JP2002324202A - Electronic settlement system, settlement managing device, store device, client device, data storage device, computer program, storage medium, and electronic settlement method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an efficient electronic settlement system capable of reducing the number of times of verification. SOLUTION: This electronic settlement system is provided with a data storage device 20 such as an IC card in which value information is stored, a client device 22 equipped with an information inputting and outputting function for the data storage device such as the IC card, a store device 4 for providing merchandise or a service, a settlement managing device 3 for managing settlement between the data storage device such as the IC card and the store device, and a communication system 5 through which the client device, the store device, and the settlement managing device are connected so as to be communicatable with each other. The settlement managing device generates settlement information for performing settlement by the data storage device such as the IC card based on settlement request information from the store information, and performs cipher processing to the settlement information by using a common key shared between the settlement managing device and the data storage device such as the IC card, and transmits the settlement information to which the cipher processing is performed to the client device, and the client device outputs the settlement information received from the settlement managing device to the data storage device such as the IC card.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an electronic payment system, a payment management device, a store, and the like, which can securely execute a payment process using a network or the like using a data storage device such as an IC card holding a common key. The present invention relates to a device, a client device, a data storage device such as an IC card, a computer program, and a storage medium.

[0002]

2. Description of the Related Art In order to safely carry out electronic commerce via an open network such as the Internet, a conventional P
KI (Public Key Infrastructure)
ure: public key infrastructure) protocol.

[0003] In the PKI protocol, signature information is created at a transmission source using a secret key, and the signature information is transmitted together with transmission information from a transmission source to a transmission destination. Then, the transmission destination verifies the signature information using the public key corresponding to the secret key, thereby determining whether or not the received transmission information is created by a valid transmission source.

Incidentally, in recent years, ICs (Integral
There is an attempt to perform electronic commerce via a network using an ed Circuit card. Where
A data storage device such as an IC card holds a common key, and inputs and outputs confidential information using a common key cryptosystem. Such a data storage device such as an IC card has an advantage that the damage can be reduced even if the data storage device such as an IC card is lost because the common key cannot be a key for creating signature information. is there.

[0005]

However, in order to securely carry out electronic commerce via a network, it is necessary to create signature information using a secret key. There is a problem that signature information cannot be created because the storage device does not hold (store) the secret key. In this case, a method of holding the secret key in a data storage device such as an IC card can be considered. However, as described above, since the secret key can create signature information, it has the same effect as the seal stamp illumination. There is a problem that damage when a data storage device is lost and misused is too large.

Also, using only the common key cryptosystem adopted by the data storage device such as an IC card as described above,
When electronic commerce is performed via a network, a large number of destination server devices or the like that carry out transactions have a common key, and there is also a problem that the common key is more likely to be stolen or misused.

[0007] In electronic settlement, SSL (Secur
e Socket Layer) or SET (Secur)
e Electronic Transaction)
Are often adopted. However, in SSL, although the security of the communication path between the client device and the store device is guaranteed, there is a problem that fraud on the store side cannot be detected.

[0008] Further, SET has both the advantage of SSL and the advantage that it cannot be falsified by the client device, the store device, and the payment management device. However, since each device must have a PKI certificate, it is complicated and costly. In addition, there is a problem that the signature and the signature verification must be performed many times, which is redundant.

Further, in an electronic commerce system,
There is no means for checking whether the value information confirmed by the user on the client device is the same as the value information actually written in a data storage device such as an IC card.

The present invention has been made in view of the above problems,
An electronic payment system, a payment management device, a store device, a client device, a data storage device such as an IC card that can securely perform electronic commerce via a network using a data storage device such as an IC card holding a common key. , A computer program and a storage medium.

[0011]

According to the present invention, there is provided a new and improved electronic payment system, a payment management device, a store device, a client device, and an I / O device.
A data storage device such as a C card, a computer program, and a storage medium are provided.

