JPH10294727A - Data collation method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a data collation method that employs an encryption method in which decoding of encryption is difficult and prescribed data cannot be acquired, even when the decoding is successful. SOLUTION: A random number generating section 113 of a host device 11 generates a constant, based on a random number. An encryption module 114 encrypts the constant by a common key method that employs data A1 stored in a storage section 111 for a key. A decoding module of a terminal equipment 13 uses data A2 stored in a storage section 121 as a key to decode received encrypted data. Furthermore, that decoded by the terminal equipment 12 are used for a key, and data B2 are encrypted by the common key method. The host device 11 decodes the received encrypted data by using the constant generated before as a key, and the decoded data and the data B1 are collated. The result of collation indicates matching, only when the data A1 and A2 are equal as well as when the data B1 and B2 are equal.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a data collating method, and more particularly to a data collating method for collating whether a password input from a terminal device matches a password held by a host device. .

[0002]

2. Description of the Related Art Time sharing system (TSS)
In an information processing system in which a host device and a terminal device are connected via a communication line, such as a personal computer communication network system or an automatic teller machine (ATM) such as a bank, the terminal device sends the information to the host device. When requesting a connection, a determination is made as to whether the user of the terminal device is a user having a legitimate right. In this determination, for example, the ID number and the password input to the terminal device are transmitted to the host device, and the host device extracts the password corresponding to the received ID number from the information storage medium such as the user management file, and retrieves the password. The password is compared with the received password, and if they match, it is determined that the user has a right.

Conventionally, in this type of system, a public line such as a telephone line or a dedicated line has been used as a line connecting a host device and a terminal device. The predetermined data is transmitted to the host device as it is via these lines.

[0004]

With the rapid spread of the Internet in recent years, realization of commercial transactions using the Internet has been strongly desired. However, the following problems occur when the conventional data matching method is used.

[0005] The first problem is that, unlike the public line or the dedicated line, the Internet allows a third party to very easily view (monitor) transmitted data. That is, if the ID number, the password, and the like are transmitted as they are, the ID number and the password are easily known to a third party, and there is a problem that these are highly likely to be misused.

A second problem is that even if the transmission data is encrypted to solve the first problem, there is a high risk of being decrypted if the encryption key is always the same. . In addition, if the encryption key is always the same, there is a possibility that the same signal as the encrypted signal is generated and used illegally.

A third problem is that the terminal device used on the Internet is not a dedicated terminal such as an ATM but a general personal computer, and therefore it is premised that anyone can obtain an encryption program. It is. That is, a person who is familiar with the program can analyze the program to know the encryption method, decrypt the encrypted transmission data, and illegally obtain the ID number, password, etc. of another person. There is.

An object of the present invention is to provide a data collation method using an encryption method which is difficult to decipher and, even if the decipherment succeeds, predetermined data cannot be obtained.

[0009]

According to the present invention, a first device holds data A1 and data B1, and a second device connected to the first device by a communication line includes data A2 and data B1. In a data matching method in which the first device determines whether the data A1 and the data A2 and the data B1 and the data B2 coincide with each other when the first device has B2, the first device includes a random number. Is generated, a constant of a predetermined digit is generated based on the random number, the constant is encrypted by a common key method using data A1 as a key, and transmitted as the first encrypted data to the second device. The second device is the first device.
Is decrypted using the data A2 as a key, the data B2 is encrypted using a common key method using the obtained first decrypted data as a key, and the first data is decrypted as second encrypted data.
And the first device decrypts the second encrypted data using the constant as a key, compares the obtained second decrypted data with the data B1, and finds that they match. Data A1, data A2 and data B1
And a data collating method characterized in that it is determined that both the data B2 and the data B2 match.

Further, according to the present invention, a host device storing a set of an ID number and a password in a storage means responds to a connection request from a terminal device connected to the host device via a communication line. In order to respond, in a data collation method for collating whether a set of an ID number and a password input to the terminal device matches any of the pairs stored in the storage means, Extracting a part necessary for specifying the ID number from the input ID number and transmitting the extracted part to the host device as a user key;
The host device searches the storage unit using the user key, and searches for an ID that matches the input ID number.
The ID number and the password corresponding to the read number are read and used as the read ID number and the read password, a random number is generated, a constant is created based on the random number, and the created constant is used as the read password as a key. Encrypted by a common key method, transmitted as first encrypted data to the terminal device, and the terminal device decrypts the first encrypted data using the input password as a key, and obtains the obtained first encrypted data. The input ID number is encrypted by a common key method using the decrypted data as a key and transmitted to the host device as second encrypted data, and the host device converts the second encrypted data with the constant. The decrypted second decrypted data is compared with the read ID number, and when they match, the set of the input ID number and password is stored in the record. Data collation method characterized by determined to be stored in the unit.

According to the present invention, in a terminal device connected via a communication line to a host device having a user management file, the terminal device that the host device requests to connect to itself is a legitimate user. In a system that uses the ID number and the password input by the user as a means for confirming whether or not the terminal device is the user, the terminal device extracts the user key number from the ID number A input by the user and transmits the user key number to the host device through a communication line. The host device searches the user management file in the host device from the received user key number, extracts the user's ID number B and password B, and simultaneously creates a constant generated from a random number. Creates a cipher A that is encrypted with the key and sends it to the terminal device. The terminal device that receives the cipher A encrypts the password A entered by the user with the key. Obtain the constants by decoding the A, ID
The number is encrypted with the password A and the decrypted constant as a key to generate an encryption B, and sent to the host device. The host device decrypts the encryption B using the generated constant and the password B as a key, and generates the user ID number A. Then, the user is compared with the user B read from the user management file, and if they match, the user of the terminal personal computer can obtain a user confirmation method that is regarded as a valid user.

