JP5160003B2 - Settlement management device, program, storage medium, management method, client device, processing method, and data storage device - Google Patents

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to an electronic payment system, a payment management device, a store device, a client device, and an IC card that can safely perform payment processing using a network or the like using a data storage device such as an IC card that holds a common key. The present invention relates to a data storage device, a computer program, and a storage medium.
[0002]
[Prior art]
Conventionally, a public key infrastructure (PKI) protocol has been adopted in order to securely perform electronic commerce via an open network such as the Internet.
[0003]
In the PKI protocol, signature information is created using a secret key at a transmission source, and the signature information is transmitted together with transmission information from the transmission source to the transmission destination. Then, by verifying the signature information using the public key corresponding to the secret key at the transmission destination, it is determined whether or not the received transmission information is created by a valid transmission source.
[0004]
By the way, in recent years, there has been an attempt to conduct electronic commerce via a network using an IC (Integrated Circuit) card. Here, a data storage device such as an IC card normally holds a common key, and inputs and outputs confidential information using a common key cryptosystem. Such a data storage device such as an IC card has the advantage that damage can be reduced even if the data storage device such as an IC card is lost because the common key cannot be a key for creating signature information. is there.
[0005]
[Problem to be Solved by the Invention]
However, in order to securely perform electronic commerce over a network, it is necessary to create signature information using a secret key. In the conventional method, a data storage device such as an IC card holds (stores) a secret key. ), The signature information cannot be created. In this case, a method of holding a secret key in a data storage device such as an IC card is conceivable. However, as described above, since the secret key can create signature information, it has the same effect as seal lighting. There is a problem that the damage caused when the data storage device is lost and abused is too great.
[0006]
In addition, when electronic commerce is performed through a network using only the common key encryption method adopted by the data storage device such as the IC card as described above, a large number of destination server devices that perform transactions share the common key. There is also a problem that the common key is stolen or likely to be misused.
[0007]
In electronic payment, SSL (Secure Socket Layer) and SET (Secure Electronic Transaction) are often used. However, SSL guarantees the safety of the communication path between the client device and the store device, but has the problem that fraud on the store side cannot be detected.
[0008]
In addition, SET has the advantage of SSL and the advantage that it cannot be tampered with by client devices, store devices, and payment management devices, but each device must have a PKI certificate, which is cumbersome and expensive, Furthermore, there is a problem that the signature and signature verification must be performed many times and are redundant.
[0009]
Furthermore, in the electronic commerce system, there is no means for confirming whether the value information confirmed by the user on the client device is the same as the value information actually written in the data storage device such as an IC card.
[0010]
The present invention has been made in view of the above-described problems, and an electronic payment system, a payment management apparatus, and a store that can safely perform electronic commerce via a network using a data storage device such as an IC card holding a common key. An object is to provide a data storage device such as a device, a client device, an IC card, a computer program, and a storage medium.
[0011]
[Means for Solving the Problems]
In order to solve the above-described problems, according to the present invention, a new and improved electronic payment system, payment management device, store device, client device, IC card, and other data storage devices, computer programs, and storage media are provided. .
[0012]
According to the first aspect of the present invention, a data storage device such as an IC card in which value information is stored, a client device having an information input / output function for the data storage device such as an IC card, and a product or service are provided. An electronic device comprising: a store device that performs the transaction; a payment management device that manages payment between the data storage device such as an IC card and the store device; In the payment system, the payment management device generates payment information for payment in a data storage device such as an IC card based on the payment request information from the store device, and sets the payment information to the payment management device and the IC card. And encryption processing using a common key shared with the data storage device, etc., is sent to the client device settlement information subjected to this encryption processing, Client device, and outputs the settlement information received from the settlement management device in a data storage device such as an IC card, an electronic payment system is provided.
[0013]
In the electronic payment system, the store apparatus creates a first signature indicating the validity of the payment request information using the private key of the store apparatus, and transmits the payment request information with the first signature to the payment management apparatus. The settlement management device may verify the validity of the first signature received from the store device using a public key corresponding to the store device private key.
[0014]
You may comprise so that the payment request information to which the 1st signature was attached | subjected is transmitted to a payment management apparatus via a client apparatus.
[0015]
The payment management apparatus creates a second signature indicating the validity of the payment information with the first signature by using the secret key of the payment management apparatus, and sets the payment information to which the second signature is attached and subjected to the cryptographic processing as the client apparatus. The client device verifies the validity of the second signature received from the payment management device using a public key corresponding to the secret key of the payment management device, and then sends the payment information to a data storage device such as an IC card. It may be output.
[0016]
The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using the private key of the payment management device, includes the payment information, and is attached with the third signature. Settlement completion information is transmitted to the store apparatus.
[0017]
The store apparatus may be configured to verify the validity of the third signature received from the payment management apparatus using a public key corresponding to the secret key of the payment management apparatus.
[0018]
The store apparatus receives the payment completion information with the third signature, generates the fourth-signature payment completion receipt information using the private key of the store apparatus, and manages the fourth-signature payment completion reception information. The settlement management device and the client device may be configured to verify the validity of the fourth signature received from the store device using a public key corresponding to the store device private key. .
[0019]
The store apparatus may be configured as a single store apparatus or may be configured as a mall including a plurality of lower-layer store apparatuses.
[0020]
Further, according to another aspect of the present invention, in a payment management apparatus capable of updating value information stored in a data storage device such as an IC card via a client device, the payment management apparatus is an IC card or the like. The value update information of the data storage device is subjected to encryption processing using a common key shared between the payment management device and the data storage device such as an IC card, and the value update information subjected to the encryption processing is transferred to the client device And the client device inputs the received value update information to a data storage device such as an IC card, so that a settlement management device is provided.
[0021]
The payment management device generates a fifth signature indicating the validity of the value update information by using the secret key of the payment management device, transmits the value update information with the fifth signature to the client device, and the client device After the validity of the fifth signature received from the payment management apparatus is verified using the public key corresponding to the secret key of the payment management apparatus, the value update information may be input to a data storage device such as an IC card. .
[0022]
Payment information for performing payment with a data storage device such as an IC card in a payment management device that manages payment between a data storage device such as an IC card in which value information is stored and a store device that provides goods or services Is processed based on the payment request information from the store device, and encryption processing is performed using a common key shared between the payment management device and a data storage device such as an IC card. Settlement information encryption processing unit and settlement information output for outputting the encrypted settlement information to a data storage device such as an IC card via a client device having an information input / output function for the data storage device such as an IC card May be provided.
[0023]
The store apparatus creates a first signature indicating the validity of the payment request information using the private key of the store apparatus, transmits the payment request information with the first signature to the payment management apparatus, The validity of the first signature received from the store apparatus may be verified using a public key corresponding to the store apparatus private key.
[0024]
The payment management device creates a second signature indicating the validity of the payment information with the first signature by using the secret key of the payment management device, and sets the payment information to which the second signature is attached and subjected to the cryptographic processing as the first signature. The validity of the two signatures may be transmitted to a client device that can be verified using a public key corresponding to the secret key of the payment management device and output to a data storage device such as an IC card.
[0025]
The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using the private key of the payment management device, includes the payment information, and is attached with the third signature. The payment completion information may be transmitted to a store apparatus that can verify the validity of the third signature using a public key corresponding to the secret key of the payment management apparatus.
[0026]
The store apparatus receives the payment completion information with the third signature, generates the fourth-signature payment completion receipt information using the private key of the store apparatus, and manages the fourth-signature payment completion reception information. The payment management device may be configured to verify the validity of the fourth signature received from the store device using a public key corresponding to the secret key of the store device.
[0027]
Further, according to another aspect of the present invention, there is provided a computer program characterized in that a computer is caused to function as the settlement management device.
[0028]
According to another aspect of the present invention, there is provided a computer-readable storage medium storing the computer program, wherein the computer is caused to function as the settlement management apparatus.
[0029]
Furthermore, according to another aspect of the present invention, a store that provides goods or services based on payments made with a data storage device such as an IC card in which value information is stored via the payment management device. A payment request information generation unit that generates payment request information, a first signature generation unit that generates a first signature indicating the validity of the payment request information using a secret key of the store device, and a first signature A payment request information transmitting unit for transmitting the payment request information to which the validity of the first signature is verified using a public key corresponding to the private key of the store apparatus to the payment management apparatus. A store apparatus is provided.
[0030]
The payment management device generates payment information for performing payment in a data storage device such as an IC card based on payment request information from the store device, and generates the payment information as a payment management device and a data storage device such as an IC card. Encryption processing is performed using a common key shared between the two, and the payment information subjected to the encryption processing is transmitted to the client device. The client device receives the payment information received from the payment management device as data such as an IC card. You may make it output to a memory | storage device.
