JPH11328269A - Electronic coupon system and method for issuing and verifying electronic coupon - Google Patents

Abstract

PROBLEM TO BE SOLVED: To detect forgery and alteration of a coupon and the illegal use of a coupon by a third person even when the coupon electronically issued is printed and used. SOLUTION: It is possible to detect alteration and forgery of a coupon by verifying a digital signature described on the coupon even when a consumer 200 prints a coupon and uses it because a seller 100 produces a coupon on which the irreversible conversion value of a password transmitted from the consumer 200, coupon information that makes trouble if it is altered and a digital signature of the coupon information are described as visually recognizable data even when it is printed at the time of issuing the coupon. Also, it is possible to detect illegal use of a coupon by a third person by such manners that the consumer 200 presents the same password as at the time of being issued when the consumer uses it and that the seller 100 compares the irreversible conversion value of the presented password with an irreversible conversion value described on the coupon.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an electronic coupon system for properly handling electronic coupons that can be exchanged for various products and services in an environment where an electronic commerce system is used via a network such as the Internet. Specifically, a consumer who receives an electronic coupon via a network can use the electronic coupon not only at a virtual store established on the network but also at a store that actually exists. Coupon system.

[0002]

2. Description of the Related Art At present, tickets that can be exchanged for various products and services, such as gift certificates and discount tickets (hereinafter, generally referred to as "coupons") have become widespread. There are two types of coupons: one that works on one card, and one that works when multiple cards are collected. The more effective the coupon, the more forged or tampered with advanced printing technology. Or to verify the signature at the time of use to prevent unauthorized use by third parties.

[0003] With the recent development of information devices and the improvement of communication environments, electronic commerce via open networks such as the Internet has been actively performed. The seller opens a virtual store on the network and sells products to general consumers.

[0004] In electronic commerce via such a network, there is an increasing demand to handle coupons (electronic coupons) as part of consumer services. However, if the electronic coupon is simply image data, the consumer who receives the electronic coupon in the regular procedure can copy and use the electronic coupon many times,
Also, it can be easily distributed to other consumers. Furthermore, since the electronic coupon is distributed via an open network, there is a possibility that a third party may eavesdrop and be illegally used.

As a countermeasure for preventing such misconduct, an electronic coupon system uses the following encryption technology.

As a first measure, in an electronic coupon system, in order to prevent forgery or falsification of the electronic coupon, a digital signature of a seller (issuing party) is added to the electronic coupon, and the digital signature is confirmed at the time of use. I am trying to do it. The digital signature technology is described, for example, in "Introduction to Cryptography Theory: Eiji Okamoto, Kyoritsu Shuppan (1996)", pp. 133-
138. The signature method using asymmetric encryption (public key encryption) in this document is briefly described as follows.

[0007] The signer creates signature data by encrypting the message to be signed (or the hash value of the message) using a secret key known only to the signer, and collects the message and the signature data. And pass it to the verifier. The verifier decrypts the received signature data using the public key corresponding to the secret key, and if the decrypted result matches the received message, it is determined that the data is signed by the signer. to decide.

As a second measure, in the electronic coupon system, in order to prevent double use of the electronic coupon, a serial number is added to each electronic coupon and the serial number is checked at the time of use. It checks whether it is an unused electronic coupon.

Further, as a third measure, in an electronic coupon system, a message is encrypted and transmitted in order to prevent unauthorized use of the electronic coupon by a third party. As a method of encrypting a message, for example, SSL (Secure Socket Layer) described on pages 101 to 112 of “OpenDesign (1996/6 No. 14): CQ Publisher” can be mentioned.

[0010]

In the case of a system dedicated to electronic coupons in which all processes from issuance to use of electronic coupons are performed via a network, all the above-described measures are taken. Various frauds can be prevented. However, considering the usability of consumers, consumers can print electronic coupons received over the network on paper and use them as paper-based coupons to bring to a store for use, just like traditional paper-based coupons. A coupon / electronic coupon combination system is preferable, but in such a system, the digital signature added to the electronic coupon is not reflected in the print result, so that forgery of the electronic coupon cannot be prevented.

[0011] Further, by managing the used serial number at the store, double use of the coupon can be prevented, but the electronic coupon received via the network is stolen from the storage device of the consumer terminal. If the coupon is stolen or the printed coupon is stolen, if the coupon is illegally used by a third party, a valid consumer cannot use the coupon.

Furthermore, when handling coupons that are effective when only a plurality of coupons are collected (hereinafter, this type of coupon is referred to as a “ticket”), a coupon that is effective with one coupon is used. Increase the number of tickets issued,
Since not all consumers finish collecting tickets, it is difficult for the seller to manage each consumer individually.

[0013] The present invention has been made in view of the above circumstances, and has as its object that a consumer who has received an electronic coupon via a network can use the electronic coupon only at a virtual store established on the network. Instead, an object of the present invention is to provide an electronic coupon system that can be used even at a store that actually exists.

Another object of the present invention is to provide an electronic coupon system which can reduce the trouble of a seller when handling tickets.

[0015]

In order to achieve the above object, the present invention provides, as a first aspect, at least one consumer terminal used by a consumer and at least one seller used by a seller. The consumer terminal is connected to each other via a network, and the consumer terminal transmits a consumer password to the seller terminal to generate a coupon that exhibits a predetermined effect with a single card. Coupon issuing request means for requesting a ticket, coupon receiving means for receiving a coupon transmitted from the seller terminal, a consumer password for the seller terminal, and a coupon received by the coupon receiving means. And a coupon use requesting unit for requesting use of the coupon, and a coupon printing unit for printing the coupon received by the coupon receiving unit. A consumer terminal for transmitting a coupon for which a ticket is requested from the consumer terminal to the consumer terminal; a coupon for which use is requested by transmitting from the consumer terminal; and Verification means for verifying the coupon requested for use printed on the consumer terminal, the coupon issuing means of the seller terminal receives the password transmitted from the consumer terminal, An irreversible conversion value, coupon information on the effect of the coupon, and the coupon information,
Create a coupon that describes encrypted information encrypted using a secret encryption key known only to the seller as visible data, transmit the created coupon to the consumer terminal, The coupon verification means of the consumer terminal receives the password and the coupon transmitted from the consumer terminal when verifying the coupon transmitted from the consumer terminal and requested to be used, and irreversibly converts the received password. Verify whether the value and the irreversible conversion value described in the received coupon match, and use a secret encryption key that only the seller knows the coupon information described in the received coupon. Verify that the encrypted information encrypted with the encrypted information described in the received coupon matches, and print it on the consumer terminal and use it. In the case to verify the coupon,
Obtain the irreversible conversion value, coupon information, and encryption information described on the printed coupon, and determine whether the irreversible conversion value of the password presented by the consumer matches the obtained irreversible conversion value. Verifying, and verifying whether or not the acquired coupon information is identical to the encrypted information obtained by encrypting the obtained coupon information using a secret encryption key known only to the seller. Offers an electronic coupon system.

According to the first aspect, for coupon information that cannot be falsified, a coupon in which encrypted information obtained by encrypting the coupon information is described as visible data is created. Even when the coupon is printed and used, forgery or falsification of the coupon can be prevented by verifying the encryption information described in the printed coupon.

Further, according to the first aspect, a coupon in which the irreversible conversion value of the password presented by the consumer at the time of issuing the coupon is described as visible data is created. By comparing the irreversible conversion value of the password presented by the consumer at the time of use with the irreversible conversion value described in the coupon, unauthorized use of the coupon by a third party can be detected.

[0018] In the first aspect, the coupon issuing means of the seller terminal receives the password transmitted from the consumer terminal instead of the above-described operation, and obtains an irreversible conversion value of the received password, A coupon in which the coupon information relating to the validity of the coupon is concatenated, and the concatenation result is a digital signature obtained by encrypting the coupon using a seller's secret key in a public key cryptosystem, and the coupon information is described as visible data May be created, and the created coupon may be transmitted to the consumer terminal.
In such a case, the coupon verification means of the seller terminal verifies the password and coupon transmitted from the consumer terminal when verifying the coupon transmitted from the consumer terminal and requested to be used. The irreversible conversion value of the password obtained as a result of decrypting the digital signature written on the received coupon using the seller's public key in the public key encryption method matches the irreversible conversion value of the received password Verify whether or not to do
Whether or not the coupon information obtained as a result of decrypting the digital signature described in the received coupon using the seller's public key in the public key cryptosystem matches the coupon information described in the received coupon Verify that
When verifying the coupon that has been printed and requested to be used on the consumer terminal, the coupon information and the digital signature described in the printed coupon are obtained, and the obtained digital signature is used in a public key cryptosystem. It verifies whether the irreversible conversion value of the password obtained as a result of decryption using the seller's public key matches the irreversible conversion value of the password presented by the consumer, and publishes the obtained digital signature. It is possible to verify whether or not the coupon information obtained as a result of decryption using the seller's public key in the key cryptosystem matches the acquired coupon information.

Further, in the first aspect, the coupon issuing means of the seller terminal includes, together with the created coupon,
A digital signature obtained by encrypting the entire coupon using the seller's private key in the public key cryptosystem is transmitted to the consumer terminal, and the coupon receiving means of the consumer terminal uses the received coupon and Alternatively, it may be verified whether or not the result obtained by decrypting the digital signature transmitted together with the coupon using the seller's public key in the public key cryptosystem matches.

In this way, not only when the coupon is used but also when the coupon is issued, the consumer who has received the coupon can verify the received coupon.

Further, in the first aspect, the coupon information includes a unique serial number for each coupon, and the seller terminal uses the serial number in the coupon information described in the coupon that has been activated. The serial number storage means for storing the number is provided, and the coupon verification means of the seller terminal checks whether the serial number in the coupon information described in the coupon to be verified is stored in the serial number storage means. Whether or not it may be verified may be used.

In this way, the coupon can be prevented from being forged or falsified, and the coupon can not be used twice by a third party.

According to a second aspect of the present invention, in the first aspect, in the first aspect, the consumer terminal transmits a consumer password to the seller terminal. A coupon that transmits and exhibits a predetermined effect when only a predetermined number of n (n> 1) are collected (hereinafter, referred to as a coupon)
Called “ticket”. ), The initial ticket issuance requesting means for requesting issuance of the first ticket, the consumer terminal, and the latest ticket (hereinafter, “ Ticket issuance request means for requesting issuance of the second and subsequent tickets, and ticket reception for receiving and storing the ticket transmitted from the seller terminal. Means, and the seller terminal transmits the first ticket requested to be issued from the consumer terminal,
Initial ticket issuing means for transmitting to the consumer terminal, and ticket issuing means for transmitting the second and subsequent tickets requested to be issued by the consumer terminal to the consumer terminal, The initial ticket issuing means of the seller terminal receives the password transmitted from the consumer terminal, and receives the received password and a unique value (hereinafter, referred to as “UID” assigned to identify a set of n tickets). ) And confidential information known only to the seller, and based on the resulting irreversible conversion value H ₁ , the irreversible conversion value of the irreversible conversion value _Hi (1 ≦ i <n) H _{i + 1} is sequentially calculated, the UID and the irreversible conversion value H _n are transmitted to the consumer terminal as a first ticket, and the ticket issuing means of the seller terminal transmits the ticket to the consumer terminal. Sent from It received the word and ticketed latest ticket, and password that you received, and the UID of the ticketed latest ticket received, connects the secret information known only to the only seller, is the result of concatenating irreversible conversion value H ₁ based on the irreversible conversion value _{H i (1 ≦ i <n} ) sequentially calculates the irreversible conversion value H _{i + 1} of the irreversible conversion value H _m of the ticketed latest ticket received (1 ≦ m ≦ n) And the irreversible conversion value H ₁ match, the ticketing of n tickets is completed. If they do not match, the UID and the irreversible conversion value H _m−1 are used as the next ticket and the consumer terminal The electronic coupon system is characterized in that the electronic coupon system is transmitted to the electronic coupon system.

According to the second aspect, a password which is information known only to the consumer, secret information known only to the seller (for example, a secret key of the seller in the public key cryptosystem), and n sheets UI for identifying a set of tickets
D and the irreversible conversion value are repeatedly calculated from the concatenation of D and the nth calculation result, the (n-1) th calculation result,.
Since each calculation result is issued as a ticket in the order of the first calculation result and the first calculation result,
There is no need for the retailer to manage how many tickets have already been issued for each consumer.

In the second embodiment, the initial ticket issuing means of the seller terminal is not the above-mentioned operation, but
Receiving the password transmitted from the consumer terminal, concatenating the received password with a unique value (hereinafter, referred to as “UID”) assigned to identify a set of n tickets, Using a secret encryption key known only to the seller, the encrypted information H ₁ obtained by encrypting the concatenation result.
While calculating a calculated based on the encryption information H _1, sequentially calculates the encrypted information H _{i + 1} of the encrypted information _{H i (1 ≦ i <n} ), the UID and encrypted information H _n First, the ticket is transmitted to the consumer terminal as the first ticket, and the ticket issuing means of the seller terminal is not the above-described operation, but the password transmitted from the consumer terminal and the latest issued ticket. Receiving the ticket, concatenating the received password and the UID of the received latest ticket issued, and encrypting the concatenated result using a secret encryption key known only to the seller, encryption information H
With calculating the _1, calculated on the basis of encrypted information H _1, the encrypted information H _{i + 1} are sequentially calculated the encrypted information _{H i (1 ≦ i <n} ), of the card-issued latest ticket received If the encryption information H _m (1 ≦ m ≦ n) and the encryption information H ₁ match, the issuance of n tickets is completed. If they do not match, the UID and the encryption information H _{m are used. -1} may be transmitted to the consumer terminal as the next ticket.

