WO2024024043A1 - Système et procédé - Google Patents

Système et procédé Download PDF

Info

Publication number
WO2024024043A1
WO2024024043A1 PCT/JP2022/029147 JP2022029147W WO2024024043A1 WO 2024024043 A1 WO2024024043 A1 WO 2024024043A1 JP 2022029147 W JP2022029147 W JP 2022029147W WO 2024024043 A1 WO2024024043 A1 WO 2024024043A1
Authority
WO
WIPO (PCT)
Prior art keywords
student
server
digital
information
card
Prior art date
Application number
PCT/JP2022/029147
Other languages
English (en)
Japanese (ja)
Inventor
めぐみ 澤田
晋一 中島
靖子 石川
裕晶 飯田
優子 若山
Original Assignee
日本電気株式会社
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 日本電気株式会社 filed Critical 日本電気株式会社
Priority to JP2022568739A priority Critical patent/JP7218840B1/ja
Priority to PCT/JP2022/029147 priority patent/WO2024024043A1/fr
Priority to JP2023007919A priority patent/JP2024018875A/ja
Publication of WO2024024043A1 publication Critical patent/WO2024024043A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q50/00Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
    • G06Q50/10Services
    • G06Q50/20Education
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q50/00Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
    • G06Q50/10Services
    • G06Q50/26Government or public services