According to a first aspect of the present invention, a data storage device such as an IC card in which value information is stored, a client device having an information input / output function for the data storage device such as an IC card, a product or A store device for providing services, a payment management device for managing payment between a data storage device such as an IC card, and the store device, and a communication system for connecting the client device, the store device, and the payment management device in a bidirectional manner. An electronic payment system comprising: a payment management device that generates payment information for performing payment with a data storage device such as an IC card based on payment request information from a store device; And a data storage device such as an IC card using a common key, and executing the encryption processing on the payment information. Transmitted to the client apparatus, and outputs the settlement information received from the settlement management device in a data storage device such as an IC card, an electronic payment system is provided.

In the electronic payment system, the store device creates a first signature indicating the validity of the payment request information using the secret key of the store device, and stores the payment request information with the first signature attached to the payment management device. And the payment management device may verify the validity of the first signature received from the store device using a public key corresponding to the secret key of the store device.

The payment request information with the first signature may be transmitted to the payment management device via the client device.

The payment management device creates a second signature indicating the validity of the first signature-added payment information using the secret key of the payment management device, and applies the second signature to the encrypted payment information. To the client device, and the client device verifies the validity of the second signature received from the payment management device using a public key corresponding to a secret key of the payment management device, and then transmits the payment information to an IC card or other data. The data may be output to a storage device.

The payment management device generates payment completion information,
A third signature indicating the validity of the payment completion information is generated using the secret key of the payment management device, and the payment completion information including the payment information and having the third signature attached is transmitted to the store device.

The store device may be configured to verify the validity of the third signature received from the payment management device using a public key corresponding to a secret key of the payment management device.

The store apparatus receives the payment completion information with the third signature, generates the fourth signature payment completion reception information using the secret key of the store apparatus, and generates the fourth signature payment completion reception information. Is transmitted to the payment management device and the client device, and the payment management device and the client device are configured to verify the validity of the fourth signature received from the store device using the public key corresponding to the secret key of the store device. You may.

The store device may be configured as a single store device, or may be configured as a mall including a plurality of lower store devices.

According to still another aspect of the present invention, in a payment management device capable of updating value information stored in a data storage device such as an IC card via a client device, the payment management device comprises: The value update information of a data storage device such as an IC card is subjected to an encryption process using a common key shared between the payment management device and the data storage device such as the IC card, and the value update information subjected to the encryption process Is transmitted to a client device, and the client device inputs the received value update information to a data storage device such as an IC card.

The payment management device generates a fifth signature indicating the validity of the value update information using the secret key of the payment management device,
The value update information with the fifth signature is transmitted to the client device, and the client device verifies the validity of the fifth signature received from the payment management device using the public key corresponding to the secret key of the payment management device. Later, the value update information may be input to a data storage device such as an IC card.

In a settlement management device for managing settlement between a data storage device such as an IC card in which value information is stored and a store device providing goods or services, the settlement is performed by the data storage device such as an IC card. And a payment information generating unit for generating payment information based on payment request information from a store device, and encrypting the payment information using a common key shared between the payment management device and a data storage device such as an IC card. A payment information encryption processing unit that performs processing, and outputs the encrypted payment information to a data storage device such as an IC card via a client device having an information input / output function for a data storage device such as an IC card. A payment information output unit may be provided.

The store device creates a first signature indicating the validity of the payment request information using the secret key of the store device, transmits the payment request information with the first signature to the payment management device, The device may verify the validity of the first signature received from the store device using a public key corresponding to a secret key of the store device.

The payment management device creates a second signature indicating the validity of the first signature-added payment information using the secret key of the payment management device, and applies the second signature to the encrypted payment information. May be transmitted to a client device that can verify the validity of the second signature using a public key corresponding to a secret key of the payment management device, and output to a data storage device such as an IC card.

The settlement management device generates settlement completion information,
A third signature indicating the validity of the payment completion information is generated using the secret key of the payment management apparatus, and the payment completion information including the payment information and having the third signature attached thereto is used to determine the validity of the third signature. The information may be transmitted to a verifiable store device using a public key corresponding to a secret key of the payment management device.

The store apparatus receives the payment completion information with the third signature, generates the fourth signature payment completion reception information using the secret key of the store apparatus, and generates the fourth signature payment completion reception information. To the payment management device, and the payment management device may be configured to verify the validity of the fourth signature received from the store device using a public key corresponding to the secret key of the store device.

Further, according to another aspect of the present invention, there is provided a computer program characterized by causing a computer to function as the payment management device.