In the second embodiment, the initial ticket issuing means of the seller terminal is not the above-described operation,
The initial ticket issuing means of the seller terminal receives the password transmitted from the consumer terminal, and receives the received password and a unique value (hereinafter, “ UID ”) and the number information indicating that the ticket is the first ticket, and encrypts the result using a secret encryption key known only to the seller. ₁ is transmitted to the consumer terminal as the first ticket, and the ticket issuing means of the seller terminal is not the above-described operation, but the password and ticketing transmitted from the consumer terminal. It requires to receive the latest ticket received ticketed the latest ticket and is encrypted information _{H m (1 ≦ m ≦ n} ), known only by the seller number information obtained as a result of decoding by using the encryption key secret If it is the number of information indicating that the ticket of the n-th, to complete the ticketing of n tickets, if not the case, and password that you received, it is ticketed latest ticket received encrypted information H _m (1 ≦ m
≦ n) by concatenating the UID obtained as a result of decryption using a secret encryption key known only to the seller and the number information indicating that the ticket is the (m + 1) th ticket, to obtain a secret known only to the seller. The encrypted information Hm _{+ 1} obtained by encrypting the result of the concatenation using the encryption key may be transmitted to the consumer terminal as the next ticket.

[0027]

Embodiments of the present invention will be described below with reference to the drawings.

In the drawings referred to in the following description, the same reference numerals denote the same components.
In addition, the present invention is not limited by this.

(First Embodiment) First, a first embodiment of the present invention will be described.

FIG. 1 is a diagram showing a schematic configuration of an electronic coupon system according to the first embodiment.

The electronic coupon system according to the first embodiment includes consumers 200 ₁ to 200 _n (hereinafter simply referred to as “consumer 2”).
00 ”. ) And a system used by the seller 100, as shown in FIG. 1, consumer terminals 201 _{1 to} 201 _n (hereinafter, simply referred to as “consumer terminals 201”) which are terminals used by the consumer 200. And a seller terminal 101, which is a terminal used by the seller 100, is connected to each other via a communication network 300 such as the Internet.

In the electronic coupon system according to the first embodiment, the consumer 200 exchanges data with the seller terminal 101 via the communication network 300 using the consumer terminal 201. , It is possible to request the seller 100 to issue a coupon or to use the coupon issued by the seller 100. At this time, the seller 100 uses the seller terminal 101 to issue a coupon to the consumer 200 or to verify a coupon used by the consumer 200.

In particular, in the electronic coupon system according to the first embodiment, the consumer 200
1 to print the coupon issued by the seller 100 and bring the printed coupon to the store so that the use of the coupon can be directly requested to the seller 100. I have. At this time, seller 1
00 verifies the coupon brought by the consumer 200 using the seller terminal 101.

That is, the electronic coupon system according to the first embodiment realizes an electronic commerce environment performed through the communication network 300, and the consumer 200
The coupon issued by 00 is used not only at a virtual store established on the communication network 300 but also at a store that actually exists.

Next, the hardware configuration of the seller terminal 101 and the consumer terminal 201 constituting the electronic coupon system according to the first embodiment will be described with reference to FIGS.

FIG. 2 is a diagram showing a hardware configuration of the seller terminal 101.

As shown in FIG. 2, the seller terminal 101
A communication interface 102, a display device 103, an input device 104, a storage device 105, and a central processing unit (CP
U) 106 and a temporary storage device (memory) 107 are connected to each other by a bus 110.

The communication interface 102 is connected to the communication network 30
0 is an interface for exchanging data with the consumer terminal 201 via the Internet.

The display device 103 is connected to the seller terminal 10.
1 is used to display a message or the like to the seller 100 using the device 1 and is composed of a CRT, a liquid crystal display, or the like.

The input device 104 is connected to the seller terminal 10.
1 is used by the seller 100 to input data, instructions, and the like, and includes a keyboard, a mouse, and the like.

The storage device 105 stores the seller terminal 10
1, which is used for permanently storing programs and data used in the computer 1, and is composed of a hard disk, a floppy disk, or the like.

The CPU 106 is connected to the seller terminal 101.
, And performs various arithmetic processing.

The memory 107 also stores operating system (hereinafter referred to as “OS”) 107a and coupon ticketing / verification processing program 107b.
A program executed by the PU 106 is temporarily stored.

Here, the OS 107a is connected to the seller terminal 10
1 is a program for implementing functions such as file management, process management, and device management in order to perform overall control. The coupon issuance / verification processing program 107b is a program for issuing a coupon to the consumer 200 and verifying a coupon requested to be used by the consumer 200.

FIG. 3 is a diagram showing a hardware configuration of the consumer terminal 201.

As shown in FIG. 3, the consumer terminal 201
A communication interface 202, a display device 203, an input device 204, a storage device 205, a central processing unit (CP
U) 206, a temporary storage device (memory) 207, and a printing device 208 are connected to each other by a bus 210.

The communication interface 202 is connected to the communication network 30
0 is an interface for exchanging data with the seller terminal 101 via the Internet.

The display device 203 is connected to the consumer terminal 20.
1 is used to display a message or the like to the consumer 200 who uses the device 1.

The input device 204 is connected to the consumer terminal 20.
1 is used by the consumer 200 to input data, instructions, and the like, and includes a keyboard, a mouse, and the like.

The storage device 205 stores the consumer terminal 20
1, which is used for permanently storing programs and data used in the computer 1, and is composed of a hard disk, a floppy disk, or the like.

The CPU 206 also controls the consumer terminal 201.
, And performs various arithmetic processing.

The memory 207 has an OS 207a
And a coupon request / reception / transmission processing program 207b
Are temporarily stored.

Here, the OS 207a is connected to the consumer terminal 20
1 is a program for implementing functions such as file management, process management, and device management in order to perform overall control. The coupon request / reception / transmission processing program 207b requests the seller 100 to issue a coupon, receives a coupon issued by the seller 100, and requests the seller 100 to use the coupon. It is a program for making requests.

The printing device 208 is used for printing electronic data, and is constituted by a printer or the like.

Next, the operation of the electronic coupon system according to the first embodiment will be described.

In the following description, the process performed by the consumer 200 is actually executed by the consumer terminal 201 in accordance with the instruction of the consumer 200, and the process performed by the seller 100 is
In practice, the seller terminal 10 is instructed by the seller 100.
1 is to execute.

FIG. 4 is a diagram for explaining the operations performed by the consumer 200 requesting the seller 100 to issue a coupon and receiving the coupon issued by the seller 100.

In FIG. 4, first, it is assumed that the consumer 200 satisfies the conditions for receiving a coupon from the seller 100 (S2000).

The consumer 200 performs a coupon request process (S2400) described later, and transmits the encrypted password 501 to the seller 100.

Upon receiving the password 501, the seller 100 performs a coupon issuing process (S 1300) described later, and transmits the coupon 502 and the digital signature 503 of the coupon 502 to the consumer 200.

Upon receiving the coupon 502 and the digital signature 503, the consumer 200 performs a coupon reception process (S2500) described later, and stores the received coupon 502.

FIG. 5 is a diagram for explaining an operation in which the consumer 200 who has already issued a coupon uses the coupon via the communication network 300 and the seller 100 verifies the coupon. is there.

In FIG. 5, the consumer 200 who has already issued a coupon performs a coupon use online process (S2600), which will be described later, and performs a coupon reception process (S2).
The coupon 502 obtained in the step 500) and the encrypted password 501 are transmitted to the seller 100.

Upon receiving the coupon 502 and the password 501, the seller 100 performs a coupon verification process (S1400) described later, and verifies the received coupon 502.

FIG. 6 shows that a consumer 200 who has already issued a coupon prints a coupon, brings the printed coupon to a store and uses it, and waits until the seller 100 verifies the coupon. It is a figure for explaining operation.

In FIG. 6, the consumer 200 who has already issued a coupon performs a coupon use offline process (S2700) to be described later, and
Bring 4 to the store.

Upon receiving the coupon 504 brought by the consumer 200, the seller 100 receives a coupon verification process (S1).
400) and verify the received coupon 504.

FIG. 7 is a flowchart of the coupon request processing (S24) shown in FIG.
00) is a processing flowchart, which is realized by a coupon request / reception / transmission processing program 207b.

As shown in FIG. 7, the coupon request processing (S
2400), the consumer 200 firstly selects the seller 1
, Requesting the public key of the seller 100 in the public key cryptosystem and receiving the public key (step 240)
1).

Next, the consumer 200 inputs a password known only to himself (step 2402).

Subsequently, the consumer 200 proceeds to step 240
The password input in step 2 is encrypted using the public key obtained in step 2401 (step 2403), and the encrypted password 501 is transmitted to the seller 100 (step 2404).

FIG. 8 is a flowchart of the coupon issuing process of FIG. 4 (S13).
00), and this process is realized by the coupon ticketing / verification processing program 107b.

As shown in FIG. 8, the coupon issuance processing (S
1300), the seller 100 first receives the encrypted password 501 (step 130).
1), the received password 501 is decrypted using the private key of the seller 100 in the public key cryptosystem (step 1302). Here, an example in which the password is encrypted using the public key encryption technology is shown, but any encryption technology may be used as long as the password is not eavesdropped when passing through the communication network 300.

Subsequently, the seller 100 proceeds to step 130
The password 501 decrypted in step 2 is subjected to irreversible conversion (step 1303). Hereinafter, the result of performing irreversible conversion on a password is referred to as an irreversible conversion value or PH of the password.

Subsequently, the seller 100 enters the serial number,
Coupon information on the validity of the coupon, such as the expiration date and the value of the coupon (for example, the amount), is set (step 1).
304), the digital signature of the set coupon information is calculated using the secret key of the seller 100 (step 130).
5). Then, a coupon in which the irreversible conversion value calculated in step 1303, the coupon information set in step 1304, and the digital signature calculated in step 1305 are described as visible data (for example, numbers and characters) is created. A coupon 502 as a document is created (step 1306).

Subsequently, the seller 100 gives the digital signature 503 of the whole coupon 502 as a document to the seller 10
0 using the secret key (step 1307), the coupon 502 created in step 1306, and step 1
The digital signature 503 calculated in 307 and the consumer 20
0 is transmitted (step 1308).

FIG. 9 is a flowchart of the coupon receiving process (S25) shown in FIG.
00) is a processing flowchart, which is realized by a coupon request / reception / transmission processing program 207b.

As shown in FIG. 9, the coupon receiving process (S
In step 2500), when the consumer 200 receives the coupon 502 and the digital signature 503 transmitted by the seller 100 (step 2501), the consumer 200 verifies the received digital signature 503 so that the received coupon 502
It is verified whether the data has been tampered with while being transmitted via the communication network 300 (step 2502). In step 2502, in detail, the consumer 200 compares the received coupon 502 with a result obtained by decrypting the received digital signature 503 using the public key of the seller 100, and if the two match, the received coupon is received. It is determined that 502 has not been tampered with.

If the coupon 502 has not been tampered with, the received coupon 502 is stored in the storage device 205 (step 2503).

Here, the coupon 502 is, for example, as shown in FIG.
4 and preferably displayed on the display device 203 upon reception.

FIG. 10 is a processing flowchart of the coupon use online processing (S2600) of FIG. 5, and this processing is a coupon request / reception / transmission processing program 207.
b.

As shown in FIG. 10, in the coupon use online processing (S2600), first, the consumer 200 requests the seller 100 for the public key of the seller 100 and receives the public key (step S2600). 2601).

Subsequently, the consumer 200 inputs a password known only to himself (the same password as the password entered in the coupon request processing (S2400)) (step 2602).

Subsequently, the consumer 200 proceeds to step 260
The password input in step 2 is encrypted using the public key obtained in step 2601 (step 2603), and the encrypted password 501 and the coupon 502 obtained in the coupon receiving process (S2500) shown in FIG. The information is transmitted to the seller 100 (step 2604).

FIG. 11 is a processing flowchart of the coupon use offline processing (S2700) of FIG. 6. This processing is a coupon request / reception / transmission processing program 207.
b.

As shown in FIG. 11, in the coupon use offline processing (S2700), the consumer 200 prints the coupon 502 obtained in the coupon reception processing (S2500) shown in FIG. 2701).

The format of the printed coupon 504 is the same as the format of the coupon 502 shown in FIG.

Subsequently, the consumer 200 brings the printed coupon 504 to the store, and enters a password known only to himself / herself (the same password as the password input in the coupon request processing (S2400)) into the seller 100. (Step 2702). Step 2702
Is an action performed by the consumer 200 itself, and the consumer terminal 2
01 is not executed.