Definitions

  • the present invention relates to systems and methods.
  • Patent Document 1 describes that a digital student ID conversion system for digitizing student ID cards is provided.
  • the digital student ID conversion system of Patent Document 1 is a system that displays a digital student ID on a portable electronic medium.
  • the system includes a school database, a student ID application, and an administration server.
  • the school database is a database in which information for converting students or student information owned by the school into a digital student ID card is input.
  • the student ID app is an app that converts your student ID into a digital student ID.
  • the operation management server manages and operates the student ID application and school database.
  • the school database is assigned a school account for each school for a digital student ID card by the management server, and has an ID and password for each student.
  • a student ID card is converted into a digital student ID card using a student ID application downloaded from a portable electronic medium based on an ID, password, and a face photo stored in a portable electronic medium. .
  • student ID cards may be digitized.
  • a student ID card is sometimes used as a document to prove the student's identity. Therefore, student ID cards are required to be reliable.
  • digitized information is easily subject to forgery, and it is necessary to ensure the reliability of digitized student IDs.
  • the main purpose of the present invention is to provide a system and method that contribute to improving the reliability of digital student IDs.
  • a first server that performs control regarding a digital student ID, a first ID linked to an electronic certificate stored in an identification card, and an educational institution that manages students. and a second server that stores the second ID of the student who wishes to use the digital student ID in association with the second ID. Notify a second server, and if the first ID corresponding to the notified second ID is valid, the second server receives the digital student ID of the student who wishes to use the digital student ID.
  • a system is provided for generating a digital student ID card and transmitting the generated digital student ID card to the first server.
  • a first server that performs control regarding a digital student ID card, a first ID linked to an electronic certificate stored in an ID card, and an educational institution that manages students.
  • a second ID for a student who wishes to use the digital student ID; and if the first ID corresponding to the notified second ID is valid, the second server notifies the second server of the digital student ID of the student who wishes to use the digital student ID.
  • a method is provided for generating a student ID and transmitting the generated digital student ID to the first server.
  • FIG. 1 is a diagram for explaining an overview of one embodiment.
  • FIG. 2 is a flowchart for explaining the operation of one embodiment.
  • FIG. 3 is a diagram illustrating an example of a schematic configuration of an information processing system according to the first embodiment.
  • FIG. 4 is a diagram for explaining the operation of the information processing system according to the first embodiment.
  • FIG. 5 is a diagram for explaining the operation of the information processing system according to the first embodiment.
  • FIG. 6 is a diagram illustrating an example of a display on a terminal according to the first embodiment.
  • FIG. 7 is a diagram showing an example of the processing configuration of the digital student ID server according to the first embodiment.
  • FIG. 8 is a diagram illustrating an example of the processing configuration of the ID management server according to the first embodiment.
  • FIG. 1 is a diagram for explaining an overview of one embodiment.
  • FIG. 2 is a flowchart for explaining the operation of one embodiment.
  • FIG. 3 is a diagram illustrating an example of a schematic configuration of an information processing system according
  • FIG. 9 is a diagram showing an example of the ID management database according to the first embodiment.
  • FIG. 10 is a flowchart illustrating an example of the operation of the digital student ID generation section according to the first embodiment.
  • FIG. 11 is a flowchart illustrating an example of the operation of the digital student ID generation section according to the first embodiment.
  • FIG. 12 is a sequence diagram illustrating an example of the operation of the information processing system according to the first embodiment.
  • FIG. 13 is a diagram illustrating an example of the hardware configuration of the ID management server according to the present disclosure.
  • the system includes a first server 101 and a second server 102 (see FIG. 1).
  • the first server 101 performs control regarding the digital student ID card.
  • the second server 102 associates and stores a first ID linked to an electronic certificate stored in an identification card and a second ID used by an educational institution to manage students.
  • the first server 101 notifies the second server 102 of the second ID of the student who wishes to use the digital student ID card (step S1 in FIG. 2). If the first ID corresponding to the notified second ID is valid, the second server 102 generates a digital student ID of the student who wishes to use the digital student ID, and applies the generated digital student ID. is transmitted to the first server 101 (step S2).
  • the second server 102 generates a digital student ID for a student who wishes to issue a digital student ID if the first ID of the student is valid.
  • the second server 102 issues a digital student ID when the electronic certificate (electronic certificate linked to the first ID) stored in the identification card (for example, My Number Card) is valid, and Do not issue a digital student ID if the electronic certificate is invalid. That is, the digital student ID card generated by the second server 102 has high reliability because it is issued to a student whose identity has been verified using an identification card.
  • FIG. 3 is a diagram showing an example of a schematic configuration of an information processing system (student ID management system, ID management system) according to the first embodiment.
  • the information processing system includes a digital student ID server 10, an ID management server 20, an authentication server 30, and a plurality of university servers 40.
  • the digital student ID server 10 is a server device (first server) that manages and controls student ID cards (digital student ID cards) issued to students of each university participating in the system.
  • the ID management server 20 is a server device (second server) that manages IDs issued to students.
  • the ID management server 20 associates and stores a first ID linked to an electronic certificate stored in an identification card and a second ID used by an educational institution to manage students. Details regarding these IDs will be described later.
  • the authentication server 30 is a server device (third server) that performs authentication work for electronic certificates requested by users.
  • the authentication server 30 performs control related to determining the validity of electronic certificates.
  • the authentication server 30 is managed by a business operator that performs authentication services for electronic certificates.
  • the university server 40 is a server device (fourth server) that controls the operations of each university participating in the system.
  • the university server 40 stores student information regarding current students.
  • the student operates the terminal 50 to access the digital student ID server 10, etc.
  • the servers shown in FIG. 3 are configured to be able to communicate with each other via a network.
  • the digital student ID server 10 and the ID management server 20 are connected by wired or wireless communication means and configured to be able to communicate with each other.
  • the configuration of the information processing system shown in FIG. 3 is an example, and is not intended to limit the configuration.
  • the information processing system may include a plurality of digital student ID servers 10 and the like.
  • the educational digital ID is an ID (second ID) for identifying a student within an educational institution.
  • the entering student starts the "digital student ID application" installed on the terminal 50 and requests the system to issue an educational digital ID from the application.
  • the identity verification is performed using an identification card issued by a public institution.
  • an IC (Integrated Circuit) card containing an electronic certificate is used for identity verification.
  • a My Number card will be explained as an example of an IC card (identification card) in which an electronic certificate is stored.
  • the terminal 50 reads out the electronic certificate (for example, the electronic certificate for user certification) stored in the My Number card in response to the operation of the user (enrolled student).
  • the terminal 50 transmits an "ID issuance request" including the read electronic certificate and contact information (for example, an e-mail address from which the terminal 50 can receive e-mail) to the authentication server 30 (step S01 in FIG. 4).
  • the enrolled student By sending an ID confirmation request, the enrolled student (terminal 50) requests the authentication server 30 to confirm his/her identity using the My Number card.
  • the authentication server 30 Upon receiving the ID issue request, the authentication server 30 requests a certificate authority server (not shown) to verify the electronic certificate included in the ID issue request. Specifically, the authentication server 30 transmits the acquired electronic certificate to the certificate authority server.
  • the certificate authority server is a server device managed by a corporation called J-LIS (Japan Agency for Local Authority Information Systems) jointly operated by the national and local governments.
  • J-LIS Japanese Agency for Local Authority Information Systems
  • the certificate authority server verifies the validity of the electronic certificate (my number card).
  • the certificate authority server transmits the verification result of the electronic certificate obtained from the authentication server 30 (whether the electronic certificate is valid or invalid) to the authentication server 30.
  • the authentication server 30 When the certificate authority server fails to verify the electronic certificate (the electronic certificate is invalid), the authentication server 30 notifies the terminal 50 that the issuance of the educational digital ID has failed.
  • the digital student ID application on the terminal 50 notifies the user (enrolled student) that the issuance of the educational digital ID has failed.
  • the terminal 50 may notify the user that the issuance of the educational digital ID has failed because the electronic certificate read from the My Number card is invalid.
  • the authentication server 30 issues an "end user ID" to the student who entered the above information.
  • the end user ID is a unique ID (first ID) that uniquely corresponds to the serial number of the electronic certificate.
  • the end user ID is an ID that is linked to the validity and invalidation of the My Number card. That is, when the My Number card becomes invalid, the end user ID also becomes invalid.
  • the authentication server 30 After issuing the end user ID, the authentication server 30 associates the issued end user ID with the serial number of the electronic certificate and stores them in the database.
