in a prior art.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. In the embodiment of the present invention, an electronic contract is mainly described as an example of an electronic transaction service. Note that components having the same function are denoted by the same reference symbols throughout the drawings for describing the embodiment, and the repetitive description thereof will be omitted. In the following, in order to make the features of the present invention easier to understand, the description will be made in comparison with the prior art.

  FIG. 11 is a diagram showing an outline of a configuration example of an electronic contract service using a certified certificate authority in the prior art. In this case, a service introduction company ("Company A (300a ')" in the figure) that has concluded a basic transaction contract for performing electronic commerce by an electronic contract and a customer ("Customer 2 (402'" in the figure)). ) ") Can conclude a contract through the electronic contract system 101 by concluding a contract for use of the electronic contract service with a service vendor that operates the electronic contract system 101, respectively.

  At this time, the service introduction company and the business partner individually apply for an electronic certificate acquisition to the authorized certificate authority 201 and acquire an electronic certificate for use in the electronic contract service. In the case where another company (such as “Company B (300b ′)”, “Business Partner 1 (401 ′)”, “Business Partner 3 (403 ′)”, etc.) newly uses the electronic contract service. Enters into a contract for using an electronic contract service with a service vendor that individually operates the electronic contract system 101, and obtains an electronic certificate from the authorized certificate authority 201. In this way, it is necessary for service introduction companies and business partners using the electronic contract service to individually perform electronic certificate acquisition processing, which is a heavy burden in terms of costs and procedures.

  FIG. 12 is a diagram showing an outline of a configuration example of an electronic contract service using a non-certified certificate authority in the prior art. In this example, service introduction companies ("Company A" and "Company B" in the figure) that introduce electronic contract services and perform electronic commerce by electronic contracts are individually developed by the system vendor 101 '. Each of the business partners ("Business Partner 1 (401 '" in the figure) that has concluded a basic transaction contract by the contract system ("Company A Electronic Contract System (100a)", "Company B Electronic Contract System (100b)" in the figure). ) ”To“ Business Partner 3 (403 ′) ”) to conclude an electronic contract for electronic commerce. The electronic certificate used for the electronic contract is acquired from the non-certified certificate authority 200 by each service introduction company (electronic contract system). It is also possible to adopt a configuration in which a registration operation is performed in which an electronic certificate used by each business partner that has concluded a basic transaction contract is acquired and issued.

  In the example of FIG. 12, “Business Partner 2 (402 ′)” has concluded a basic transaction contract with both “Company A” and “Company B”, and electronic commerce can be performed with both parties through an electronic contract. Is possible. However, since the “Company A electronic contract system (100a)” and the “Company B electronic contract system (100b)” are separately developed systems, their interfaces and specifications are not necessarily the same. Therefore, it is complicated for “customer 2 (402 ′)” to use different electronic contract systems depending on whether the other party of the transaction is “Company A” or “Company B”.

  FIG. 13 is a diagram showing an outline of another configuration example of an electronic contract service using a non-certified certificate authority in the prior art. In this example, the functions of the electronic contract systems ("Company A electronic contract system (100a)", "Company B electronic contract system (100b)") individually owned by each service introduction company in the configuration of FIG. Is configured so that the system vendor 101 'provides it as a service via the network as an ASP (Application Service Provider). Although the system operation load of the service introduction company ("Company A (300a ')" and "Company B (300b')" in the figure) is reduced, "Business Partner 2 (402 ')" is the electronic contract system. The necessity for proper use is the same as in the example of FIG.

<Embodiment 1>
Embodiment 1 of the present invention is an electronic transaction system that provides an electronic transaction service including an electronic contract, that is, supports electronic transactions between transaction entities. The electronic transaction system according to the first embodiment of the present invention, in order to cope with the above-described problems, performs certificate registration work (identity confirmation, certificate issuance request and distribution) for non-certified certificate authorities, This reduces the system operation load of service-introducing companies by carrying out all of the services on behalf of the business partners. In addition, the electronic transaction system is configured as a system that can be used in common by all service introduction companies, so that it is not necessary for the customer to use the electronic transaction system separately regardless of the service introduction company of the other party of the transaction. In addition, the electronic transaction system is based on the intention of the approval right holder when the service introduction company and the business partner use the electronic certificate for the electronic signature on documents such as contracts stored in the electronic transaction system. By having an electronic signature application process that guarantees that the approval will be performed, it is possible for a business partner to securely conclude an electronic contract with a service introduction company.

[System configuration]
FIG. 1 is a diagram showing an outline of a configuration example of an electronic transaction system according to Embodiment 1 of the present invention. The electronic transaction system 100 is an information processing system that is operated by a company such as a system vendor that provides an electronic transaction service, and includes a server device, a virtual server in a cloud computing environment, and the like.

  This electronic transaction system 100 is an individual service introduction company that is an individual system of the non-certified certificate authority 200 or a service introduction company ("Company A" to "C" in the figure) via a network such as the Internet (not shown). System 300 (collectively referring to “Company A individual system (300a)” to “C Company individual system (300c)” in the figure), suppliers of each service introduction company (in the figure, “customer 1” to “customer” 5 "), which is an individual system, can be connected by communication with a customer system 400 (collectively" customer 1 system (401) "to" customer 5 system (405) "in the figure).

  The electronic transaction system 100 includes, for example, an interface unit 110, a signature application that is implemented as a software program that runs on middleware such as an OS (Operating System), a DBMS (DataBase Management System), and a Web server program (not shown). Processing unit 120, electronic signature unit 130 (collectively referring to “Company A electronic signature unit (130a)” to “C company electronic signature unit (130c)”), certificate registration processing unit 140, supplier management unit 150 , A user management unit 160, a document management unit 170, and the like. Each of these units may be implemented as a subsystem of the electronic transaction system 100 or as an independent system.

  The interface unit 110 has a function of providing a user interface such as an operation screen for a user of an electronic transaction service by the electronic transaction system 100. For example, the interface unit 110 uses a Web server program (not shown) to display a screen on a Web browser on the information processing terminal used by the user.

  The signature application processing unit 120 accepts an application for an electronic signature for a document stored in the electronic transaction system 100 from a service introduction company, a business partner system, or a person in charge, and makes an approval request to a designated approval authority. It has a function of performing a series of signature application processes in which an electronic signature is applied to a target document by an electronic signature unit 130, which will be described later, when approved by all approval rights holders. The signature application processing unit 120 records the approval status such as an approval request to each approval authority and an approval result in an approval status table (TB) 123 implemented by a database or a file table. Details of the signature application process will be described later.