Further, according to the present invention, in a card payment terminal connected to a host device having a user management file via a communication line, the host device uses the card payment terminal that has requested connection to itself. As means for confirming whether or not the ID card used is a valid card, the card number written on the card read from the ID card input by the user, the card confirmation symbol A, the card confirmation symbol B, and the description in the usage management file In the system in which the card number, the card confirmation symbol A, and the card confirmation symbol B are used, the card payment terminal reads the card, obtains the card number 1, the card confirmation symbol A1, and the card confirmation symbol B1, and obtains the card number. 1. The user key number is extracted from 1 and sent to the host device via a communication line. User key from searches the user management file in the host device takes out the card number 2 and the card confirmation symbol A2 and the card confirmation symbol B2 of the user,
At the same time, a constant generated by using a random number is encrypted using the card confirmation symbol A2 as a key to generate a cipher A, sent to the card payment terminal, and the card payment terminal receiving the cipher A sends the card confirmation symbol A1 To obtain a constant, encrypting the constant obtained by decrypting the card confirmation symbol B1 with the key to generate a cipher B, sending it to the host device, and the host device decrypting the cipher B with the generated constant as the key And the card confirmation symbol B
1 is restored and compared with the card confirmation symbol B2 read from the user management file. If they match, the ID card read by the card payment terminal is regarded as a valid card, and the card user requests According to the method, a card confirmation method for confirming a balance or accepting payment for a specific account can be obtained.

According to the present invention, in a system in which a user uses a terminal device to connect a host device of a financial company via a communication line, the user pays a credit card through a communication line to a sales company. The terminal device sends data necessary for specifying the user to the host device of the financial company, and the host device of the financial company searches the user management file based on the data necessary for specifying the user, and The ID number and the user password are taken out, a random number is generated separately, and a constant is created from the random number.
Encrypt the user's password obtained from the user management file with the key as a key, send it to the terminal device via the Internet, decrypt the code with the password entered by the user at the terminal device as the key, restore the constant, The constant obtained by restoring the number and the payment information is encrypted into a key, sent to the host device of the financial company, and the host device restores the ID number and the payment information by decrypting the code using the generated constant and uses the restored ID number. Comparing the ID numbers read from the user management file, and if they match, recognizes that the user has the correct ID and performs a payment procedure based on the transmitted payment information. A request method for requesting payment is obtained.

Furthermore, according to the present invention, when a user pays a fee to a sales company by a credit card through a terminal device through the Internet, data necessary for identifying the user is transmitted from the terminal device to a host device of the credit company. And the host device of the credit company searches the user management file with the data necessary to identify the user, retrieves the user ID number and the user password, and separately generates a random number. Create a constant, encrypt the constant with a user password as a key, send it to the terminal device via the Internet, decrypt the password entered by the user with the terminal device as the key, obtain the constant, and enter your ID number and purchase information. , Encrypts the constant into a key, sends it to the host device of the credit company, and holds the constant by the host device. Decrypt the key, extract the ID number and purchase information, compare the extracted ID number with the ID number read from the user management file, and if they match, consider that the user is the owner of the correct ID number ,
After performing payment processing based on purchase information, a method of notifying the host device of the sales company of the completion of payment, and the host device of the sales company confirming the notified information and returning the information of completion of reception to the terminal device The payment method of the purchase price can be obtained.

[0015]

The host device encrypts a constant generated based on a random number by a common key method using the data A1 as a key. The terminal device decrypts the encrypted data from the host device using the data A2 as a key. If the data A2 is the same as the data A1, the decoded data matches the constant generated by the host device. The terminal device further encrypts the data B2 using the decrypted data as a key using a common key method. The host device decrypts the encrypted data from the terminal device using the previously generated constant as a key, and checks it against the data B1. The matching results match only when data A1 and data A2 are equal and data B1 and data B2 are equal.

In communication between the host device and the terminal device,
Since a constant generated based on a random number is used for encryption, even if the encryption program is successfully analyzed, it is difficult to decrypt the encryption. In addition, since the constant is updated every time communication is performed, even if the communication is monitored, there is no regularity in the encryption, and it is difficult to decipher.

[0017]

Embodiments of the present invention will now be described with reference to the drawings.

FIG. 1 shows a first embodiment of the present invention.
The information processing system in FIG. 1 includes a host device 11, a terminal device 12, and a communication line 13 connecting these. Here, the communication line 13 is assumed to be a line such as the Internet or a wireless line that is easy to steal and watch (monitor).

The host device 11 has storage units 111 and 112 for storing two types of data, data A1 and data B1, provided to a terminal device (or a user) permitted to connect to the host device 11, respectively. A random number generating unit 113 that generates a random number and holds the constant as a constant; and an encryption module 114 that encrypts the constant held by the random number generating unit 113 with the data A1 stored in the storage unit 111 as a key using a common key method.
A decryption module 115 that decrypts the received encrypted data using the constant held in the random number generation unit 113 as a key, and a comparison module 116 that compares the data decrypted by the decryption module with the data B1 stored in the storage unit 112. have.

On the other hand, the terminal device 12 stores the data A2 and the data B2 given from the host device 11 in the storage units 121 and 122, respectively, and uses the received encrypted data in the data A2 stored in the storage unit 121 as a key. A decoding module 123 for decoding, a constant storage unit 124 for storing data (constant) decoded by the decoding module, and a storage unit 122 using the constant stored in the constant storage unit 124 as a key.
And an encryption module 125 for encrypting the data B2 stored in the common key system using a common key method.

In this information processing system, the terminal device 12
To the host device 11 from the data A2 and data B2
Is requested, the host device 11 checks whether the data A2 and B2 match the data A1 and the data B1, respectively. This can be used, for example, when a user using the terminal device 12 inputs a password and an ID number and requests connection to the host device. In this case, data A2 and data B2
Respectively correspond to the password and ID number entered by the user. Hereinafter, the operation of the information processing system will be described.