FIG. 12 is a processing flowchart of the coupon verification processing (S1400) of FIGS. 5 and 6, and this processing is realized by the coupon ticketing / verification processing program 107b.

As shown in FIG. 12, in the coupon verification process (S1400), the coupon used is
The process is divided depending on whether the coupon is a coupon 502 that has arrived online via the Internet or a coupon 504 that has been brought directly (printed coupon) (step 1401).

If the coupon 504 is directly brought, the seller 100 starts the process from the document verification process of step 1404. However, at this time, the seller 10
0 indicates that it is necessary to acquire various information described in the coupon 504, but the acquisition method is arbitrary.

If the coupon 502 arrives online via the communication network 300, the coupon 502
Receives the encrypted password 501 together with the coupon 502 (step 1402), and decrypts the received password 501 using the secret key of the seller 100 (step 1403).

At step 1404, the seller 100
A document verification process for verifying various information described in the coupon is performed. The details of the document verification process will be described later.

As a result of the document verification processing in step 1404,
If all information has passed the verification (step 1405), to prevent double use of the coupon,
The serial number in the coupon information described in the coupon is registered in the used serial number list (step 1406), and the specified effect of the coupon is exerted (step 1407). If at least one of them has failed (step 1405), error processing is executed (step 1408).

FIG. 13 is a processing flowchart of the document verification processing (step 1404) of FIG.

As shown in FIG. 13, in the document verification process (step 1404), the seller 100 first uses the secret key of the seller 100 to sign the digital signature of the coupon information described in the coupon as a document. Is calculated (step 1410).

If the verification does not pass (step 1411), that is, if the calculated digital signature does not match the digital signature described in the coupon, the coupon has been tampered with and error processing is performed. It is executed (step 1417).

If the verification is passed (step 141)
1) That is, if the calculated digital signature matches the digital signature described in the coupon, the irreversible conversion value of the password obtained in step 1403 (or the password given by the consumer 200) is calculated. Then, the calculated irreversible conversion value is compared with the irreversible conversion value described in the coupon as a document (step 1412).

As a result of the comparison in step 1412, if the two do not match (step 1413), it is considered that the coupon is illegally used by a third party who does not know the password at the time of issuing the coupon, and an error process is executed ( Step 1418).

[0100] The seller 100 verifies whether the serial number in the coupon information described in the coupon as a document is registered in the used serial number list (step 1414). If the coupon has already been registered (step 1415), error processing is executed because the coupon is used twice (step 141).
9).

Lastly, the seller 100 refers to the expiration date in the coupon information described in the coupon as a document and verifies whether or not the coupon is within the expiration date (step 1416). If not, the error processing for the expiration date is executed (step 1420).

If all of these verifications are passed, the coupon becomes valid, and the coupon becomes effective.

As described above, in the electronic coupon system according to the first embodiment, only the seller 100 knows the digital signature of the coupon information, such as the serial number, the expiration date and the amount, which is difficult to falsify. The coupon is calculated using a secret key as information, and the calculated digital signature is described as visible data.

Therefore, according to the electronic coupon system according to the first embodiment, even when the consumer 200 prints and uses an electronic coupon, the digital signature described on the printed coupon is verified. Thus, forgery or falsification of the coupon can be detected.

In the electronic coupon system according to the first embodiment, when a coupon is issued,
A coupon in which the irreversible conversion value of the password presented by 0 is described as visible data is created. Further, when the coupon is used, a password which is known only to the consumer 200 who has requested the ticketing is provided by the seller 100.
And the irreversible conversion value of the password presented by the consumer 200 is compared with the irreversible conversion value described in the coupon.

Therefore, according to the electronic coupon system according to the first embodiment, even if the coupon is stolen, a third party who does not know the password presented at the time of the coupon issuance request may misuse the coupon. Can be prevented.

In the electronic coupon system according to the first embodiment, for the coupon information, a digital signature calculated using the secret key of the seller 100 in the public key cryptosystem is described in the coupon as visible data. Although an example is shown in which the encryption information is encrypted using a secret encryption key known only to the seller 100, the encrypted information is described in the coupon as visible data, and the encrypted information is Verification may be performed.

In the electronic coupon system according to the first embodiment, an example is shown in which an irreversible conversion value obtained by performing irreversible conversion on a password is described in the coupon as visible data. According to the example, since there is no problem even if the irreversible conversion method is disclosed, if the irreversible conversion values of the password do not match, the consumer 2
00 can calculate and confirm the irreversible conversion value of the password presented by himself. However, as for the password, encryption information encrypted by an encryption method that can be encrypted only by the seller 100 may be written in the coupon as visible data, and the encryption information may be verified.

The present invention is not limited to the first embodiment described above, and various modifications can be made within the scope of the invention.

For example, in the electronic coupon system according to the first embodiment, the consumer 200
When the password is transmitted to, the public key of the seller 100 is obtained and the encrypted communication is performed, but the present invention is not limited to this. Once the consumer 200 has obtained the public key of the seller 100, the consumer 200 can use the public key twice or more. Also, the seller 100 and the consumer 2
If it is possible to have a common key between the password and the password 00, encryption may be performed using a secret key encryption technique.

Further, in the electronic coupon system according to the first embodiment, when the password is transmitted from the consumer 200 to the seller 100, it is possible to prevent the encrypted password from being stolen and used illegally. To prevent this, the password may be encrypted and transmitted together with other information (random numbers or appropriate numbers).

Further, in the electronic coupon system according to the first embodiment, the seller 100 describes the digital signature on the coupon as visible data such as numerical values and characters. If possible, it may be, for example, a bar code or the like. If described as a barcode, the seller 100 can use a barcode reader when acquiring various information from the printed coupon.

Further, in the electronic coupon system according to the first embodiment, the seller 100 converts the irreversible conversion value of the password of the consumer 200 and the digital signature of the coupon information such as the serial number, the expiration date and the amount. Are described separately in the coupon, but the digital signature may be calculated together with the password together with the coupon information. At this time, the digital signature may be calculated after performing irreversible conversion on the information on which the digital signature is calculated, such as coupon information and a password.

(Second Embodiment) By the way, depending on the sales policy of the seller 100, there are two types of coupons: one coupon is effective, and the other coupon is effective only when certain conditions are satisfied. is there. For example, as a second embodiment, a case in which a coupon that is effective when a predetermined number of coupons are collected (hereinafter, such a coupon is particularly referred to as a “ticket”) is handled as a second embodiment. Only different points from the first embodiment will be described.

The schematic configuration of the electronic coupon system according to the second embodiment is the same as the schematic configuration shown in FIG.

FIG. 15 is a diagram showing a hardware configuration of the seller terminal 101. As shown in FIG.

The difference from the hardware configuration shown in FIG. 2 is that the ticket issuance / verification processing program 107c is temporarily stored in the memory 107.

Ticket Issuing / Verification Processing Program 107
“c” is a program for issuing a ticket to the consumer 200 and verifying a ticket requested to be used by the consumer 200.

FIG. 16 is a diagram showing a hardware configuration of the consumer terminal 201. As shown in FIG.

The difference from the hardware configuration shown in FIG. 3 is that the ticket request / reception / transmission processing program 207c is temporarily stored in the memory 207.

[0121] The ticket request / reception / transmission processing program 207c requests the seller 100 to issue a ticket, receives a ticket issued by the seller 100, and uses the ticket to the seller 100. Or a program for requesting

Next, the operation of the electronic coupon system according to the second embodiment will be described.

Note that, in the following description, the first
Similarly to the embodiment, the processing performed by the consumer 200 is actually executed by the consumer terminal 201 in accordance with the instruction of the consumer 200, and the processing performed by the seller 100 is actually performed by the instruction of the seller 100. Is executed by the seller terminal 101.

FIG. 17 shows that the consumer 200
Requests the issuance of the first ticket to the seller 10
FIG. 7 is a diagram for explaining an operation until a first ticket issued by the user is received. The ticket is
It is effective when only n cards are collected.

Referring to FIG. 17, first, the consumer 200
An initial ticket issuance request process (S2100), which will be described later, is performed, and the encrypted password 501 is transmitted to the seller 10
Send to 0.

Upon receiving the password 501, the seller 100 issues an initial ticket issuing process (S1100) described later.
And a unique value (hereinafter, referred to as “UID”) 505 assigned to identify the set of n tickets, the received password 501, the UID 505, and secret information known only to the seller 100 ( For example, the nth irreversible transformation value H _n (5
06 _n ) is transmitted to the consumer 200 as the first ticket.

Consumer 200 has UID 505 and H
_n (506 _n ), a ticket reception process (S2200) described later is performed, and the received UID 505 and H
_n (506 _n ).

FIG. 18 shows that the consumer 200 is
FIG. 9 is a diagram for explaining an operation for requesting issuance of the second and subsequent tickets to a second ticket and receiving the second and subsequent tickets issued by the seller 100.

Referring to FIG. 18, first, the consumer 200
When receiving the ticket the second sheet of ticket performs ticketing request processing (S2300) described later, and the password 501 of the encrypted itself, UID505 and H _n, obtained by the first sheet of ticket reception process (S2200) (50
6 _n ) is transmitted to the seller 100.

The seller 100 has the password 501 and the UI
D505, when receiving H _n the (506 _n), performs a ticketing process (S1200) to be described later, the password 501 _{received, UID505, H n (506 n} ), merchant 100
H _n-1 (506 _n-1 ) from the secret key of
_n-1 (506 _n-1 ) as the second ticket, consumer 2
Send to 00.

Upon receiving H _n-1 (506 _n-1 ), the consumer 200 performs a ticket receiving process (S2200) and stores the received H _n-1 (506 _n-1 ).

Similarly, the consumer 200 selects the (m + 1) th sheet (1
If a ticket of ≦ m <n) is to be issued, a ticket issuing request process (S2300) is performed, and the encrypted password 501 and the m-th ticket receiving process (S2300) are performed.
UID 505 and H _{n- (m-1)} (50
6 _{n− (m−1)} ) to the seller 100.

The seller 100 has a password 501 and a UI
When D505, H _{n- (m-1)} (506 _{n- (m-1)} ) is received, ticket issuance processing (S1200) is performed, and the received password 501, UID 505, H _{n- (m-1)} (506 _{) n- (m-1)} )
And, from the secret key of the seller 100, seeking H _nm (506 _nm), the H _nm (506 _nm) was determined, as the m + 1 th ticket, is transmitted to the consumer 200.

Upon receiving H _nm (506 _nm ), the consumer 200 performs a ticket receiving process (S2200) and stores the received H _nm (506 _nm ).

[0135] In this way, the consumer 200 can collect n tickets, and when it is desired to make the n tickets effective, the ticket issuing request processing (S2300) is performed and encryption is performed. The password 501 and the UID 505 and H ₁ (506 ₁ ) obtained in the n-th ticket reception process (S2200) are transmitted to the seller 100.

The seller 100 has a password 501 and a UI
D505, if H ₁ receives the (506 _1), the ticketing processing (S1200), the password 501 received,
From the UID 505, H ₁ (506 ₁ ) and the secret key of the seller 100, it is confirmed that the consumer 200 has collected n tickets, and the ticket collection end processing for n tickets (S1250)
I do.

FIG. 19 is a processing flowchart of the initial ticket issuance request processing (S2100) of FIG.
c.

As shown in FIG. 19, in the initial ticket issuing request processing (S2100), the consumer 200 first requests the seller 100 for the public key of the seller 100 and receives the public key (S2100). Step 2101).

Then, the consumer 200 inputs a password known only to himself (step 2102).

Then, the consumer 200 proceeds to step 210
The password input in step 2 is encrypted using the public key obtained in step 2101 (step 2103), and the encrypted password 501 is transmitted to the seller 100 (step 2104).

FIG. 20 is a flowchart of the initial ticket issuing process (S1100) in FIG. 17, and this process is realized by the ticket issuing / verifying process program 107c.

As shown in FIG. 20, in the initial ticket issuing process (S1100), the seller 100 first receives the encrypted password 501 (step 1).
101), the received password 501 is transmitted to the seller 100
(Step 1102). Here, an example in which the password is encrypted using the public key encryption technology is shown, but any encryption technology may be used as long as the password is not eavesdropped when passing through the communication network 300.

Subsequently, the seller 100 creates a UID 505 which is a unique value for identifying a set of n tickets (step 1103), the password decrypted in the step 1102, and the UID 50 created in the step 1103.
5. Perform irreversible conversion on the combination of the secret key of the seller 100 (step 1104). Hereafter, password, U
The result of performing irreversible conversion on the combination of the ID and the secret key is referred to as an irreversible conversion value H _m (1 ≦ m ≦ n), and the irreversible conversion value H _m calculated in step 1104 is H ₁ (50
6 ₁ ).