  The signature application processing unit 120 further includes a password processing unit 121 having a function of generating an approval password used in the signature application processing, and an electronic message (a document designated for a designated address ( It further includes a message processing unit 122 having a function of sending by simply “message” or “electronic message”. For these functions, general known servers, programs, libraries, and the like can be used as appropriate.

  The password processing unit 121 can use, for example, a one-time password (OTP) as the approval password. In this case, for example, the password processing unit 121 manages a one-time password for each authorized person. The password processing unit 121 can update the contents of the one-time password to be generated at a predetermined timing (for example, periodically or at a timing designated by a user such as an approval authority). Further, the password processing unit 121 can use a normal password that can be arbitrarily set manually by the user, for example, as the approval password. In this case, for example, the password processing unit 121 can generate an approval password by acquiring the password of the approval authority from a user table (TB) 161 described later. Of course, the approval password is not limited to the above example.

  The message processing unit 122 is an electronic message, for example, a short message transmitted / received between e-mails, mobile phones, etc., and a message transmitted / received between dedicated applications on a computer (also called instant messages). Etc. can be used. The address information can be acquired from a user table (TB) 161 described later, for example. Of course, the electronic message is not limited to the above example.

  When the signature application processing unit 120 obtains approval from each approval authority for the document data relating to the electronic contract and the like for each company that has introduced the electronic transaction service, the electronic signature unit 130 It has a function to automatically perform electronic signatures by service introduction companies. For this purpose, each electronic signature unit 130 receives an electronic certificate from the non-certified certificate authority 200 by the certificate registration processing unit 140 described below prior to the start of service provision for the target service introduction company. This shall be retained. In this embodiment, the electronic signature unit 130 is individually implemented for each service introducing company. However, if the electronic signature can be individually provided for each service introducing company, the electronic signature unit 130 should be implemented collectively. Is also possible.

  The certificate registration processing unit 140 receives a request for issuing an electronic certificate from a service introducing company, and performs a registration operation for requesting the non-certified certification authority 200 to issue an electronic certificate for the service introducing company or its business partner. It has the function of. The certificate registration processing unit 140 may further include a form creation unit 141 that creates and outputs a form in a predetermined format required when making a certificate issuance request to the non-certified certificate authority 200. Good.

  The supplier management unit 150 holds, in the supplier table (TB) 151, information on suppliers that each service introduction company that uses the electronic transaction service provided by the electronic transaction system 100 has entered into a basic transaction contract, and is registered. And a function for managing updates and the like. The electronic trading system 100 refers to this business partner TB 151 by the business partner management unit 150, and through the electronic business system 100, the business partner that has concluded a basic business contract with each service introduction company. It is possible to control so that an electronic transaction such as an electronic contract can be performed only with the customer.

  The user management unit 160, for users who can access the electronic trading system 100, attribute information such as name and company, authentication information such as user ID and password, electronic message address information, access authority information, etc. Are stored in the user table (TB) 161, and management such as registration and update is performed. The users here include, in addition to the administrator of the electronic transaction system 100, etc., each service introduction company, the person in charge of the business partner, the approval right holder at the time of electronic signature, and the like.

  The document management unit 170 stores an original document related to a transaction such as an electronic contract concluded through the electronic transaction system 100 in the document table (TB) 171 and responds to an access request from a user having access authority. It has a document management function that permits reference. For this function as well, general known document management systems and programs can be used as appropriate. “Store” and “hold” can also be said to be “record” and “store”.

  The non-accredited certificate authority 200 uses, for example, a JCAN root certificate authority that issues a public certificate of JCAN (registered trademark) specifications operated by JIPDEC (registered trademark: Japan Information Economy, Social and Social Affairs Association). Therefore, it is possible to issue an electronic certificate at a low cost. At this time, the operating company of the electronic trading system 100 can receive JCR certification (LRA certification) and perform JCAN specification electronic certificate registration work. Instead of using such a public certificate, a company operating the electronic transaction system 100 may construct the non-certified certificate authority 200 and issue a private electronic certificate.

  Each service introduction company individual system 300 ("Company A individual system (300a)" to "C company individual system (300c)" in the figure), for example, presents a quote from a request for a quotation with a business partner, and contracts. It is an information processing system such as a core cooperation system that implements a series of electronic transactions leading to conclusion and transaction. Similarly, for each supplier system 400 ("partner 1 system (401)" to "partner 5 system (405)" in the figure), for example, an estimate request can be made with a service introduction company. It is an information processing system that performs a series of electronic transactions from receipt, contract conclusion, and transaction. In addition, as business partners, for example, not only suppliers of products etc. for service introduction companies, but also sales partners such as customers and consignees such as maintenance companies, etc., companies that are counterparties to conclude electronic contracts, etc. included.

  FIG. 2 is a diagram showing an outline of a configuration example of an electronic transaction service using a non-certified certificate authority in the present embodiment. Here, the electronic transaction system 100 receives a request from a service introducing company (“Company A (300a ′)”, “Company B (300b ′)” in the figure), and performs certificate registration for the non-certified CA 200. By adopting a configuration in which the service introduction company and the business partner (in the figure, “Business Partner 1 (401 ′)” to “Business Partner 3 (403 ′)”) are individually received from the non-certified CA 200 It is not necessary to perform processing to receive certificate issuance.

  In addition, each service introduction company concludes a use contract of an electronic transaction service including an electronic contract etc. with an operating company of the electronic transaction system 100 so that the electronic transaction system 100 performs processing related to the electronic transaction such as an electronic contract. Therefore, it is possible to reduce the system operation load in each service introduction company. Further, by adopting a configuration for centrally managing information on business partners who have concluded business basic contracts for each service introduction company in the business partner TB 151, a business partner ("business partner 2 (402 ')" in the figure). ), The same electronic transaction system 100 can be used regardless of the service introduction company of the other party.

[Process flow]
FIG. 3 is a diagram showing an outline of an example of a processing flow until the service introducing company can use the electronic transaction service. First, a service introducing company applies for an electronic transaction service usage contract to an operating company of the electronic trading system 100 (S01), and if a predetermined requirement is satisfied, the contract is concluded (S02). Although the above processing has been described as being performed manually by the service introducing company and the operating company of the electronic trading system 100, the above processing is systematically performed between the individual system 300 of the service introducing company and the electronic trading system 100. May be.