[0031]
The settlement request information to which the first signature is attached may be transmitted from the store apparatus to the settlement management apparatus via the client apparatus.
[0032]
The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using the private key of the payment management device, includes the payment information, and is attached with the third signature. The settlement completion information may be transmitted to the store apparatus, and the store apparatus may be configured to verify the validity of the third signature received from the settlement management apparatus using a public key corresponding to the secret key of the settlement management apparatus. .
[0033]
The store apparatus receives the payment completion information with the third signature, generates the fourth-signature payment completion receipt information using the private key of the store apparatus, and manages the fourth-signature payment completion reception information. The settlement management device and the client device may be configured to verify the validity of the fourth signature received from the store device using a public key corresponding to the store device private key. .
[0034]
The store apparatus may be configured as a single store apparatus or may be configured as a mall including a plurality of lower-layer store apparatuses.
[0035]
Furthermore, according to another viewpoint of this invention, the computer program characterized by making a computer function as said shop apparatus is provided.
[0036]
According to another aspect of the present invention, there is provided a computer-readable storage medium storing the computer program, wherein the computer is caused to function as the store apparatus.
[0037]
Furthermore, according to another aspect of the present invention, it is used when a settlement between a store device that provides goods or services and a data storage device such as an IC card in which value information is stored is performed via a payment management device. In a client device having an information input / output function for a data storage device such as an IC card, a payment management device generates based on the payment request information from the store device, and the payment management device and a data storage device such as an IC card Payment information receiving unit for receiving payment information subjected to cryptographic processing using a common key shared between the payment information and payment information output for outputting the payment information received from the payment management device to a data storage device such as an IC card A client device is provided.
[0038]
The store apparatus creates a first signature indicating the validity of the payment request information using the secret key of the store apparatus, transmits the payment request information with the first signature to the payment management apparatus via the client apparatus, The payment management device may be configured to verify the validity of the first signature received from the store device using a public key corresponding to the secret key of the store device.
[0039]
The payment management apparatus creates a second signature indicating the validity of the payment information with the first signature by using the secret key of the payment management apparatus, and sets the payment information to which the second signature is attached and subjected to the cryptographic processing as the client apparatus. The client device verifies the validity of the second signature received from the payment management device using a public key corresponding to the secret key of the payment management device, and then sends the payment information to a data storage device such as an IC card. You may comprise so that it may output.
[0040]
The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using the private key of the payment management device, includes the payment information, and is attached with the third signature. The settlement completion information is transmitted to the store apparatus, and the store apparatus verifies the validity of the third signature received from the settlement management apparatus using the public key corresponding to the secret key of the settlement management apparatus, and further, the store apparatus private key Is used to generate the payment completion receipt information with the fourth signature, and transmits the payment completion receipt information with the fourth signature to the client device. The client device determines the validity of the fourth signature received from the store device of the store device. You may comprise so that it may verify using the public key corresponding to a secret key.
[0041]
Further, the payment completion receipt information may be confirmed by the user himself / herself with the payment completion receipt information displayed on the display screen.
[0042]
Furthermore, according to another viewpoint of this invention, the computer program characterized by making a computer function as said client apparatus is provided.
[0043]
According to another aspect of the present invention, there is provided a computer-readable storage medium storing the computer program, which causes a computer to function as the client device.
[0044]
Further, according to another aspect of the present invention, in a data storage device such as an IC card in which value information used when making a settlement with a store device that provides goods or services through a settlement management device is stored. The payment management device generates payment information that is generated based on the payment request information from the store device and is subjected to encryption processing using a common key shared between the payment management device and a data storage device such as an IC card. A data storage device such as an IC card is provided, which can be input via a client device having an information input / output function for the data storage device such as an IC card.
[0045]
The store apparatus creates a first signature indicating the validity of the payment request information using the private key of the store apparatus, transmits the payment request information with the first signature to the payment management apparatus, The validity of the first signature received from the store apparatus is verified using the public key corresponding to the store apparatus private key, and the second signature indicating the validity of the payment information with the first signature is used as the secret key of the payment management apparatus. Is sent to the client device, and the client device sends the validity of the second signature received from the payment management device to the secret of the payment management device. After verification using the public key corresponding to the key, the settlement information may be output to a data storage device such as an IC card.
[0046]
Furthermore, according to another aspect of the present invention, data storage device means such as an IC card in which value information is stored, client means having an information input / output function for the data storage device such as an IC card, and a product or service Store means for generating payment information by a data storage device such as an IC card in response to a purchase request from a client means, and managing settlement between the data storage device such as an IC card and the store means Payment management means for generating payment information for payment in a data storage device such as an IC card based on the payment request information from the store means, and the payment information is stored in the data such as the payment management means and the IC card. Perform cryptographic processing using a common key shared with the storage device and send the settlement information subjected to this cryptographic processing to the client means And already managing means, characterized in that it consists of a communication system that connects the settlement management device and the client device and the store means to be capable of two-way communication, the electronic payment system is provided.
[0047]
The store means creates a first signature indicating the validity of the payment request information using the secret key of the store means, transmits the payment request information with the first signature to the payment management means, The validity of the first signature received from the store means may be verified using a public key corresponding to the secret key of the store means.
[0048]
The payment request information to which the first signature is attached may be configured to be transmitted to the payment management means via the client means.
[0049]
The payment management means creates a second signature indicating the validity of the payment information with the first signature by using the secret key of the payment management means, and sets the payment information to which the second signature is attached and subjected to the cryptographic processing as the client means. The client means verifies the validity of the second signature received from the payment management means using a public key corresponding to the secret key of the payment management means, and then sends the payment information to a data storage device such as an IC card. You may comprise so that it may output.
[0050]
The payment management means generates payment completion information, generates a third signature indicating the validity of the payment completion information using the private key of the payment management means, includes the payment information, and is attached with the third signature. Settlement completion information is transmitted to the store means.
[0051]
The store means may be configured to verify the validity of the third signature received from the payment management means using a public key corresponding to the secret key of the payment management means.
[0052]
Further, the payment completion receipt information may be configured such that the user himself / herself confirms the payment completion receipt information displayed on the display screen.
[0053]
The store means receives the payment completion information with the third signature, generates the fourth signed payment completion receipt information using the private key of the store means, and manages the fourth signed payment completion receipt information. The payment management means and the client device may be configured to verify the validity of the fourth signature received from the store means using a public key corresponding to the secret key of the store means. .
[0054]
The store means may be configured as a single store means or may be configured as a mall including a plurality of lower-layer store means.
[0055]
According to still another aspect of the present invention, there is provided an electronic payment method performed between a client device, a store device, and a payment management device that are connected so as to be capable of two-way communication, wherein the data storage device stores value information. Payment information for performing payment is generated based on a payment request from the store device, and the payment information is subjected to encryption processing using a common key shared between the payment management device and the data storage device. An electronic settlement method is provided, characterized in that the settlement information subjected to is transmitted to the client and the device.
[0056]
The store apparatus creates a first signature indicating the validity of the settlement request information using the secret key of the store apparatus, transmits the settlement request information with the first signature to the settlement management apparatus, The payment management apparatus may verify the validity of the first signature received from the store apparatus using a public key corresponding to the secret key of the store apparatus.
[0057]
Here, in order to facilitate understanding of the present invention, terms common to the present invention will be briefly organized and described.
[0058]
The “electronic payment system” is a system in which payment is electronically made via an online communication system when a product or service is sold via an online communication system such as the Internet. As a method of performing payment through an online communication system, payment by credit card, cash card or debit card, or payment by electronic money such as a prepaid card is possible.
[0059]
The “data storage device” may be in any shape as long as it is a secure device incorporating a data carrier having a card shape such as an IC card and at least an IC chip for storing data such as value information. The IC chip can be mounted on portable devices such as a mobile phone, a portable communication terminal device, and a watch. Data in a data carrier such as an IC card may be exchanged by communicating with another device such as a mobile phone.
[0060]
“Data storage device such as an IC card” refers to a device in which an IC chip is embedded in a card such as plastic. A type having only a memory chip is called a memory card, and a type having a CPU is called a CPU built-in card. Further, data storage devices such as IC cards can be classified by “contact” and “non-contact” with respect to the reader / writer, in addition to the type depending on the presence or absence of the CPU. The contact type has a metal terminal on the surface, and supplies power and exchanges data with the reader / writer through the terminal. On the other hand, the non-contact type has an antenna inside and supplies power and reads / writes data through the antenna.