According to another aspect of the present invention, there is provided a computer-readable storage medium storing the computer program, wherein the computer functions as the payment management apparatus.

According to still another aspect of the present invention,
A store apparatus for providing goods or services based on a settlement made with a data storage device such as an IC card in which value information is stored via a settlement management device,
A settlement request information generation unit for generating settlement request information, a first signature generation unit for creating a first signature indicating the validity of the settlement request information using a secret key of the store apparatus, and a settlement with the first signature A payment request information transmitting unit that transmits request information to a payment management device that can verify the validity of the first signature using a public key corresponding to a secret key of the store device.
A store device is provided.

The payment management device generates payment information for performing payment with a data storage device such as an IC card based on payment request information from a store device, and stores the payment information with the payment management device and a data stored in the IC card or the like. An encryption process using a common key shared with the storage device is performed, and the payment information subjected to the encryption process is transmitted to the client device. The client device transmits the payment information received from the payment management device to the IC device.
The data may be output to a data storage device such as a card.

The payment request information with the first signature may be transmitted from the store device to the payment management device via the client device.

The settlement management device generates settlement completion information,
A third signature indicating the validity of the payment completion information is generated using the secret key of the payment management device, and the payment completion information including the payment information and having the third signature attached thereto is transmitted to the store device. May be configured to verify the validity of the third signature received from the payment management device using a public key corresponding to a secret key of the payment management device.

The store device receives the payment completion information with the third signature attached thereto, generates the fourth signature payment completion receipt information using the secret key of the store device, and generates the fourth signature payment completion receipt information. Is transmitted to the payment management device and the client device, and the payment management device and the client device are configured to verify the validity of the fourth signature received from the store device using the public key corresponding to the secret key of the store device. You may.

The store device may be configured as a single store device, or may be configured as a mall including a plurality of lower store devices.

Further, according to another aspect of the present invention, there is provided a computer program characterized by causing a computer to function as the store apparatus.

According to another aspect of the present invention, there is provided a computer-readable storage medium storing the computer program, wherein the computer program causes the computer to function as the store apparatus.

Further, according to another aspect of the present invention,
Information input / output to / from a data storage device such as an IC card used when performing settlement between a store device providing goods or services and a data storage device such as an IC card storing value information via a payment management device In a client device having a function, a payment management device generates an encryption message based on payment request information from a store device and uses a common key shared between the payment management device and a data storage device such as an IC card. A client comprising: a payment information receiving unit that receives processed payment information; and a payment information output unit that outputs the payment information received from the payment management device to a data storage device such as an IC card. An apparatus is provided.

The store device creates a first signature indicating the validity of the payment request information using the secret key of the store device, and sends the payment request information with the first signature to the payment management device via the client device. The transmitting and settlement management device may be configured to verify the validity of the first signature received from the store device using a public key corresponding to a secret key of the store device.

The payment management device creates a second signature indicating the validity of the payment information with the first signature by using the secret key of the payment management device, and applies the second signature to the encrypted payment information. To the client device, and the client device verifies the validity of the second signature received from the payment management device using a public key corresponding to a secret key of the payment management device, and then transmits the payment information to an IC card or other data. You may comprise so that it may output to a storage device.

The payment management device generates payment completion information,
A third signature indicating the validity of the payment completion information is generated using the secret key of the payment management device, and the payment completion information including the payment information and having the third signature attached thereto is transmitted to the store device. Verifies the validity of the third signature received from the payment management device using the public key corresponding to the secret key of the payment management device, and further uses the private key of the store device to determine the fourth signature-completed payment completion receipt information. Generates and transmits the fourth signature-added settlement completion receipt information to the client device, and the client device verifies the validity of the fourth signature received from the store device using the public key corresponding to the secret key of the store device. It may be configured as follows.

Further, as the settlement completion receipt information, the user may confirm the settlement completion receipt information displayed on the display screen.

According to another aspect of the present invention, there is provided a computer program characterized by causing a computer to function as the client device.

According to another aspect of the present invention, there is provided a computer-readable storage medium storing the computer program, wherein the computer is caused to function as the client device.