  When the service contract is concluded, the electronic trading system 100 manually or automatically by the administrator or the like, the company information such as the attributes of the target service introduction company, a table such as a service introduction company master (not shown), the customer TB 151, etc. (S03). When the business partner of the target service introducing company is known in advance, the electronic trading system 100 may register the information in the business partner TB 151 at this time. Furthermore, the electronic transaction system 100 mounts the corresponding electronic signature unit 130 for the target service introduction company manually or automatically by an administrator or the like (S04). For example, a program, a module, a server, etc. for the target service introducing company are appropriately installed.

  Thereafter, the service introduction company uses the electronic transaction system based on an instruction (for example, an instruction made by accessing the electronic transaction system 100 using a Web browser or the like) via the information introduction terminal of the service introduction company individual system 300 or a person in charge. An application for issuing an electronic certificate for the service introducing company is made to 100 (S05). The electronic transaction system 100 that has accepted the issuance application issues an electronic certificate to the non-certified certification authority 200 after the certificate registration processing unit 140 creates the application form by the form creation unit 141 as necessary. A request is made (S06).

  The non-certified certification authority 200 that has received the issue request issues a digital certificate after performing predetermined determination processing on the application content (S07) and sends it to the electronic transaction system 100 (S08). The electronic transaction system 100 stores the received electronic certificate so that the electronic signature unit 130 corresponding to the target service introducing company can use the electronic certificate (S09). An electronic certificate may be sent to a service introduction company so that the service introduction company can independently sign an electronic signature.

  FIG. 4 is a diagram showing an outline of an example of the flow of processing when a service introduction company receives an estimate request from a potential business partner. First, in a potential business partner, based on an instruction (for example, an instruction made by accessing the service introducing company individual system 300 using a Web browser or the like) via the information processing terminal such as the business partner system 400 or a person in charge A request for an estimate of a product or the like is made to the introduced company individual system 300 (S11). The service-introducing company-specific system 300 creates an estimate automatically based on the contents of the request or manually by the person in charge (S12), which is automatically sent to the electronic transaction system 100 or based on an instruction via the information processing terminal of the person in charge. Upload and request registration (S13). The electronic transaction system 100 registers the uploaded estimate in the document TB 171 by the document management unit 170 (S14).

  Furthermore, the service introducing company individual system 300 automatically or with a predetermined approval required for electronically signing the uploaded quotation to the electronic transaction system 100 based on an instruction via the information processing terminal of the person in charge. An electronic signature application process, which is a process for obtaining the above, is performed (S15). The contents of the electronic signature application process will be described later.

  When approval by a predetermined approval authority is obtained in the service introduction company that created the estimate by the electronic signature application process, the electronic transaction system 100 uses the electronic signature unit 130 corresponding to the target service introduction company to An electronic signature is given to the estimate (S16), and access authority etc. are set so that it can be viewed from the target customer system 400 or a person in charge (S17). At this time, the electronic transaction system 100 informs the customer system 400 or an information processing terminal such as a person in charge of an e-mail or the like that the message processing unit 122 has registered the electronically signed estimate and made it available for viewing. You may make it notify by a message.

  In the example of FIG. 4, when the electronic signature application process is completed (S15), an electronic signature is applied to the estimate (S16), which can be viewed (S17), but the estimate is registered (S14). An electronic signature may be provided in advance so that the electronic signature can be viewed (access restriction is released) when the electronic signature application process is completed.

  After the estimate can be browsed, for example, the person in charge of the supplier makes a browse request for the estimate stored in the electronic trading system 100 using the information processing terminal (S18). Here, for example, a browsing request can be made to the electronic transaction system 100 via the Web site of the service introducing company individual system 300 using a Web browser or the like on the information processing terminal. The electronic transaction system 100 obtains the requested quotation from the document TB 171 and outputs it (S19), and presents it using the information processing terminal (S20). .

  FIG. 5 is a diagram showing an outline of an example of the flow of processing when a service introducing company concludes a basic transaction contract with a new business partner. First, a service introduction company and a business partner conclude a basic contract for the transaction (S21). The contract here is made in writing, etc., but if possible, the service introduction company or the person in charge of the business partner accesses the service introduction company individual system 300 or the customer system 400 using the information processing terminal. This may be done systematically.

  When the basic transaction contract is concluded, the service introduction company makes an inquiry about the target business partner with respect to the electronic transaction system 100 based on an instruction via the information introduction terminal such as the service introduction company individual system 300 or the person in charge. An information registration request is made (S22). Upon receiving the request, the electronic trading system 100 registers the information of the target business partner in the business partner TB 151 in association with the target service introduction company by the business partner management unit 150 (S23).

  Thereafter, the service introducing company applies to the electronic transaction system 100 for issuing an electronic certificate for the target business partner based on an instruction via the information processing terminal such as the service introducing company individual system 300 or the person in charge. Perform (S24). The electronic transaction system 100 that has accepted the issuance application receives an issuance of an electronic certificate from the non-certified certificate authority 200 based on the contents of the application by the same process as in steps S06 to S09 in the example of FIG. 3 (S25) This is sent to the supplier (or supplier system 400) (S26).

  The supplier system 400 stores the received electronic certificate so that it can be used for electronic signature (S27). Note that the above certificate distribution process is only performed for the first time when a service-introducing company enters into a basic contract with a new business partner, and is not required after the electronic certificate has been distributed to the business partner. .

  FIG. 6 is a diagram showing an outline of an example of the flow of processing when an individual transaction contract is concluded between a service introducing company and a business partner. First, the supplier applies for a contract to the service introducing company individual system 300 based on an instruction via the information processing terminal such as the supplier system 400 or a person in charge, as in the case of the request for quotation (S31). ). The service introduction company individual system 300 creates a contract automatically or manually by the person in charge based on the contents of the application or the estimate (S32), and automatically or automatically processes the information processing terminal of the person in charge in the electronic transaction system 100. The registration request is made by uploading based on the received instruction (S33).

  The electronic trading system 100 refers to the business partner TB 151 and confirms whether the target business partner is registered, that is, when the target business partner can use the electronic trading service, the document management unit 170. Thus, the uploaded contract is registered in the document TB 171 (S34). Furthermore, the service introduction company individual system 300 is the same as step S15 in the example of FIG. 4 in order to electronically sign the uploaded contract to the electronic transaction system 100 automatically or based on an instruction from the person in charge. The electronic signature application process is performed (S35).