  • the authentication server 30 upon issuing the end user ID, notifies the ID management server 20 of the issued end user ID. Specifically, the authentication server 30 transmits an "end user ID notification" including the end user ID and contact information to the ID management server 20 (step S02 in FIG. 4).
  • the ID management server 20 Upon receiving the end user ID notification, the ID management server 20 generates an educational digital ID.
  • the ID management server 20 associates the end user ID acquired from the authentication server 30 with the generated educational digital ID and stores them in the ID management database. Details of the ID management database will be described later.
  • the ID management server 20 notifies the digital student ID server 10 of the generated educational digital ID. Specifically, the ID management server 20 transmits an "educational digital ID notification" including the educational digital ID and contact information to the digital student ID server 10 (step S03 in FIG. 4).
  • the digital student ID server 10 Upon receiving the education digital ID notification, the digital student ID server 10 creates an account for managing the student's (enrolled student) digital student ID. When an account is created, the digital student ID server 10 stores the acquired educational digital ID as the student's login information.
  • the digital student ID server 10 notifies the educational digital ID to the terminal 50 (the terminal 50 corresponding to the contact information acquired from the ID management server 20). Specifically, the digital student ID server 10 transmits an "ID issue notification" including the educational digital ID to the terminal 50 (step S04 in FIG. 4). The terminal 50 stores the received educational digital ID (login information).
  • the authentication server 30 (third server) receives an ID issuance request including an electronic certificate from the terminal 50 owned by the student.
  • the authentication server 30 performs control regarding the validity determination of the received electronic certificate (requests the certificate authority server to determine the validity of the electronic certificate), and if the electronic certificate for which the validity determination has been performed is valid.
  • an end user ID (first ID) of the student for whom the ID is desired to be issued is generated.
  • the authentication server 30 associates and stores the generated end user ID and the serial number of the valid electronic certificate. Further, the authentication server 30 transmits the generated end user ID to the ID management server 20 (second server).
  • the ID management server 20 generates an educational digital ID (second ID) in response to receiving the end user ID.
  • the ID management server 20 stores the received end user ID and the generated educational digital ID in association with each other, and transmits the generated educational digital ID to the digital student ID server 10 (first server).
  • the digital student ID server 10 notifies the notified educational digital ID to the student who wishes to have the ID issued. At that time, the digital student ID server 10 notifies the student who wishes to be issued the ID using the notified educational digital ID as login information.
  • the student enrolled student
  • the entering student operates the terminal 50 to start the digital student ID application and logs into the account on the digital student ID server 10.
  • the digital student ID server 10 acquires information for identifying the enrolled student (student identification information).
  • the student identification information includes, for example, a name or a combination of a name and date of birth.
  • the student identification number may be used as the student identification information.
  • the digital student ID server 10 acquires information for identifying the university to which the incoming student will enroll (university identification information; for example, university name or university code).
  • the digital student ID server 10 After acquiring the student specific information and university specific information, the digital student ID server 10 transmits a "digital student ID generation request" including the educational digital ID, student specific information, and university specific information to the ID management server 20 ( Step S11 in FIG. 5).
  • the digital student ID server 10 requests the ID management server 20 to verify the validity of the educational digital ID by transmitting the educational digital ID to the ID management server 20.
  • the ID management server 20 Upon receiving the digital student ID generation request, the ID management server 20 requests the authentication server 30 to verify the validity of the end user ID corresponding to the educational digital ID. Specifically, the ID management server 20 accesses the ID management database and reads out the end user ID corresponding to the acquired educational digital ID. The ID management server 20 transmits an "end user ID verification request" including the read end user ID to the authentication server 30 (step S12 in FIG. 5).
  • the authentication server 30 Upon receiving the end user ID verification request, the authentication server 30 determines the validity of the electronic certificate (my number card) linked to the end user ID. Specifically, the authentication server 30 accesses a database that stores end user IDs and digital certificate serial numbers, and reads out the digital certificate serial number corresponding to the acquired end user ID.
  • the authentication server 30 transmits the read serial number to the certificate authority server (server operated by J-LIS) and requests the certificate authority server to determine the validity of the electronic certificate corresponding to the serial number of the electronic certificate. .
  • the authentication server 30 transmits a response to the ID management server 20 according to the response from the certificate authority server (the electronic certificate corresponding to the serial number is valid or invalid) (step S13 in FIG. 5).
  • the authentication server 30 upon receiving a response from the certificate authority server indicating that the electronic certificate is valid, transmits an affirmative response indicating that the end user ID is valid to the ID management server 20. Upon receiving a response indicating that the electronic certificate is invalid from the certificate authority server, the authentication server 30 transmits a negative response indicating that the end user ID is invalid to the ID management server 20.
  • the ID management server 20 determines that the educational digital ID acquired from the digital student ID server 10 is valid. If the educational digital ID is valid, the ID management server 20 requests the university to which the student enrolls (the university specified from the university identification information) to verify the student who wishes to issue a digital student ID. Specifically, the ID management server 20 transmits a "current student confirmation request" including the educational digital ID and student identification information to the university server 40 (step S14 in FIG. 5).
  • the ID management server 20 determines (verifies) whether or not the student who wishes to receive a digital student ID card is enrolled in the university specified by the student by sending a current student confirmation request to the university server 40. request to the relevant university.
  • the university server 40 that receives the current student confirmation request refers to the student information database that stores the name, date of birth, biometric information (e.g., facial image), affiliated faculty, etc. of the enrolled student, and identifies the student corresponding to the student identification information. (Enrolled student) Determines whether or not the student is registered in the database. The university server 40 transmits the determination result to the ID management server 20 (step S15 in FIG. 5).
  • the university server 40 sends a negative response to the ID management server 20 indicating that the student corresponding to the student specific information does not exist.
  • the university server 40 transmits an affirmative response including the student information (student information) corresponding to the student specific information to the ID management server 20.
  • the university server 40 stores the student's name, date of birth, university name, affiliated faculty, affiliated department, student ID number, biometric information, affiliated university location, affiliated university contact information, etc. as "student information" on the ID management server. Send to 20.
  • the university server 40 stores the educational digital ID acquired from the ID management server 20 in the student information database.
  • the university (university server 40) manages students using the educational digital ID as new student identification information. Specifically, the university server 40 stores educational digital IDs, student personal information (name, date of birth, etc.), biometric information (e.g. facial images), student ID number, department to which they belong, course information (information regarding grades; e.g. , acquisition unit, attendance information), etc. are stored in association with each other.
  • biometric information e.g. facial images
  • student ID number e.g. facial images
  • course information information regarding grades; e.g. , acquisition unit, attendance information
  • the ID management server 20 transmits a response to the digital student ID generation request to the digital student ID server 10 (step S16 in FIG. 5).
  • the ID management server 20 When notified by the authentication server 30 that the end user ID is invalid, the ID management server 20 sends a negative response to the digital student ID server 10 indicating that the digital student ID cannot be generated.
  • the ID management server 20 transmits the negative response to the digital student ID server 10.
  • the ID management server 20 When receiving a positive response from the university server 40, the ID management server 20 generates (issues) a digital student ID.
  • the ID management server 20 generates "card face information" to be written on the digital student ID card using the student information acquired from the university server 40, and generates a digital student ID card including the card face information.
  • the digital student ID card contains the student's name, date of birth, student ID number, biometric information (for example, facial image), information on the university to which the student belongs, etc.
  • the ID management server 20 After generating the digital student ID, the ID management server 20 transmits an affirmative response including the generated digital student ID to the digital student ID server 10.
  • the ID management server 20 stores student identification information (for example, student ID number) that identifies the student who received the digital student ID card and university identification information that identifies the university (for example, the university name) in the ID management database. That is, when a digital student ID card is issued to a student, the ID management server 20 stores the student's end user ID, educational digital ID, student ID number, and university name in association with each other.
  • student identification information for example, student ID number