According to still another aspect of the present invention, data such as an IC card storing value information used when performing settlement with a store apparatus for providing goods or services via a settlement management apparatus. In the storage device, the payment management device performs encryption processing using a common key generated based on payment request information from the store device and shared by the payment management device and a data storage device such as an IC card. A data storage device such as an IC card is provided, wherein payment information can be input via a client device having an information input / output function for a data storage device such as an IC card.

The store device creates a first signature indicating the validity of the payment request information using the secret key of the store device, transmits the payment request information with the first signature attached to the payment management device, The device verifies the validity of the first signature received from the store device using a public key corresponding to the secret key of the store device, and verifies the second signature indicating the validity of the payment information with the first signature to the payment management device. And sends the encrypted payment information with the second signature to the client device, and the client device checks the validity of the second signature received from the payment management device for the payment management. After verification using a public key corresponding to the secret key of the device, the payment information may be output to a data storage device such as an IC card.

Further, according to another aspect of the present invention, a data storage device such as an IC card in which value information is stored, a client device having an information input / output function for a data storage device such as an IC card, Store means for providing goods or services, the store means for generating payment information by a data storage device such as an IC card in response to a purchase request from a client means; A payment management means for managing payment, wherein payment information for performing payment by a data storage device such as an IC card is generated based on payment request information from a store means, and the payment information is stored in the payment management means and the IC card. Encryption processing using a common key shared with data storage devices such as A payment management means for transmitting to, characterized in that it consists of a communication system that connects the settlement management device and the client device and the store means to be capable of two-way communication, the electronic payment system is provided.

The store means creates a first signature indicating the validity of the settlement request information using the secret key of the store means, transmits the settlement request information with the first signature to the settlement management means, and The means may verify the validity of the first signature received from the store means using a public key corresponding to a secret key of the store means.

The payment request information with the first signature may be transmitted to the payment management means via the client means.

The payment managing means creates a second signature indicating the validity of the first signed payment information using the secret key of the payment managing means, and applies the second signature to the encrypted payment information. Is transmitted to the client means, and the client means verifies the validity of the second signature received from the payment management means using a public key corresponding to the secret key of the payment management means, and then transmits the payment information to an IC card or other data. You may comprise so that it may output to a storage device.

The settlement management means generates settlement completion information,
A third signature indicating the validity of the payment completion information is generated using the secret key of the payment management means, and the payment completion information including the payment information and having the third signature attached is transmitted to the store means.

The store means may be configured to verify the validity of the third signature received from the settlement management means using a public key corresponding to a secret key of the settlement management means.

Further, the settlement completion receipt information may be configured so that the user himself confirms the settlement completion receipt information displayed on the display screen.

The store means receives the payment completion information with the third signature, generates the fourth signature payment completion receipt information using the secret key of the store means, and generates the fourth signature payment completion receipt information. Is transmitted to the payment management means and the client means, and the payment management means and the client device are configured to verify the validity of the fourth signature received from the store means using a public key corresponding to the secret key of the store means. You may.

The store means may be configured as a single store means or as a mall including a plurality of lower store means.

According to another aspect of the present invention, there is provided an electronic payment method performed between a client device, a store device, and a payment management device, which are connected so as to be capable of two-way communication, wherein the value information includes stored data. Payment information for performing payment in the storage device is generated based on a payment request from the store device, and the payment information is subjected to encryption processing using a common key shared between the payment management device and the data storage device. And transmitting an encrypted payment information to a client and a device.

The store device creates a first signature indicating the validity of the payment request information using the secret key of the store device, and sends the payment request information with the first signature to the payment management device. The payment management device may transmit and verify the validity of the first signature received from the store device using a public key corresponding to a secret key of the store device.

Here, in order to facilitate understanding of the invention,
The terms common to the present invention will be briefly summarized and described.

The "electronic payment system" is a system for electronically performing payment for a product or service when the product or service is sold via an online communication system such as the Internet. As a method of performing settlement via an online communication system, payment by a credit card, cash card, debit card, or payment by electronic money such as a prepaid card is possible.