  When approval by a predetermined approval authority is obtained in the service introduction company that created the contract by the electronic signature application process, the electronic transaction system 100 uses the electronic signature unit 130 corresponding to the target service introduction company to An electronic signature is given to the contract (S36), and access authority etc. are set so that the contract can be viewed from the target customer system 400 or a person in charge (S37). At this time, the electronic transaction system 100 informs the customer system 400 or an information processing terminal such as a person in charge of an e-mail or the like that the message processing unit 122 has registered the electronically signed contract. You may make it notify by a message.

  After the contract can be viewed, for example, the person in charge of the business partner is stored in the electronic transaction system 100 via the website of the service introducing company individual system 300 using the information processing terminal. A browsing request for the contract is made (S38). At this time, it is also possible to request the electronic transaction system 100 for a list of documents that can be browsed, and select a contract to be browsed from the obtained list. In this case, in the electronic transaction system 100, the document management unit 170 extracts and presents a list of documents for which the target business partner has access authority from the document TB171. Upon receiving the browsing request, the electronic transaction system 100 obtains the requested contract from the document TB 171 and outputs it (S39), and the person in charge of the business partner uses the information processing terminal to present it. The contents are browsed and contents are added as necessary (S40).

  Thereafter, in the business partner, in order to electronically sign the contract to the electronic transaction system 100 based on an instruction via the information processing terminal of the person in charge or automatically, the same as step S15 in the example of FIG. Electronic signature application processing is performed (S41). When the supplier obtains approval by a predetermined approval authority by the electronic signature application process, the supplier system 400 performs an electronic signature on the target contract (S42), and electronically converts the signed contract. The transaction system 100 is requested to upload and store it as an original (S43). The electronic transaction system 100 stores the received contract as an original in the document TB 171 (S44).

  It should be noted that the electronic signature processing (S42) by the business partner is executed on the electronic trading system 100 in the same manner as in step S36, and is executed in cooperation with the approval result of the electronic signature application processing (S41). It may be.

  FIG. 7 is a diagram showing an outline of an example of a flow of an electronic signature application process for obtaining a predetermined approval necessary for applying an electronic signature to a document such as an estimate or a contract. This process is, for example, a process performed in step S15 in the above-described example of FIG. 4 and steps S35 and S41 in the example of FIG. Here, as an example, a person in charge of a transaction business such as a contract at a service introducing company or a business partner uses the information processing terminal to access the electronic transaction system 100 and manually instruct an electronic signature application process. Show.

  First, the person in charge makes an inquiry request for a list of documents to be digitally signed to the electronic transaction system 100 using the person-in-charge terminal 311 (S51). In the electronic transaction system 100, a document that can be digitally signed by a service introduction company or a business partner to which the subject person in charge belongs by the document management unit 170 (for example, a document that has access authority and has not yet been digitally signed). Is extracted from the document TB 171 and acquired to present it to the person-in-charge terminal 311 (S52).

  The person in charge selects a document (estimate or contract) to be electronically signed from the list of documents presented on the person-in-charge terminal 311 (S53), and further requires approval when making the electronic signature. One or more authorized persons such as superiors are selected (S54). When selecting the authorized person, for example, the user management unit 160 in the electronic transaction system 100 selects from those who are registered in advance in the user TB 161 (that is, a person who can access the electronic transaction system 100). May be. Thereafter, the person-in-charge terminal 311 transmits a request for electronic signature application to the electronic transaction system 100 (S55). The request includes information for specifying the selected target document and information for specifying the approval authority.

  In response to the request for electronic signature application, the electronic transaction system 100 assigns an application ID by the signature application processing unit 120, registers an entry for tracking the approval status in the approval status TB123, and then processes the password processing unit 121. Thus, a unique approval password is generated and assigned to each approval authority (S56). Thereafter, the electronic transaction system 100 uses the message processing unit 122 to approve the approval request message including the application ID, information such as the file name that identifies the target document, and the approval password information generated in step S56. It is created for each person, and this is sent to the address of each approval authority by the message processing unit 122 (S57).

  When each approval authority receives the approval request message from the approval authority terminal 312 (S58), the approval authority terminal 312 transmits the approval request message to the electronic transaction system 100 based on the application ID and document specific information included therein. A browsing request for the target document is made (S59). Upon receiving the browsing request, the electronic transaction system 100 obtains and outputs the requested document from the document TB 171 (S60), and each approval authority uses the approval authority terminal 312 to display the contents of the document. (S61).

  If there is no problem in the contents of the document, each approval authority returns the message of the approval request received in step S58 by the approval authority terminal 312 as it is to the transmission source (S62). Upon receipt of the returned approval request message, the electronic transaction system 100 as the transmission source matches the approval password included in this message with the approval password assigned to the target approval authority in step S56. And the result is recorded in the approval status TB123 (S63).

  If replies to the approval request message are received from all approval rights holders, and the approval password included in the response matches the one assigned in step S56, the electronic The process proceeds to the subsequent electronic signature processing by the transaction system 100 or the supplier system 400. In addition, for example, when the electronic transaction system 100 fails to receive a response to the approval request message within a predetermined response time, or the approval password does not match due to an intention of disapproval or impersonation by a third party. In such a case, the electronic signature should not be made because the electronic signature application has been rejected.

  Such a process ensures that the approval process is performed by the predetermined approval authority (or based on the intention of the predetermined approval authority) without placing a burden on the approval authority. It is possible to prevent a person from signing an electronic signature without obtaining approval from the approver.

  As described above, according to the electronic transaction system 100 according to the first embodiment of the present invention, the certificate registration work for the non-certified certificate authority 200 can be performed collectively on behalf of the service introduction company and the business partner. Thus, it is possible to reduce the system operation load of the service introducing company. In addition, by configuring the system as a system that can be used in common by all service introduction companies, it becomes unnecessary for the business partner to use the electronic transaction system separately regardless of the service introduction company of the other party of the transaction. In addition, when a service introduction company or a business partner uses a digital certificate to electronically sign a document such as a contract stored in the electronic trading system 100, approval is performed based on the intention of the approval right holder. By having an electronic signature application processing process that guarantees this, it becomes possible for a business partner to securely perform an electronic transaction such as the conclusion of an electronic contract with a service introduction company.