[0061]
“Value information” is information relating to value that is stored in a data storage device such as an IC card and that can be exchanged as a price for the provision of goods and services. The value information includes information having a monetary value equivalent to a currency, and information having a pseudo monetary value exchangeable with goods or services such as points.
[0062]
The “client device” is a terminal device having at least an information input / output function for a data storage device such as an IC card and a function capable of bidirectional communication with another terminal device or server via an online communication system such as the Internet. The “client device” is generally a computer device having a data storage device reader / writer such as an arithmetic device, a storage device, a display device, an input / output device, a communication device, and an IC card, and has the same function. Includes mobile terminal devices and mobile phone devices. The installation location of the client device may be the user's home or workplace, or may be a store where a client terminal dedicated to this payment system is installed. In addition, the client device can be configured such that the data storage device according to the present invention is configured by an IC chip and mounted on a device such as a mobile phone.
[0063]
The “store device” is a network server that sells and provides products and services via an online communication system such as the Internet. The store apparatus may be composed of a single network server or a mall composed of a plurality of network servers.
[0064]
The “settlement management device” is a management server that manages settlement between a data storage device such as an IC card and a store device, and includes a security server, an application server, a database server, and the like.
[0065]
The “communication system” is configured to be capable of two-way communication via a predetermined communication protocol, for example, an online communication system such as the Internet using a public network, a LAN (Local Area Network), or a WAN (Wide Area Network). Yes, the connection form is not limited to wired wireless.
[0066]
The “payment request information” is created by the store apparatus, and includes various information for requesting the payment management apparatus for the purchase request transmitted to the store apparatus. This purchase request may be transmitted by the user to the store apparatus via the client apparatus, or may not be transmitted via the client apparatus.
[0067]
“Payment information” is created by the payment management device based on the payment request information transmitted from the store device to the payment management device, and is stored in a data storage device such as an IC card via the client device from the payment management device. Various information for making a settlement by increasing or decreasing the value information is included. The security of the payment information is ensured by an encryption process using a common key shared between the payment management device and a data storage device such as an IC card. Further, the validity of the payment information is added with a second signature created using the secret key of the payment management apparatus, and the client apparatus uses the public key corresponding to the secret key of the payment management apparatus. Secured by verification.
[0068]
“Payment completion information” is generated after the payment management device confirms that payment has been made by increasing / decreasing value information stored in a data storage device such as an IC card, and is transmitted to the store device. , Various information about payment completion is included. The correctness of the payment completion information is attached with a third signature generated using the secret key of the payment management apparatus, and the store apparatus uses the third signature using a public key corresponding to the secret key of the payment management apparatus. Secured by verification.
[0069]
The “payment completion receipt information” is generated after the store device confirms that the payment is completed based on a data storage device such as an IC card owned by the user, and is transmitted to the payment management device and the client device. As a result, the completion of the settlement is confirmed, and the product or service can be delivered from the store apparatus to the user. The validity of the payment completion receipt information is attached with a fourth signature generated using the store device private key, and the payment management device and the client device verify using the public key corresponding to the store device private key. Is ensured by
[0070]
“Value update information” is information for increasing / decreasing value information stored in a data storage device such as an IC card, and is input from a settlement management device to a data storage device such as an IC card via a client device. . The security of this value update information is ensured by encryption processing using a common key shared between the payment management device and a data storage device such as an IC card. Further, the validity of the value update information is obtained by attaching a fifth signature created using the secret key of the payment management apparatus, and the client apparatus uses the public key corresponding to the secret key of the payment management apparatus. This is ensured by verification.
[0071]
The “common key” is a so-called common key encryption method, which is a key used for both encryption processing and decryption, and the sender and the receiver share the key. In the present invention, a common key is set between the payment management device and a data storage device such as an IC card.
[0072]
A “private key” is a key used for cryptographic processing by a so-called public key cryptographic processing method, and information subjected to cryptographic processing with a private key can be decrypted with a corresponding public key stored in a certificate authority or the like. It becomes possible.
[0073]
A “public key” is a key used for decryption in a so-called public key encryption method, and is usually stored in a certificate authority, etc., and a receiver can store information that has been encrypted with a secret key. At the time of decryption, the public key is obtained from the certificate authority and decryption is performed.
[0074]
The “electronic signature” guarantees the validity of the information to be transmitted, but the first to fifth signatures are used in the present invention according to the types of the transmission side and the reception side.
[0075]
The “first signature” is a signature that is created using the private key of the store apparatus, attached to the payment request information, and verified by the payment management apparatus using the corresponding public key.
[0076]
The “second signature” is a signature created by using the secret key of the payment management apparatus, attached to the payment information, and verified by the client apparatus using the corresponding public key.
[0077]
The “third signature” is a signature that is created using the secret key of the payment management apparatus, attached to the payment completion information, and verified in the store apparatus using the corresponding public key.
[0078]
The “fourth signature” is a signature that is created using the private key of the store apparatus, attached to the payment completion receipt information, and verified by the payment management apparatus using the corresponding public key.
[0079]
The “fifth signature” is a signature created by using the secret key of the payment management apparatus, attached to the value update information, and verified by the client apparatus using the corresponding public key.
[0080]
DETAILED DESCRIPTION OF THE INVENTION
Hereinafter, an electronic payment system, a payment management device, a store device, a client device, a data storage device such as an IC card, a computer program, and a storage medium according to preferred embodiments of the present invention will be described with reference to the accompanying drawings.
[0081]
FIG. 1 is an overall configuration diagram of an electronic payment system 1 to which the electronic payment system according to the present embodiment can be applied.
[0082]
As shown in FIG. 1, the electronic payment system 1 is a two-way communication between a user 2 including a client device and a data storage device such as an IC card 2, a payment management device 3 and a store device 4 via a predetermined communication protocol. Communication via the network 5 such as the Internet, which is a possible communication system, can be performed.
[0083]
[User 2]
The user 2 is provided with a client device including a data storage device 20 such as an IC card, a reader / writer device 21 that accesses the data storage device 20 such as an IC card, and inputs and outputs information, and a personal computer 22. It has been.
[0084]
The data storage device 20 such as an IC card is an IC chip embedded in a card such as plastic. The data storage device 20 such as an IC card has a tamper resistant IC module 50 as shown in FIG. 2A, and a processing circuit 51 and a memory are provided in the IC module 50 as shown in FIG. 52 is built-in.
[0085]
The processing circuit 51 of the data storage device 20, such as an IC card, performs decryption processing using a common key KC shared with the security server 31 of the payment management device 3, processing according to predetermined information and requests, and mutual processing. Various processes such as an authentication process can be performed.
[0086]
The memory 52 stores a common key KC shared with the security server 31 of the payment management apparatus 3.
[0087]
As shown in FIG. 3, the data storage device 20 such as an IC card communicates with a personal computer 22 via a data storage device reader / writer 21 such as an IC card, and an interface such as an ActiveX component that is driven in the personal computer 22. It connects to the network 5 such as the Internet via the program 24 and the browser program 23. Further, the data storage device 20 such as an IC card is connected to the security server 31 via the application server 30 of the settlement management device 3 and transmits / receives information to / from the security server 31. Information communication between the data storage device 20 such as an IC card and the security server 31 established in this way is encrypted and decrypted by a common key encryption method (PKI protocol) using a common key KC. This ensures security.
[0088]
Note that value information is stored in a data storage device such as an IC card. This value information is information relating to values that can be exchanged as consideration for the provision of products and services. The value information includes information having a monetary value equivalent to a currency, and information having a pseudo monetary value exchangeable with goods or services such as points.
[0089]
The reader / writer 21 of the data storage device such as an IC card performs data input / output with the IC module 50 of the data storage device 20 such as an IC card in a non-contact manner or a contact manner, and between the personal computer 22 and the like. Input and output information and requests.
[0090]
The personal computer 22 executes the browser program 23 according to the operation of the keyboard and mouse by the user, and receives from the application server 30 of the payment management apparatus 3 via the network 5 on the browser program 23 as will be described later. The interface program 24 such as the ActiveX component is executed.
[0091]
The personal computer 22 has a display, a keyboard, a mouse, and the like. In the illustrated example, the personal computer 22 to which the reader / writer 21 can be connected is cited as an example of the client device, but information is exchanged with or without contact with a data storage device such as an IC card. As long as the device can be used, the personal computer 22 is not limited, and a mobile terminal device, a mobile phone terminal device, or the like can be used.