[0144] Subsequently, the seller 100 calculates the irreversible conversion value of _{H i H i + 1 (1} ≦ i <n) ( step 110
5). In step 1105, the seller 100
Calculates the irreversible conversion value H ₂ (506 ₂ ) of H ₁ (506 ₁ ) and calculates the irreversible conversion value H _n (506 _n ) of H _n-1 (506 _n-1 ), as shown in FIG. ) until calculate the repetitively compute the irreversible transform values of _{H i H i + 1 (1} ≦ i <n).

Lastly, the seller 100 proceeds to step 110
3 and the ith irreversible conversion value H
_n (506 _n ) as the first ticket and consumer 2
00 (step 1106).

FIG. 21 is a processing flowchart of the ticket receiving process (S2200) of FIGS. 17 and 18.
This processing is a ticket request / reception / transmission processing program 2
07c.

As shown in FIG. 21, in the ticket receiving process (S2200), the consumer 200
When the data transmitted from 0 is received (step 2
201), it is determined whether or not the received data includes the UID 505 (step 2202). If it is, the UID 505 is stored in the storage device 205 (step 2203).

Finally, the consumer 200 stores the received irreversible conversion value _Hm in the storage device 205 (step 22).
04).

[0149] Incidentally, the consumer 200, by counting the number of times to save the irreversible conversion values H _m received in the storage device 205 can be anything th tickets to recognize whether the ticket. Therefore, in the consumer terminal 201, a display indicating the number of tickets issued is displayed on the display device 2.
03 is preferably performed.

FIG. 22 is a processing flowchart of the ticket issuance request processing (S2300) of FIG. 18. This processing is performed by the ticket request / reception / transmission processing program 207c.
It is realized by.

As shown in FIG. 22, in the ticket issuing request process (S2300), the consumer 200 first requests the seller 100 for the public key of the seller 100,
The public key is received (Step 2301).

Then, the consumer 200 only knows the password (initial ticketing request processing (S21
00)) (step 2302).

Subsequently, the consumer 200 proceeds to step 230
The password input in step 2 is encrypted using the public key obtained in step 2301 (step 2303), and the encrypted password 501 and the UID 505 obtained in the ticket receiving process (S2200) shown in FIG. the irreversible conversion value H _m, obtained in the previous ticket receiving processing (S2200), transmits to the merchant 100 (step 2304).

[0154] In this way, by sending an irreversible conversion value H _m was obtained in a single front of the ticket receiving processing (S2200), the merchant 100, the latest of the ticket issued to the consumer 200 is what th That is, it is possible to know how many tickets the consumer 200 has collected.

It should be noted that the consumer 200 should request issuance of the first ticket (whether the initial ticket issuance request processing (S2100) shown in FIG. 19 should be performed) or two. Should be requested to issue a ticket after the first ticket (the ticket issuance request process (S
2300) can be determined based on whether or not the UID 505 is stored in the storage device 205.

FIG. 23 is a flowchart showing the ticket issuing process (S
1200), which is realized by the ticket issuing / verification processing program 107c.

[0157] As shown in FIG. 23, in the ticketing process (S1200), merchant 100, first, the encrypted password 501, UID505, upon receiving the irreversible conversion values H _m (step 1201), the password received 501 is decrypted using the secret key of the seller 100 (step 1202). Here, an example in which the password is encrypted using the public key encryption technology is shown, but any encryption technology may be used as long as the password is not eavesdropped when passing through the communication network 300.

Subsequently, the seller 100 proceeds to step 120
Password decoded by 2, UID505 received in step 1201, but combines the private key of the merchant 100, computes the irreversible transform value H ₁ (step 120
3).

Subsequently, the seller 100 proceeds to step 120
Verifies whether the H ₁ calculated in H _m and step 1203 matches the received one (step 1204), if there is a match, it means that the consumer 200 has finished gathering n tickets So go to step 1208,
Perform ticket collection completion processing. Step 1208
The ticket collection completion process corresponds to the ticket collection completion process (S1250) in FIG.
Various processing contents can be considered according to the sales policy of the seller 100, and are not particularly defined.

[0160] Further, the seller 100 determines in step 1201
In the case where the H ₁ calculated in H _m and step 1203 received do not match (step 1204), the consumer 200 is means that not finished gathering n tickets, irreversible conversion of H _i the value _{H i + 1 (1 ≦ i} <n) calculated (step 1205), and _{H m = H i i (1} <i ≦
n) is obtained (step 1206). Step 1
In 206, merchant 100, as in step 1105 of the initial ticketing processing shown in FIG. 20 (S1100), but repeatedly calculates the irreversible conversion value of _{H i H i + 1 (1} ≦ i <n) , H _m = H _i (1 <i ≦ n), the calculation can be stopped.

Here, if there is no _i satisfying H _m = H _i , the passwords 501 and
Since it means that at least one of the UID 505 and Hm is invalid, error processing is executed (step 1209).

[0162] Further, the seller 100 determines that _i is such that H _m = H i.
If exists, Hi _-1 is transmitted to the consumer 200 together with the UID 505 (step 1207).

As described above, in the electronic coupon system according to the second embodiment, at the time of issuing a ticket, only the secret key of the seller 100, which is secret information known only to the seller 100, and only the consumer 200 An irreversible conversion value is repeatedly calculated from a concatenation of a password, which is information known only, and a UID for identifying a set of n tickets, and an nth irreversible conversion value H _n , an (n−1) th irreversible conversion The irreversible conversion values are returned to the consumer 200 in the order of the values H _n−1 ,..., The second irreversible conversion value H ₂ , and the first irreversible conversion value H ₁ . Also,
Against merchant 100 from the consumer 200, so that to send H _m which is transmitted before once, UID, a password. The data for each consumer 200 required to calculate the irreversible conversion value is obtained from the consumer 200 to the seller 100.
To be sent to.

Therefore, according to the electronic coupon system according to the second embodiment, in addition to the effects of the first embodiment, even if the ticket is stolen on the communication path, the third person who does not know the password is required. Can be prevented from unauthorized use of the ticket, and the seller 100
It is not necessary for the consumer to manage how many tickets have already been issued for each consumer 200.

In the electronic coupon system according to the second embodiment, various modifications are possible within the scope of the present invention, as described in the first embodiment.

For example, in the electronic coupon system according to the second embodiment, the seller 100 calculates the irreversible conversion value by using the secret key of the seller 100 when issuing a ticket. Since it is sufficient that the calculation cannot be performed by anyone other than the seller 100, the secret key of the seller 100 may not be used if the algorithm of the irreversible conversion is not disclosed.

In the electronic coupon system according to the second embodiment, the seller 100 transmits a UID to the consumer 200 at the time of issuing an initial ticket, and the consumer 200 stores the UID. After that, the stored UID is transmitted from the consumer 200 to the seller 100. However, each time a ticket is issued, the UID is transmitted from the seller 100 to the consumer 200.
May be transmitted.

Further, in the electronic coupon system according to the second embodiment, the seller 100 consumes the irreversible conversion value calculated from the concatenation of the seller's 100 secret key, password and UID when the ticket is issued. Reply to user 200, but password and U
The concatenated ID is encrypted using a secret encryption key known only to the seller 100 (for example, the secret key of the seller 100 in the public key cryptosystem), and the encrypted information is transmitted to the consumer 200. May be replied to. Specifically, the seller 100 sets the password and the UI
D, the encrypted information H _{i + 1} of the encrypted information H _i (1 ≦ i <n) is sequentially calculated based on the encrypted information H ₁ obtained by concatenating D, and the n-th encrypted information H _n , n− Each encrypted information is returned to the consumer 200 in the order of the _first encrypted information H _n−1 ,..., The second encrypted information H ₂ , and the first encrypted information H _1. Is also good.

Further, in the electronic coupon system according to the second embodiment, the seller 100 consumes the irreversible conversion value calculated from the concatenation of the seller's 100 private key, password and UID when issuing the ticket. Replies to user 200, password, UI
D, encrypting the concatenation of the number information indicating the number of the ticket using a secret encryption key known only to the seller 100 (for example, the secret key of the seller 100 in the public key cryptosystem). The encrypted information encrypted and encrypted may be returned to the consumer 200. In this manner, the seller 100 transmits the encrypted information transmitted from the consumer 200 at the time of the ticket issuance request to the seller 1.
The number of tickets that the consumer 200 has collected can be known from the number information obtained as a result of decryption using a secret encryption key that knows only 00.

In the electronic coupon system according to the second embodiment, the seller 100 transmits the irreversible conversion value to the consumer 200 at the time of issuing a ticket. Similarly to the coupon described in the embodiment, a ticket in which the irreversible conversion value is described as visible data may be created, and the ticket as a document may be transmitted to the consumer 200. In this way, in the consumer terminal 201, for example, a display as shown in FIG. 25 can be made on the display device 203 to indicate the number of tickets issued.

Further, in the electronic coupon system according to the second embodiment, similarly to the coupon described in the first embodiment, the seller 100 to the consumer 200
In response, a digital signature of the entire ticket may be transmitted together with the ticket. In this case,
The consumer 200 having received the ticket can verify whether the received ticket has been tampered with.

(Third Embodiment) By the way, a coupon may be issued by a dedicated issuer provided separately from the seller 100. Hereinafter, a case where a coupon issuer is provided will be described. As the third embodiment, only differences from the first embodiment will be described.

FIG. 26 is a diagram showing a schematic configuration of an electronic coupon system according to the third embodiment.

[0174] Electronic coupon system according to the third embodiment, a consumer 200 ₁ ~200 _n (hereinafter, simply "Consumer 2
00 ”. ), Seller terminals 600 ₁ to 600 _n (hereinafter simply referred to as “seller 600”), ticket issuer 700
There is a system that utilizes, as shown in FIG. 26, consumer terminal 201 ₂₁ to the consumer 200 is a terminal to use
01 _n (hereinafter, also simply referred to as “consumer terminal 201”)
And a seller terminal 60 which is a terminal used by the seller 600
₁ 1 ~601 _n (hereinafter, simply referred. To as "seller terminal 601"), a ticketing terminal 701 is a terminal that ticketing business 700 utilized, are connected to each other via a communication network 300 such as the Internet It is configured.

Next, the hardware configurations of the ticket issuer terminal 701 and the store terminal 601 constituting the electronic coupon system according to the third embodiment will be described with reference to FIGS.
8 will be described. Note that the hardware configuration of the consumer terminal 201 is the same as the hardware configuration shown in FIG.

FIG. 27 is a diagram showing a hardware configuration of the ticket issuer terminal 701.

As shown in FIG. 27, the ticket issuer terminal 701
Are a communication interface 702, a display device 703,
An input device 704, a storage device 705, a central processing unit (CPU) 706, and a temporary storage device (memory) 707 are connected to each other by a bus 710. Basically, FIG. This is the same as the hardware configuration of the seller terminal 101 shown.

In the memory 707, CPs such as the OS 707a and the coupon ticketing / verification processing program 707b are stored.
A program executed by U706 is temporarily stored.

[0179] Here, the OS 707a is connected to the ticket issuer terminal 70.
1 is a program for implementing functions such as file management, process management, and device management in order to perform overall control. In addition, the coupon issuance / verification processing program 707b issues a coupon to the consumer 200 or requests verification from the seller 600 (as will be described later, verification of double use of coupons). It is a program for verifying coupons.

FIG. 28 is a diagram showing a hardware configuration of the seller terminal 601.

The difference from the hardware configuration shown in FIG. 2 is that the memory 107 stores the coupon verification processing program 6 instead of the coupon ticketing / verification processing program 107b.
07b is temporarily stored.

The coupon verification processing program 607b is
This is a program for verifying a coupon requested to be used by the consumer 200.

Next, the operation of the electronic coupon system according to the third embodiment will be described.

In the following description, the above-described first
Similarly to the embodiment, the processing performed by the consumer 200 is actually executed by the consumer terminal 201 according to the instruction of the consumer 200, and the processing performed by the seller 600 is actually performed by the instruction of the seller 600. Is executed by the seller terminal 601, and the processing performed by the ticket issuer 700 is actually executed by the ticket issuer terminal 701 in accordance with the instruction of the ticket issuer 700.

FIG. 29 shows that the consumer 200 is the
FIG. 7 is a diagram for explaining an operation of requesting a coupon to be issued to a coupon and receiving the coupon issued by the ticket issuer 700.

Referring to FIG. 29, first, the consumer 200
It is assumed that a condition for receiving a coupon from the ticket issuer 700 is satisfied (S2000).

The consumer 200 performs a coupon request process (S12400) described later, and transmits the encrypted password 501 to the ticket issuer 700.

Upon receipt of the password 501, the ticket issuer 700 performs a coupon issuing process (S7300) described later, and transmits the coupon 502 and the digital signature 503 of the coupon 502 to the consumer 200.

Upon receiving the coupon 502 and the digital signature 503, the consumer 200 performs a coupon receiving process (S12500) described later, and receives the received coupon 502.
Store.

The operation shown in FIG. 29 is different from the operation shown in FIG. 4 in that the seller 100 has replaced the ticket issuer 700.

That is, the coupon request processing (S
12400) is the same as the coupon requesting process (S2400) shown in FIG. 7, except that the public key of the ticket issuer 700 is used instead of the public key of the seller 100, and Password 5
01 is sent to the ticket issuer 700 instead of the seller 100
Is different.