<Embodiment 2>
The electronic transaction system 100 according to the first embodiment described above has a mechanism for guaranteeing that the approval is performed based on the intention of the approval authority by having the electronic signature application process as shown in the example of FIG. doing. However, in the electronic signature application process as shown in the example of FIG. 7, for example, the approval request message from the signature application processing unit 120 is a person other than the approval authority, for example, the address of the approval authority is erroneously registered. If the message is erroneously transmitted, it cannot be excluded that a person other than the approval authority simply approves the message.

  Therefore, the electronic transaction system 100 according to the second embodiment of the present invention avoids the problem at the time of erroneous transmission of the message by adopting a method in which the approval right person himself inputs the approval password into the system and approves it. It is possible to do that. Since the system configuration and processing contents are basically the same as the contents shown in the first embodiment, description thereof will be omitted, but differences in the electronic signature application processing will be described below. To do.

  FIG. 8 is a diagram showing an outline of an example of the flow of the electronic signature application process in the present embodiment. In the electronic signature application process, the person in charge first selects a document to be signed using the person-in-charge terminal 311, and further selects one or more authorized persons (assuming that the approval order is also set). FIG. 7 of the first embodiment up to where the signature application request is made to the electronic transaction system 100 (S75) and where the electronic transaction system 100 that has received the signature application request generates the approval password (S76). Since this is the same as steps S51 to S55 and S56 of the electronic signature application process shown in the example of FIG.

  Thereafter, the message processing unit 122 of the electronic transaction system 100 accesses the application ID, the approval password generated in step S76, the approval right holder (if any), and the approval screen provided by the interface unit 110. An approval request message including URL (Uniform Resource Locator) information, which is address information to be sent, is transmitted to the address of the next approval authority in the approval order (S77). Note that when the access to the URL is accepted, the interface unit 110 outputs an approval screen corresponding to the URL to the access source terminal.

  When receiving the approval request message from the approval authority user terminal 312 (S78), the target approval authority accesses the URL of the approval screen included therein and logs into the approval screen (S79). At this time, it is assumed that the approval authority inputs a normal login ID (such as a user ID) and password for the electronic transaction system 100, and an approval password included in the approval request message. It is also possible to enter the password for approval by accessing the URL itself by making the URL of the approval screen a unique URL that is different each time, for example, by generating the URL including the password for approval. .

  The electronic transaction system 100 acquires information input via the approval screen by the interface unit 110, and the login ID (user ID, etc.) and password based on the user TB 161 and the approval status TB 123 by the signature application processing unit 120 or the like. The verification and verification that the person is an approval authority are performed, and an authentication process for verifying the approval password is performed (S80). If there is no problem in the authentication result, the electronic transaction system 100 refers to the approval status TB123 and displays a list of unapproved documents or cases for the target approval right holder on the approval right holder terminal 312 (S81). .

  The approval authority identifies the approval target case from the list of unapproved cases displayed on the approval authority terminal 312 and inputs approval / non-approval (S82). At this time, as in steps S59 to S61 in the example of FIG. 7, processing for browsing a document related to the target case may be performed. Information on the approval result is registered in the approval status TB 123 by the signature application processing unit 120 of the electronic transaction system 100 (S83).

  If the case is approved, the electronic transaction system 100 generates a new approval password in the same manner as in step S76 in order to perform the approval process for the next approval right holder (S84). Then, an approval request message is transmitted (S85). Subsequent processing (S86-) is the same as steps S78-S83 described above.

  In this way, the workflow of the approval process can be configured by repeating the series of processes in steps S76 to S83 in order for each approval authority. As for the approval status in the workflow, for example, when the person in charge accesses the electronic transaction system 100 using the person-in-charge terminal 311, the approval status obtained based on the contents of the approval status TB 123 can be confirmed at any time. When the final approval right holder of the workflow, that is, the approval right owner who owns the electronic certificate issued from the electronic transaction system 100, performs the approval process, for example, “You may execute an electronic signature on the approval screen. It is desirable to display a confirmation message such as “?

  In the example of FIG. 7 of the first embodiment, an approval request message is sent to a plurality of approval right holders at the same time, and each approval right person performs approval processing individually, and is approved when everyone approves. However, it is also possible to apply a synchronous procedure using a workflow according to the approval order as in the present embodiment to the electronic signature application process in the first embodiment. Conversely, the asynchronous procedure as in the first embodiment can be applied to the electronic signature application process in the present embodiment.

  As described above, according to the electronic transaction system 100 according to the second embodiment of the present invention, an approval screen is provided for each item or document, and the URL information on this screen is embedded in the approval request, and the approval authority The login ID (user ID, etc.) and password for the system, and the password for approval are each input. That is, if these pieces of information are not available, login to the approval screen is not permitted and the approval process cannot be performed. As a result, for example, even when the user ID and password are leaked or the latest approval password is leaked, the approval screen is prevented from being accessed and the approval process is performed, and an appropriate approval authority performs the approval. Thus, it is possible to avoid problems such as erroneous transmission of an approval request message.

<Embodiment 3>
In the electronic transaction system 100 according to the first embodiment described above, the person in charge of the service introduction company in the case where the service introduction company has concluded a basic transaction contract with a new customer through the process shown in the example of FIG. Have a mechanism for registering information of business partners in the electronic transaction system 100 and issuing an electronic certificate. This improves the convenience of the system.

  However, in a system where a service introduction company can freely register a business partner in the electronic transaction system 100 and issue an electronic certificate at its own responsibility, for example, registration of a fictitious business partner or in-house credit examination is performed. Registration as a business partner of a company that has not passed is possible, and the safety of the electronic trading system 100 is impaired.

  Therefore, the electronic trading system 100 according to the third embodiment of the present invention prevents the unlimited registration of business partners by using an approval process when a service introducing company newly registers business partners, and the safety of the system. It is to secure the sex. Since the system configuration and processing contents are basically the same as the contents shown in the first embodiment, the re-description is omitted, but the difference in processing related to the registration of business partners by the service introducing company. The point will be described below.

  FIG. 9 is a diagram showing an outline of an example of the flow of processing when a service introduction company has concluded a basic contract of transaction with a new business partner in the present embodiment. Here, an example is shown in which the target business partner has already signed a basic contract with another service introduction company and has been issued an electronic certificate via the electronic trading system 100.