[0092]
As shown in FIG. 4, the browser program 23 operates on the personal computer 22 such as Microsoft Internet Explorer, and can display the service provided by the network server on the client side terminal. Program. In the present embodiment, the browser program 23 adds the signature information using its own private key at the transmission source and the transmission destination by the PKI protocol with the HTTPS layer 60 of the network server 40 of the store apparatus 4. The signature information is verified using the public key corresponding to the secret key.
[0093]
As shown in FIG. 5, the interface program 24 operates on the personal computer 22 and exchanges its own private key with the APS upper layer 30a of the application server 30 of the settlement management apparatus 3 by the PKI protocol. This is a program capable of adding the used signature information and verifying the signature information using the public key corresponding to the secret key at the transmission destination.
[0094]
The interface program 24 also functions as a function expansion program for easily realizing access to local resources such as the data storage device 20 such as an IC card via the reader / writer 21 while the browser program 23 is being executed. .
[0095]
[Payment management device 3]
As shown in FIGS. 1 and 6, the payment management apparatus 3 includes an application server 30 that functions as a virtual electronic money system, a security server 31 that functions as a security management system, an information management server 32 that functions as a scrutinization / settlement system, Further, although not directly related to the present embodiment, an application server 33 that functions as a real electronic money system is provided.
[0096]
The application server 30 of the payment management apparatus 3 can communicate with the personal computer 22 of the user 2 and the network server 40 of the store apparatus 4 via the network 5 such as the Internet.
[0097]
The application server 30 of the payment management apparatus 3 holds a public key KSHOP, P corresponding to the secret key KSHOP, S of the network server 40 of the store apparatus 4, and the network server 40 of the store apparatus 4 stores the public key KSHOP, P as will be described later. The first signature information SIG1 attached to the generated payment request information BILL is verified.
[0098]
Furthermore, the application server 30 of the payment management apparatus 3 includes an APS upper layer 30a and an APS lower layer 30b as shown in FIG.
[0099]
The security server 31 of the payment management device 3 stores a common key KC shared with the data storage device 20 such as the IC card of the user 2.
[0100]
As shown in FIG. 5, the security server 31 of the payment management apparatus 3 is connected via a reader / writer 21, an interface program 24, a browser program 23, a personal computer 22, a network 5, and an application server 30. Information transmitted / received to / from the data storage device 20 such as an IC card is encrypted and decrypted by a common key encryption method using a common key KC.
[0101]
The information management server 32 stores and manages personal information of registered users, for example.
[0102]
[Store device 4]
The store apparatus 4 is provided with a network server 40.
[0103]
As shown in FIG. 4, the network server 40 of the store apparatus 4 is configured to be capable of bidirectional communication between the browser program 23 operating on the personal computer 22 and the HTTPS layer via the PKI protocol. ing.
[0104]
Further, the network server 40 of the store apparatus 4 stores, for example, product or service introduction information, and payment request information BILL for requesting payment corresponding to the amount charged by the store apparatus 4 to the user 2, and the payment request. For the information, the first signature information SIG created using its own secret key KSHOP, S is generated.
[0105]
The store apparatus 4 can be configured as a single member store 42 as shown in FIG. Or the store apparatus 4 can also be comprised as a member store 42 comprised as a member store of the mall 41, as shown in FIG.
[0106]
In the configuration example of the electronic payment system shown in FIG. 6, in addition to the virtual electronic money system 30 applied to the payment when the user performs virtual shopping via the personal computer 22 or the like, the user actually stores in the store. 7 also includes a real electronic money system 33 that is applied to settlement when going to 7 for real shopping.
[0107]
The real electronic money system 33 is connected via a communication system such as the public network 6 to a real store 7 where the user can actually visit. The real store 7 can be configured as an independent store 71, or can be configured as a subordinate store 72 subordinate to the headquarters 71. However, since the real electronic money system 33 is different from the gist of the present invention, detailed description thereof is omitted.
[0108]
Next, the flow of information in the payment system according to the present embodiment will be described with reference to FIG.
[0109]
As described above, in the payment system according to the present embodiment, the information receiver and sender are the client device 2 including the payment management device 3, the store device 4, the personal computer 22, and the reader / writer 21, the IC card, and the like. Data storage device 20.
[0110]
Information distributed between the receiver and sender of the information includes purchase request information, payment request information, payment information, payment completion information, payment completion receipt information, value update information, and the like.
[0111]
"Purchase request information" is to be purchased from the products and services developed by the site of the store apparatus 4 by the user accessing the network server 40 of the store apparatus 4 via the browser 23 of the personal computer 22 as a client apparatus. This is information for selecting a product or service and transmitting it to the store apparatus 4.
[0112]
The “payment request information” is created by the store apparatus 4, and various information for requesting the payment management apparatus 3 to make a payment for the purchase request information transmitted to the store apparatus by the user via the personal computer 22 that is a client apparatus. Is included. The validity of the payment request information is given by attaching a first signature created using the private key of the store apparatus 4 and the payment management apparatus 3 uses the public key corresponding to the private key of the store apparatus 4 as the first signature. Secured by using and verifying.
[0113]
The “payment information” is created based on the payment request information transmitted from the store apparatus 4 to the payment management apparatus 3 by the payment management apparatus 3. The personal computer 22 and the reader / writer 21 that are client apparatuses from the payment management apparatus 3. Various information for making a settlement by increasing or decreasing the value information stored in the data storage device 20 such as an IC card via the. The security of the payment information is ensured by a common key shared between the payment management device 3 and the data storage device 20 such as an IC card. Further, the validity of the payment information is attached with a second signature created using the secret key of the payment management device 3, and the personal computer 22 as the client device uses the second signature as the secret key of the payment management device 3. It is secured by verifying with the corresponding public key.
[0114]
The “payment completion information” is generated after the payment management device 3 confirms that the payment has been made by increasing / decreasing the value information stored in the data storage device 20 such as an IC card, and is transmitted to the store device 4. Various information related to payment completion is included. The validity of the payment completion information is attached with a third signature generated using the secret key of the payment management apparatus 3 and the store apparatus 4 uses the third signature as a public key corresponding to the secret key of the payment management apparatus 3. It is ensured by verifying using.
[0115]
The “payment completion receipt information” is generated after the store apparatus 4 confirms that the payment is completed based on the data storage device 20 such as an IC card owned by the user, and is used as the payment management apparatus 3 and the client apparatus. This is transmitted to the computer 22, whereby the completion of the settlement is confirmed, and the store device 4 can deliver goods or services to the user. The validity of the payment completion receipt information is attached with a fourth signature generated by using the secret key of the store apparatus 4, and the payment management apparatus 3 and the personal computer 22 as the client apparatus correspond to the secret key of the store apparatus 4. It is secured by verifying with the public key to be used.
[0116]
The “value update information” is information for increasing / decreasing value information stored in the data storage device 20 such as an IC card, and the payment management device 3 passes through the personal computer 22 and the reader / writer 21 which are client devices. The data is input to the data storage device 20 such as an IC card. The security of this value update information is ensured by a common key shared between the payment management device 3 and the data storage device 20 such as an IC card. Further, the validity of the value update information is given with a fifth signature created by using the secret key of the payment management apparatus 3, and the personal computer 22 as the client apparatus assigns the fifth signature to the secret key of the payment management apparatus 3. It is secured by verifying using the public key corresponding to.
[0117]
In the payment system according to the present embodiment, the electronic signature used to guarantee the validity of the information to be transmitted is the first signature to the fifth signature depending on the types of the transmission side and the reception side. used.
[0118]
The “first signature” is a signature created with the private key of the store apparatus 4, attached to the payment request information, and verified by the payment management apparatus 3 using the corresponding public key.
[0119]
The “second signature” is a signature created by using the secret key of the payment management apparatus 3, attached to the payment information, and verified using the corresponding public key in the personal computer 22 as the client apparatus.
[0120]
The “third signature” is a signature that is created by using the secret key of the payment management apparatus 3, attached to the payment completion information, and verified by the store apparatus 4 using the corresponding public key.
[0121]
The “fourth signature” is a signature created by using the private key of the store apparatus 4, attached to the payment completion receipt information, and verified by the payment management apparatus 3 using the corresponding public key.
[0122]
The “fifth signature” is a signature created by using the secret key of the payment management apparatus 3, attached to the value update information, and verified using the corresponding public key in the personal computer 22 as the client apparatus.
[0123]
Next, an electronic money dispensing operation in the settlement system according to the present embodiment will be described with reference to FIG.
[0124]
The user 2 accesses the network server 40 of the member store 42 via the personal computer 22 and selects a product or service that the user 2 desires to purchase from products or services provided on the site (▲ 1). ▼).
[0125]
The member store 42 transmits information on the total price of the product or service selected by the user 2 to the user ((2)).