When the terminal device 12 requests the host device 11 to check the data A2 and data B2, the random number generator 113 of the host device 11 generates a random number.
The generated random number is stored as a constant. Then, the encryption module 114 encrypts the constant held by the random number generation unit 113 using the data A1 stored in the storage unit 111 as an encryption key. The encryption here is performed by a common key method that can decrypt the data A1 as a key. The encrypted constant (encrypted data) is transmitted to the communication line 13
Is transmitted to the decoding module of the terminal device 12 via the.

Upon receiving the encrypted data from the host device 11, the decryption module of the terminal device 12
The encrypted data is decrypted using the data A2 stored in the storage device as a decryption key. The decrypted data is stored in the constant storage unit 12 once.
4 is stored. Here, when the data A1 and the data A2 match, the decrypted data is stored in the host device 1
It matches the constant held in the random number generation unit 113 of one.

Next, the encryption module 1 of the terminal device 12
The storage unit 1 uses the decrypted data as an encryption key.
The data B2 stored in 22 is encrypted. Also in this case, it is assumed that the encryption is performed by a common key method that can use the decrypted data as a key. Encrypted data B
2 is transmitted to the decoding module 115 of the host device 11 via the communication line 13.

The decryption module 115 of the host device 11
Decrypts the encrypted data B2 from the terminal device 12 using the constant held in the random number generation unit 113 as a key. Here, when the constant held in the constant storage unit 124 of the terminal device 12 matches the constant held in the random number generation unit 113 of the host device 11 (when data A1 and data A2 match). , The decoded data is data B2.

The comparison module 116 compares the data decoded by the decoding module 115 with the data B1 stored in the storage unit 112. If the comparison results match, data A1 and data A2 match, and data B
1 and data B2 match, the host device 11
Determines that the terminal device 12 is a legitimate device permitted to connect to the own device, accepts the connection request from the terminal device 12, and proceeds to the next process.

On the other hand, if the result of comparison by the comparison module 116 does not match, it is determined whether the data A1 and the data A2 do not match, the data B1 and the data B2 do not match, or both do not match. Therefore, the terminal device 12 determines that the connection to the host device 11 is not a valid device, and executes a predetermined process such as disconnection of the line.

As described above, in the present embodiment, each time a connection request is received from the terminal device 12, a random number is generated on the host device 11 side, and encryption is performed using the random number. Even so, it is extremely difficult to break the encryption. Further, even if an encryption program and a decryption program are obtained and the encryption method and the decryption method are analyzed, the random number cannot be known. Therefore, the encryption is decrypted and the data A1 (or data A2) or data B1 (or data It is very difficult to obtain B2).

In the above embodiment, the constant is encrypted using the data A1 as a key.
Even if 1 is encrypted, the same result may be obtained (for example, when the data length is short). Similarly, instead of encrypting and transmitting data B2 using a constant as a key, the same result may be obtained by encrypting and transmitting a constant using data B2 as a key.

Next, a second embodiment of the present invention will be described with reference to FIG.

In FIG. 2, a host computer 21 and a personal computer 23 are connected to each other via an Internet line 25. The host computer 21 is, for example, a credit card company, and a person who has signed a credit contract gives an ID represented by a 12-digit number.
A number (credit card number) is given, and a password represented by a four-digit number is set. Note that the lower six digits of the ID number represent a number unique to each user of the host computer 21, and the host computer 21 uses the lower six digits of the ID number to provide predetermined information (few ID number and password). The host computer 21 is connected to an external storage device 27 for storing predetermined information about the user (user management file).

The host computer 21 uses a user key receiving unit 211 for receiving a user key (identifier required at a minimum for identifying the user) transmitted from the personal computer 23, and uses time and the like. A random number generation unit 212 that generates a 12-digit random number, a constant storage unit 213 that stores the random number generated by the random number generation unit 212 as a constant,
A password storage unit 214 for storing the password read from the external storage device 27 as the password B, and a constant stored in the constant storage unit 213 as the password storage unit 214.
And an encryption unit 215 for encrypting the password B stored in the storage unit 213 as a key, and storing the encrypted data transmitted from the personal computer 23 in the constant storage unit 213 and the password storage unit 214. 216, a decrypted data storage unit 217 for storing data decrypted by the decryption unit 216, and an ID number read from the external storage device 27 as an ID number B. ID number storage unit 218 to store, data stored in decoded data storage unit 217, and ID stored in ID number storage unit 218
And a comparing unit 219 for comparing the number B.

The personal computer 23 stores an ID number input by the user as an ID number A. The ID number storage unit 231 extracts a part of the ID number A and transmits it to the host computer 21 as a user key. A user key transmitting unit 232, a password storage unit 233 storing a password input by the user as a password A, and a password A stored in the password storage unit 233 storing encrypted data sent from the host computer. 234, a constant storage unit 235 for storing the data decrypted by the decryption unit 234 as a constant, and an ID number A stored in the ID number storage unit 231 stored in the password storage unit 233. Password A and the password stored in the constant storage unit 235 Encryption unit 2 to encrypt the door as the key
36.

Next, the operation of this system will be described.

The user requests the personal computer 23 to connect to the host computer 21 in order to use the host computer 21. Upon receiving this request, the personal computer 23 sends an ID to the user.
Require a number and password. When the ID number and the password are input, the personal computer 23 stores them in the ID number storage unit 231 and the password storage unit 233 as the ID number A and the password A, respectively. Next, the user key transmission unit 232 extracts the last six digits of the ID number A stored in the ID number storage unit 231 and stores them as a user key. The data is transmitted to the user key receiving unit 211.

When the user key receiving section 211 of the host computer 21 receives the user key from the personal computer 23, the host computer 21 reads the user key from the user management file stored in the external storage device 27. Read out the ID number and password corresponding to. The read ID number and password are stored in the ID number storage unit 21 as ID number B and password B, respectively.
8 and the password storage unit 214. At this time, the random number generation unit 212 generates a 12-digit random number using the time indicated by a built-in clock. The generated random numbers are stored in the constant storage unit 213.