The "data storage device" may have any shape as long as it is a secure device incorporating at least an IC chip for storing data such as value information in addition to a data carrier having a card shape such as an IC card. The IC chip can be mounted on a portable device such as a mobile phone, a portable communication terminal device, and a clock. Further, data in a data carrier such as an IC card may be exchanged by communicating with another device such as a mobile phone.

The “data storage device such as an IC card”
For example, it refers to a card in which an IC chip is embedded in a card such as plastic. A type having only a memory chip is called a memory card, and a type having a CPU is also called a card with a built-in CPU. Further, a data storage device such as an IC card can be classified into “contact” and “non-contact” with a reader / writer in addition to the type depending on the presence or absence of a CPU. The contact type has metal terminals on the surface,
The terminal supplies power and exchanges data with the reader / writer through the terminal. On the other hand, a non-contact type has an antenna inside and supplies power and reads / writes data through the antenna.

The "value information" is information about a value that is stored in a data storage device such as an IC card and can be exchanged as a price for providing a product or service. The value information includes information having a monetary value corresponding to a currency and information having a pseudo-monetary value that can be exchanged for goods and services such as points.

The “client device” is at least an IC
The terminal device has an information input / output function for a data storage device such as a card and a function capable of bidirectional communication with another terminal device or server via an online communication system such as the Internet. “Client device” generally means a computing device, a storage device, a display device, an input / output device, a communication device,
This is a computer device having a data storage device reader / writer such as a C card, and includes a portable terminal device and a portable telephone device having similar functions. The installation location of the client device may be the user's home or workplace, or may be a store where a client terminal dedicated to the present payment system is installed. In the client device, the data storage device according to the present invention may be constituted by an IC chip and mounted on a device such as a mobile phone.

The “store device” is a network server that sells and provides products and services via an online communication system such as the Internet. The store device may be configured by a single network server or may be configured as a mall configured by a plurality of network servers.

The "payment management device" is a management server that manages payment between a data storage device such as an IC card and a store device, and includes a security server, an application server, a database server, and the like.

The “communication system” is configured to be capable of two-way communication via a predetermined communication protocol, for example, the Internet using a public line network or a LAN (Local Arrangement).
eaNetwork) and WAN (Wide Area)
Network), and the connection form may be wired or wireless.

The "payment request information" is created by the store device and includes various information for requesting the payment management device for the purchase request transmitted to the store device. The purchase request may be transmitted by the user to the store device via the client device, or may not be transmitted through the client device.

The "payment information" is created by the payment management device based on the payment request information transmitted from the store device to the payment management device, and is transmitted from the payment management device to the data storage device such as an IC card via the client device. And various kinds of information for performing settlement by increasing or decreasing the value information stored in. The security of the payment information is ensured by cryptographic processing using a common key shared between the payment management device and a data storage device such as an IC card. Further, the validity of the settlement information is determined by attaching a second signature created using the secret key of the settlement management device, and the client device using the public key corresponding to the secret key of the settlement management device by the client device. Secured by verification.

The “payment completion information” is transmitted by the payment management
It is generated after confirming that the payment has been made by increasing or decreasing the value information stored in the data storage device such as a card, and is transmitted to the store device, and includes various information regarding the completion of the payment. The validity of this settlement completion information is
A third signature generated by using the secret key of the payment management device is attached, and the store device verifies the third signature by using a public key corresponding to the secret key of the payment management device.

The “payment completion receipt information” is generated after the store device confirms that the payment is completed based on the data storage device such as the IC card owned by the user, and is transmitted to the payment management device and the client device. That
As a result, the completion of the settlement is confirmed, and the goods or services can be delivered from the store device to the user.
The validity of the settlement completion receipt information is attached with a fourth signature generated using the secret key of the store device, and the settlement management device and the client device verify using the public key corresponding to the secret key of the store device. Is secured by

“Value update information” is information for increasing or decreasing value information stored in a data storage device such as an IC card, and is stored in a data storage device such as an IC card from a payment management device via a client device. Is entered. The security of this value update information depends on the settlement management device and IC
Secured by encryption processing using a common key shared with a data storage device such as a card. Furthermore, the validity of the value update information is determined by attaching a fifth signature created using the secret key of the payment management device, and the client device using the fifth signature with a public key corresponding to the secret key of the payment management device. It is secured by verification.