[0126]
The user 2 requests the mall 41 to which the member store 42 belongs to make a settlement with electronic money using the settlement system according to the present embodiment ((3)).
[0127]
In response to the electronic money settlement request from the user 2, the mall 41 issues an order number and issues first-signed settlement request information (4).
[0128]
The user 2 transmits the first signed payment request information and card information (ID, balance, etc.) transmitted from the mall 41 to the cyber electronic money system 30 ((5)).
[0129]
The cyber electronic money system 30 receives the first signed payment request information, communicates with the data storage device 20 such as an IC card owned by the user 2, and transmits the second signed payment information to the data storage device such as an IC card. The value corresponding to the product or service to be purchased is subtracted from the value information stored in the data storage device 20 such as an IC card, and the history information in the card is sucked up (6).
[0130]
After completing the settlement, the cyber electronic money system 30 transmits the third-signed settlement completion information to the mall 71 ((7)).
[0131]
After completing the settlement, the cyber electronic money system 30 transmits the third-signed settlement completion information to the user 2 ((8)).
[0132]
After confirming that the payment is completed by the third-signed payment completion information, the user 2 requests a payment completion screen from the member store 42 (9).
[0133]
In response to the payment completion screen request from the user 2, the member store 42 transmits the payment completion receipt information with the fourth signature to the user 2 and the cyber electronic money system 30 and sends the payment completion screen to the personal computer 22 of the user 2. Display ((10)).
[0134]
After the settlement is completed through the above steps, the merchandise or service is delivered from the member store 42 to the user 2. For example, when the product is digital content, the member store 42 permits the user 2 to download the digital content, so that the product is delivered ((11)).
[0135]
Next, with reference to FIG. 9 to FIG. 11, the details of the product information transmission sequence and the value information transmission sequence in the electronic settlement system according to the present embodiment with high security using the common key, the public key, and the electronic signature are described. Explained.
[0136]
First, before the product is determined by the user shown in FIG. 9, the user 2 accesses the network server 40 of the store apparatus 4 via the network 5 using the browser program 23 that operates on the personal computer 22. With this access, the product information provided by the store apparatus 4 is transmitted from the network server 40 to the personal computer 22 via the network 5, and a screen corresponding to the product information is displayed on the display of the personal computer 22.
[0137]
(First embodiment)
Hereinafter, the operation of the electronic settlement system 1 will be described for each step shown in FIGS. 12 to 20 show examples of screen display of the personal computer 22 of the client device.
[0138]
In the following operation, when information or a request is transmitted / received between the personal computer 22 of the client device and the network server 40, the signature information created using the private key of the transmission source is transmitted at the transmission destination. Verification is performed using the public key corresponding to the secret key, but the description of the process is omitted.
[0139]
Similarly, when information or a request is transmitted / received between the personal computer 22 and the application server 30, electronic signature information created using the private key of the transmission source corresponds to the private key at the transmission destination. However, the description of the processing is omitted except for steps ST14 and ST15.
[0140]
Step ST1:
Server authentication or mutual authentication using SSL (Secure Socket Layer) is performed between the personal computer 22 and the network server 40 to establish a secure communication path.
[0141]
Step ST2:
When the user 2 determines a product to be purchased by operating the keyboard or mouse of the personal computer 22 on the product selection screen as shown in FIG. 12, the product determination information corresponding to the product 2 is sent from the personal computer 22 to the network server 40. Sent to.
[0142]
Step ST3:
When receiving the product determination information from the personal computer 22, the network server 40 transmits the estimated information to the personal computer 22.
[0143]
Step ST4:
As shown in FIG. 13, the personal computer 22 displays the estimation information received from the network server 40 on the display. When the user 2 agrees with the estimate, the user 2 selects a payment method on the screen shown in FIG. When the user 2 operates the keyboard of the personal computer 22 to select payment using electronic money, a billing amount request is transmitted to the network server 40.
[0144]
Step ST5:
When the network server 40 receives a billing amount request from the personal computer 22, the network server 40 uses the settlement request information indicating the amount billed to the user 2 by the store apparatus 4 and the secret key KSHOP, S of the store apparatus 4 for the settlement request information. The first signature information SIG1 created by using the interface program 24 is transmitted to the personal computer 22.
[0145]
Step ST6:
As shown in FIG. 15, the personal computer 22 displays the amount indicated by the payment request information received from the network server 40 in step ST5 on the display.
[0146]
Step ST7:
When the user 2 who agrees with the amount displayed on the display in step ST6 issues a predetermined instruction using the keyboard of the personal computer 22 or the like, the interface program 24 received from the network server 40 is started in step ST5.
[0147]
Then, when the user 2 holds the data storage device 20 such as an IC card over the reader / writer 21 in accordance with the screen display as shown in FIG. 16, the personal computer 22 uses the started interface program 24 to execute the settlement management device. Server authentication or mutual authentication using SSL is performed with the three application servers 30 to establish a secure communication path.
[0148]
While the payment process is being performed in the payment system according to the present embodiment, a screen that prompts the user to wait is displayed on the display of the personal computer 22 as shown in FIG.
[0149]
Step ST8:
The personal computer 22 transmits the payment request information including the payment request information received from the network server 40 of the store apparatus 4 in step ST5 and the first signature information SIG1 for the payment request information to the application server 30 of the payment management apparatus 3. To do.
[0150]
Step ST9:
For example, the application server 30 verifies the first signature information SIG1 received in step ST8 using the public key KSHOP, P corresponding to the private key of the store apparatus 4 read from the information management server 32, and the first signature If it is determined that the information SIG1 is a legitimate information attached to the network server 40 of the store apparatus 4, the process of step ST10 is performed.
[0151]
If the application server 30 determines that the first signature information SIG1 is invalid, for example, the application server 30 notifies the personal computer 22 of the fact, and then ends the process.
[0152]
Step ST10:
Next, the application server 30 of the payment management apparatus 3 transmits, for example, payment request information to the security server 31.
[0153]
Step ST11:
When the security server 31 receives payment request information from the data storage device 20 such as an IC card, the security server 31 performs mutual authentication with the application server 30 and uses the common key KC used with the data storage device 20 such as an IC card. A session key KSES is generated. Similarly, the data storage device 20 such as an IC card generates a session key KSES from the common key KC.
[0154]
Step ST12:
The security server 31 generates payment information, encrypts it with the session key KSES, and outputs it to the application server 30. At that time, the security server 31 attaches a second signature created using the secret key of the payment management apparatus.
[0155]
The application server 30 transmits settlement information including a balance read request (BRC) input from the security server 31 to the personal computer 22.
[0156]
The personal computer 22 outputs the settlement information including the balance read request BRC received from the application server 30 to the data storage device 20 such as an IC card via the reader / writer 21.
[0157]
Step ST13:
When the payment information including the balance read request BRC from the personal computer 22 is input, the data storage device 20 such as an IC card decrypts it using the session key KSES generated in step ST11.
[0158]
Then, the data storage device 20 such as an IC card performs the balance information BI from the tamper resistant memory 52 in the data storage device 20 such as an IC card by the processing of the processing circuit 51 corresponding to the settlement information including the balance read request BRC. The payment information including “” is read out, subjected to encryption processing using the session key KSES, and then output to the personal computer 22.
[0159]
The personal computer 22 transmits settlement information including the balance information BI from the data storage device 20 such as an IC card to the application server 30.
[0160]
The application server 30 outputs the balance information BI received from the personal computer 22 to the security server 31 as payment information.
[0161]
The security server 31 decrypts the payment information including the balance information BI input from the application server 30 using the session key KSES, and generates log information.
[0162]
Step ST14:
The security server 31 charges from the amount indicated by the log writing information for writing the log information generated in step ST13 to the data storage device 20 such as an IC card and the balance information stored in the data storage device 20 such as the IC card. The settlement processing request SPC including the subtraction information indicating the subtraction amount for subtracting is generated, and this is subjected to encryption processing using the session key KSES.
[0163]
Next, the security server 31 outputs settlement information including the plaintext balance information BI and the settlement processing request SPC subjected to the cryptographic processing to the application server 30.
[0164]
The application server 30 creates second signature information for the payment information including the balance information BI and the payment processing request SPC input from the security server 31 using the secret key of the application server 30.
[0165]
Next, the application server 30 attaches the second signature information to the payment information including the balance information BI and the payment processing request SPC input from the security server 31 and transmits them to the personal computer 22.
[0166]
Step ST15:
The personal computer 22 verifies the validity of the second signature information SIG2 received from the application server 30 using the public key of the application server 30, and performs the following processing after the validity is recognized.