Also, the coupon issuing process of FIG. 29 (S73)
00) is the same as the processing flowchart of the coupon issuing process (S1300) shown in FIG. 8 except that this process is performed by the ticket issuer 700 (this process is realized by the coupon issuing / verification processing program 707b). ) And the ticket issuer 7 in place of the secret key of the seller 100
The difference is that a secret key of 00 is used.

Further, the coupon receiving process of FIG. 29 (S12
The processing flowchart of (500) is the same as the processing flowchart of the coupon reception processing (S2500) shown in FIG.

FIG. 30 is a diagram for explaining an operation in which the consumer 200 who has already issued a coupon uses the coupon via the communication network 300 and the seller 600 verifies the coupon. is there.

In FIG. 30, the consumer 200 who has already issued a coupon performs a coupon use online process (S2600) and a coupon reception process (S1250).
The coupon 502 obtained in step 0) and the encrypted password 501 of the user are transmitted to the seller 600.

Upon receiving the coupon 502 and the password 501, the seller 600 performs a coupon verification process (S6400) described later, and verifies the received coupon 502.

FIG. 31 shows a process in which a consumer 200 who has already issued a coupon prints a coupon, uses the printed coupon at a store, uses the coupon, and waits until the seller 600 verifies the coupon. It is a figure for explaining operation.

In FIG. 31, the consumer 200 who has already issued a coupon performs a coupon use offline process (S2700), and brings the printed coupon 504 to the store.

Upon receiving the coupon 504 brought by the consumer 200, the seller 600 performs a coupon verification process (S6400) described later, and verifies the received coupon 504.

The operations shown in FIGS. 30 and 31 are the same as the operations shown in FIGS.
Only the processing content of the coupon verification processing (S6400) performed by 0 is different, and the processing content of this processing will be described later.

That is, the processing flow chart of the coupon use online processing (S2600) of FIG.
Is the same as the processing flowchart of the coupon use online processing (S2600) shown in FIG.

Also, the processing flowchart of the coupon use offline processing (S2700) of FIG. 31 is the same as the processing flowchart of the coupon use offline processing (S2700) shown in FIG.

FIG. 32 is a processing flowchart of the coupon verification processing (S6400) of FIGS. 30 and 31.
This processing is realized by the coupon verification processing program 607b.

As shown in FIG. 32, in the coupon verification process (S6400), the seller 600 performs the same process as the coupon verification process (S1200) shown in FIG. The processing contents are different as described later.

Further, the seller 600 does not manage the used serial number list, and in step 11406, notifies the ticket issuer 700 of the serial number described in the coupon, and sets the serial number in the used serial number list. The difference is that the number is registered by the ticket issuer 700.

FIG. 33 is a flowchart of the document verification process (step 11404) of FIG.

As shown in FIG. 33, in the document verification process (step 11404), the seller 600
Is performed using the public key of the ticket issuer 700, and the digital signature described in the coupon is decrypted in step 11410.
In step 11414, the serial number described in the coupon is notified to the ticket issuer 700, and an inquiry is made to the ticket issuer 700 as to whether or not the serial number is registered in the used serial number list. different. Therefore, in the verification at step 1411, the seller 600 compares the result decrypted at step 11410 with the coupon information described in the coupon.

As described above, in the electronic coupon system according to the third embodiment, similarly to the above-described first embodiment, the coupon information such as the serial number, the expiration date, the amount, and the like that cannot be falsified is required. The digital signature is calculated using a secret key that is information known only to the ticket issuer 700, and a coupon is created in which the calculated digital signature is described as visible data.

Therefore, according to the electronic coupon system according to the third embodiment, even when the consumer 200 prints and uses an electronic coupon, the electronic coupon is printed as in the first embodiment. By verifying the digital signature described on the coupon, forgery or falsification of the coupon can be detected.

In the electronic coupon system according to the third embodiment, a ticket issuer 700 for creating a digital signature is provided.
And the seller 600 that verifies the digital signature is different, but by using the private key of the ticket issuer 700 when creating the digital signature and using the public key of the ticket issuer 700 when verifying the digital signature, It is possible to verify the digital signature according to 600. However, the coupon information may be encrypted using a secret encryption key known only to both the seller 600 and the ticket issuer 700, and the encrypted information may be written on the coupon as visible data. The verification of the encrypted information by the seller 600 is possible.

Also, in the electronic coupon system according to the third embodiment, the irreversible conversion value of the password presented by the consumer 200 at the time of issuing the coupon can be visually observed in the same manner as in the first embodiment. A coupon described as data is created. Further, when the coupon is used, a password known only to the consumer 200 who has requested the ticketing is presented to the seller 600, and the irreversible conversion value of the password presented by the consumer 200 and the irreversible conversion value described in the coupon are displayed. To compare.

Therefore, according to the electronic coupon system according to the third embodiment, similarly to the first embodiment, even if the coupon is stolen, the password presented at the time of the coupon issuance request is notified. No third party can abuse the coupon.

In the electronic coupon system according to the third embodiment, an example is shown in which an irreversible conversion value obtained by performing irreversible conversion on a password is described as visible data in the coupon. According to the example, since there is no problem even if the irreversible conversion method is disclosed, it is possible for the seller 600 to verify the irreversible conversion value, and when the irreversible conversion values of the password do not match,
The consumer 200 can calculate and check the irreversible conversion value of the password presented by the consumer 200. However, regarding the password, the seller 600 and the ticket issuer 7
The seller 600 can verify the encrypted information even if the encrypted information encrypted by the encryption method that can encrypt only both of the 00 is written on the coupon as visible data.

The electronic coupon system according to the third embodiment can be variously modified within the scope of the present invention, as described in the first embodiment.

For example, in the electronic coupon system according to the third embodiment, the consumer 200
Also, when transmitting the password to the seller 600, the public keys of the ticket issuer 700 and the seller 600 are obtained, and the encrypted communication is performed. However, the present invention is not limited to this. If the consumer 200 obtains the public keys of the ticket issuer 700 and the seller 600 once, the consumer 200 can use the public keys twice and thereafter. If the ticket issuer 700, the seller 600, and the consumer 200 can have a common key, encryption may be performed using a secret key encryption technique.

In the electronic coupon system according to the third embodiment, when the password is transmitted from the consumer 200 to the ticket issuer 700 and the seller 600,
In order to prevent the encrypted password from being stolen and used illegally, the password may be encrypted together with other information (random numbers or appropriate numbers) and transmitted.

In the electronic coupon system according to the third embodiment, the ticket issuer 700 writes the digital signature on the coupon as visible data such as numerical values and characters. If possible, it may be, for example, a bar code or the like. If described as a barcode, the seller 600 can use a barcode reader when acquiring various information from the printed coupon.

In the electronic coupon system according to the third embodiment, the ticket issuer 700 converts the irreversible conversion value of the password of the consumer 200 and the digital signature of the coupon information such as the serial number, the expiration date, and the amount. Are described separately in the coupon, but the digital signature may be calculated together with the password together with the coupon information. At this time, the digital signature may be calculated after performing irreversible conversion on the information on which the digital signature is calculated, such as coupon information and a password.

In the electronic coupon system according to the third embodiment, the coupon requested to be used by the consumer 200 is verified by the seller 600, and only the double use of the coupon is centrally managed by the ticket issuer 700. However, the coupon received by the seller 600 may be presented to the ticket issuer 700 together with the password presented at that time, and the coupon may be verified on the ticket issuer 700 side. Further, both of them may be combined.

If the coupon is verified on the ticket issuer 700 side, the encrypted information obtained by encrypting the coupon information using a secret encryption key known only to the ticket issuer 700 is described in the coupon as visible data. And the encrypted information can be verified. Also,
Encrypted information obtained by encrypting a password using an encryption method that can be encrypted only by the ticket issuer 700 may be written on the coupon as visible data, and the encrypted information may be verified.

(Fourth Embodiment) By the way, in the electronic coupon system according to the third embodiment described above, the ticket issuer 700 handles the ticket as described in the second embodiment. In such a case, the fourth embodiment is referred to as the second embodiment described above.
Only the points different from the third embodiment and the third embodiment will be described.

The schematic configuration of the electronic coupon system according to the fourth embodiment is the same as the schematic configuration shown in FIG.

FIG. 34 is a diagram showing a hardware configuration of the ticket issuer terminal 701.

The difference from the hardware configuration shown in FIG. 27 is that the ticket issuance / verification processing program 707c is temporarily stored in the memory 707.

The ticket issuing / verifying processing program 707
“c” is a program for issuing a ticket to the consumer 200 and verifying a ticket requested to be used by the consumer 200.

The hardware configuration of the seller terminal 601 is the same as the hardware configuration shown in FIG.
The hardware configuration of the consumer terminal 201 is the same as the hardware configuration shown in FIG.

Next, the operation of the electronic coupon system according to the fourth embodiment will be described.

Note that, in the following description, the third
Similarly to the embodiment, the processing performed by the consumer 200 is actually executed by the consumer terminal 201 according to the instruction of the consumer 200, and the processing performed by the ticket issuer 700 is actually performed by the instruction of the ticket issuer 700. Is executed by the ticket issuer terminal 701.

FIG. 35 shows that the consumer 200 issues the ticket issuer 700
Requests the issuance of the first ticket to the issuer 70
FIG. 7 is a diagram for explaining an operation until a first ticket issued by the user is received. The ticket is
It is effective when only n cards are collected.

In FIG. 35, first, the consumer 200
An initial ticket issuance request process (S12100), which will be described later, is performed, and the encrypted password 501 is transmitted to the ticket issuer 7.
Send to 00.

Upon receipt of the password 501, the ticket issuer 700 issues an initial ticket issuing process (S7100), which will be described later.
And a unique value (hereinafter, referred to as “UID”) 505 assigned to identify a set of n tickets, secret password 501, UID 505, and secret information known only to ticket issuer 700 ( For example, the nth irreversible transform value H _n (5
06 _n ) is transmitted to the consumer 200 as the first ticket.

[0232] Consumer 200 has UID 505 and H
_{When n} (506 _n ) is received, a ticket reception process (S12200) described later is performed, and the received UID 505 and H _n (506 _n ) are stored.

The operation shown in FIG. 35 is different from the operation shown in FIG. 17 in that the seller 100 has replaced the ticket issuer 700.

That is, the processing flowchart of the initial ticket issuance request processing (S12100) of FIG.
Is the same as the processing flowchart of the initial ticket issuance request process (S2100) shown in FIG. 10, except that the public key of the ticket issuer 700 is used instead of the public key of the seller 100, and the transmission destination of the encrypted password 501 is The difference is that a ticket issuer 700 is used instead of the seller 100.

In addition, the initial ticket issuing process (S
7100) is the same as the processing flowchart of the initial ticket issuing process (S1100) shown in FIG. 20, except that this process is performed by the ticket issuer 700 (this process is implemented by the ticket issuing / verification processing program 707c). And that the secret key of the ticket issuer 700 is used instead of the secret key of the seller 100.

The ticket receiving process shown in FIG. 35 (S12
The processing flowchart of (200) is the same as the processing flowchart of the ticket reception processing (S2200) shown in FIG.

FIG. 36 shows that the consumer 200 issues the ticket issuer 700
FIG. 9 is a diagram for explaining an operation for requesting issuance of a second or subsequent ticket to a second ticket and receiving the second or subsequent ticket issued by the ticket issuer 700.

Referring to FIG. 36, first, the consumer 200
When receiving the ticket the second sheet of ticket performs ticketing request processing (S12300), which will be described later, the password 501 of the encrypted itself, UID505 and H _n, obtained by the first sheet of ticket reception processing (S12200) (5
06 _n ) to the ticket issuer 700.

The ticket issuer 700 has a password 501 and a UI
D505, when receiving H _n the (506 _n), performs a ticketing process (S7200) to be described later, the password 501 _{received, UID505, H n (506 n} ), ticketing 700.
H _n-1 (506 _n-1 ) from the secret key of
_n-1 (506 _n-1 ) as the second ticket, consumer 2
Send to 00.

Upon receiving H _n-1 (506 _n-1 ), the consumer 200 performs a ticket receiving process (S122200),
The received H _n-1 (506 _n-1 ) is stored.

Similarly, the consumer 200 selects the (m + 1) -th sheet (1
If a ticket of ≦ m <n) is to be issued, a ticket issuance request process (S12300) is performed, and the encrypted password 501 and the m-th ticket reception process (S12300) are performed.
UID505 and H obtained in 12200)
_{n- (m-1)} (506 _{n- (m-1)} ) is transmitted to the ticket issuer 700.

The ticket issuer 700 has the password 501 and the UI
_{D505, H n- (m-1} ) receives the _{(506 n- (m-1)} ), performs a ticketing process (S7200), the password 501 _{received, UID505, H n- (m-} 1) (506 _{n- (m-1)} )
Then, H _nm (506 _nm ) is obtained from the secret key of the ticket issuer 700, and the obtained H _nm (506 _nm ) is transmitted to the consumer 200 as the (m + 1) th ticket.

