JP6977477B2 - Service application issuing system to mobile terminals and service application issuing method - Google Patents

Description

The present invention relates to a service application issuing system for issuing a service application to a mobile terminal such as a smartphone or a tablet terminal, and a service application issuing method.

In recent years, there has been a service of transmitting and receiving data to and from a mobile terminal such as a smartphone and distributing data such as contents from the server to the mobile terminal.
As a standard for non-contact IC card interfaces, which is an advanced form of the use of this mobile terminal, there is a mobile terminal compatible with NFC (Near Field Communication) defined by the International Organization for Standardization (ISO). With the spread of NFC-compatible mobile terminals, the use of credits using non-contact IC payment services is increasing as a payment method using mobile terminals (see, for example, Patent Document 1). That is, by using this NFC, data can be transmitted / received to / from the R / W (Reader / Writer) device in the payment service system by the mobile terminal as well as the credit IC card.

As described above, when a mobile terminal is applied to a payment service in the same manner as an IC card having a short-range wireless communication function, a service application that emulates the IC card is installed. Then, the installed service application emulates the payment function of an IC card such as a credit card for a mobile terminal.
In the future, not only credit cards but also IC cards such as prepaid cards, loyalty cards, and employee ID cards will be installed with these emulating service applications on mobile terminals such as NFC-compatible smartphones. It is expected that.

FIG. 3 is a diagram schematically showing the configuration of a conventional service application distribution system. In the service application distribution system shown in FIG. 3, a service application for emulating an IC card on a mobile terminal 105 is installed in a UICC (Universal Integrated Circuit Card, general-purpose IC card) 151 of the mobile terminal 105 on a storage unit 152. Installed by a UI (User Interface) application. The UI application is an application provided by a service provider as a user interface necessary for realizing a service using an IC card. The storage unit 152 is a memory card using a non-volatile memory such as an SD card (registered trademark). Examples of the UICC 151 include a SIM (Subscriber Identity Module) card, a UIM (User Identity Module) card, and the like.

The UICC 151 has, for example, a CPU and a memory inside, and emulates an IC card of a service application after it is activated. Each of Company A's service center 110_A to Company Z's service center 110_Z is a service center of an IC card service provider, and sends an access code and password to the user who requested the service by mail or e-mail. ..

Then, when the service application is installed on the UICC 151, the mobile terminal 105 needs a UI application for installing the service application. The control unit 153 downloads the UI application from the distribution service server 102 such as Google Play (registered trademark). Then, the control unit 153 installs the downloaded UI application in the storage unit 152 of the mobile terminal 105. FIG. 4 is a sequence diagram showing an outline of the operation after the UI application is installed.

The distribution of this service application is performed by the MNO (Mobile Network Operator) -TSM (Trusted Service Manager) server 103. Further, SP (Service Provider) -TSM (Trusted Service Manager) 101 performs issuance and management of personal data in the service application.

The SP-TSM server 101 confirms that the correct access code and password sent to the user in advance have been entered in the UI application, authenticates the user, and if it determines that the user has been authenticated correctly, the SP-TSM server 101 is correctly authenticated. Authentication information indicating that (“authentication OK”) is transmitted to the mobile terminal.

Then, when the authentication information is input, the UI application requests the MNO-TSM server 103 to initialize the issuing of the service application to the UICC 151. Then, the MNO-TSM server 103 secures an area for installing the service application in the UICC 151, and installs the service application in the secured area to initialize the UICC 151. After the initialization is completed, the MNO-TSM server 103 outputs an issuance response indicating that the initialization is completed to the mobile terminal 105.

Upon receiving the issue response, the UI application adds the identification information of the UICC 151 and the identification information of the service provider, and sends a personalization request to the SP-TSM server 101.

As a result, the SP-TSM server 101 issues issuance data to the service application of the mobile terminal 105, and activates the service application installed in the mobile terminal 105. This issuance data is data for making a service application that emulates a predetermined IC card installed in the UICC 151 of the mobile terminal 105 available to the owner (activating the service application). ..

Then, the service application outputs a personalization completion notification indicating that the service application has been normally activated (personalized) to the SP-TSM server 101 via the UI application. Then, the SP-TSM server 101 detects that the personalization of the service application has been completed normally, and outputs a personalized response to the mobile terminal 105. At this time, the SP-TSM server 101 changes the issue status from unissued to issued in the application issue table in which the internal access code and the issue status indicating the issue status are associated with each other.