  • university identification information that identifies the university (for example, the university name) in the ID management database. That is, when a digital student ID card is issued to a student, the ID management server 20 stores the student's end user ID, educational digital ID, student ID number, and university name in association with each other.
  • the digital student ID server 10 Upon receiving an affirmative response to the digital student ID generation request, the digital student ID server 10 notifies the student (enrolled student) that the issuance of the digital student ID has been completed. Alternatively, the digital student ID server 10 may display the issued digital student ID on the terminal 50. For example, the terminal 50 displays a digital student ID card as shown in FIG.
  • the student operates the terminal 50 to log in to the digital student ID server 10. Specifically, the student starts a digital student ID application and sends login information (educational digital ID) to the digital student ID server 10 via the application.
  • login information education digital ID
  • the digital student ID server 10 authenticates students using login information (educational digital ID). After logging into the account of the digital student ID server 10, the student operates the terminal 50 to perform a predetermined operation and requests display of the digital student ID.
  • the digital student ID server 10 Upon receiving a request to display a digital student ID, the digital student ID server 10 sends a "digital student ID generation request" to the ID management server 20, in the same way as when generating a digital student ID.
  • the ID management server 20 Upon receiving a digital student ID generation request, the ID management server 20 searches the ID management database using the educational digital ID included in the request as a key, and identifies the corresponding entry. If the student ID number is registered in the corresponding entry (if the digital student ID card has already been issued), the ID management server 20 handles the digital student ID generation request according to a predetermined policy (digital student ID control policy). Process based on
  • the digital student ID control policy includes a policy regarding validity verification of end user ID (validity verification of My Number card).
  • the policy regarding validation of end user ID includes, for example, rules (criteria) regarding frequency, timing, etc. of validating end user ID.
  • a policy regarding the validity of end user IDs might be, ⁇ Check the validity of the end user ID each time the digital student ID card is used,'' or ⁇ If a predetermined period of time has passed since the last validity check, the end user ID For example, "Check the validity of the ID.”
  • the policy regarding the validity check of the end user ID may be "confirm the validity of the end user ID after a predetermined period has elapsed.” For example, if the predetermined period is the "first half" or "second half", the end user ID may be confirmed once every six months.
  • the policy regarding end user ID validity confirmation may be ⁇ If the end user ID is not confirmed a predetermined number of times or more within a predetermined period, the validity of the end user ID will be confirmed after the predetermined number of times.'' It may also be. For example, if the predetermined period is 6 months and the predetermined number of times is 5 times, the validity of the end user ID will not be checked up to 5 times within 6 months, and the validity of the end user ID will be checked after the 6th time. .
  • the ID management server 20 executes the same process as the digital student ID generation process shown in FIG. 5.
  • the ID management server 20 transmits an end user ID verification request to the authentication server 30. Further, the ID management server 20 transmits a current student confirmation request to the university server 40 specified from the university identification information. Note that the ID management server 20 transmits a current student confirmation request that includes an educational digital ID or student ID number as student identification information.
  • the ID management server 20 generates a digital student ID when the end user ID is valid and student information can be acquired from the university server 40.
  • the ID management server 20 transmits the generated digital student ID to the digital student ID server 10.
  • the ID management server 20 transmits a current student confirmation request to the university server 40. In this case as well, the ID management server 20 transmits a current student confirmation request including the educational digital ID or student ID number as student identification information to the university server 40.
  • the ID management server 20 generates a digital student ID using the student information acquired from the university server 40.
  • the ID management server 20 transmits the generated digital student ID to the digital student ID server 10.
  • the digital student ID server 10 displays the digital student ID received from the ID management server 20 on the terminal 50. For example, students present their digital student ID card to a third party to prove their identity. For example, when purchasing a commuter pass with a student discount, students present their digital student ID to the railway company. Railway companies sell commuter passes by trusting digital student IDs whose identity is verified by My Number cards.
  • the digital student ID server 10 (first server) notifies the ID management server 20 (second server) of the educational digital ID (second ID) of the student who wishes to use the digital student ID. . If the end user ID (first ID) corresponding to the notified educational digital ID is valid, the ID management server 20 generates a digital student ID for the student who wishes to use the digital student ID, and uses the generated digital student ID. Send the student ID to the digital student ID server 10.
  • the ID management server 20 notifies the authentication server 30 (third server) of the end user ID corresponding to the notified educational digital ID, thereby requesting the authentication server 30 to make a determination regarding the validity of the end user ID. do.
  • the authentication server 30 performs control related to determining the validity of the electronic certificate corresponding to the notified end user ID, and notifies the ID management server 20 of the determination result.
  • the ID management server 20 receives the student information of the student who wishes to use the digital student ID card from the university server 40 (fourth server). If you are able to obtain a digital student ID, a digital student ID will be generated. Note that for students to whom a digital student ID has already been issued, the ID management server 20 determines whether or not to request the authentication server 30 to determine the validity of the end user ID, according to a predetermined policy.
  • FIG. 7 is a diagram showing an example of a processing configuration (processing module) of the digital student ID server 10 according to the first embodiment.
  • the digital student ID server 10 includes a communication control section 201, an ID issuing control section 202, a digital student ID control section 203, and a storage section 204.
  • the communication control unit 201 is a means for controlling communication with other devices. For example, the communication control unit 201 receives data (packets) from the ID management server 20. Furthermore, the communication control unit 201 transmits data to the ID management server 20. The communication control unit 201 passes data received from other devices to other processing modules. The communication control unit 201 transmits data acquired from other processing modules to other devices. In this way, other processing modules transmit and receive data to and from other devices via the communication control unit 201.
  • the communication control unit 201 has a function as a reception unit that receives data from another device, and a function as a transmission unit that transmits data to the other device.
  • the ID issuance control unit 202 is a means for controlling the issuance of educational digital IDs.
  • the ID issuance control unit 202 processes educational digital ID notifications received from the ID management server 20.
  • the ID issuance control unit 202 Upon receiving the educational digital ID notification, the ID issuance control unit 202 generates an account for managing the digital student ID. When an account is generated, the ID issuance control unit 202 manages the student's educational digital ID as login information in the account. Note that the ID issuance control unit 202 may generate an ID other than the educational digital ID as the login information.
  • the ID issuance control unit 202 transmits an "ID issuance notification" to the terminal 50 owned by the enrolled student who wishes to be issued a digital student ID.
  • the ID issuance notification includes login information (educational digital ID).
  • the ID issuance control unit 202 may treat the educational digital ID as a login ID and request the enrolled student to set a password for logging into the account. Specifically, when sending the educational digital ID to the terminal 50, the ID issuance control unit 202 may prompt the enrolled student to determine a password for logging into the account via the terminal 50.
  • the digital student ID control unit 203 is a means for controlling the digital student ID.
  • the digital student ID control unit 203 identifies the student. Obtain information and university specific information.
  • the digital student ID control unit 203 displays a GUI (Graphical User Interface) or the like on the terminal 50, and displays student specific information (for example, a combination of name and date of birth) and university specific information (for example, a university name or code).
  • GUI Graphic User Interface
  • university specific information for example, a university name or code
  • the digital student ID control unit 203 Upon acquiring the student identification information and university identification information, the digital student ID control unit 203 transmits a “digital student ID generation request” including the educational digital ID, student identification information, and university identification information to the ID management server 20.
  • the digital student ID control unit 203 receives a response (affirmative response, negative response) to the digital student ID generation request.
  • the digital student ID control unit 203 If a positive response (response indicating that the digital student ID card was successfully generated) is received, the digital student ID control unit 203 notifies the enrolled student that the digital student ID card has been successfully issued. If a negative response (response to the effect that generation of the digital student ID card has failed) is received, the digital student ID control unit 203 notifies the enrolled student that the issuance of the digital student ID card has failed.
  • a logged-in student performs a predetermined action (for example, pressing the digital student ID display button displayed on the terminal 50)
  • a "digital student ID generation request" containing the educational digital ID and university specific information of the logged-in student is issued. ” to the ID management server 20.
  • the digital student ID control unit 203 processes the response from the ID management server 20 in the same way as when issuing a digital student ID.
  • the storage unit 204 is a means for storing information necessary for the operation of the digital student ID server 10.