[0167]
As shown in FIG. 18, the personal computer 22 displays the balance indicated by the balance information BI received from the application server 30 and the amount (invoiced amount) indicated by the estimate information received from the network server 40 in step ST3.
[0168]
Step ST16:
When the user 2 who agrees with the balance and the billing amount displayed on the display in step ST15 issues a predetermined instruction using the keyboard of the personal computer 22 or the like, the personal computer 22 stores the settlement processing request SPC in a data storage such as an IC card. The data is output to the data storage device 20 such as an IC card via the device reader / writer 21. While the payment confirmation process is being performed, a screen prompting standby as shown in FIG. 19 is displayed on the display of the personal computer 22.
[0169]
Step ST17:
The data storage device 20 such as an IC card decrypts the payment processing request SPC input from the personal computer 22 using the session key KSES, and the processing circuit 51 executes the payment processing according to the payment processing request.
[0170]
Specifically, the data storage device 20 such as an IC card uses the processing circuit 51 to process log write information included in the settlement processing request SPC into a tamper resistant memory 52 in the data storage device 20 such as an IC card. To remember. In addition, the data storage device 20 such as an IC card subtracts the subtraction amount indicated by the subtraction information included in the settlement processing request SPC from the balance indicated by the balance information stored in the memory 52 by the processing of the processing circuit 51. The result is stored in the memory 52 as balance information.
[0171]
Step ST18:
When the processing of step ST17 is completed, the data storage device 20 such as an IC card generates a processing completion notification PCN indicating that the processing is completed, and after performing encryption processing with the session key KSES, The data is transmitted to the security server 31 via the application server 30.
[0172]
Step ST19:
Upon receiving the processing completion notification PCN from the data storage device 20 such as an IC card, the security server 31 decrypts this using the session key KSES, and after confirming the processing completion notification PCN, generates the payment completion information ACN. This is transmitted to the personal computer 22 and the network server 40 via the application server 30. At that time, the correctness of the payment completion information is ensured by attaching a third signature generated by the payment management apparatus.
[0173]
Step ST20:
When the personal computer 22 receives the settlement completion notification ACN from the security server 31, as shown in FIG. 20, the personal computer 22 displays a screen for prompting download of information corresponding to this, for example, digital content.
[0174]
As described above, according to the electronic settlement system 1, the common key KC is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, even when the user 2 loses the data storage device 20 such as an IC card, since the secret key is not stored in the memory 52, it is possible to prevent the user 2 from being illegally signed using the secret key. .
[0175]
Further, according to the electronic payment system 1, the common key KC is used only inside the data storage device 20 such as an IC card and the security server 31, so that the risk of the common key KC being stolen can be reduced and safe. Transactions can be realized and key management can be facilitated.
[0176]
Further, according to the electronic settlement system 1, information and requests input / output to / from the data storage device 20 such as an IC card are made via the personal computer 22, and the personal computer 22, the application server 30, and the network server 40 are connected. Since the signature verification using the private key and the public key is performed when the information and request are transmitted / received in the network, it is possible to prevent the information and the request from being tampered with on the network 5, and the transaction using the network 5 is performed. Can be secured.
[0177]
Further, according to the electronic payment system 1, the network server 40 of the store apparatus 4 attaches the signature information SIG created using its own secret key KSHOP, S to the billing amount information BILL, and the payment management apparatus 3 The application server 30 verifies the signature information SIG using the public key KSHOP, P corresponding to the secret key KSHOP, S, and that the signature information SIG is a legitimate one attached to the network server 40 of the store apparatus 4. Since the determination is made, it is possible to prevent the payment on the personal computer 22 of the user 2 based on the bill information BILL that has been tampered with.
[0178]
In the electronic payment system 1, as described above, the personal computer 22 displays on the display the balance indicated by the balance information BI received from the application server 30 and the amount (invoiced amount) indicated by the estimate information received from the network server 40. After the content is displayed and the user 2 agrees, the settlement processing request SPC received from the application server 30 is output to the data storage device 20 such as an IC card via the data storage device reader / writer 21 such as an IC card. Therefore, the user 2 can confirm in advance the contents of the settlement process finally performed in the data storage device 20 such as an IC card, and can prevent the settlement process from being performed with illegally tampered contents.
[0179]
Further, according to the electronic payment system 1, the procedure associated with the payment process can be reduced as compared with the conventional case, information transmission via the network 5 can be reduced, the amount of use of the network 5 can be reduced, and the processing time can be reduced.
[0180]
Further, according to the electronic payment system 1, it is not necessary to create and verify signature information many times as in the conventional SET method.
[0181]
(Second Embodiment)
Next, a merchandise information transmission sequence and a value information transmission sequence by a settlement system according to another embodiment will be described with reference to FIGS.
[0182]
ST101:
First, SSL authentication is established for communication with good security between the personal computer 22 of the user 2 and the network server 40 of the store apparatus 4.
[0183]
ST102:
Next, the user 2 selects a product according to the screen displayed on the display of the personal computer 22.
[0184]
ST103:
The network server 40 of the store apparatus 4 uses the payment processing request information with the first signature created using the secret key of the store apparatus 4 according to the product selected by the user 2 as the personal computer 22 of the user 2. Send to.
[0185]
ST104:
The personal computer 22 activates an interface program 24 such as ActiveX, accesses the data storage device 20 such as an IC card via the reader / writer 21, and reads the balance of the data storage device such as the IC card.
[0186]
ST105:
The read balance is taken into the personal computer 22 of the user 2 using a predetermined browsing mechanism and displayed on the display.
[0187]
ST106:
Next, secure SSL authentication is established between the personal computer 22 of the user 2 and the application server 30 of the payment management apparatus 3 to prepare for the value information transmission sequence.
[0188]
ST107:
Next, payment request information with a first signature including balance information of the data storage device 20 such as an IC card is transmitted from the personal computer 22 of the user 2 to the payment management device 3.
[0189]
The application server 30 of the payment management apparatus 3 verifies the validity of the transmitted payment request information using the public key corresponding to the secret key of the store apparatus 4, and delivers necessary information to the security server 31.
[0190]
ST108:
The security server 31 of the settlement management device 3 performs mutual authentication with the data storage device 20 such as an IC card, and generates a session key from the common key. Similarly, on the data storage device 20 side such as an IC card, mutual authentication is performed with the security server 31, and a session key is generated from the common key.
[0191]
ST109:
The security server 31 encrypts the payment information with the session key and transmits it to the personal computer 22 of the user 2 via the application server 30.
[0192]
The personal computer 22 decrypts the sent settlement information with the session key stored in the data storage device 20 such as an IC card and displays it on the screen. When the user 2 approves the payment information sent, the contents are transmitted to the data storage device 20 such as an IC card via the reader / writer 21 and subtracted in the data storage device 20 such as an IC card. A predetermined settlement process such as a process is performed.
[0193]
It should be noted that in the payment sequence according to the present embodiment, the payment information generated by the security server 31 of the payment management apparatus 3 is different from the payment sequence described with reference to FIGS. Is that it is simply encrypted with the common key, and the second signature generated using the secret key of the payment management apparatus 3 is not attached.
[0194]
As described above, since the identity of the settlement information to be transmitted can be confirmed by simply encrypting / decrypting with the common key, the processing can be performed by omitting the second signature as in the settlement system according to the present embodiment. It is possible to reduce the redundancy.
[0195]
ST110:
As described above, when a predetermined settlement process is completed in the data storage device 20 such as an IC card, the result is transmitted to the security server 31 via the reader / writer 21, the personal computer 22, and the application server 30. The
[0196]
ST111:
When the payment completion is confirmed by the security server 31, the payment completion information is sent to the application server 30. Then, the payment completion information (receipt) is transmitted to the network server 40 of the store apparatus 2 with the third signature generated using the secret key of the payment management apparatus 3 in the application server 31.
[0197]
ST112:
In the network server 40, the payment completion information is verified with the public key corresponding to the secret key of the payment management apparatus 3, and after confirming the contents, payment completion receipt information is generated. This payment completion receipt information is transmitted with the fourth signature generated using the secret key of the store apparatus 4 to the application server 30 of the payment management apparatus 3.
[0198]
Then, the application server 30 of the payment management apparatus 3 transmits the fourth signed payment completion receipt information to the personal computer 22 of the user 2, whereby a series of electronic money payment processing is completed on the display of the personal computer 22. An indication to the effect is made.
[0199]
As described above, according to the electronic settlement system according to the present embodiment, the common key is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, even when the user 2 loses the data storage device 20 such as an IC card, since the secret key is not stored in the memory 52, it is possible to prevent the user 2 from being illegally signed using the secret key. .