Next, the encrypting unit 215 includes the constant storing unit 21
3 is encrypted into a 12-digit number using the password B stored in the password storage unit 214 as a key. Various encryption methods are known, and these can be used. However, the method is a common key method in which the encryption key and the decryption key are the same. As an encryption method, for example, there is a method in which the password B is expanded to 12 digits by a process such as repetition, and an arithmetic process is performed between each digit and a constant. Thereafter, the encrypted constant (encrypted data) is transferred to the Internet line 2
5 to the personal computer 23.

When the personal computer 23 receives the encrypted data from the host computer 21, the decryption unit 234 decrypts the encrypted data using the password A stored in the password storage unit 233 as a key. The decoded data (constant) is stored in the constant storage unit 235. Here, if the password A matches the password B, the constant storage unit 2 of the host computer 21
13 and the constant stored in the constant storage unit 235 match.

Next, in the personal computer 23, the ID number A stored in the ID number storage unit 231 is stored in the password A and the constant storage unit 235 stored in the password storage unit 233 in the encryption unit 236. Encrypt with a constant and a key. Again, any encryption method may be used as long as it is a common key method. Thereafter, the encrypted ID number A is transmitted to the decryption unit 216 of the host computer 21 via the Internet line 25.

The decoding unit 216 of the host computer 21
Receives the encrypted data from the personal computer 23 and decrypts the received encrypted data using the constant stored in the constant storage unit 213 and the password B stored in the password storage unit 214 as keys. The result of decoding is stored in the decoded data storage unit 217. here,
When the password A and the password B match, the constant stored in the constant storage unit 213 matches the constant stored in the constant storage unit 235, as described above. Therefore, when the password A and the password B match, the data stored in the decrypted data storage unit 217 is the ID number A.

Next, the comparison unit 219 is a
17 is compared with the ID number B stored in the ID number storage unit 218. As a result of the comparison,
If they match, it is determined that the ID number A and the ID number B match each other, and that the password A and the password B match each other, and the user of the personal computer is registered as an authorized user. And maintain the connection. Conversely, if they do not match, it is determined that the passwords do not match, and a predetermined process such as disconnection is performed.

When the comparison by the comparison section 219 is completed, the constant stored in the constant storage section 213 is deleted.

As described above, in the present embodiment, the host computer checks the ID number and password input from the personal computer with the ID number and password stored in the user management file. Can be. Here, since the password is used only as an encryption key (decryption key), the password cannot be known even if the communication is monitored. Even if the encryption method can be obtained by analysis or the like, it is almost impossible to obtain a password by decrypting the encrypted data because random numbers with no regularity are used for the encrypted data. It is possible.

In the present embodiment, the user key is obtained from the ID number, and the user management file is searched using the user key. May be requested to search for a user management file using the input personal information.

Next, a third embodiment of the present invention will be described with reference to FIGS.

As shown in FIG. 3, the host computer 3
1 and the personal computer 33 are connected to each other via an Internet line 35. An external storage device 37 for storing a user management file is connected to the host computer 31, and an ID card reading device 39 for reading information from an information storage unit of the ID card is connected to the personal computer 33. ing.

Here, the ID card will be described. The ID card used in the present embodiment is a card issued by a credit card company having a host computer. The ID card is, for example, a card having an information storage unit such as a magnetic card or an IC card. As shown in FIG. 4, the information storage unit has at least three storage areas. That is, a card number storage area 41 for storing a card number, a first card identification code storage area 42 for storing a card identification code A, and a card identification code B
Is stored in the second card identification symbol storage area 43.
When a credit card company issues an ID card,
In the information storage area, a card number, a card identification code A,
And the card identification code B is written and issued. here,
Card number, card identification code A, and card identification code B
Are all numbers or symbols unique to each ID card. When the ID card is issued, the same information as the information written in the information storage unit of the ID card is also stored in the user management file of the external storage device 37. The card identification symbol A and the card identification symbol B are each composed of, for example, 20 digits of alphanumeric characters. The contents of the card identification symbol A and the card identification symbol B are kept secret from the owner of the card.

The system according to the present embodiment employs such an I
By confirming the validity of the D card on the host computer 31 side (input of a password or the like is omitted and only the validity of the ID card is confirmed), the user of the personal computer is recognized as a regular user, and thereafter, Maintain the connection.

Returning to FIG. 3, the host computer 31
Is a user key receiving unit 311 for receiving and storing a user key transmitted from the personal computer 33.
And a random number generator 312 for generating random numbers, and a random number generator 3
A constant storage unit 3 for storing a random number generated by 12 as a constant
13, a card identification code A storage unit 314 that stores the card identification code A read from the external storage device 37 as the card identification code A2, and a constant stored in the constant storage unit 313, the card identification code A storage unit 314. And an encryption unit 315 for encrypting data using the card identification symbol A2 stored in the personal computer 33 by using a common key method.
13 as a decryption key, a decryption data storage unit 317 for storing data decrypted by the decryption unit 316, and a card identification symbol B read from the external storage device 37. The card identification symbol B storage unit 318 stored as the symbol B2, and the data stored in the decoded data storage unit 317 and the card identification symbol B
A comparing unit 319 for comparing the card identification code B2 stored in the storage unit 318;

The personal computer 23 reads the card number, the card identification symbol A, and the card identification symbol B read from the ID card by the card reader 39.
To the host computer 31 with the card numbers stored in the card number storage unit 331, the card identification code A storage unit 332, the card identification code B storage unit 333, and the card number storage unit 331 as user keys. A user key transmitting unit 334 for transmitting; a decrypting unit 335 for decrypting the encrypted data transmitted from the host computer 31 using the card identification symbol A stored in the card identification symbol A storage unit 332 as a key; A constant storage unit 336 for storing the data decoded by 335 as a constant
And an encryption unit 337 for encrypting the card identification symbol B stored in the card identification symbol B storage unit 333 using the constant stored in the constant storage unit 336 as a key.