Upon receiving H _nm (506 _nm ), the consumer 200 performs a ticket receiving process (S122200),
Store the received H _nm (506 _nm ).

In this way, the consumer 200 can collect n tickets, and when the consumer wants to exert the effect of the n tickets, it performs a ticket issuing request process (S12300) and performs encryption. Received password 501 and the n-th ticket reception process (S1220
UID 505 and H ₁ (506 ₁ ) obtained in 0),
This is transmitted to ticket issuer 700.

The ticket issuer 700 has the password 501 and the UI
D505, if H ₁ receives the (506 _1), the ticketing processing (S7200), the password 501 received,
From the UID 505, H ₁ (506 ₁ ) and the secret key of the ticket issuer 700, it is confirmed that the consumer 200 has collected only n tickets, and the ticket collection end processing for n tickets (S7250)
I do.

The operation shown in FIG. 36 is different from the operation shown in FIG. 18 in that the seller 100 has replaced the ticket issuer 700.

That is, the processing flow chart of the ticketing request processing (S12100) in FIG. 36 is the same as the processing flow chart of the ticketing request processing (S2300) shown in FIG. a point of using the public key of the ticket's 700, password 501 encrypted are stored UID505 and H _m
Is different from the seller 100 in that the ticket issuer 700 is used instead of the seller 100.

The ticket issuance processing of FIG. 36 (S71)
00) is the same as the processing flow chart of the ticket issuing process (S1200) shown in FIG. 23, except that this processing is performed by the ticket issuer 700 (this processing is realized by the ticket issuing / verification processing program 707c). And that the secret key of the ticket issuer 700 is used instead of the secret key of the seller 100.

The ticket receiving process shown in FIG. 36 (S12
The processing flowchart of (200) is the same as the processing flowchart of the ticket reception processing (S2200) shown in FIG.

The effect exerted when collecting only n tickets can be made different according to the sales policy of the seller 100. However, it is determined whether or not only n tickets have been collected. Since the ticket issuer 700 performs the processing, the ticket collection end processing (S7250) in FIG.
It is assumed that the ticket issuer 700 performs this.

As described above, also in the electronic coupon system according to the fourth embodiment, similar to the above-described second embodiment, the secret information is known only by the ticket issuer 700 when the ticket is issued. An irreversible conversion value is repeatedly calculated from a concatenation of the secret key of the ticket issuer 700, a password that is information known only to the consumer 200, and a UID for identifying a set of n tickets, and the nth irreversible conversion. Value H _n , the (n−1) th irreversible transformation value H _n−1 ,
.., The second irreversible conversion value H ₂ and the first irreversible conversion value H ₁ are returned to the consumer 200 in this order. In addition, H _m , UI transmitted immediately before from the consumer 200 to the ticket issuer 700 are transmitted.
D, a password is transmitted. Further, data for each consumer 200 necessary for calculating the irreversible conversion value is transmitted from the consumer 200 to the ticket issuer 700.

Therefore, according to the electronic coupon system according to the fourth embodiment, in addition to the effects of the third embodiment, as in the second embodiment, even if the ticket is stolen on the communication path, as in the second embodiment. Even if the user does not know the password, it is possible to prevent a third party who does not know the password from misusing the ticket, and the
It is no longer necessary to manage how many tickets have been issued each time.

The electronic coupon system according to the fourth embodiment can be variously modified within the scope of the present invention, as described in the third embodiment.

For example, in the electronic coupon system according to the fourth embodiment, when issuing a ticket, the ticket issuer 700 calculates the irreversible conversion value using the secret key of the ticket issuer 700. Since it is sufficient that the calculation cannot be performed by anyone other than the ticket issuer 700, the secret key of the ticket issuer 700 may not be used if the algorithm of the irreversible conversion is not disclosed.

In the electronic coupon system according to the fourth embodiment, the ticket issuer 700 transmits a UID to the consumer 200 at the time of initial ticket issuance, and the consumer 200 stores the UID. After that, the stored UID is transmitted from the consumer 200 to the ticket issuer 700. However, every time a ticket is issued, the UID is transmitted from the ticket issuer 700 to the consumer 200 each time.
May be transmitted.

In the electronic coupon system according to the fourth embodiment, the ticket issuer 700 consumes the irreversible conversion value calculated from the concatenation of the secret key, password, and UID of the ticket issuer 700 when the ticket is issued. Reply to user 200, but password and U
The concatenated ID is encrypted using a secret encryption key known only to the ticket issuer 700 (for example, the secret key of the ticket issuer 700 in the public key cryptosystem), and the encrypted information is transmitted to the consumer 200. May be replied to. Specifically, the ticket issuer 700 confirms the password and UI
D, the encrypted information H _{i + 1} of the encrypted information H _i (1 ≦ i <n) is sequentially calculated based on the encrypted information H ₁ obtained by concatenating D, and the n-th encrypted information H _n , n− Each encrypted information is returned to the consumer 200 in the order of the _first encrypted information H _n−1 ,..., The second encrypted information H ₂ , and the first encrypted information H _1. Is also good.

In the electronic coupon system according to the fourth embodiment, the ticket issuer 700 consumes the irreversible conversion value calculated from the concatenation of the ticket issuer 700's secret key, password, and UID at the time of ticket issuance. Replies to user 200, password, UI
D, encrypts the concatenation of the number information indicating the number of the ticket using a secret encryption key known only to the ticket issuer 700 (for example, the secret key of the ticket issuer 700 in the public key cryptosystem). The encrypted information encrypted and encrypted may be returned to the consumer 200. By doing so, the ticket issuer 700 transmits the encrypted information transmitted from the consumer 200 at the time of the ticket issuing request to the ticket issuer 7.
The number of tickets that the consumer 200 has collected can be known from the number information obtained as a result of decryption using a secret encryption key that knows only 00.

In the electronic coupon system according to the fourth embodiment, the ticket issuer 700 transmits an irreversible conversion value to the consumer 200 when a ticket is issued. Similarly to the coupon described in the embodiment, a ticket in which the irreversible conversion value is described as visible data may be created, and the ticket as a document may be transmitted to the consumer 200.

Further, in the electronic coupon system according to the fourth embodiment, similarly to the coupon described in the above-described first embodiment, the ticketing party 700 changes the consumer 200
In response, a digital signature of the entire ticket may be transmitted together with the ticket. In this case,
The consumer 200 having received the ticket can verify whether the received ticket has been tampered with.

[0260]

As described above, according to the present invention,
Even when electronically issued coupons are printed and used, counterfeiting or falsification of coupons and unauthorized use of coupons by third parties can be detected.
Consumers will be able to use electronically issued coupons not only at virtual stores established on the network but also at existing stores.

Further, according to the present invention, when handling tickets that are effective when only a plurality of tickets are collected, it is not necessary to manage consumers on the ticket-issuing side. You can reduce the trouble.

[Brief description of the drawings]

FIG. 1 is a schematic configuration diagram of an electronic coupon system according to a first embodiment.

FIG. 2 is a hardware configuration diagram of a seller terminal according to the first embodiment.

FIG. 3 is a hardware configuration diagram of a consumer terminal according to the first embodiment.

FIG. 4 is a diagram illustrating an operation of the electronic coupon system according to the first embodiment in which a consumer requests a coupon from a seller and receives a coupon issued by the seller. FIG.

FIG. 5 shows an operation of the electronic coupon system according to the first embodiment, in which a consumer who has already issued a coupon uses the coupon via a communication network and the seller verifies the coupon. FIG.

FIG. 6 shows an operation of the electronic coupon system according to the first embodiment, in which a consumer who has already issued a coupon prints a coupon, brings the printed coupon to a store, and uses the coupon; Explanatory drawing of the operation | movement until a seller verifies a coupon.

FIG. 7 is a processing flowchart of a coupon request processing of FIG. 4;

FIG. 8 is a processing flowchart of a coupon issuing process of FIG. 4;

FIG. 9 is a processing flowchart of a coupon receiving process of FIG. 4;

FIG. 10 is a processing flowchart of a coupon use online process of FIG. 5;

FIG. 11 is a processing flowchart of a coupon use offline processing of FIG. 6;

FIG. 12 is a processing flowchart of the coupon verification processing of FIGS. 5 and 6;

FIG. 13 is a processing flowchart of a document verification process performed in step 1404 of FIG. 12;

FIG. 14 is an explanatory diagram showing an example of the format of a coupon issued by the electronic coupon system according to the first embodiment.

FIG. 15 is a hardware configuration diagram of a seller terminal according to the second embodiment.

FIG. 16 is a hardware configuration diagram of a consumer terminal according to the second embodiment.

FIG. 17 shows an operation of the electronic coupon system according to the second embodiment in which the consumer requests the seller to issue the first ticket, and the first ticket issued by the seller. FIG. 4 is an explanatory diagram of an operation up to reception of a message.

FIG. 18 shows an operation of the electronic coupon system according to the second embodiment, in which the consumer requests the seller to issue the second and subsequent tickets, and the second ticket issued by the seller is issued.
FIG. 9 is an explanatory diagram of an operation until a subsequent ticket is received.

FIG. 19 is a processing flowchart of an initial ticket issuance request processing of FIG. 17;

FIG. 20 is a processing flowchart of an initial ticket issuing process of FIG. 17;

FIG. 21 is a processing flowchart of the ticket receiving processing of FIGS. 17 and 18;

FIG. 22 is a processing flowchart of a ticket issuing request process of FIG. 18;

FIG. 23 is a processing flowchart of a ticket issuing process of FIG. 18;

FIG. 24 is an explanatory diagram showing how an irreversible conversion value is calculated in step 1105 of FIG. 20;

FIG. 25 is an explanatory diagram showing an example of display on a consumer terminal according to the second embodiment.

FIG. 26 is a schematic configuration diagram of an electronic coupon system according to a third embodiment.

FIG. 27 is a hardware configuration diagram of a ticket issuer terminal according to the third embodiment.

FIG. 28 is a hardware configuration diagram of a seller terminal according to the third embodiment.

FIG. 29 is a diagram illustrating an operation of the electronic coupon system according to the third embodiment, from a consumer requesting a ticket issuer to issue a coupon to receiving a coupon issued by the ticket issuer. FIG.

FIG. 30 is a diagram illustrating an operation of the electronic coupon system according to the third embodiment, in which a consumer who has already issued a coupon uses the coupon via the communication network and the seller verifies the coupon. FIG.

FIG. 31 Among the operations of the electronic coupon system according to the third embodiment, a consumer who has already issued a coupon prints the coupon, brings the printed coupon to a store, uses it, Explanatory drawing of the operation | movement until a seller verifies a coupon.

FIG. 32 is a processing flowchart of the coupon verification processing of FIGS. 30 and 31;

FIG. 33 is a processing flowchart of a document verification process performed in step 11404 of FIG. 32;

FIG. 34 is a hardware configuration diagram of a ticket issuer terminal according to the fourth embodiment.

FIG. 35 shows an operation of the electronic coupon system according to the fourth embodiment in which the consumer requests the ticket issuer to issue a first ticket, and the first ticket issued by the ticket issuer. FIG. 4 is an explanatory diagram of an operation up to reception of a message.

FIG. 36 shows the operation of the electronic coupon system according to the fourth embodiment in which the consumer requests the ticket issuer to issue the second and subsequent tickets, and 2
FIG. 9 is an explanatory diagram of an operation until a subsequent ticket is received.

[Explanation of symbols]

100, 600 ... seller, 200 ₁ ~200 _n ... consumer,
700 ... ticketing business, 101,601 ₁ ~601 _n ... seller terminal, 201 ₁ ~201 _n ... consumer terminal, 701 ... ticketing terminal, 300 ... communication network, 102,202,702 ... network interface, 103, 203, 703: display device,
104, 204, 704 ... input devices, 105, 205,
705: storage device, 106, 206, 706: central processing unit (CPU), 107, 207, 707: temporary storage device (memory), 208: printing device, 110, 210, 7
10 Bus, 107a, 207a, 707a Operating system (OS), 107b, 707b Coupon issuing / verification processing program, 107c, 707c
Ticket issuing / verification processing program, 207b: coupon request / reception / transmission processing program, 607b: coupon verification processing program, 207c: ticket request / reception / transmission processing program, 501: password, 502 ...
Coupons, 503 ... digital signature, 504 ... printed _{coupons, 505 ... UID, 506 1 ~506} n ... irreversible conversion value, 507 ... secret key.

 ──────────────────────────────────────────────────続 き Continuing on the front page (72) Inventor Hisashi Toshima 1-27-27 Shinsuna, Ejima-ku, Tokyo Inside the Public Information Division, Hitachi, Ltd. No. 27 Inside Public Information Division, Hitachi, Ltd.