[0200]
Further, according to the electronic settlement system according to the present embodiment, since the common key is used only inside the data storage device 20 such as an IC card and the security server 31, the risk of the common key being stolen can be reduced. , Secure transactions can be realized and key management can be facilitated.
[0201]
Further, according to the electronic settlement system of the present embodiment, information and requests input / output to / from the data storage device 20 such as an IC card are performed via the personal computer 22, and the personal computer 22, the application server 30, and the network are performed. Since signature verification using a private key and a public key is performed when information and requests are transmitted to and received from the server 40, the information and requests can be prevented from being tampered with on the network 5, and network The safety of transactions using 5 can be secured.
[0202]
Even when signature verification is not performed, the identity of settlement information to be transmitted can be confirmed by encryption / decryption using a common key. Therefore, as in the settlement system according to the present embodiment, processing redundancy Can be mitigated.
[0203]
In addition, according to the electronic payment system according to the present embodiment, the network server 40 of the store apparatus 4 attaches the first signature information created using its own private key to the payment request information, and sets the payment management apparatus. In the third application server 30, the first signature information is verified using the public key corresponding to the secret key, and it is determined that the first signature information is valid attached to the network server 40 of the store apparatus 4. Therefore, it is possible to prevent the user 2 from performing payment based on the payment request information that has been tampered with in the personal computer 22 or the like.
[0204]
In the electronic settlement system according to the present embodiment, as described above, the personal computer 22 uses the balance indicated by the balance information received from the application server 30 and the amount indicated by the estimate information received from the network server 40 (invoiced amount). ) Is displayed on the display, and after the user 2 agrees to the contents, the settlement processing request SPC received from the application server 30 is transferred to the data storage device 20 such as an IC card via the data storage device reader / writer 21 such as an IC card. Output. Therefore, the user 2 can confirm in advance the contents of the settlement process finally performed in the data storage device 20 such as an IC card, and can prevent the settlement process from being performed with illegally tampered contents.
[0205]
Further, according to the electronic payment system 1, the procedure associated with the payment process can be reduced as compared with the conventional case, information transmission via the network 5 can be reduced, the amount of use of the network 5 can be reduced, and the processing time can be reduced.
[0206]
Further, according to the electronic payment system 1, since there is no need to create and verify signature information many times as in the conventional SET method, the redundancy of the processing procedure can be reduced.
[0207]
(Electronic money deposit system)
The electronic money deposit system and sequence in the settlement system according to the present embodiment will be described with reference to FIGS.
[0208]
In the settlement system according to the present embodiment, the data storage device 20 such as an IC card is used as prepaid electronic money, but the user 2 stores the value information stored in the data storage device 20 such as an IC card. When the balance is insufficient, it is necessary to update the value information so as to increase the balance. Alternatively, in some cases, it is necessary to update the value information so as to reduce the value information stored in the data storage device 20 such as an IC card.
[0209]
When depositing electronic money into a data storage device such as an IC card, the user 2 uses an application server of the payment management device 3 via a personal computer 20 that can access the data storage device 20 such as an IC card by a reader / writer 21. (Cyber electronic money system) 30 is accessed and a request is made to display the deposit screen on the display ((1)).
[0210]
In response to the deposit screen request, the application server 30 displays a deposit screen as shown in FIG. 25 on the display of the personal computer 20 of the user 2 via a predetermined interface program 24 such as an ActiveX component (▲ 2 ▼).
[0211]
When the user 2 selects the deposit on the deposit screen shown in FIG. 25, an instruction is given to set the data storage device 20 such as an IC card in the reader / writer 21 as shown in FIG.
[0212]
When the user 2 sets the data storage device 20 such as an IC card in the reader / writer 21, the balance stored in the data storage device 20 such as an IC card is read and transferred to the cyber electronic money system 30. (▲ 3 ▼). At the same time, the history information in the card is also taken up by the cyber electronic money system (4). While these processes are being performed, a display indicating that the process is in progress is displayed on the display as shown in FIG.
[0213]
Next, the user 2 inputs a deposit amount, a credit card number, an expiration date, and a password while operating the keyboard and mouse of the personal computer 22 while referring to the screens as shown in FIGS. And transfer it to the cyber electronic money system ((3)). At the same time, the history information in the card is also taken up by the cyber electronic money system (4). While these processes are being performed, a display indicating that the process is in progress is displayed on the display as shown in FIG.
[0214]
When the cyber electronic money system 30 receives the above-described payment request information, the cyber electronic money system 30 requests the credit device 35 to approve the credit settlement request ((5)). The credit device 35 examines the credit information and determines whether or not a credit settlement request can be made. The detailed configuration of the credit device 35 does not have a direct relationship with the present invention, and a detailed description thereof will be omitted.
[0215]
If the credit result is positive, the cyber electronic money system generates value update information. The cyber electronic money system encrypts value update information with a common key shared between the payment management device 3 and the data storage device 20 such as an IC card.
[0216]
Further, the value update information is transmitted with the fifth signature created by the secret key of the settlement management device 3 to the personal computer 22 of the user 2. The personal computer 22 of the user 2 verifies the validity of the value update information sent with the public key corresponding to the secret key of the payment management device 3, and if it is correct, the value update information is sent to the payment management device. 3 and a common key shared between the data storage device 20 such as an IC card. Then, the value information in the data storage device 20 such as an IC card is updated based on the decrypted value update information ((6)).
[0217]
The personal computer 22 transmits a deposit completion screen request to the cyber electronic money system 30 (7), and a deposit completion screen as shown in FIG. 31 is displayed on the display of the personal computer 22 (8). ). Thereafter, as shown in FIG. 32, the top page of the cyber electronic money system is restored, and a series of value update processing is completed.
[0218]
The card log information related to a series of processes is sent to the information management server 32 for the scrutinization / settlement system in a batch process and stored.
[0219]
As described above, according to the electronic money deposit system using the payment system according to the present embodiment, the common key KC is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, even when the user 2 loses the data storage device 20 such as an IC card, since the secret key is not stored in the memory 52, it is possible to prevent the user 2 from being illegally signed using the secret key. .
[0220]
Further, according to the electronic payment system 1, since the common key is used only inside the data storage device 20 such as an IC card and the security server 31, it is possible to reduce the risk of the common key being stolen, and secure deposit processing. And key management can be facilitated.
[0221]
The preferred embodiments of the electronic settlement system and the like according to the present invention have been described above with reference to the accompanying drawings, but the present invention is not limited to such examples. It will be obvious to those skilled in the art that various changes or modifications can be conceived within the scope of the technical idea described in the claims, and these are naturally within the technical scope of the present invention. It is understood that it belongs.
[0222]
For example, in the above-described embodiment, as illustrated in FIG. 1, the payment management apparatus 3 is exemplified by the case where the application server 30, the security server 31, and the information management server 32 are separately provided. You may implement | achieve with one server.
[0223]
In the above-described embodiment, the case where the balance information in the data storage device 20 such as an IC card is read to the application server 30 is illustrated. However, the balance information may not be read to the application server 30.
[0224]
Furthermore, a series of processing of the electronic settlement method according to the present invention, processing performed by the settlement management device / store device / client device can be executed by hardware, but can also be executed by software. When executed by a series of software, various functions can be executed by installing a computer in which the program constituting the software is installed in dedicated hardware or various programs. The program may be stored in a package medium such as a floppy disk or a CD-ROM in a personal computer or provided, or the program may be downloaded via a communication network such as the Internet.
[0225]
【Effect of the invention】
As described above, according to the present invention, an electronic payment system, a payment management device, a store device, and a client that securely perform electronic commerce via a network using a data storage device such as an IC card that holds a common key. A device, a data storage device such as an IC card, a computer program, and a storage medium can be provided.
[0226]
In particular, according to the electronic settlement system and the like according to the present invention, the common key is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, even when the user loses a data storage device such as an IC card, since the secret key is not stored in the memory, it is possible to prevent the user's signature from being illegally performed using the secret key.
[0227]
In addition, according to the electronic settlement system and the like according to the present invention, since the common key is used only inside the data storage device such as an IC card and the security server, the risk of the common key being stolen can be reduced and secured. Transactions can be realized and key management can be facilitated.
[0228]
In addition, according to the electronic payment system and the like according to the present invention, signature verification using a private key and a public key is performed when various information and requests distributed on the network are transmitted and received. Can prevent unauthorized tampering and secure the safety of transactions using the network.
[0229]
As described above, according to the electronic payment system and the like according to the present invention, it is possible to reduce the procedure associated with payment processing and payment processing as compared with the conventional method, reduce information transmission via the network, reduce the amount of network usage, and Processing time can be shortened.