Next, the operation of this system will be described.

The user inserts the ID card into the card reader 39 to read the card number, card identification code A, and card identification code B written in the information storage unit. The card reader 39 stores the read card number, the card identification symbol A, and the card identification symbol B in the card number storage unit 331 and the card identification symbol A storage unit 3, respectively.
32 and the card identification code B storage unit 333. Here, the card identification symbol A stored in the card identification symbol A storage unit 332 and the card identification symbol B storage unit 333.
And the card identification symbol B, respectively, the card identification symbol A1
And a card identification symbol B1.

Next, the user key transmitting section 334 transmits the card number stored in the card number storing section 331 as a user key to the user key receiving section 311 of the host computer 31 via the Internet line 35. I do.

The host computer 31 receives the user key transmitted from the personal computer 33 by the user key receiving unit 311. Then, the card identification code A corresponding to the user key is obtained from the user management file stored in the external storage device 27 using the received user key.
And the card identification symbol B are read out, and the card identification symbol A storage unit 314 and the card identification symbol B storage unit 318 are used as the card identification symbol A2 and the card identification symbol B2, respectively.
To memorize. At this time, the random number generation unit 312 generates a random number of a predetermined digit. The generated random number is stored in the constant storage unit 313.

Next, the encryption section 315 stores the constant storage section 31
3 is stored in the card identification symbol A storage unit 3
14 is encrypted by a common key method using the card identification symbol A2 as a key. The encrypted constant (encrypted data) is transmitted to the decryption unit 335 of the personal computer 33 via the Internet line 35.

The decryption unit 33 of the personal computer 33
5 decrypts the encrypted data received using the card identification symbol A1 stored in the card identification symbol A storage unit 32 as a key. The decrypted data (constant) is stored in the constant storage unit 336. Here, if the card identification symbol A1 and the card identification symbol A2 are the same, the constant stored in the constant storage unit 313 of the host computer 31 and the constant storage unit 336
Matches the constant stored in.

Next, in the personal computer 33, the encryption section 337 stores the card identification symbol B storage section 333.
The card identification symbol B1 stored in the
Encrypted by a common key method using the constant stored in 36 as a key. The encrypted card identification symbol B1 is transmitted to the decryption unit 316 of the host computer 31 via the Internet line 35.

Upon receiving the encrypted data from the personal computer 33, the decryption unit 316
The encrypted data received is decrypted using the constant stored in 13 as a key. The result of decryption is stored in the decrypted data storage
Is stored in Here, if the card identification symbol A1 and the card identification symbol A2 match, as described above,
The constant stored in the constant storage unit 313 and the constant storage unit 33
6, the password stored in the decrypted data storage unit 317 is the same as the card identification symbol B1 when the password A and the password B match.

Next, the comparison unit 319
17 is compared with the card identification code B2 stored in the card identification code B storage unit 318. As a result of the comparison, if they match, it is determined that the card identification symbols B1 and B2 match each other and that the card identification symbols A1 and A2 match each other. That is, the card inserted into the card reader 39 is determined to be a legitimate card. Conversely, if they do not match, it means that the card identification symbol B1 and the card identification symbol B2 do not match, or the card identification symbol A1 does not match the card identification symbol A2, or both do not match. It is determined that the card inserted into the container 39 is not a legitimate card.

As described above, in the present embodiment, the host computer determines whether the ID card is a legitimate card, but the communication between the host computer and the personal computer is based on random numbers. It is difficult to obtain the card identification symbols A and B even if a person who succeeds in the analysis of the encryption method and the decryption method monitors this communication even if the communication is monitored.

In this embodiment, it is assumed that a credit card is used for payment processing. After it is determined that the ID card is a legitimate card, the host computer checks the balance of the card holder's deposit account, , Accept payment to a specific transfer account.

Next, a fourth embodiment of the present invention will be described with reference to FIG. Here, it is assumed that a user makes a contract to purchase a product from a sales company using the Internet and requests payment of the purchase price to a credit company to which the user has a credit card contract. ing. That is, the user has been given an ID number (credit card number) from a credit company,
A password is set when receiving an ID number. Then, the credit company stores the user's ID number and password in the user management file. It is also assumed that the credit company has a payment contract with the sales company.

As shown in FIG. 5, a personal computer 51, a credit company host computer 53,
The sales company host computer 55 is connected to each other via an Internet line 57. The host computer 51 of the credit company and the host computer 55 of the sales company are connected to each other by a dedicated line 58.

The personal computer 51 includes an ID number storage unit 511 for storing an ID number, a password storage unit 512 for storing a password, a purchase information storage unit 513 for storing information on articles purchased from a sales company, and I
A user key transmission unit 514 for generating a user key from the ID number stored in the D number storage unit 511 and transmitting the generated user key to the credit company host computer 53 via the Internet 57, and an encryption transmitted from the credit company host computer Decryption unit 5 for decrypting the encrypted data using the password stored in password storage unit 512 as a key
15, a constant storage unit 516 for storing data (constant 1 and constant 2) decoded by the decoding unit 515, and an ID number storage unit 5
Number and purchase information storage unit 51 stored in the storage unit 11
3 is stored in a password storage unit 51.
An encryption unit 517 that encrypts the password stored in the storage unit 2 and the constant 1 stored in the constant storage unit using a common key method as a key, and an encrypted reception confirmation transmitted from the sales company host computer 55 Decoding section 51 for decoding a message using constant 2 stored in constant storage section 516
8 and a reception confirmation unit 519 that receives the reception confirmation message decrypted by the decryption unit.