  • FIG. 8 is a diagram showing an example of a processing configuration (processing module) of the ID management server 20 according to the first embodiment.
  • the ID management server 20 includes a communication control section 301, an ID management section 302, a digital student ID generation section 303, and a storage section 304.
  • the communication control unit 301 is a means for controlling communication with other devices.
  • the communication control unit 301 receives data (packets) from the digital student ID server 10. Furthermore, the communication control unit 301 transmits data to the digital student ID server 10.
  • the communication control unit 301 passes data received from other devices to other processing modules.
  • the communication control unit 301 transmits data acquired from other processing modules to other devices. In this way, other processing modules transmit and receive data to and from other devices via the communication control unit 301.
  • the communication control unit 301 has a function as a receiving unit that receives data from another device, and a function as a transmitting unit that transmits data to the other device.
  • the ID management unit 302 is a means for controlling and managing end user IDs and educational digital IDs.
  • the ID management unit 302 receives an “end user ID notification” from the authentication server 30. In response to receiving the end user ID, the ID management unit 302 generates an educational digital ID.
  • the educational digital ID may be any information as long as it uniquely corresponds to the end user ID. For example, the ID management unit 302 may assign a unique value to the educational digital ID each time it processes an end user ID notification.
  • the ID management unit 302 After generating the educational digital ID, the ID management unit 302 associates the end user ID and the educational digital ID and stores them in the ID management database (see FIG. 9). As shown in FIG. 9, the ID management database stores end user IDs, educational digital IDs, student ID numbers, and university names in association with each other. Although not shown in FIG. 9, the ID management database also stores a history regarding end user ID verification (date and time of transmitting the end user ID verification request and verification results).
  • the ID management database shown in FIG. 9 is an example, and is not intended to limit the items to be stored.
  • the generation date and time of the educational digital ID may be registered in the database.
  • the ID management unit 302 transmits an educational digital ID notification including the generated educational digital ID and contact information (for example, the contact information of the terminal 50 owned by the student who wishes to issue a digital student ID card) to the digital student ID server 10. .
  • the digital student ID generation unit 303 is a means for generating a digital student ID.
  • 10 and 11 are flowcharts showing an example of the operation of the digital student ID generation unit 303 according to the first embodiment. The operation of the digital student ID generation unit 303 will be explained with reference to FIGS. 10 and 11.
  • the digital student ID generation unit 303 Upon receiving a digital student ID generation request, the digital student ID generation unit 303 searches the ID management database using the educational digital ID included in the request as a key, and identifies the corresponding entry (database search; step S101).
  • the digital student ID generation unit 303 determines whether or not a student ID number is set in the "student ID number" field of the corresponding entry (determines the presence or absence of a student ID number; step S102).
  • step S103 If the student ID number has been set (step S103, Yes branch), the digital student ID generation unit 303 executes the processes from step S201 onward in FIG. The processing after step S102 will be described later.
  • step S103 If the student ID number is not set (step S103, No branch), the digital student ID generation unit 303 reads the end user ID of the specified entry. The digital student ID generation unit 303 transmits an "end user ID verification request" including the read end user ID to the authentication server 30 (step S104).
  • the digital student ID generation unit 303 receives a response to the end user ID verification request from the authentication server 30.
  • the digital student ID generation unit 303 sets the negative response in the response to be sent to the digital student ID server 10 (step S105, No branch). S106).
  • step S105 If a positive response (end user ID is valid) is received from the authentication server 30 (step S105, Yes branch), the digital student ID generation unit 303 sends an "existing" message to the university server 40 of the university specified from the university specific information. "School student confirmation request" is transmitted (step S107).
  • the current student confirmation request includes an educational digital ID and student identification information.
  • the digital student ID generation unit 303 receives a response to the current student confirmation request from the university server 40.
  • step S108 If a negative response (response indicating that the corresponding student is not enrolled) is received from the university server 40 (step S108, No branch), the digital student ID generation unit 303 responds to the response to be sent to the digital student ID server 10. A negative response is set (step S106).
  • step S108 If an affirmative response (response indicating that the corresponding student is enrolled) is received from the university server 40 (step S108, Yes branch), the digital student ID generation unit 303 responds to the response to be sent to the digital student ID server 10. A positive response is set (step S109).
  • the digital student ID generation unit 303 generates a digital student ID using the student information (card face information written on the digital student ID) included in the affirmative response received from the university server 40 (step S110).
  • the digital student ID generation unit 303 stores the student ID number and university name acquired from the university server 40 in the ID management database.
  • the digital student ID generation unit 303 transmits a response to the digital student ID generation request to the digital student ID server 10 (step S111). When transmitting an affirmative response, the digital student ID generation unit 303 transmits the generated digital student ID to the digital student ID server 10.
  • step S103 If the student ID number is set in the entry identified by searching the ID management database (step S103, Yes branch), the digital student ID generation unit 303 executes the process shown in FIG. 11.
  • the digital student ID generation unit 303 refers to a preset digital student ID control policy (refer to policy; step S201).
  • the digital student ID generation unit 303 refers to the digital student ID control policy and determines whether validity verification of the end user ID is performed (determines whether ID validity verification is performed; step S202).
  • step S203 If it is necessary to verify the validity of the educational digital ID (step S203, Yes branch), the digital student ID generation unit 303 executes the processes from step S104 shown in FIG. 10.
  • step S203 If the validity verification of the educational digital ID is not necessary (step S203, No branch), the digital student ID generation unit 303 executes the processes from step S107 shown in FIG. 10.
  • the digital student ID generation unit 303 If the student ID number has already been set in the ID management database (if a digital student ID card has already been issued to the student), the digital student ID generation unit 303 generates the student ID number instead of or in addition to the educational digital ID.
  • a current student confirmation request including the above may be sent to the university server 40. That is, the educational digital ID or student ID number may be transmitted to the university server 40 as information for identifying the student. Note that the digital student ID generation unit 303 does not need to transmit the student confirmation based on the digital student ID control policy.
  • the storage unit 304 is a means for storing information necessary for the operation of the ID management server 20.
  • the authentication server 30 receives the ID issuance request and generates an end user ID if the electronic certificate (my number card) is valid. For example, the authentication server 30 calculates a hash value of the serial number of the electronic certificate, and uses the calculated hash value as the end user ID. The authentication server 30 also processes end user ID verification requests received from the ID management server 20.
  • the university server 40 stores student information regarding current students including new students.
  • the university server 40 uses a student information database to manage students' names, dates of birth, facial images, departments to which they belong, and the like.
  • Examples of the terminal 50 include mobile terminal devices such as smartphones, mobile phones, game consoles, and tablets, computers (personal computers, notebook computers), and the like.
  • the terminal 50 can be any equipment or device as long as it accepts student operations and can communicate with the digital student ID server 10 and the like. Furthermore, descriptions of the processing configuration and the like regarding the terminal 50 will be omitted.
  • the student uses the digital student ID application installed on the terminal 50 to request the system to issue or display a digital student ID. Further, the terminal 50 reads out the electronic certificate from the My Number card by acquiring a four-digit password from the student or by performing authentication using facial information stored in the My Number card.
  • FIG. 12 is a sequence diagram illustrating an example of the operation of the information processing system according to the first embodiment.
  • the operation of the information processing system regarding the issuance of a digital student ID card will be explained with reference to FIG. 12.
  • the digital student ID server 10 transmits a digital student ID generation request including the student's educational digital ID to the ID management server 20 (step S21).
  • the ID management server 20 requests the authentication server 30 to verify the validity of the end user ID corresponding to the educational digital ID.
  • the ID management server 20 transmits an end user ID verification request including the end user ID to the authentication server 30 (step S22).
  • the ID management server 20 Upon receiving an affirmative response from the authentication server 30 that the end user ID is valid, the ID management server 20 requests the university specified by the student to confirm the existence of the student who wishes to issue a digital student ID. Specifically, the ID management server 20 transmits a current student confirmation request including an educational digital ID and student identification information to the university server 40 (step S23).
  • the ID management server 20 Upon receiving an affirmative response from the university server 40 indicating that the student is enrolled, the ID management server 20 generates a digital student ID card using the student information notified from the university server 40 (step S24).
  • the ID management server 20 transmits the generated digital student ID to the digital student ID server 10 (step S25).