Claims (18)

[Claims] 1. At least one consumer terminal used by a consumer and at least one seller terminal used by a seller are interconnected via a network, wherein the consumer terminal comprises: A coupon issue requesting means for transmitting a consumer password to the seller terminal and requesting the issuance of a coupon exhibiting a predetermined effect with one piece, and receiving a coupon transmitted from the seller terminal A coupon use requesting means for transmitting a consumer password and a coupon received by the coupon receiving means to the seller terminal to request use of the coupon; and Means for printing a coupon received by the means, wherein the seller terminal transmits the coupon requested to be issued by the consumer terminal to the consumer. A coupon issuing means to be transmitted to the terminal, a coupon transmitted from the consumer terminal and requested to be used, and a coupon verification means to verify a coupon printed and requested to be used by the consumer terminal. The coupon issuing means of the seller terminal receives the password transmitted from the consumer terminal, and outputs an irreversible conversion value of the received password, coupon information relating to the validity of the coupon, and the coupon information to the seller. A coupon describing encrypted information encrypted using a secret encryption key known only to the consumer terminal as visible data, and transmitting the generated coupon to the consumer terminal; The coupon verifying means, when verifying the coupon requested to be used by being transmitted from the consumer terminal, is transmitted from the consumer terminal. And irreversible conversion value of the password to receive a password and a coupon, which was received was,
It verifies whether the irreversible conversion value described in the received coupon matches, and encrypts the coupon information described in the received coupon using a secret encryption key known only to the seller. Verify whether the encrypted information provided matches the encrypted information described in the received coupon, and if the coupon that has been printed and requested to be used on the consumer terminal is verified, the And obtains the irreversible conversion value, coupon information, and encryption information described in the coupon, and verifies whether the irreversible conversion value of the password presented by the consumer matches the obtained irreversible conversion value. At the same time, it is also necessary to verify whether the acquired coupon information matches the encrypted information obtained by encrypting the acquired coupon information using a secret encryption key known only to the seller. Electronic coupon system that. 2. At least one consumer terminal used by a consumer and at least one seller terminal used by a seller are connected to each other via a network. A coupon issue requesting means for transmitting a consumer password to the seller terminal and requesting the issuance of a coupon exhibiting a predetermined effect with one piece, and receiving a coupon transmitted from the seller terminal A coupon use requesting means for transmitting a consumer password and a coupon received by the coupon receiving means to the seller terminal to request use of the coupon; and Means for printing a coupon received by the means, wherein the seller terminal transmits the coupon requested to be issued by the consumer terminal to the consumer. A coupon issuing means to be transmitted to the terminal, a coupon transmitted from the consumer terminal and requested to be used, and a coupon verification means to verify a coupon printed and requested to be used by the consumer terminal. The coupon issuing means of the seller terminal receives the password transmitted from the consumer terminal, concatenates the irreversible conversion value of the received password and coupon information on the validity of the coupon, and outputs the concatenated result. A digital signature encrypted using a private key of a seller in a public key cryptosystem and the coupon information, a coupon in which the coupon is described as visible data is created, and the created coupon is sent to the consumer terminal. The coupon verification means of the seller terminal verifies the coupon transmitted from the consumer terminal and requested to be used. Receiving the password and the coupon transmitted from the consumer terminal, and irreversible of the password obtained as a result of decrypting the digital signature written on the received coupon using the seller's public key in the public key cryptosystem. In addition to verifying whether the converted value matches the irreversible converted value of the received password, the digital signature described in the received coupon was decrypted using the seller's public key in the public key cryptosystem. The resulting coupon information,
It verifies whether or not the coupon information described in the received coupon matches, and verifies the coupon that has been printed and requested to be used on the consumer terminal, and is described in the printed coupon. The coupon information and the digital signature are obtained, the obtained digital signature is decrypted using the seller's public key in the public key cryptosystem, and the irreversible conversion value of the password obtained as a result of the decryption is obtained, and the irreversible value of the password presented by the consumer is obtained. The coupon information obtained by decrypting the obtained digital signature using the public key of the seller in the public key cryptosystem and the obtained coupon information match while verifying whether or not the converted value matches. An electronic coupon system characterized by verifying whether or not the coupon is valid. 3. The electronic coupon system according to claim 1 or 2, wherein the coupon issuing means of the seller terminal uses the seller's private key in a public key cryptosystem together with the created coupon. A digital signature obtained by encrypting the digital signature transmitted to the consumer terminal is transmitted to the consumer terminal. The coupon receiving means of the consumer terminal sells the received coupon and the digital signature transmitted together with the coupon in a public key cryptosystem. An electronic coupon system for verifying whether or not the result obtained by decryption using a public key of a user matches. 4. The electronic coupon system according to claim 1, wherein the coupon information includes a unique serial number for each coupon, and wherein the seller terminal is described in a coupon that has been activated. Serial number storage means for storing a serial number in the coupon information which has been provided, the coupon verification means of the seller terminal stores the serial number in the coupon information described in the coupon to be verified, the serial number An electronic coupon system for verifying whether the means is not stored. 5. The electronic coupon system according to claim 1, wherein said consumer terminal transmits a consumer's password to said seller terminal and sets a predetermined n. (N> 1) an initial ticket issuance requesting unit for requesting issuance of a first ticket among coupons (hereinafter, referred to as “tickets”) exhibiting a predetermined effect when collected only in number; The consumer's password and the latest ticket among the issued tickets (hereinafter referred to as “issued latest ticket”) are transmitted to the seller terminal, and the second and subsequent tickets are transmitted. Ticket issuing means for requesting ticketing, and ticket receiving means for receiving and storing the ticket transmitted from the seller terminal, wherein the seller terminal receives the ticket from the consumer terminal; The first Initial ticket issuing means for transmitting a ticket to the consumer terminal; and ticket issuing means for transmitting the second and subsequent tickets requested to be issued by the consumer terminal to the consumer terminal. The initial ticket issuing means of the seller terminal receives a password transmitted from the consumer terminal, and receives the received password and a unique value (hereinafter, referred to as a unique value assigned to identify a set of n tickets). , referred to as "UID" and.), connects the secret information known only by the seller on the basis of the irreversible conversion value H ₁ is the result of concatenating the irreversible conversion value H _i of the (1 ≦ i <n) The irreversible conversion value H _{i + 1} is sequentially calculated, the UID and the irreversible conversion value H _n are transmitted to the consumer terminal as a first ticket, and the ticket issuing means of the seller terminal includes the following. Sent from consumer terminal To receive a password, and ticketed latest ticket has been, and password that you received,
And the UID of the received card-issued latest ticket, connecting the secret information known only to the only seller, based on irreversible conversion value H ₁ is the result of concatenating, irreversible conversion value H _i (1
≦ i <irreversible conversion value H _{i + 1} are sequentially calculated in n), irreversible conversion value H _m of the ticketed latest ticket received (1
≦ m ≦ n) and the irreversible conversion value H ₁ ,
An electronic coupon system, wherein n tickets have been issued and if they do not match, the UID and the irreversible conversion value Hm _-1 are transmitted to the consumer terminal as the next ticket. 6. The electronic coupon system according to claim 1, wherein the consumer terminal transmits a consumer password to the seller terminal and sets a predetermined n. (N> 1) an initial ticket issuance requesting unit for requesting issuance of a first ticket among coupons (hereinafter, referred to as “tickets”) exhibiting a predetermined effect when collected only in number; The consumer's password and the latest ticket among the issued tickets (hereinafter referred to as “issued latest ticket”) are transmitted to the seller terminal, and the second and subsequent tickets are transmitted. Ticket issuing means for requesting ticketing, and ticket receiving means for receiving and storing the ticket transmitted from the seller terminal, wherein the seller terminal receives the ticket from the consumer terminal; The first Initial ticket issuing means for transmitting a ticket to the consumer terminal; and ticket issuing means for transmitting the second and subsequent tickets requested to be issued by the consumer terminal to the consumer terminal. The initial ticket issuing means of the seller terminal receives a password transmitted from the consumer terminal, and receives the received password and a unique value (hereinafter, referred to as a unique value assigned to identify a set of n tickets). , it referred to as "UID".) connects the, by using the secret encryption key known only to the only seller, encrypted information the result of concatenating the encrypted H ₁
While calculating a calculated based on the encryption information H _1, sequentially calculates the encrypted information H _{i + 1} of the encrypted information _{H i (1 ≦ i <n} ), the UID and encrypted information H _n The ticket is transmitted to the consumer terminal as a first ticket, and the ticket issuing means of the seller terminal receives the password transmitted from the consumer terminal and the latest issued ticket, and receives the received password. When,
Connecting the UID of the received card-issued latest ticket, using a secret encryption key known only to the only seller, the result of concatenating together to calculate the encrypted information H ₁ encrypted, calculated encryption based on the information H _1, encrypted information H _i
(1 ≦ i <n) encryption information H _{i + 1} is sequentially calculated, and the encryption information H _m (1
≦ m ≦ n) and the encrypted information H ₁ , n
An electronic coupon system wherein the ticket issuing is completed, and if they do not match, the UID and the encrypted information Hm _-1 are transmitted to the consumer terminal as the next ticket. 7. The electronic coupon system according to claim 1, wherein said consumer terminal transmits a consumer's password to said seller terminal and sets a predetermined n. (N> 1) an initial ticket issuance requesting unit for requesting issuance of a first ticket among coupons (hereinafter, referred to as “tickets”) exhibiting a predetermined effect when collected only in number; The consumer's password and the latest ticket among the issued tickets (hereinafter referred to as “issued latest ticket”) are transmitted to the seller terminal, and the second and subsequent tickets are transmitted. Ticket issuing means for requesting ticketing, and ticket receiving means for receiving and storing the ticket transmitted from the seller terminal, wherein the seller terminal receives the ticket from the consumer terminal; The first Initial ticket issuing means for transmitting a ticket to the consumer terminal; and ticket issuing means for transmitting the second and subsequent tickets requested to be issued by the consumer terminal to the consumer terminal. The initial ticket issuing means of the seller terminal receives a password transmitted from the consumer terminal, and receives the received password and a unique value (hereinafter, referred to as a unique value assigned to identify a set of n tickets). , "UID") and the number information indicating that the ticket is the first ticket, and encrypts the result using a secret encryption key known only to the seller. the information H _1, as the first piece of the ticket, transmitted to the consumer terminal, ticketing means of the seller terminal, password and ticketed latest ticket that has been transmitted from the consumer terminal Received, the received ticketed Recently a ticket encrypted information H _m a (1 ≦ m ≦ n), number information obtained as a result of decoding by using the secret encryption key known only by the seller, n th If the number information indicates that the ticket is a ticket of n, the ticketing of n tickets is completed,
Otherwise, the received password and the encrypted information H _m (1 ≦ m ≦
n) is concatenated with a UID obtained as a result of decryption using a secret encryption key known only to the seller, and the number information indicating that the ticket is the (m + 1) th ticket, so that only the seller knows the secret. An electronic coupon system wherein encrypted information Hm _{+ 1} obtained by encrypting a result of concatenation using an encryption key is transmitted to the consumer terminal as a next ticket. 8. An electronic coupon system according to claim 1, wherein said consumer terminal transmits a password to said seller terminal.
The password is encrypted using the seller's public key in the public key cryptosystem and then transmitted. When the seller terminal receives the password transmitted from the consumer terminal, the seller terminal uses the public key cryptosystem. An electronic coupon system, wherein the password is decrypted by using a private key of the seller in the electronic coupon system. 9. At least one consumer terminal used by a consumer, at least one seller terminal used by a seller, and at least one ticketer terminal used by a ticketer are interconnected via a network. The consumer terminal transmits a consumer's password to the ticket issuer terminal, and requests coupon issuance of a coupon exhibiting a predetermined effect with one coupon. A coupon receiving means for receiving a coupon transmitted from the ticket issuer terminal; a consumer password and a coupon received by the coupon receiving means to the seller terminal; A coupon use requesting unit for requesting use; and a coupon printing unit for printing a coupon received by the coupon receiving unit. A coupon issuing means for transmitting a coupon requested to be issued from the consumer terminal to the consumer terminal, the seller terminal comprising: a coupon transmitted from the consumer terminal and requested to be used; and The coupon issuing means of the ticket issuing terminal is provided with a coupon verifying means for verifying a coupon requested to be used by being printed on the consumer terminal, receiving the password transmitted from the consumer terminal, and confirming the received password. Create a coupon describing the irreversible conversion value, the coupon information on the validity of the coupon, and the digital signature obtained by encrypting the coupon information using the ticketer's private key in the public key cryptosystem as visible data, The created coupon is transmitted to the consumer terminal, and the coupon verification means of the seller terminal is transmitted from the consumer terminal. When verifying the coupon requested for use, the password and the coupon transmitted from the consumer terminal are received, and the irreversible conversion value of the received password and the irreversible conversion value described in the received coupon are Verify whether they match,