  First, similarly to step S21 in the example of FIG. 5 of the first embodiment, the service introducing company and the business partner conclude a basic transaction contract (S91). When the basic transaction contract is concluded, the service introduction company makes an inquiry about the target business partner with respect to the electronic transaction system 100 based on an instruction via the information introduction terminal such as the service introduction company individual system 300 or the person in charge. A registration information confirmation request is made (S92). Here, for example, the target business partner is specified by inputting the ID of an electronic certificate already owned by the target business partner, address information such as an e-mail address of the owner, and the like. The electronic trading system 100 that has received the request acquires information about the target business partner from the business partner management unit 150 and presents it (S93). The service introduction company confirms the contents of the registered information of the supplier based on the instruction via the information introduction terminal such as the individual service introduction company system 300 or the person in charge (S94).

  Thereafter, the service introduction company, based on the instruction via the information introduction terminal of the service introduction company individual system 300 or the person in charge, sets one or more approval right holders regarding the registration of business partners (the approval order is also set. (Yes) is selected (S95). Note that the approval right holder includes the owner of the electronic certificate issued from the electronic transaction system 100. For each selected approval right holder, a series of steps subsequent to step S75 in the signature application process shown in FIG. 8 of the second embodiment (in this embodiment, the approval request is not a signature application request but a supplier registration). By the same processing as the above processing, approval processing for approving the registration of business partners in order by the workflow is performed by a plurality of approval right holders (S96). When each approval authority approves, for example, a confirmation message such as “Do you confirm that you are a legitimate business partner that has passed credit review etc.?” Is displayed on the approval screen. Is desirable.

  When approval is given by the final approval right holder (that is, the owner of the electronic certificate), the electronic transaction system 100 is registered as a supplier with respect to the supplier system 400 or the information processing terminal of the person in charge of the supplier. A request for consent to be made is made (S97). For example, the request can be made by sending a message such as an e-mail by the message processing unit 122. At this time, for example, it is desirable to display a confirmation message such as "Are you sure you want to be registered as a business partner by (service introduction company)?"

  The supplier accepts input of consent / disapproval for registering as a business partner based on an instruction via the information processing terminal of the business partner system 400 or the approval right holder (that is, the owner of the electronic certificate). A response is made to the electronic trading system 100 (S98). When the electronic trading system 100 receives a response of consent, the business partner management unit 150 newly registers the target business partner as a business partner of the target service introduction company in the business partner TB 151 (S99).

  FIG. 10 is a diagram showing an overview of another example of the flow of processing when the service introduction company has concluded a basic transaction contract with a new business partner in the present embodiment. Here, an example is shown in which the target business partner has not yet concluded a basic contract with any service introduction company and has not received an electronic certificate issued via the electronic transaction system 100. Yes.

  First, similarly to step S21 in the example of FIG. 5 of the first embodiment, the service introducing company and the business partner conclude a basic transaction contract (S101). When the basic transaction contract is concluded, the service introduction company, as in step S22 in the example of FIG. 5, uses the electronic transaction system based on an instruction via the information introduction terminal such as the service introduction company individual system 300 or a person in charge. 100 is requested to register information about the target business partner (S102). The information on the target business partner includes, for example, address information such as an electronic mail address of an electronic certificate issuance partner, company information, and the like. The electronic trading system 100 that has received the request temporarily registers the information of the target business partner in the business partner TB 151 in association with the target service introduction company by the business partner management unit 150 (S103).

  After that, approval similar to the series of processing of steps S95 and S96 shown in the example of FIG. 9 is performed in order to approve the registration of business partners in order by a workflow by one or more approval right holders selected in the service introducing company. Processing is performed (S104, 105).

  When the final approval right holder (that is, the owner of the electronic certificate) approves, the electronic transaction system 100 sends the electronic transaction system 100 to the customer system 400 or the information processing terminal of the person in charge of the customer. Notification is made by a message such as an e-mail so as to access (S106). This notification includes, for example, information such as a temporary login ID (user ID and the like) issued by the user management unit 160, a password, and an access destination URL.

  The supplier accesses the electronic transaction system 100 via the information processing terminal of the person in charge and performs the first login process (S107). When the electronic transaction system 100 is able to log in normally, the electronic transaction system 100 requests the supplier system 400 or the information processing terminal of the person in charge of the supplier to consent to being registered as a supplier (S108). For example, the request can be made by a message such as an e-mail as in step S97 in the example of FIG. The request may be displayed on the screen after login. At this time, for example, it is desirable to display a confirmation message such as "Are you sure you want to be registered as a business partner by (service introduction company)?"

  Based on an instruction through the information processing terminal such as the business partner system 400 or a person in charge, the business partner accepts an input of consent / non-consent for registration as a business partner and responds to the electronic trading system 100. (S109). When the electronic trading system 100 receives a response of consent, the business partner management unit 150 changes the temporary registration registered in the business partner TB 151 in step S103 to the main registration for the business partner (S110). Thereafter, in the same manner as the processing from step S24 onward in FIG. 5, based on the instruction via the information processing terminal such as the service introduction company individual system 300 or the person in charge, the electronic transaction system 100 Is issued (S111), and issuance of an electronic certificate is received.

  As described above, according to the electronic transaction system 100 according to the third embodiment of the present invention, when newly registering a business partner in a service introduction company, control is performed through an approval process by a workflow, and By obtaining approval from business partners, it is possible to prevent unlimited registration of business partners and to ensure the safety of systems and services.

  In each of the embodiments of the present invention described above, as electronic transactions, documents such as estimates and contracts have been mainly illustrated for electronic contracts. However, electronic transactions are not limited to contracts. For example, the electronic transaction system 100 accepts registration of various general documents such as a document in which an invoice or a communication item is written from one transaction entity in the same processing flow as FIG. It is possible to make the document visible to other business entities by performing an electronic signature according to. Further, for example, the electronic transaction system 100 accepts registration of a general document from one transaction entity, performs an electronic signature by the one transaction entity, and transfers the document to the other transaction flow in the same processing flow as FIG. It can be viewed by a transaction entity, and can be digitally signed by the other transaction entity and stored.

  Moreover, the electronic transaction system 100 may handle not only general documents but also documents that are handled as so-called letters as electronic letters. An electronic letter can also be realized by the same processing flow as in FIGS.

  Further, in each of the above-described embodiments of the present invention, a transaction between a company and a company (BtoB) is mainly described as an example, but the present invention is not limited to this. That is, the electronic transaction system 100 can provide an electronic transaction service between various transaction entities such as a company and a company (BtoB), a company and an individual (BtoC), and an individual and an individual (CtoC). When using an electronic transaction service as an individual, for example, if an identification number for identifying each individual citizen is used as a user ID, the convenience and versatility of the electronic transaction service is further increased.