When the issuance is completed, the service will be available. However, in the above-mentioned conventional method, it is necessary to construct an SP-TSM server system or the like and constantly perform management and operation on the Internet in order to issue a service, which is a heavy burden on the service provider. In addition, it is necessary to exchange information such as personal data on the Internet, and there is a problem that information may be leaked. Therefore, it has been desired to realize a simpler and more secure issuing system or issuing method.

Japanese Unexamined Patent Publication No. 2004-193722

The present invention has been made in view of the above-mentioned prior art, and is a large-scale issue for issuing a service to a mobile terminal such as a smartphone without the need to exchange information with a server via the Internet. An object of the present invention is to provide a service application issuing system and a service application issuing method that do not require a server system to be constructed and that there is no risk of information leakage.

In order to solve the above problems, the invention according to claim 1 of the present invention is
Includes a mobile terminal having a camera unit and an NFC unit, an installer installed on the mobile terminal and installing a service application that emulates the operation of an IC card selected by the user on the mobile terminal, and the IC card. , The IC card has a non-contact communication function,
By taking an image of the IC card with the camera unit, information about the user described on the outer surface of the IC card is acquired.
By the non-contact R / W function of the NFC unit, the issue data of the service application that activates the service application is acquired from the IC card.
It is a service application issuing system characterized in that the acquired information is supplied to the installer to activate the service application.

Further, the invention according to claim 2 of the present invention is:
A process in which an installer installed on a mobile terminal having a camera unit and an NFC unit installs a service application on the mobile terminal that embodies the operation of an IC card having a non-contact communication function selected by the user.
A process in which the camera unit of the mobile terminal captures information about the user written on the outer surface of the IC card, stores the captured image data in the mobile terminal, and acquires information about the user from the image data. When,
The process of acquiring the issue data of the service application that activates the service application installed in the mobile terminal from the IC card by the non-contact R / W function of the NFC unit of the mobile terminal.
The process of modifying the issued data acquired from the IC card to support online payment, and
Including
It is a service application issuing method characterized in that the installer activates the service application by using each of the information acquired from the IC card.

Further, the invention according to claim 3 of the present invention is:
The service application issuing method according to claim 2, further comprising a process of capturing and acquiring information necessary for online payment by capturing an image of a medium other than the IC card by the camera function of the mobile terminal.

According to the present invention, when issuing a service application for emulating the operation of an IC card designated by a user to a mobile terminal, information about the user and a service application described on the outer surface of the IC card. Issuance of a service application is performed by activating the service application by directly acquiring the issuance data that activates the IC card from the IC card using the image pickup function of the camera unit of the mobile terminal and the R / W function of the NFC unit. A service application issuance system and a service application issuance method that can be performed, do not require a large-scale server system for issuance, and are not likely to leak information in the process of exchanging information with the server system via the Internet. Can be provided.

It is a schematic block diagram which shows the configuration example of the service application issuing system by one Embodiment of this invention. It is a sequence diagram which shows the operation example which concerns on the issue method of the service application of one Embodiment of this invention. It is a schematic block diagram which shows the configuration example of the conventional service application issuing system. It is a sequence diagram which shows the operation example which concerns on the issuance method of the conventional service application.

Hereinafter, embodiments of the present invention will be described in detail.

FIG. 1 is a schematic block diagram showing a configuration example of a service application issuing system according to an embodiment of the present invention. In FIG. 1, the service application issuing system includes a mobile terminal 1, a distribution service server 2, and a non-contact IC card 3.

The mobile terminal 1 is a terminal held by each user, for example, a mobile phone, a smartphone, a tablet terminal, or the like. Further, the mobile terminal 1 includes a UICC 11, a storage unit 12, a control unit 13, a camera unit 14, and an NFC unit 15.

The UICC 11 is an IC card having unique identification information, and stores its own unique identification information and subscriber information of the mobile terminal 1 (such as a telephone number if the mobile terminal is a mobile phone). This unique identification information is identification information that identifies the UICC 11. For example, if the UICC 11 is a SIM card, the IMSI (International Mobile)
Subscriber Identity). In addition, a service application that emulates the operation of the service of the non-contact IC card 3 selected by the user is installed in the UICC 11 by the UI application. The UICC 11 includes a CPU and a memory, and emulates the non-contact IC card 3 by a service application. Further, the UICC 11 can partition an internal area and install a plurality of service applications from another non-contact IC card or the like.