It verifies whether the result of decrypting the digital signature described in the received coupon using the issuer's public key in the public key cryptosystem and the coupon information described in the received coupon match. When verifying the coupon requested to be printed and used on the consumer terminal, the irreversible conversion value, the coupon information, and the digital signature described in the printed coupon are acquired and presented by the consumer. In addition to verifying whether or not the irreversible conversion value of the password and the obtained irreversible conversion value match, the result of decrypting the obtained digital signature using the public key of the ticket issuer in the public key cryptosystem and the obtained An electronic coupon system for verifying whether or not coupon information matches. 10. At least one consumer terminal used by a consumer, at least one seller terminal used by a seller, and at least one ticketer terminal used by a ticketer are interconnected via a network. The consumer terminal transmits a consumer's password to the ticket issuer terminal, and requests coupon issuance of a coupon exhibiting a predetermined effect with one coupon. A coupon receiving means for receiving a coupon transmitted from the ticket issuer terminal; a consumer password and a coupon received by the coupon receiving means to the seller terminal; A coupon use requesting unit for requesting use; and a coupon printing unit for printing the coupon received by the coupon receiving unit. A coupon issuance means for transmitting a coupon requested to be issued from the consumer terminal to the consumer terminal, the seller terminal comprising: a coupon transmitted from the consumer terminal and requested to be used; and The coupon issuing means of the ticket issuer terminal is provided with a coupon issuing means for verifying a coupon requested to be used by being printed on the consumer terminal, receiving the password transmitted from the consumer terminal, and receiving the received password. Irreversible conversion value and coupon information relating to the validity of the coupon, and a digital signature obtained by encrypting the concatenated result using the private key of the ticket issuer in the public key cryptosystem and the coupon information can be viewed Creating a coupon described as important data, transmitting the created coupon to the consumer terminal, the coupon verification means of the seller terminal, When verifying the coupon transmitted from the consumer terminal and requested for use, the password and the coupon transmitted from the consumer terminal are received, and the digital signature described in the received coupon is replaced with a public key. It verifies whether or not the irreversible conversion value of the password obtained as a result of decryption using the public key of the ticket issuer in the encryption method matches the irreversible conversion value of the received password, and is described in the received coupon. Coupon information obtained as a result of decrypting the digital signature using the issuer's public key in public key cryptography,
It verifies whether or not the coupon information described in the received coupon matches, and when verifying the coupon that has been printed and requested to be used on the consumer terminal, it is described in the printed coupon. The coupon information and the digital signature are obtained, and the obtained digital signature is decrypted using the issuer's public key in the public key cryptosystem, and the irreversible conversion value of the password obtained as a result of the decryption and the irreversible password of the password presented by the consumer The coupon information obtained as a result of decrypting the obtained digital signature using the public key of the ticket issuer in the public key cryptosystem and the obtained coupon information match while verifying whether or not the converted value matches. An electronic coupon system characterized by verifying whether or not the coupon is valid. 11. The electronic coupon system according to claim 9 or 10, wherein the coupon issuing means of the ticket issuing terminal uses the secret key of the ticket issuing party in a public key cryptosystem together with the created coupon. A digital signature obtained by encrypting the received coupon and the digital signature transmitted together with the coupon are issued to the consumer terminal in a public key cryptosystem. An electronic coupon system for verifying whether or not the result obtained by decryption using a public key of a user matches. 12. The electronic coupon system according to claim 9, 10 or 11, wherein the coupon information includes a unique serial number for each coupon, and the ticket issuer terminal is notified from the seller terminal. Serial number storage means for storing a serial number, and a serial number inquired from the seller terminal, verifying whether the serial number storage means is not stored, and verifying the verification result to the seller terminal Serial number verification means for responding, and the coupon verification means of the seller terminal notifies the serial number in the coupon information described in the activated coupon to the ticket issuer terminal, Queries the above issuer terminal for the verification result of the serial number in the coupon information described in the coupon to be verified. Electronic coupon system according to claim Rukoto. 13. The electronic coupon system according to claim 9, 10, 11, or 12, wherein the consumer terminal transmits a consumer password to the ticket issuer terminal and sets a predetermined n. (N> 1) an initial ticket issuance requesting unit for requesting issuance of a first ticket among coupons (hereinafter, referred to as “tickets”) exhibiting a predetermined effect when collected only in number; The consumer's password and the latest ticket among the issued tickets (hereinafter referred to as “issued latest ticket”) are transmitted to the ticket issuer terminal, and the second and subsequent tickets are transmitted. Ticket issuing means for requesting ticketing, and ticket receiving means for receiving and storing a ticket transmitted from the ticket issuing terminal, wherein the ticket issuing terminal is requested to issue a ticket from the consumer terminal. Initial ticket issuing means for transmitting the second ticket to the consumer terminal; and ticket issuing for transmitting the second and subsequent tickets requested to be issued from the consumer terminal to the consumer terminal. Means, the initial ticket issuing means of the ticket issuing terminal receives a password transmitted from the consumer terminal, and receives the received password and a unique password assigned to identify a set of n tickets. A value (hereinafter, referred to as “UID”) is concatenated with secret information known only to the ticket issuer, and based on the resulting irreversible conversion value H ₁ , an irreversible conversion value _Hi (1 ≦ i < irreversible conversion value of n) H _{i + 1} are sequentially calculated, and the UID and irreversible conversion value H _n, as the first sheet of ticket, transmitted to the consumer terminal, ticketing means of the ticketing terminal Is the above consumer end And password to receive a password and a card-issued latest ticket, has received that have been sent from,
And the UID of the received card-issued latest ticket, connecting the secret information known only to the only ticketing person, based on the irreversible conversion value H ₁ is the result of concatenating, irreversible conversion value H _i (1
≦ i <irreversible conversion value H _{i + 1} are sequentially calculated in n), irreversible conversion value H _m of the ticketed latest ticket received (1
≦ m ≦ n) and the irreversible conversion value H ₁ ,
An electronic coupon system, wherein n tickets have been issued and if they do not match, the UID and the irreversible conversion value Hm _-1 are transmitted to the consumer terminal as the next ticket. 14. The electronic coupon system according to claim 9, 10, 11 or 12, wherein the consumer terminal transmits a consumer password to the ticket issuer terminal and sets a predetermined n. (N> 1) an initial ticket issuance requesting unit for requesting issuance of a first ticket among coupons (hereinafter, referred to as “tickets”) exhibiting a predetermined effect when collected only in number; The consumer's password and the latest ticket among the issued tickets (hereinafter referred to as “issued latest ticket”) are transmitted to the ticket issuer terminal, and the second and subsequent tickets are transmitted. Ticket issuing means for requesting ticketing, and ticket receiving means for receiving and storing a ticket transmitted from the ticket issuing terminal, wherein the ticket issuing terminal is requested to issue a ticket from the consumer terminal. Initial ticket issuing means for transmitting the second ticket to the consumer terminal; and ticket issuing for transmitting the second and subsequent tickets requested to be issued from the consumer terminal to the consumer terminal. Means, the initial ticket issuing means of the ticket issuing terminal receives a password transmitted from the consumer terminal, and receives the received password and a unique password assigned to identify a set of n tickets. value (hereinafter referred to as "UID".) connects the, by using the secret encryption key known only to the only ticketing person, encrypted information the result of concatenating the encrypted H ₁
While calculating a calculated based on the encryption information H _1, sequentially calculates the encrypted information H _{i + 1} of the encrypted information _{H i (1 ≦ i <n} ), the UID and encrypted information H _n The first ticket is transmitted to the consumer terminal, the ticket issuing means of the ticket issuing terminal receives the password transmitted from the consumer terminal and the latest issued ticket, and receives the received password. When,
Connecting the UID of the received card-issued latest ticket, using a secret encryption key known only to the only ticketing person, the results of the consolidated together to calculate the encrypted information H ₁ encrypted, calculated encryption based on the information H _1, encrypted information H _i
(1 ≦ i <n) encryption information H _{i + 1} is sequentially calculated, and the encryption information H _m (1
≦ m ≦ n) and the encrypted information H ₁ , n
An electronic coupon system wherein the ticket issuing is completed, and if they do not match, the UID and the encrypted information Hm _-1 are transmitted to the consumer terminal as the next ticket. 15. The electronic coupon system according to claim 9, 10, 11 or 12, wherein the consumer terminal transmits a consumer password to the ticket issuer terminal and sets a predetermined n. (N> 1) an initial ticket issuance requesting unit for requesting issuance of a first ticket among coupons (hereinafter, referred to as “tickets”) exhibiting a predetermined effect when collected only in number; The consumer's password and the latest ticket among the issued tickets (hereinafter referred to as “issued latest ticket”) are transmitted to the ticket issuer terminal, and the second and subsequent tickets are transmitted. Ticket issuing means for requesting ticketing, and ticket receiving means for receiving and storing a ticket transmitted from the seller terminal, wherein the ticket issuing terminal is requested to issue a ticket from the consumer terminal. Initial ticket issuing means for transmitting the second ticket to the consumer terminal; and ticket issuing for transmitting the second and subsequent tickets requested to be issued from the consumer terminal to the consumer terminal. Means, the initial ticket issuing means of the ticket issuing terminal receives a password transmitted from the consumer terminal, and receives the received password and a unique password assigned to identify a set of n tickets. The value (hereinafter referred to as “UID”) is concatenated with the number information indicating that the ticket is the first one, and the concatenated result is encrypted using a secret encryption key known only to the ticket issuer. the encrypted information H _1, as the first piece of the ticket, transmitted to the consumer terminal, ticketing means of the ticketing terminal, the password and ticketed latest that has been transmitted from the consumer terminal Receiving a packet, received ticketed Recently a ticket encrypted information H _m a (1 ≦ m ≦ n), number information obtained as a result of decoding by using the encryption key of a secret known only by ticketing person, n If the number information indicates that the ticket is the number-th ticket, the ticketing of n tickets is completed,
Otherwise, the received password and the encrypted information H _m (1 ≦ m ≦
n) is concatenated with the UID obtained as a result of decryption using a secret encryption key known only to the ticket issuer and the number information indicating that the ticket is the (m + 1) th ticket. An electronic coupon system wherein encrypted information Hm _{+ 1} obtained by encrypting a result of concatenation using an encryption key is transmitted to the consumer terminal as a next ticket. 16. The method of claim 9, 10, 11, 12, 13, 1.
The electronic coupon system according to 4 or 15, wherein the consumer terminal transmits a password to the ticket issuing terminal,
When transmitting the password after encrypting the password using the public key of the ticket issuer in the public key cryptosystem, and transmitting the password to the seller terminal, the public key of the seller in the public key cryptosystem is used. When the password is transmitted from the consumer terminal, the ticket issuer terminal uses the private key of the ticket issuer in the public key cryptosystem to transmit the password. Decrypting a password, the seller terminal, when receiving the password transmitted from the consumer terminal, decrypts the password using a seller's private key in a public key cryptosystem. Electronic coupon system. 17. A system in which at least one consumer terminal used by a consumer and at least one seller terminal used by a seller are interconnected via a network, one unit is determined in advance. A method of issuing and verifying a coupon that exerts a valid effect, wherein at the time of issuing the coupon, the seller terminal receives a password transmitted from the consumer terminal that has requested the issuance of the coupon, and receives the received password. And coupon information relating to the validity of the coupon are encrypted by an encryption method that can only be encrypted by itself, and encrypted information that is the result of the encryption, and a coupon that describes the coupon information as visible data. Create and send the created coupon to the consumer terminal, and at the time of the coupon verification, the seller terminal above, the coupon to be verified In the case where the coupon is transmitted from the consumer terminal and requested to be used, the password and the coupon transmitted from the consumer terminal are received, and the received password and coupon information are compared with the time when the coupon is issued. Encrypted by the same encryption method, verifies whether the result of the encryption matches the encryption information described in the received coupon, and the coupon to be verified is printed on the consumer terminal. If the coupon is requested to be used, obtain the coupon information and encryption information described on the printed coupon, and provide the password presented by the consumer and the obtained coupon information at the time of issuing the coupon. An electronic coupon which is encrypted by the same encryption method, and verifies whether or not the result of the encryption matches the obtained encrypted information. Ken detection method. 18. At least one consumer terminal used by a consumer, at least one seller terminal used by a seller, and at least one ticketer terminal used by a ticketer are interconnected via a network. Is a method of issuing and verifying a coupon that exerts a predetermined effect with one card in a system connected to the customer terminal, wherein at the time of issuing the coupon, the ticket issuer terminal is a consumer terminal that has requested issuing a coupon. Receiving the password transmitted from the coupon, and encrypting the received password and the coupon information relating to the validity of the coupon by an encryption method that can only be encrypted by itself, and encrypting information as a result of the encryption, Create a coupon describing the information as visible data, send the created coupon to the consumer terminal, and check the coupon. At the time of certification, the seller terminal receives the password and the coupon transmitted from the consumer terminal when the verification target coupon is a coupon transmitted from the consumer terminal and requested to be used. Transmitting the received password and coupon information to the ticket issuer terminal, requesting verification of the coupon, and the coupon to be verified is a coupon that has been printed on the consumer terminal and requested to be used. In this case, a printed coupon is obtained, a password presented by the consumer and the obtained coupon are transmitted to the ticket issuer terminal, and a request for verification of the coupon is issued. Receives the password and coupon sent from the merchant terminal that requested the coupon verification, and replaces the received password and coupon information with the coupon Verify that the result of encryption using the same encryption method as at the time of ticket issuance matches the encryption information described in the received coupon, and notify the seller terminal of the verification result. Characterized electronic coupon ticketing / detection method.