  • the digital student ID server 10 presents the acquired digital student ID to the student (enrolled student) (step S26).
  • a temporary digital student ID may be issued when a new student requests issuance of an educational digital ID while the My Number card is expired.
  • the ID management server 20 may issue a true digital student ID card to the student for whom the end user ID has been issued after the fact.
  • the authentication server 30 assigns the enrolled student a provisional end user status. Issue an ID.
  • the temporary end user ID is stored in association with the contact information of the terminal 50.
  • the authentication server 30 transmits an end user ID notification including the temporary end user ID to the ID management server 20.
  • the ID management server 20 registers the temporary end user ID in the ID management database.
  • the ID management server 20 generates an educational digital ID in response to receiving the temporary end user ID, and notifies the terminal 50 of the educational digital ID via the digital student ID server 10.
  • the digital student ID server 10 When a student wishes to issue a digital student ID, the digital student ID server 10 sends a digital student ID generation request to the ID management server 20. If the end user ID corresponding to the educational digital ID included in the digital student ID issuance request is a temporary end user ID, the ID management server 20 will send the current student ID to the university server 40 without requesting the authentication server 30 for verification. Submit a confirmation request.
  • the ID management server 20 Upon acquiring student information in response to the transmission of the current student confirmation request, the ID management server 20 issues a temporary digital student ID using the acquired student information. The ID management server 20 provides a temporary digital student ID to the enrolled student via the digital student ID server 10.
  • the terminal 50 of the student who has been issued a temporary digital student ID displays the temporary digital student ID while clearly indicating that the issued digital student ID is temporary.
  • the student When the My Number Card is updated and becomes valid, the student operates the terminal 50 to request issuance of an educational digital ID. If the electronic certificate acquired from the terminal 50 is determined to be valid, the authentication server 30 determines whether a temporary end user ID linked to the contact information of the terminal 50 exists.
  • the authentication server 30 replaces the temporary end user ID with the true end user ID and stores it in the database (the serial number of the electronic certificate (stored in association with the number). Further, the authentication server 30 transmits the pair of the temporary end user ID and the true end user ID to the ID management server 20.
  • the ID management server 20 Upon receiving the pair of the two IDs, the ID management server 20 generates a true digital student ID for the student with the temporary end user ID, and notifies the terminal 50 that the true digital student ID has been issued. The ID management server 20 also updates the ID management database by rewriting the temporary end user ID with the true end user ID.
  • the ID management server 20 After the ID management database is updated, the ID management server 20 performs operations related to the normal control and management of the digital student ID card described above.
  • the ID management server 20 provides temporary information to the student who wishes to use the digital student ID. may generate a digital student ID.
  • the ID management server 20 may set a validity period to the temporary end user ID acquired from the authentication server 30. If the true end user ID is not received during the validity period (if the My Number Card is not updated during the validity period), the ID management server 20 may invalidate the temporary end user ID. Similarly, the ID management server 20 may also set an expiration date on the temporary digital student ID. In this case, if the My Number Card is not updated during the validity period of the temporary digital student ID, the temporary digital student ID will become invalid.
  • Terminal 50 can provide the digital student ID to other devices. Specifically, the terminal 50 can provide the face information of the digital student ID card to other devices using a two-dimensional barcode or non-contact communication means using NFC (Near Field Communication).
  • NFC Near Field Communication
  • Other devices can provide various services to students using ticket information obtained through two-dimensional barcodes and non-contact communication means.
  • a gate device installed at a university can allow students of its own university to pass by acquiring ticket information.
  • other devices may acquire the student's biometric information using a two-dimensional barcode or non-contact communication means.
  • the acquired biometric information may be used for a service using biometric authentication. For example, consider a case where a student purchases drinks or the like from a vending machine installed on campus. In this case, the vending machine acquires the student's biometric information using a two-dimensional barcode or the like. Additionally, the vending machine acquires biometric information of the student by photographing the student. The vending machine transmits the two acquired biometric information to the university server 40.
  • the university server 40 performs one-to-one matching using the two acquired biometric information.
  • the university server 40 performs matching using the acquired biometric information and pre-registered biometric information.
  • the person to be authenticated is identified through processing. Thereafter, the university server 40 performs payment processing using the account information (for example, credit card information) of the identified person to be authenticated. If the payment process is successful, the student can purchase drinks and the like.
  • the digital student ID card can provide biometric information to other devices through display of a two-dimensional barcode and non-contact communication using NFC.
  • Biometric information provided to other devices is used for services using biometric authentication.
  • the biometric information for example, a facial image
  • the biometric information provided to another device may be a facial image stored in a My Number card.
  • ⁇ Modification 3 by verifying the identity using the end user ID, the graduate can access the university server 40 directly or indirectly and obtain corresponding student information.
  • the obtained student information may be submitted to a third party (such as a company) at the discretion of the graduate.
  • the graduate operates the terminal 50 to request the authentication server 30 to verify the electronic certificate. If the verification result of the authentication server 30 is "the electronic certificate is valid", the terminal 50 requests the university server 40 to provide student information (for example, course certificate, etc.) along with the verification result of the authentication server 30. .
  • the university server 40 checks the verification result by the authentication server 30, and if the my number card (end user ID) is valid, sends the student information specified by the graduate to the terminal 50.
  • ⁇ Modification 4 according to the first embodiment>
  • graduates who graduate from universities can provide their student information (for example, course certificates, etc.) to third parties.
  • the graduate operates the terminal 50 to input a request to provide student information to the digital student ID server 10 via the digital student ID application.
  • the digital student ID server 10 transmits the educational digital ID of the graduate to the ID management server 20.
  • the ID management server 20 requests the authentication server 30 to verify the validity of the end user ID corresponding to the educational digital ID.
  • the ID management server 20 sends the educational digital ID to the university server 40, and the university server 40 receives student information (for example, course registration) of the graduate. certificate, etc.).
  • the ID management server 20 transmits the acquired student information to the terminal 50 owned by the graduate via the digital student ID server 10.
  • the graduate can submit the acquired student information to a third party (for example, a company, etc.) from the terminal 50.
  • a third party for example, a company, etc.
  • the graduate can obtain the corresponding student information from the university server 40 after receiving identity verification using the end user ID.
  • the obtained student information may be submitted to a third party (such as a company) at the discretion of the graduate.
  • the university server 40 does not provide the ID management server 20 with student information for students set to the student information provision prohibited state. As a result, the ID management server 20 cannot generate a digital student ID.
  • the authentication server 30 verifies the validity of the end user ID linked to the student's educational digital ID. Make a request. Upon receiving the request, the authentication server 30 determines that the end user ID is valid if the electronic certificate uniquely corresponding to the end user ID (the electronic certificate read from the student's My Number card) is valid. . That is, the ID management server 20 indirectly requests the authentication server 30 to determine the validity of the My Number card through the validity determination of the educational digital ID. If the educational digital ID is valid (if the My Number Card is valid), the ID management server 20 generates a digital student ID for the student who wishes to issue (or use) a digital student ID. As a result, the digital student ID card generated by the ID management server 20 has high reliability because it is issued to a student whose identity is verified by the My Number card.
  • FIG. 13 is a diagram showing an example of the hardware configuration of the ID management server 20.
  • the ID management server 20 can be configured by an information processing device (so-called computer), and has the configuration illustrated in FIG. 13.
  • the ID management server 20 includes a processor 311, a memory 312, an input/output interface 313, a communication interface 314, and the like.
  • the components such as the processor 311 are connected by an internal bus or the like and are configured to be able to communicate with each other.
  • the configuration shown in FIG. 13 is not intended to limit the hardware configuration of the ID management server 20.
  • the ID management server 20 may include hardware (not shown), and may not include the input/output interface 313 if necessary.
  • the number of processors 311 and the like included in the ID management server 20 is not limited to the example shown in FIG. 13; for example, a plurality of processors 311 may be included in the ID management server 20.
  • the processor 311 is, for example, a programmable device such as a CPU (Central Processing Unit), an MPU (Micro Processing Unit), or a DSP (Digital Signal Processor). Alternatively, the processor 311 may be a device such as an FPGA (Field Programmable Gate Array) or an ASIC (Application Specific Integrated Circuit). The processor 311 executes various programs including an operating system (OS).
  • OS operating system
  • the memory 312 is a RAM (Random Access Memory), a ROM (Read Only Memory), an HDD (Hard Disk Drive), an SSD (Solid State Drive), or the like.