[Brief description of the drawings]
FIG. 1 is an overall configuration diagram of an electronic payment system according to an embodiment of the present invention.
FIG. 2 is a schematic explanatory diagram for explaining the configuration of a data storage device such as an IC card shown in FIG. 1;
FIG. 3 is a configuration diagram showing another configuration example of the electronic settlement system according to the embodiment of the present invention.
FIG. 4 is a configuration diagram showing a flow of information in the electronic settlement system according to the embodiment of the present invention.
FIG. 5 is a diagram for explaining a communication method between a data storage device such as a user's IC card and the security server of the settlement management device.
FIG. 6 is a diagram for explaining a communication method between a user's personal computer and a store network server.
FIG. 7 is a diagram for explaining a communication method between a user's personal computer and an application server of the payment management apparatus.
FIG. 8 is an explanatory diagram showing a flow of electronic money withdrawal in the electronic settlement system according to the embodiment of the present invention.
9 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a merchandise information transmission sequence.
10 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a value information transmission sequence. FIG.
11 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a value information transmission sequence.
12 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
13 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
14 is a configuration example of a screen displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
15 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
16 is a configuration example of a screen displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
17 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
18 is a configuration example of a screen displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
FIG. 19 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG. 1;
20 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG.
FIG. 21 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a merchandise information transmission sequence.
22 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a value information transmission sequence.
23 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a value information transmission sequence.
FIG. 24 is an explanatory diagram showing a flow of electronic money deposit in the electronic settlement system according to the embodiment of the present invention.
25 is a configuration example of a screen displayed on the client device during the depositing operation of the electronic settlement system shown in FIG.
26 is a screen configuration example displayed on the client device during the depositing operation of the electronic settlement system shown in FIG.
27 is a configuration example of a screen displayed on the client device during the depositing operation of the electronic settlement system shown in FIG.
FIG. 28 is a screen configuration example displayed on the client device during the depositing operation of the electronic settlement system shown in FIG. 1;
29 is a screen configuration example displayed on the client device during the depositing operation of the electronic settlement system shown in FIG.
30 is a configuration example of a screen displayed on the client device during the depositing operation of the electronic settlement system shown in FIG.
FIG. 31 is a configuration example of a screen displayed on the client device during the depositing operation of the electronic settlement system shown in FIG. 1;
32 is a configuration example of a screen displayed on the client device during the depositing operation of the electronic settlement system shown in FIG.
[Explanation of symbols]
1 ... Electronic payment system,
2 ... user,
3 ... Payment management device,
4 ... store equipment,
5 ... Network,
20. Data storage device such as IC card,
21 ... Data storage device reader / writer such as an IC card,
22 ... Personal computer,
23 ... Browser program,
24 ... interface program,
30 ... Application server,
31 ... Security server,
32. Information management server,
40 ... Network server

Claims (15)

A payment management device capable of updating value information stored in a data storage device via a client device that performs contactless communication with the data storage device ,
Encryption for performing encryption processing using a common key shared between the settlement management device and the data storage device on the value update information for updating the value information stored in the data storage device A processing unit;
The value update information subjected to cryptographic processing is transmitted to the client device that inputs the received value update information to the data storage device, and settlement is performed based on reception of a processing completion notification transmitted from the client device. A transmission unit for transmitting settlement completion information for notifying completion of the transaction to the client device;
A payment management device. The payment management apparatus according to claim 1, which receives payment completion receipt information generated and transmitted by the information processing apparatus. A second signature indicating the validity of the payment completion receipt information is attached to the payment completion receipt information,
The payment management apparatus according to claim 2 , wherein the second signature is generated using a secret key of the information processing apparatus and verified using a public key corresponding to the secret key of the information processing apparatus. A program that can be used for a payment management device capable of updating value information stored in a data storage device via a client device that performs contactless communication with the data storage device ,
Computer
Encryption for performing encryption processing using a common key shared between the settlement management device and the data storage device on the value update information for updating the value information stored in the data storage device means,
The value update information subjected to cryptographic processing is transmitted to the client device that inputs the received value update information to the data storage device, and settlement is performed based on reception of a processing completion notification transmitted from the client device. Sending means for sending settlement completion information to notify the client device of completion,
Program to function as. A computer readable recording of a program that can be used for a payment management device capable of updating value information stored in a data storage device via a client device that performs non-contact communication with the data storage device A storage medium,
Computer
Encryption for performing encryption processing using a common key shared between the settlement management device and the data storage device on the value update information for updating the value information stored in the data storage device means,
The value update information subjected to cryptographic processing is transmitted to the client device that inputs the received value update information to the data storage device, and settlement is performed based on reception of a processing completion notification transmitted from the client device. Sending means for sending settlement completion information to notify the client device of completion,
A computer-readable storage medium storing a program for functioning as a computer. A management method in a payment management apparatus capable of updating value information stored in a data storage device via a client device that performs non-contact communication with the data storage device ,
Subjecting value update information for updating the value information stored in the data storage device to cryptographic processing using a common key shared between the settlement management device and the data storage device; ,
Transmitting the value update information subjected to cryptographic processing to the client device that inputs the received value update information to the data storage device;
Transmitting settlement completion information for notifying completion of settlement to the client device based on reception of a processing completion notification transmitted from the client device;
Management method. A common key shared between the payment management device and the data storage device is used for value update information transmitted from the payment management device to update the value information stored in the data storage device. When receiving the value update information subjected to cryptographic processing, the received value update information is input to the data storage device by non-contact communication ,
When the processing completion notification transmitted from the data storage device is received by the non-contact communication , the received processing completion notification is transmitted to the settlement management device,
A client device that determines that payment has been completed when it receives payment completion information for notifying completion of payment transmitted from the payment management device based on reception of the processing completion notification. The value update information has a signature indicating the validity of the value update information generated using a secret key of the payment management device,
When the value update information with the signature attached is received, the validity of the signature in the received value update information is verified using a public key corresponding to the secret key of the payment management device,
The client device according to claim 7 , wherein the value update information is input to the data storage device when the signature is valid. The client device according to claim 7 or 8 , which receives payment completion receipt information generated and transmitted by the information processing device. A second signature indicating the validity of the payment completion receipt information is attached to the payment completion receipt information,
The client apparatus according to claim 9 , wherein the second signature is generated using a secret key of the information processing apparatus and verified using a public key corresponding to the secret key of the information processing apparatus. A common key shared between the payment management device and the data storage device is used for value update information transmitted from the payment management device to update the value information stored in the data storage device. When receiving the value update information subjected to cryptographic processing, inputting the received value update information into the data storage device by non-contact communication ;
Transmitting the received processing completion notification to the settlement management device when receiving the processing completion notification transmitted from the data storage device by the non-contact communication ;
Determining that payment has been completed when receiving payment completion information notifying completion of payment sent from the payment management device based on reception of the processing completion notification;
A processing method. Computer
A common key shared between the payment management device and the data storage device is used for value update information transmitted from the payment management device to update the value information stored in the data storage device. When receiving the value update information subjected to cryptographic processing, the received value update information is input to the data storage device by non-contact communication ;
Transmitting the received processing completion notification to the settlement management device when receiving the processing completion notification transmitted from the data storage device by the non-contact communication ;
Determining that payment is completed when receiving payment completion information notifying completion of payment, transmitted from the payment management device based on reception of the processing completion notification;
A program for running A memory for storing value information and a common key shared between the settlement management device,
The value update information obtained by performing encryption processing using the common key on the value update information for updating the value information stored in the memory, transmitted from the payment management device , The value information stored in the memory based on the value update information is decrypted using the common key stored in the memory. A processing unit to be updated;
With
The data processing device, wherein when the update of the value information is completed, the processing unit transmits the received processing completion notification to the client device that transmits the received processing completion notification to the payment management device, by the contactless communication . The value update information transmitted from the payment management device has a signature indicating the validity of the value update information generated using the secret key of the payment management device,
The value update information input via the client device includes the signature that the client device verifies the validity of the signature in the value update information using a public key corresponding to a secret key of the payment management device. The data storage device according to claim 13 , wherein is valid value update information. A processing method in a data storage device comprising a memory for storing value information and a common key shared between the settlement management device,
The value update information obtained by performing encryption processing using the common key on the value update information for updating the value information stored in the memory, transmitted from the payment management device , The value information stored in the memory based on the value update information is decrypted using the common key stored in the memory. A step to update,
Sending if an update of the value information has been completed, the the client device to send a processing completion notice received to the settlement management device, the processing completion notification by the non-contact communication,
A processing method.

Images