  As mentioned above, the invention made by the present inventor has been specifically described based on the embodiments. However, the present invention is not limited to the above-described embodiments, and various modifications can be made without departing from the scope of the invention. Needless to say. For example, the above-described embodiment has been described in detail for easy understanding of the present invention, and is not necessarily limited to the one having all the configurations described. Further, a part of the configuration of one embodiment can be replaced with the configuration of another embodiment, and the configuration of another embodiment can be added to the configuration of one embodiment. . Further, it is possible to add, delete, and replace other configurations for a part of the configuration of each embodiment.

  Moreover, in each said figure, the control line and the information line have shown what is considered necessary for description, and do not necessarily show all the control lines and information lines on mounting. Actually, it may be considered that almost all the components are connected to each other.

DESCRIPTION OF SYMBOLS 100 ... Electronic transaction system, 100a, b ... Electronic contract system, 101 ... Electronic contract system, 101 '... System vendor, 110 ... Interface part, 120 ... Signature application process part, 121 ... Password process part, 122 ... Message process part, 123 ... Approval status table (TB), 130 ... Electronic signature unit, 130a to c ... Company A to C company electronic signature unit, 140 ... Certificate registration processing unit, 141 ... Form creation unit, 150 ... Supplier management unit, 151 151a, b ... supplier table (TB), 160 ... user management unit, 161 ... user table (TB), 170 ... document management unit, 171 ... document table (TB),
200 ... Non-certified certificate authority, 201 ... Certified certificate authority,
300 ... Service introduction company individual system, 300a-c ... A company-C company individual system, 300a ', b' ... A company, B company,
400 ... supplier system, 401-405 ... supplier 1-5 system, 401'-403 '... supplier 1-3

Claims (10)