Credit Company Host Computer 53
A user key receiving unit 531 for receiving a user key transmitted from the personal computer 51; a user management file unit 532 for storing predetermined information (including at least an ID number and a password) about the user; The ID number storage unit 533 and the password storage unit 534 that store the ID number and the password read from the user management file unit 532 using the user key received by the key reception unit 531 respectively, and two random numbers of a predetermined digit are generated. A random number generation unit 535, a constant storage unit 536 storing the two random numbers generated by the random number generation unit 535 as a constant 1 and a constant 2,
An encryption unit 537 for encrypting the constants 1 and 2 stored in the constant storage unit 536 using a password stored in the password storage unit using a common key method, and encrypted data transmitted from the personal computer 51 Are decrypted using the constant 1 stored in the constant storage unit 536 and the password stored in the password storage unit 534 as keys, and the part corresponding to the ID number in the data decrypted by the decryption unit 538 is ID number storage unit 533
, A purchase information storage unit 540 for storing a portion corresponding to purchase information in data decrypted by the decryption unit 538, and purchase information stored in the purchase information storage unit 540. The payment processing unit 541 that performs payment processing based on the above, the response creation unit 542 that notifies the end of the processing of the payment processing unit 541, and the answer message created by the answer creation unit 542 and the constant 2 stored in the constant storage unit 536 are stored. And an inter-company encryption unit 543 for encrypting the data by a predetermined encryption method with the sales company and transmitting the encrypted data to the sales company host computer 55 via the dedicated line 58.

The sales company host computer 55 decodes the encrypted data transmitted from the credit company host computer 53 via the dedicated line 58 by a decryption method predetermined between the credit company and the credit company. A constant storage unit 552 for storing a constant 2 included in the data decrypted by the inter-company decryption unit 551;
An answer processing unit 553 that creates a reception confirmation message for the user based on the response message included in the data decrypted by the inter-company decryption unit 551, and stores the reception confirmation message created by the response processing unit in the constant storage unit 552. And an encryption unit 554 for encrypting using the constant 2 and transmitting the encrypted data to the personal computer 51 via the Internet line 57.

Hereinafter, the operation of this system will be described.

First, the user uses the personal computer 51 to communicate with the sales company host computer 55 via the Internet line 57 to select a product to be purchased. As a result, the sales company host computer 55 transmits the purchase information including the billing amount, the sales company code, the information on the transfer destination account, and the like to the personal computer 51 via the Internet line 57. This purchase information is stored in the purchase information storage unit 513 of the personal computer 51.

Next, the user enters the personal computer 5
1 requests a connection to the credit company host computer 53. At this time, the user enters the ID number (for example, credit card number) given by the credit company,
The password set with the credit company corresponding to the ID number is stored in the ID number storage unit 511, respectively.
And stored in the password storage unit 512.

In the personal computer 51, in response to a connection request from a user, a user key transmission unit 514
Generates a user key from the ID number stored in the ID number storage unit 511. The user key is an identifier that is at least necessary to specify the person to whom the ID number is assigned, and for example, the last six digits of the ID number are used. The generated user key is sent to the user key receiving unit 5 of the credit company host computer 53 via the Internet line 57.
31.

Credit Company Host Computer 53
When the user key is received by the user key receiving unit 531, the ID number and the password corresponding to the received user key are retrieved by searching the user management file unit 532, and the ID number storage unit 533 and the password are read, respectively. It is stored in the storage unit 534. At this time, the random number generation unit 535
A random number of a predetermined digit is generated, and two constants of a predetermined digit (constant 1 and constant 2) are created based on the random number. These constants are stored in the constant storage unit 536.

Next, the encryption unit 537 converts the constant
6 is encrypted by a common key method using the password stored in the password storage unit 534 as a key (both the constant 1 and the constant 2). The encrypted constant is transmitted to the decryption unit 515 of the personal computer 51 via the Internet line 57 as encrypted data.

Decryption section 51 of personal computer 51
5 decrypts the received encrypted data using the password stored in the password storage unit 512 as a key. The decoded data (constant 1 and constant 2) is stored in the constant storage unit 516. Here, if the password stored in the password storage unit 512 is the same as the password stored in the password storage unit 534, the constant storage unit 51
The constants 1 and 2 stored in 6 correspond to the constants 1 and 2 stored in the constant storage unit 536, respectively.

Next, in the personal computer 51, the encryption section 517 stores the ID number stored in the ID number storage section 511 and the purchase information stored in the purchase information storage section 513 in the constant storage section 516. Using the stored constant 1 and the password stored in the password storage unit 512 as keys, encryption is performed by a common key method. The encrypted ID number is sent to the decryption unit 538 of the credit company host computer 53 via the Internet line 57.
Sent to

When the decryption unit 538 of the credit company host computer 53 receives the encrypted data from the encryption unit 517 of the personal computer 51, the decryption unit 538 stores the constant 1 stored in the constant storage unit 536 and the password storage unit 534.
Decrypts the received encrypted data using the password stored in the key as a key. Here, if the password stored in the password storage unit 534 and the password stored in the password storage unit 512 match, as described above, the constant 1 stored in the constant storage unit 536 is used. Since the constant 1 stored in the constant storage unit 516 matches, if the two passwords match, the decryption unit 53
8 is the same as the ID number stored in the ID number storage unit 511 and the purchase information storage unit 51.
3 becomes the same information as the purchase information stored. The part corresponding to the ID number in the data decoded by the decoding unit 538 is output to the matching unit 539. Further, a part corresponding to the purchase information is output to the purchase information storage unit 540.

The collating unit 539 compares the data input from the decrypting unit 538 with the ID stored in the ID number storing unit 533.
Compare with the number. If the comparison result does not match, it is determined that the user is not a legitimate credit card contractor, and the credit card company host computer 53 performs appropriate processing such as disconnecting the personal computer 51. . At this time, the constant stored in the constant storage unit 536 is also deleted. If the comparison result matches, the ID number and password entered by the user match the ID number and password in the user management file. It determines that it is a legitimate credit card contractor and performs the following processing.