The storage unit 12 is a storage unit composed of a non-volatile memory, and a UI application or the like is installed. Further, this UI application may be installed in the internal memory of the mobile terminal 1 instead of the storage unit 12.
The control unit 13 transmits / receives data to / from an external device using a wireless base station (not shown) and the Internet 100, and performs processing such as writing data to the storage unit 12. Further, the control unit 13 controls the NFC unit 15 to execute transmission / reception using short-range wireless communication in the NFC, and to transmit / receive data to / from the R / W device in the same manner as the IC card. Further, it has an image recognition function and can recognize and extract predetermined information from the image data captured by the camera unit 14.

The camera unit 14 can take an image of the outer surface of the non-contact IC card 3. The captured image data is stored in the storage unit 12, and the control unit 13 recognizes and extracts the user information written on the outer surface of the non-contact IC card 3 from the image data, and uses this as a UI application. Can be provided. The outer surface refers to either or both of the front surface and the back surface of the non-contact IC card 3.

The NFC function unit 15 has a non-contact R / W function with an external device by NFC, and can transmit and receive data to and from the non-contact IC card 3. NFC is a short-range wireless communication technology defined by ISO as a standard for non-contact IC card interfaces. NFC enables the mobile terminal 1 to emulate the functions of cards such as credit cards, electronic money, and transportation tickets. Further, it can be used as a non-contact R / W, and data can be referred to or rewritten by holding it over a non-contact IC card or IC tag. Therefore, the issued data of the service application stored in the non-contact IC card 3 can be read and provided to the UI application.

The issuance data is data for activating (personalizing) the service application, and is a membership number (PAN: Primary Account Number) for each user's payment brand given to the service application corresponding to the IC card service. , The valid period of the issued IC card, the user's name, the user's signature information, etc., but other information can be added.

The distribution service server 2 distributes the service application and the UI application to the mobile terminal 1 that has made the distribution request. The distribution service server 2 is a server that provides a distribution service for digital contents (applications, movies, music, books, etc.) for mobile terminals, and is a server provided in, for example, GooglePlay (registered trademark).

The non-contact IC card 3 is sent when a user applies for the use of the service to a company (company A to Z) that provides a service such as electronic money, and the information necessary for issuing the service is sent. It is stored and contains information about the user on the front, back, or both sides. Examples of the information about the user include, but are not limited to, the name 32, the member number 31, the security code 33, and the like.

Each of the company A service center 4_A to the company Z service center 4_Z is a service center of a company that provides services that can be used by the mobile terminal 1. When a user makes an application to receive the service of a predetermined IC card, a non-contact that stores an access code that identifies each user, a password that is different for each user, and information related to the issuance of the service. The IC card 3 is sent to the user's home by mail or the like. Here, each of the service center 4_A of the company A to the service center 4_Z of the company Z may supply the access code and the password by mailing the non-contact IC card 3 and by e-mail via the Internet 100. The supplied access code includes, for example, user identification information for identifying a user, service application identification information for identifying a service application, and the like. also. When applying, the user can register his / her signature information. The signature information includes a signature, etc., and the signature may be photographed by an imaging means and applied together with the application information as signature image data, or a signed application form may be sent and converted into data at the service center. ..

In addition, each of the companies A to Z generates a new record for the service application issuance table of the user database (not shown) when the user applies for the use of the IC card, and the ICCID, access code, and so on. Password, SP code, service code,
Write and memorize the name, signature information, etc. At this time, the issuance data of the membership number and expiration date other than the name described in the service application issuance table of the user database is generated and written in the service application issuance table to manage the issuance status of the user's service application. ..

FIG. 2 is a sequence diagram showing an operation example of the service application issuing system in card issuance of the service application in the present embodiment. Before the processing by the sequence shown in Fig. 2, the user applies for the service to the service company (Company A to Company Z) that he / she wants to receive, and the user is concerned with the issuance of the service by mail or e-mail. The non-contact IC card 3 on which the information is recorded, the access code, the PIN number, the password, and the like necessary for communication between the non-contact IC card 3 and the mobile terminal 1 are received from each service company. Further, the UI application (described as UI application for simplification in the figure) is distributed from the distribution service server 2 and installed in the storage unit 12 or the built-in memory of the mobile terminal 1.