  • the memory 312 stores OS programs, application programs, and various data.
  • the input/output interface 313 is an interface for a display device or input device (not shown).
  • the display device is, for example, a liquid crystal display.
  • the input device is, for example, a device such as a keyboard or a mouse that receives user operations.
  • the communication interface 314 is a circuit, module, etc. that communicates with other devices.
  • the communication interface 314 includes a NIC (Network Interface Card).
  • the functions of the ID management server 20 are realized by various processing modules.
  • the processing module is realized, for example, by the processor 311 executing a program stored in the memory 312. Further, the program can be recorded on a computer-readable storage medium.
  • the storage medium can be non-transitory, such as a semiconductor memory, a hard disk, a magnetic recording medium, an optical recording medium, etc. That is, the present invention can also be implemented as a computer program product.
  • the above program can be updated via a network or by using a storage medium that stores the program.
  • the processing module may be realized by a semiconductor chip.
  • the digital student ID server 10 and the like can be configured by an information processing device in the same way as the ID management server 20, and the basic hardware configuration thereof is not different from the ID management server 20, so a description thereof will be omitted.
  • the ID management server 20 which is an information processing device, is equipped with a computer, and the functions of the ID management server 20 can be realized by having the computer execute a program. Furthermore, the ID management server 20 executes a method of controlling the ID management server 20 using the program.
  • the educational institution may also be a high school, a vocational school, or the like. Further, the educational institution is not limited to an educational institution in Japan, but may be an educational institution in a foreign country.
  • the My Number card was used as an example of an identification document that includes an electronic certificate for identity verification, but other identification documents may be used.
  • the user certification electronic certificate was explained as an example of the electronic certificate verified by the authentication server 30 (certification authority server), but the verification of the signature electronic certificate is server). That is, the authentication server 30 may manage the serial number of the signature electronic certificate and the end user ID in association with each other.
  • the ID management server 20 transmits a current student confirmation request to the university server 40 to acquire student information of a student who will receive a digital student ID card (step S14 in FIG. 5). S15).
  • the ID management server 20 stores student information of each university, these steps are unnecessary.
  • the procedure for issuing an end user ID and the procedure for issuing a digital student ID are described as separate processes, but the issuance of an end user ID and the issuance of a digital student ID may be performed in a series of procedures. good.
  • the ID management server 20 upon receiving the "end user ID notification" from the authentication server 30, acquires student information by transmitting a "current student confirmation request" to the university server 40.
  • the ID management server 20 generates a digital student ID using the acquired student information, and transmits the generated digital student ID to the digital student ID server 10.
  • the digital student ID server 10 provides educational digital IDs and digital student IDs to students. In this way, when the issuance of an end user ID and the issuance of a digital student ID card are performed in a series of procedures, verification of the end user ID (steps S12 and S13 in FIG. 5) may be omitted.
  • the student ID number of each student is registered in the ID management database in order to identify (manage) students to whom digital student ID cards have been issued (see FIG. 9).
  • the information for identifying the student to whom the digital student ID card has been issued may be any information other than the student ID number.
  • the ID management database may store a combination of email address, name, telephone number, student number, and department (faculty to which it belongs) as information for managing students who have been issued digital student IDs.
  • the ID management database may store a combination of a student ID number and a university name (discrimination information for the university to which the student belongs) as information for managing (identifying) students who have been issued digital student ID cards.
  • the digital student ID generation unit 303 of the ID management server 20 may determine whether or not the information stored in the ID management database is set in step S103 of FIG. For example, if the ID management database stores a combination of student number and university name as information for identifying a student, the digital student ID generation unit 303 determines whether the combination of student number and university name is set in the ID management database. All you have to do is judge.
  • the ID management server 20 generates a digital student ID.
  • other devices eg, digital student ID server 10 or university server 40
  • the university server 40 may generate the digital student ID with the digital signature of its own university attached thereto.
  • another device that has acquired a digital student ID using a two-dimensional barcode or the like may utilize the digital student ID if the digital signature given to the digital student ID is successfully verified.
  • the ID management server 20 determines whether or not verification of the end user ID is necessary based on the digital student ID control policy.
  • the digital student ID card control policy may be set differently for each university. For example, for students at university A1, the end user ID is verified each time they use their digital student ID cards, and for students at university A2, the end user ID is verified after a predetermined period of time has passed since the previous verification. A policy such as this may be set.
  • the digital student ID control policy may include a policy regarding confirmation of current students.
  • a policy may be set such as ⁇ Confirmation of current students is performed each time a digital student ID is used'' or ⁇ Confirmation of current students is performed when a digital student ID is used for the first time in a new academic year.''
  • each server may also be configured in an external database server or the like. That is, some functions of each server etc. may be implemented in another server.
  • all or part of the functions of the digital student ID server 10 may be implemented in the ID management server 20. That is, if the above-described "digital student ID control unit (digital student ID control means)", “digital student ID generation unit (digital student ID generation means)", etc. are implemented in any of the devices included in the system. good.
  • each device digital student ID server 10, ID management server 20, etc.
  • data transmitted and received between these devices may be encrypted.
  • Student identification information and the like are transmitted and received between these devices, and in order to appropriately protect this information, it is desirable that encrypted data be transmitted and received.
  • each embodiment may be used alone or in combination.
  • a first server that performs control regarding the digital student ID; a second server that associates and stores a first ID linked to an electronic certificate stored in an identification card and a second ID used by an educational institution to manage students; including; The first server notifies the second server of the second ID of the student who wishes to use the digital student ID, If the first ID corresponding to the notified second ID is valid, the second server generates a digital student ID of a student who wishes to use the digital student ID, and A system for transmitting a digital student ID to the first server.
  • [Additional note 2] further comprising a third server that performs control regarding validity determination of the electronic certificate, The second server notifies the third server of the first ID corresponding to the notified second ID, thereby making a determination regarding the validity of the first ID to the third server. request, The system according to appendix 1, wherein the third server performs control related to determining the validity of the electronic certificate corresponding to the notified first ID, and notifies the second server of the determination result.
  • [Additional note 3] further comprising a fourth server storing student information regarding current students; When the first ID corresponding to the notified second ID is valid, the second server receives information from the fourth server about the student who wishes to use the digital student ID.
  • the system according to supplementary note 2 which generates the digital student ID card using the student information acquired from the fourth server when student information can be acquired.
  • the third server receives an ID issuance request including an electronic certificate from a terminal owned by a student, the third server controls the validity determination of the received electronic certificate, and issues the electronic certificate whose validity has been determined. If the certificate is valid, generate the first ID of the student who wishes to be issued the ID, and store the generated first ID and the serial number of the valid electronic certificate in association with each other; The system described in Appendix 4.
  • the third server transmits the generated first ID to the second server,
  • the second server generates the second ID in response to receiving the first ID, stores the received first ID and the generated second ID in association with each other, and transmitting the generated second ID to the first server;
  • the system according to appendix 5 wherein the first server notifies the notified second ID to a student who desires to be issued the ID.
  • Supplementary Note 7 If the first ID corresponding to the notified second ID is invalid, the second server generates a temporary digital student ID of a student who wishes to use the digital student ID.
  • a first server that performs control regarding the digital student ID; a second server that associates and stores a first ID linked to an electronic certificate stored in an identification card and a second ID used by an educational institution to manage students; In a system that includes the first server notifying the second server of the second ID of the student who wishes to use the digital student ID; If the first ID corresponding to the notified second ID is valid, the second server generates a digital student ID of a student who wishes to use the digital student ID, and A method of transmitting a digital student ID to the first server.
  • Digital student ID server 20 ID management server 30 Authentication server 40 University server 50 Terminal 101 First server 102 Second server 201 Communication control unit 202 ID issuance control unit 203 Digital student ID control unit 204 Storage unit 301 Communication control unit 302 ID management unit 303 Digital student ID generation unit 304 Storage unit 311 Processor 312 Memory 313 Input/output interface 314 Communication interface