The payment processing unit 541 includes a purchase information storage unit 54
Payment processing is performed based on the purchase information stored in “0”. Here, information (use amount, use limit amount, etc.) relating to the credit card use status corresponding to the ID number is read from the user management file unit 532, and it is determined whether or not to pay the bill amount included in the purchase information. If there is no problem, transfer the charged amount to the transfer destination account included in the purchase information.

When the transfer is completed, the answer creating unit 542
Creates a confirmation message including information such as the client and the requested amount and information notifying that the payment process has been performed.
The created confirmation message is encrypted by the intercompany encryption unit 543 together with the constant 2 stored in the constant storage unit 536, and transmitted to the sales company host computer 55 via the dedicated line 58. Here, the encryption method in the inter-company encryption unit 543 may be any method as long as it is an encryption method determined in advance with the sales company. That is,
It is not necessary to use the common key method. At this time, the constant stored in the constant storage unit 536 is deleted.

The inter-company decryption unit 551 of the sales company host computer 55 includes the credit company host computer 5
Upon receipt of the encrypted constant 2 and the confirmation message from 3, these are decrypted by a predetermined decryption method. The decoded constant 2 is stored in the constant storage unit 552. Also,
The decrypted confirmation message is output to answer processing section 553.

The answer processing unit 553 creates an answer (acceptance confirmation message) to the user with reference to the confirmation message. The created reception confirmation message is encrypted by the encryption unit 554 using the constant 2 stored in the constant storage unit 552 as a key. The encrypted reception confirmation message is transmitted to the personal computer 51 via the Internet line 57.

The decryption unit 51 of the personal computer 51
Reference numeral 8 uses the constant 2 stored in the constant storage unit 516 as a key to decrypt the encrypted reception confirmation message from the sales company host computer 55. The reception message confirmation unit 519 displays the reception message decrypted by the decryption unit 518 and notifies the user.

In this embodiment, two constants are prepared as constants used for encryption, and one constant (constant 1) is not notified to the sales company host computer. Your computer will never know your password.

[0083]

According to the present invention, each time data collation is attempted, a constant is generated using a random number, and this constant is encrypted or this constant is used as a key for encryption. This makes it possible to provide a data collation method that is difficult to decipher and extremely safe.

[Brief description of the drawings]

FIG. 1 is a block diagram showing a first embodiment of the present invention.

FIG. 2 is a block diagram showing a second embodiment of the present invention.

FIG. 3 is a block diagram showing a third embodiment of the present invention.

FIG. 4 is a diagram for explaining an information storage area of an ID card used in a third embodiment of the present invention.

FIG. 5 is a block diagram showing a fourth embodiment of the present invention.

[Explanation of symbols]

 REFERENCE SIGNS LIST 11 host device 12 terminal device 13 communication line 111 storage unit 112 storage unit 113 random number generation unit 114 encryption module 115 decryption module 116 comparison module 121 storage unit 122 storage unit 123 decryption module 124 constant storage unit 21 host computer 23 personal computer 25 internet Line 27 External storage device 211 User key reception unit 212 Random number generation unit 213 Constant storage unit 214 Password storage unit 215 Encryption unit 216 Decryption unit 217 Decryption data storage unit 218 ID number storage unit 219 Comparison unit 231 ID number storage unit 232 Use User key transmission unit 233 password storage unit 234 decryption unit 235 constant storage unit 236 encryption unit 31 host computer 33 personal computer 35 internet line 3 7 External storage device 39 ID card reader 41 Card number storage area 42 First card identification storage area 43 Second card identification storage area 311 User key reception unit 312 Random number generation unit 313 Constant storage unit 314 Card identification code A storage unit 315 Encryption unit 316 Decryption unit 317 Decryption data storage unit 318 Card identification symbol B storage unit 319 Comparison unit 331 Card number storage unit 332 Card identification symbol A storage unit 333 Card identification symbol B storage unit 334 User key transmission unit 335 Decryption unit 336 Constant storage unit 337 Encryption unit 51 Personal computer 53 Credit company host computer 55 Sales company host computer 57 Internet line 58 Dedicated line 511 ID number storage unit 512 Password storage unit 513 Purchase information storage unit 514 User key transmission unit 515 Decryption unit 516 Constant storage unit 517 Encryption unit 518 Decryption unit 519 Reception confirmation unit 531 User key reception unit 532 User management file unit 533 ID number storage unit 534 Password storage unit 535 Random number generation unit 536 Constant Storage unit 537 Encryption unit 538 Decryption unit 539 Collation unit 540 Purchase information storage unit 541 Payment processing unit 542 Answer creation unit 543 Intercompany encryption unit 551 Intercompany decryption unit 552 Constant storage unit 553 Answer processing unit 554 Encryption unit

Claims (10)