An electronic transaction system that supports electronic transactions between a first transaction entity and a second transaction entity,
An electronic signature unit that performs an electronic signature on a document related to an electronic transaction for the first transaction entity for each of the one or more first transaction entities;
A signature application processing unit for performing an approval process when performing an electronic signature on the document for the first transaction entity;
A document recording unit for holding the document for each first transaction entity;
Have
The signature application processing unit
Accepting an electronic signature application for the document from the first transaction entity and generating a first password for each of one or more first authorization holders in the first transaction entity included in the application Generating a first electronic message including the first password and information identifying the document and sending the first electronic message to each of the first authorized persons, and from all the first authorized persons When a reply to the electronic message is received and each of the replies includes a content that matches the first password assigned to the corresponding first authorizer, the first transaction entity by the electronic signature unit corresponding, it has rows electronic signature to the document,
For the document relating to the first transaction entity, the second transaction entity included in the application by accepting an application for an electronic signature for the document from the second transaction entity that is the counterpart of the corresponding electronic transaction Generating a second password for each of one or more second authorization holders in the system, creating a second electronic message including information identifying the second password and the document, and each second authorization Sent to the right holder, received replies to the second electronic message from all the second right holders, and the replies assigned to the corresponding second right holders in the respective replies. If the content matching the password of 2 is included, the second transaction entity performs an electronic signature on the document.
An electronic trading system characterized by that. An electronic transaction system that supports electronic transactions between a first transaction entity and a second transaction entity,
An electronic signature unit that performs an electronic signature on a document related to an electronic transaction for the first transaction entity for each of the one or more first transaction entities;
A signature application processing unit for performing an approval process when performing an electronic signature on the document for the first transaction entity;
A document recording unit for holding the document for each first transaction entity;
Have
The signature application processing unit
Approval included in the application for each one or more first approval right holders in the first transaction entity that receives an application for an electronic signature for the document from the first transaction entity In order based on the order, a first password is generated, a first electronic message including the first password and address information of the first approval screen is created and sent to the first approval authority, When the approval result input from the first approval authority is acquired via the first approval screen and the result of approval by the first approval authority in the final order is acquired, An electronic signature is applied to the document by the electronic signature unit corresponding to one transaction entity;
In addition to the authentication information necessary for the first approval authority to log in to the electronic transaction system via the first approval screen when receiving the approval result from the first approval authority. , Accepting the input of the first password, and if they match, permit the login for the input of the approval result to the electronic transaction system by the first approval right holder ,
For the document relating to the first transaction entity, the second transaction entity included in the application by accepting an application for an electronic signature for the document from the second transaction entity that is the counterpart of the corresponding electronic transaction For each of one or more second approval right holders in, a second password is generated in order based on the approval order included in the application, and the address information of the second password and the second approval screen is included. Create a second electronic message and send it to each second approval authority, obtain the approval result input from the second approval authority via the second approval screen, In the case where a result of approval by the second approval right holder is obtained, an electronic signature for the document is executed in the second transaction entity,
In addition to the authentication information necessary for the second approval authority to log in to the electronic transaction system via the second approval screen when receiving the approval result from the second approval authority. , Accepting the input of the second password, and if these match, permit the login for the input of the approval result to the electronic transaction system by the second approval right holder,
An electronic trading system characterized by that. In the electronic transaction system according to claim 1 or 2 ,
In addition, the first transaction entity has a supplier recording unit that holds information about the second transaction entity capable of performing electronic transactions via the electronic transaction system,
The electronic signature for the document and the document for the first transaction entity only when the information of the second transaction entity that is the counterpart of the corresponding electronic transaction is registered in the supplier recording unit, and Allow retention in document records,
An electronic trading system characterized by that. The electronic transaction system according to claim 3 ,
When the first transaction entity records information on the second transaction entity in which the first transaction entity can conduct an electronic transaction via the electronic transaction system in the supplier record unit, the first transaction entity Allow recording only when an input of approval by a third approval authority and a fourth approval authority in the second transaction entity is accepted;
An electronic trading system characterized by that. In the electronic transaction system according to any one of claims 1 to 4 ,
In addition, the first transaction entity or the first transaction entity may issue a request for issuance of an electronic certificate to the second transaction entity capable of performing electronic transactions via the electronic transaction system. A certificate that is received from a business entity, requests a certificate authority to issue the electronic certificate, and distributes the issued electronic certificate to the first business entity or the second business entity Having a registration processing part,
An electronic trading system characterized by that. The electronic transaction system according to claim 5 ,
The certificate authority is a non-certified certificate authority;
An electronic trading system characterized by that. An electronic transaction method in an electronic transaction system that supports electronic transactions between a first transaction entity and a second transaction entity,
A signature application processing step for performing an approval process when performing an electronic signature on a document related to an electronic transaction with respect to the first transaction entity;
An electronic signature step of performing an electronic signature on the document for the first transaction entity for each of the one or more first transaction entities;
A document recording step for holding the document for each first trading entity;
Including
The signature application processing step includes
Accepting an electronic signature application for the document from the first transaction entity and generating a first password for each of one or more first authorization holders in the first transaction entity included in the application Generating a first electronic message including the first password and information identifying the document and sending the first electronic message to each of the first authorized persons, and from all the first authorized persons When a reply to the electronic message is received and each reply contains content that matches the first password assigned to the corresponding first authorizer, from the first trading entity to execute said electronic signature step corresponding to the first trading entity to said document,
For the document relating to the first transaction entity, the second transaction entity included in the application by accepting an application for an electronic signature for the document from the second transaction entity that is the counterpart of the corresponding electronic transaction Generating a second password for each of one or more second authorization holders in the system, creating a second electronic message including information identifying the second password and the document, and each second authorization Sent to the right holder, received replies to the second electronic message from all the second right holders, and the replies assigned to the corresponding second right holders in the respective replies. An electronic transaction method , wherein when the content matching the password of 2 is included, the second transaction entity performs an electronic signature on the document . An electronic transaction method in an electronic transaction system that supports electronic transactions between a first transaction entity and a second transaction entity,
A signature application processing step for performing an approval process when performing an electronic signature on a document related to an electronic transaction with respect to the first transaction entity;
An electronic signature step of performing an electronic signature on the document for the first transaction entity for each of the one or more first transaction entities;
A document recording step for holding the document for each first trading entity;
Including
The signature application processing step includes
Approval included in the application for each one or more first approval right holders in the first transaction entity that receives an application for an electronic signature for the document from the first transaction entity In order based on the order, a first password is generated, a first electronic message including the first password and address information of the first approval screen is created and sent to the first approval authority, When the approval result input from the first approval authority is acquired via the first approval screen and the result of approval by the first approval authority in the final order is acquired, Performing the electronic signature step corresponding to the first transaction entity on the document from one transaction entity;
In addition to the authentication information necessary for the first approval authority to log in to the electronic transaction system via the first approval screen when receiving the approval result from the first approval authority. , Accepting the input of the first password, and if they match, permit the login for the input of the approval result to the electronic transaction system by the first approval right holder ,
For the document relating to the first transaction entity, the second transaction entity included in the application by accepting an application for an electronic signature for the document from the second transaction entity that is the counterpart of the corresponding electronic transaction For each of one or more second approval right holders in, a second password is generated in order based on the approval order included in the application, and the address information of the second password and the second approval screen is included. Create a second electronic message and send it to each second approval authority, obtain the approval result input from the second approval authority via the second approval screen, In the case where a result of approval by the second approval right holder is obtained, an electronic signature for the document is executed in the second transaction entity,
In addition to the authentication information necessary for the second approval authority to log in to the electronic transaction system via the second approval screen when receiving the approval result from the second approval authority. , Accepting the input of the second password, and if these match, permit the login for the input of the approval result to the electronic transaction system by the second approval right holder,
An electronic transaction method characterized by the above. A program of an electronic transaction system that supports electronic transactions between a first transaction entity and a second transaction entity,
An electronic signature unit that performs an electronic signature on a document related to an electronic transaction for the first transaction entity for each of the one or more first transaction entities;
A signature application processing unit for performing an approval process when performing an electronic signature on the document for the first transaction entity;
As a document recording unit that holds the document for each first transaction entity,
Making the electronic trading system work,
The signature application processing unit
Accepting an electronic signature application for the document from the first transaction entity and generating a first password for each of one or more first authorization holders in the first transaction entity included in the application Generating a first electronic message including the first password and information identifying the document and sending the first electronic message to each of the first authorized persons, and from all the first authorized persons When a reply to the electronic message is received and each of the replies includes a content that matches the first password assigned to the corresponding first authorizer, the first transaction entity by the electronic signature unit corresponding, it has rows electronic signature to the document,
For the document relating to the first transaction entity, the second transaction entity included in the application by accepting an application for an electronic signature for the document from the second transaction entity that is the counterpart of the corresponding electronic transaction Generating a second password for each of one or more second authorization holders in the system, creating a second electronic message including information identifying the second password and the document, and each second authorization Sent to the right holder, received replies to the second electronic message from all the second right holders, and the replies assigned to the corresponding second right holders in the respective replies. If the content matching the password of 2 is included, the second transaction entity performs an electronic signature on the document.
A program characterized by that. A program of an electronic transaction system that supports electronic transactions between a first transaction entity and a second transaction entity,
An electronic signature unit that performs an electronic signature on a document related to an electronic transaction for the first transaction entity for each of the one or more first transaction entities;
A signature application processing unit for performing an approval process when performing an electronic signature on the document for the first transaction entity;
Causing the electronic transaction system to function as a document recording unit that holds the document for each first transaction entity;
The signature application processing unit
Approval included in the application for each one or more first approval right holders in the first transaction entity that receives an application for an electronic signature for the document from the first transaction entity In order based on the order, a first password is generated, a first electronic message including the first password and address information of the first approval screen is created and sent to the first approval authority, When the approval result input from the first approval authority is acquired via the first approval screen and the result of approval by the first approval authority in the final order is acquired, An electronic signature is applied to the document by the electronic signature unit corresponding to one transaction entity;
In addition to the authentication information necessary for the first approval authority to log in to the electronic transaction system via the first approval screen when receiving the approval result from the first approval authority. , Accepting the input of the first password, and if they match, permit the login for the input of the approval result to the electronic transaction system by the first approval right holder ,
For the document relating to the first transaction entity, the second transaction entity included in the application by accepting an application for an electronic signature for the document from the second transaction entity that is the counterpart of the corresponding electronic transaction For each of one or more second approval right holders in, a second password is generated in order based on the approval order included in the application, and the address information of the second password and the second approval screen is included. Create a second electronic message and send it to each second approval authority, obtain the approval result input from the second approval authority via the second approval screen, In the case where a result of approval by the second approval right holder is obtained, an electronic signature for the document is executed in the second transaction entity,
In addition to the authentication information necessary for the second approval authority to log in to the electronic transaction system via the second approval screen when receiving the approval result from the second approval authority. , Accepting the input of the second password, and if these match, permit the login for the input of the approval result to the electronic transaction system by the second approval right holder,
A program characterized by that.

Images