Landscapes

  • Business, Economics & Management (AREA)
  • Tourism & Hospitality (AREA)
  • Engineering & Computer Science (AREA)
  • Marketing (AREA)
  • Strategic Management (AREA)
  • Economics (AREA)
  • General Health & Medical Sciences (AREA)
  • Human Resources & Organizations (AREA)
  • Educational Administration (AREA)
  • Primary Health Care (AREA)
  • Health & Medical Sciences (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Development Economics (AREA)
  • Educational Technology (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

L'invention concerne un système qui contribue à l'amélioration de la fiabilité d'un identifiant numérique d'étudiant. Le système comporte un premier serveur et un second serveur. Le premier serveur effectue une commande relative à un identifiant numérique d'étudiant. Le second serveur stocke, en association l'un avec l'autre, un premier identifiant lié à un certificat électronique stocké dans une carte d'identification et un second identifiant pour la gestion d'étudiants par une institution éducative. Le premier serveur notifie au second serveur le second identifiant d'un étudiant souhaitant utiliser un identifiant numérique d'étudiant. Si le premier identifiant correspondant au second identifiant notifié est valide, le second serveur génère un identifiant numérique d'étudiant pour l'étudiant souhaitant utiliser un identifiant numérique d'étudiant, et transmet l'identifiant numérique d'étudiant généré au premier serveur.
PCT/JP2022/029147 2022-07-28 2022-07-28 Système et procédé WO2024024043A1 (fr)

Priority Applications (3)

Application Number Priority Date Filing Date Title
JP2022568739A JP7218840B1 (ja) 2022-07-28 2022-07-28 システム、方法、サーバ、サーバの制御方法及びプログラム
PCT/JP2022/029147 WO2024024043A1 (fr) 2022-07-28 2022-07-28 Système et procédé
JP2023007919A JP2024018875A (ja) 2022-07-28 2023-01-23 サーバ、サーバの制御方法、プログラム及びシステム

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2022/029147 WO2024024043A1 (fr) 2022-07-28 2022-07-28 Système et procédé

Publications (1)

Publication Number Publication Date
WO2024024043A1 true WO2024024043A1 (fr) 2024-02-01

Family

ID=85158962

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2022/029147 WO2024024043A1 (fr) 2022-07-28 2022-07-28 Système et procédé

Country Status (2)

Country Link
JP (2) JP7218840B1 (fr)
WO (1) WO2024024043A1 (fr)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2017068654A (ja) * 2015-09-30 2017-04-06 富士通株式会社 情報連携プログラム、情報連携サーバー、及び情報連携方法
JP2022096624A (ja) * 2020-12-17 2022-06-29 日本カード製造株式会社 デジタル学生証変換システム

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11339045A (ja) * 1998-05-27 1999-12-10 Hitachi Ltd 電子データ確認及び発行方法、その実施装置、その処理プログラムを記録した媒体並びに電子データ記録媒体
JP6151142B2 (ja) * 2013-09-18 2017-06-21 株式会社東芝 Icカード、携帯端末、及びicカード処理システム

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2017068654A (ja) * 2015-09-30 2017-04-06 富士通株式会社 情報連携プログラム、情報連携サーバー、及び情報連携方法
JP2022096624A (ja) * 2020-12-17 2022-06-29 日本カード製造株式会社 デジタル学生証変換システム

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
IWASAKI CHIE: "Responses to the My Number system requested by private businesspersons and financial institutions. Knowledge Creation and Integration", NOMURA RESEARCH INSTITUTE, vol. 22, no. 11, 20 October 2014 (2014-10-20), pages 18 - 31, XP093133576 *
UMEYA, SHINNICHIROU: "No. 8 How will private businesses use the My Number in the future?", LOCAL GOVERNMENT SOLUTIONS MONTHLY, GYOSEI CORP., JP, vol. 2, no. 4, 1 November 2015 (2015-11-01), JP, pages 73 - 76, XP009553592 *

Also Published As

Publication number Publication date
JPWO2024024043A1 (fr) 2024-02-01
JP7218840B1 (ja) 2023-02-07
JP2024018875A (ja) 2024-02-08

Similar Documents

Publication Publication Date Title
US10829088B2 (en) Identity management for implementing vehicle access and operation management
US20230245019A1 (en) Use of identity and access management for service provisioning
US7457950B1 (en) Managed authentication service
WO2018048662A1 (fr) Architecture de gestion d'accès
US11928905B2 (en) Systems and methods of access validation using distributed ledger identity management
US12093403B2 (en) Systems and methods of access validation using distributed ledger identity management
WO2022024281A1 (fr) Serveur d'authentification, système d'authentification, procédé de traitement de demande d'authentification et support de stockage
KR100648986B1 (ko) 전자명함 서비스 시스템 및 방법과 전자명함 인증 장치 및방법과 이를 위한 컴퓨터로 읽을 수 있는 기록 매체
JP2010152492A (ja) 個人情報提供装置、個人情報提供システムおよび個人情報提供方法
WO2024024043A1 (fr) Système et procédé
EP4050923A1 (fr) Systèmes et procédés de validation d'accès à l'aide de la gestion d'identité d'un registre réparti
JP7552905B2 (ja) システム、端末、個人証明書生成方法及びプログラム
EP4050579A1 (fr) Systèmes et procédés de validation d'accès à l'aide de la gestion d'identité d'un registre réparti
US20200235944A1 (en) Method and system for identity verification
JP2013020643A (ja) 個人情報提供装置、および個人情報提供方法
KR20150083178A (ko) 인증서 관리 방법
JP7501822B1 (ja) サーバ装置、システム、サーバ装置の制御方法及びプログラム
JP7544305B1 (ja) 端末、システム、端末の制御方法及びプログラム
WO2023145081A1 (fr) Système, dispositif serveur, procédé de commande pour un dispositif serveur, et support de stockage
WO2024075173A1 (fr) Système et procédé
JP7371818B1 (ja) 端末、システム、端末の制御方法及びプログラム
US20220321347A1 (en) System, method and apparatus for transaction access and security
WO2024090530A1 (fr) Appareil de gestion d'identité décentralisée, système de gestion d'identité décentralisée, procédé de gestion d'identité décentralisée et support de stockage de gestion d'identité décentralisée
TW202429852A (zh) 電子認證系統及電子認證方法
KR20150083175A (ko) 인증서 관리 방법

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 2022568739

Country of ref document: JP

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22953132

Country of ref document: EP

Kind code of ref document: A1