[Claims] A first device configured to store data A1 and data B1;
And a second device connected to the first device via a communication line.
A data collation method for judging whether or not both the data A1 and the data A2 and the data B1 and the data B2 coincide with each other when the first device has the data A2 and the data B2; The first device generates a random number, generates a constant of a predetermined digit based on the random number, encrypts the constant with a common key method using data A1 as a key, and generates the second encrypted data as first encrypted data. The second device decrypts the first encrypted data using the data A2 as a key, and encrypts the data B2 using the obtained first decrypted data as a key using a common key method. Transmitting the second encrypted data to the first device, the first device decrypting the second encrypted data using the constant as a key, and obtaining the second decrypted data and the data B1 and these are one If you are, data collating method and judging the data A1 and the data A2 and the data B1 and data B2 are both consistent. 2. A host device storing an ID number and a password in a storage means as a set in response to a connection request from a terminal device connected to the host device via a communication line. In a data collation method for collating whether a set of an ID number and a password input to a device matches one of the pairs stored in the storage means, the terminal device may include the input ID number. From I
A part necessary for specifying the D number is extracted and transmitted to the host device as a user key, and the host device searches the storage unit using the user key and performs the input ID number. The ID number and the password corresponding thereto are read and read, and the read ID number and the read password are used as the ID number and the read password. A random number is generated, and a constant is created based on the random number. And transmits the encrypted data to the terminal device as first encrypted data, and the terminal device decrypts the first encrypted data using the input password as a key, and obtains the encrypted data. The input ID number is encrypted by a common key method using the first decrypted data as a key, and the encrypted ID number is transmitted to the host device as second encrypted data. The second encrypted data is decrypted with the constant, the obtained second decrypted data is compared with the read ID number, and when they match, the input ID number is A data collation method, wherein it is determined that a set of a password and a password is stored in the storage means. 3. When the terminal device creates the second encrypted data, the terminal device uses not only the first decrypted data but also the input password as a key, and the host device uses the second encrypted data as a key. 3. The data collation method according to claim 2, wherein when decrypting the encrypted data, not only the constant but also the read password is used as a key. 4. A combination of an ID number and a password stored in the storage means, wherein unique data is added to each of the sets, and the unique data is used as the user key instead of the input ID number. 4. The data collating method according to claim 2, wherein the data collating method is used. 5. When the terminal device creates the second encrypted data, the terminal device adds predetermined information to the input ID number and then performs encryption, and the host device transmits the second encrypted data. 2. The method according to claim 1, wherein a portion corresponding to the input ID number in the second decrypted data obtained by decrypting the encrypted data is compared with the read ID number. 2, 3, or 4 data matching methods. 6. A terminal device connected via a communication line to a host device having a user management file, the host device confirms whether the terminal device requesting connection to itself is an authorized user. As a means, in a system using an ID number and a password input by the user, the terminal device extracts the user key number from the ID number A input by the user, sends the user key number to the host device through a communication line, and the host device receives the user key number. The user management file in the host device is retrieved from the user key number obtained, the user ID number B and the password B are taken out, and at the same time, a constant generated from random numbers is created, and this constant is encrypted using the password B as a key. The encryption device A creates the encryption A, sends it to the terminal device, and receives the encryption A. The terminal device uses the password A input by the user as a key to encrypt the encryption A.
To obtain the above constant, encrypt the ID number with the password A and the decrypted constant with the key to create a cipher B, and send it to the host device. The host device uses the generated constant and the password B as the key to generate the cipher B. , The user ID number A is obtained, compared with the user B read from the user management file, and if they match, the terminal personal computer user is regarded as a valid user. 7. Instead of sending the user key number from the terminal device, the host device requests user information from the host device, and searches the user management file of the host device in a form that answers the request.
Request to retrieve the user's ID number B and password B from the user management file and use the separately entered user's ID number A and password A to confirm that the user of the terminal device is a legitimate user Item 6. User confirmation method. 8. A card payment terminal connected via a communication line to a host device having a user management file, wherein the ID card for which the host device is trying to use the card payment terminal that has requested connection to itself is used. As a means to confirm whether the card is valid,
In a system in which a card number, a card confirmation symbol A, a card confirmation symbol B, and a card number, card confirmation symbol A, and a card confirmation symbol B described in a usage management file, which are described on a card read from a D card, are used. , The card payment terminal reads the card, card number 1,
It obtains the card confirmation symbol A1 and the card confirmation symbol B1, extracts the user key number from the card number 1 and sends it to the host device via a communication line. And retrieves the user's card number 2, card confirmation symbol A2, and card confirmation symbol B2, and simultaneously encrypts a constant generated using random numbers with the card confirmation symbol A2 as a key. The cryptographic device A is made, sent to the card payment terminal, and the card payment terminal receiving the cryptographic A decrypts the card confirmation symbol A1 as a key to obtain a constant, and decrypts the card confirmation symbol B1 as a key. Encrypted code B is generated and sent to the host device. The host device decrypts the code B using the generated constant as a key, restores the card confirmation symbol B1, and reads it from the user management file. Compared with the inserted card confirmation symbol B2, if they match, the ID card read on the card payment terminal is regarded as a valid card, and the balance is confirmed or the specific account is Card confirmation method to accept payment. 9. In a system in which a user uses a terminal device to connect a host device of a financial company via a communication line, when a fee is paid to a sales company by a credit card through the communication line, it is necessary to identify the user. Data is sent from the terminal device to the host device of the financial company, and the host device of the financial company searches the user management file based on the data necessary to identify the user, and obtains the user ID number and the user. In addition to extracting the password, separately generating a random number, creating a constant from the random number, encrypting the constant with the user's password obtained from the user management file as a key,
It is sent to the terminal device through the Internet, the terminal device decrypts the code using the password entered by the user as a key, and restores the constant. The constant obtained by restoring its own ID number and payment information is encrypted with the key and transmitted to the financial company host device. The sending host device restores the ID number and the payment information by decrypting the code using the generated constant, and compares the restored ID number with the ID number read from the user management file. A request method for requesting payment from a user terminal device to a financial institution, wherein the user terminal device recognizes the owner of the ID and performs a payment procedure based on the transmitted payment information. 10. When a user pays a fee to a sales company by a credit card through a terminal device via the Internet, data necessary to identify the user is sent from the terminal device to a host device of the credit company, and the host of the credit company is sent to the credit company. The device searches the user management file with the data necessary to identify the user, retrieves the user ID number and the user password,
Separately, a random number is generated to create a constant, the constant is encrypted with a user password as a key, sent to the terminal device via the Internet, the password input by the user is decrypted into the key at the terminal device, and the constant is obtained. The ID number and purchase information were encrypted using the constant as a key and sent to the host device of the credit company, and the host device used it to decrypt the key using the constant as a key to extract the ID number and purchase information. ID which read ID number from user management file
Compare with the number, and if they match, the user is the correct ID
After assuming that the user has the number and performing payment processing based on the purchase information, the sales company's host device notifies the host computer of the payment completion, and the sales company's host device confirms the notified information and checks the terminal device. Payment method of the purchase price by returning the information of the reception completion to the.