Sequence F1:
The user activates the UI application on the mobile terminal 1 and selects the service icon of the non-contact IC card 3 that has already been obtained from the service icons displayed on the display screen (not shown) of the mobile terminal 1.
As a result, the UI application displays a screen for inputting an access code, a password, etc. on the screen of the mobile terminal 1 in order to authenticate that the user is a legitimate user.
When the user inputs these and authenticates that the UI application is a legitimate user, the UI application receives the user information written on the outer surface of the non-contact IC card 3 sent to the user, for example. , Name, PAN (Personal Application Number), security code, and other screens prompting image capture are displayed on the mobile terminal 1.

Sequence F2:
The user activates the camera unit 14 of the mobile terminal 1 and images the front surface of the non-contact IC card 3. The captured image data is stored in the storage unit 12 of the mobile terminal 1, and the user information, for example, the name and the PAN, is extracted by the image recognition by the control unit 13 and provided to the UI application.

Sequence F3:
Subsequently, the camera unit 14 takes an image of the back surface of the non-contact IC card 3. The captured image data is stored in the storage unit 12 of the mobile terminal 1 in the same manner as the image data on the surface, and the user information, for example, the security code is extracted by the image recognition by the control unit 13 and provided to the UI application. do.

Sequence F4:
Subsequently, the UI application executes an authentication process for acquiring the issue data of the service application that activates the service application from the non-contact IC card 3 in order to emulate the non-contact IC card 3 on the mobile terminal 1.
Then, the user holds the mobile terminal 1 over the non-contact IC card 3 and uses the R / W function of the NFC unit, so that the UI application sends a PIN (Personal Authentication Number) to the non-contact IC card 3 and images the image. It is collated with the information such as the name and PAN extracted from the extracted image data, and if the collation is obtained, the response of "authentication OK" is returned from the non-contact IC card 3 to the UI application.

Sequence F5:
After the authentication is obtained, the issue data of the service application for activating the service application on the mobile terminal 1 is subsequently acquired from the non-contact IC card 3 and provided to the UI application. There are online payment and offline payment in transactions, but only the information required for online payment is acquired.

Sequence F6:
Using the issued data of the service application for activating the acquired service application, the UI application corrects the parameters so that the mobile terminal 1 can perform online payment and online PIN authentication.

Sequence F7:
Further, if necessary, information can be acquired from a medium other than the non-contact IC card 3, for example, information displayed in the form of a two-dimensional code on a document can be acquired by using the function of the camera unit 14. Can be done.

By activating the service application as described above, it becomes possible to emulate the function of the non-contact IC card 3 on the mobile terminal 1.

As described above, according to the service application issuing system and the service application issuing method to the mobile terminal of the present invention, the non-contact IC card is emulated by the mobile terminal from the non-contact IC card corresponding to the desired service application. A service application that does not require a large-scale server system and does not have the risk of leaking personal information on the Internet because the information required for the application is acquired directly from the non-contact IC card on the mobile terminal and the service application is activated. Can provide publishing systems and service application publishing methods.

1 ... Mobile terminal 11 ... UICC
12 ... Storage unit 13 ... Control unit 14 ... Camera unit 15 ... NFC unit 2 ... Distribution service server 3 ... Non-contact IC card 31 ... PAN
32 ... Name 33 ... Security code 4_A ... Company A service center 4_Z ... Company Z service center 100 ... Internet

Claims (3)

Includes a mobile terminal having a camera unit and an NFC unit, an installer installed on the mobile terminal and installing a service application that emulates the operation of an IC card selected by the user on the mobile terminal, and the IC card. , The IC card has a non-contact communication function,
By taking an image of the IC card with the camera unit, information about the user described on the outer surface of the IC card is acquired.
By the non-contact R / W function of the NFC unit, the issue data of the service application that activates the service application is acquired from the IC card.
A service application issuing system characterized in that the acquired information is supplied to the installer to activate the service application. A process in which an installer installed on a mobile terminal having a camera unit and an NFC unit installs a service application on the mobile terminal that embodies the operation of an IC card having a non-contact communication function selected by the user.
A process in which the camera unit of the mobile terminal captures information about the user written on the outer surface of the IC card, stores the captured image data in the mobile terminal, and acquires information about the user from the image data. When,
The process of acquiring the issue data of the service application that activates the service application installed in the mobile terminal from the IC card by the non-contact R / W function of the NFC unit of the mobile terminal.
The process of modifying the issued data acquired from the IC card to support online payment, and
Including
A service application issuing method, wherein the installer activates the service application by using each of the information acquired from the IC card. The service application issuing method according to claim 2, further comprising a process of capturing and acquiring information necessary for online payment by capturing an image of a medium other than the IC card by the camera function of the mobile terminal.

Images