The "common key" is a key used for both encryption processing and decryption in a so-called common key encryption processing method.
The sender and receiver share the key. In the present invention, a common key is set between the payment management device and a data storage device such as an IC card.

A “secret key” is a key used for encryption processing in a so-called public key encryption method, and information that has been subjected to encryption processing using a secret key is stored in a corresponding public key stored in a certificate authority or the like. Decryption becomes possible.

The "public key" is a key used for decryption in a so-called public key cryptosystem, and is usually stored in a certificate authority or the like, and the recipient performs encryption processing using a private key. When decrypting the information, a public key is obtained from a certificate authority to perform decryption.

The “digital signature” guarantees the validity of the information to be transmitted. In the present invention, the first to fifth signatures are used according to the types of the transmitting side and the receiving side. You.

The “first signature” is a signature created using the secret key of the store device, attached to the payment request information, and verified by the payment management device using the corresponding public key.

The “second signature” is a signature created with the secret key of the payment management device, attached to the payment information, and verified by the client device using the corresponding public key.

The “third signature” is a signature created with the secret key of the payment management device, attached to the payment completion information, and verified in the store device using the corresponding public key.

The “fourth signature” is a signature created using the secret key of the store device, attached to the payment completion receipt information, and verified by the payment management device using the corresponding public key.

The “fifth signature” is a signature created using the secret key of the settlement management device, attached to the value update information, and verified by the client device using the corresponding public key.

[0080]

BRIEF DESCRIPTION OF THE DRAWINGS FIG.
An electronic payment system, a payment management device, a store device, a client device, a data storage device such as an IC card, a computer program, and a storage medium according to a preferred embodiment of the present invention will be described.

FIG. 1 is an overall configuration diagram of an electronic payment system 1 to which the electronic payment system according to the present embodiment can be applied.

As shown in FIG. 1, the electronic settlement system 1
Is a network 5 such as the Internet, which is a communication system capable of two-way communication between a user 2 including a client device and a data storage device such as an IC card, a payment management device 3 and a store device 4 via a predetermined communication protocol.
It is possible to perform communication via the.

[User 2] The user 2 is provided with a data storage device 20 such as an IC card, a reader / writer device 21 for accessing the data storage device 20 such as an IC card and inputting / outputting information, and a personal computer 22. There is a client device configured.

The data storage device 20 such as an IC card
For example, an IC chip is embedded in a card made of plastic or the like. As shown in FIG. 2A, a data storage device 20 such as an IC card is a tamper-resistant IC.
Module 50, and as shown in FIG.
A processing circuit 51 and a memory 52 are built in the C module 50.

The processing circuit 51 of the data storage device 20 such as an IC card is provided with the security server 3 of the settlement management device 3.
It is possible to perform various processes such as a decryption process using a common key KC shared with the server 1, a process according to predetermined information and a request, and a mutual authentication process.

[0086] The memory 52 stores a common key KC shared with the security server 31 of the settlement management device 3.

The data storage device 20 such as an IC card
As shown in FIG. 3, communication is performed with a personal computer 22 via a data storage device reader / writer 21 such as an IC card, and an interface program 24 such as an ActiveX component or a browser program 23 which is driven in the personal computer 22. Connect to a network 5 such as the Internet. further,
The data storage device 20 such as an IC card connects to the security server 31 via the application server 30 of the payment management device 3 and transmits and receives information to and from the security server 31. The information communication between the data storage device 20 such as an IC card and the security server 31 thus established is encrypted and decrypted by a common key encryption processing method (PKI protocol) using a common key KC. As a result, security is ensured.

Note that value information is stored in a data storage device such as an IC card. This value information is information relating to a value that can be exchanged for the provision of the product or service. The value information includes information having a monetary value corresponding to a currency and information having a pseudo-monetary value that can be exchanged for goods and services such as points.

The reader / writer 21 of a data storage device such as an IC card inputs and outputs data to and from the IC module 50 of the data storage device 20 such as an IC card in a non-contact manner or a contact manner. And input and output of information and requests.

The personal computer 22 executes the browser program 23 in response to a user's operation of a keyboard, a mouse or the like, and executes an application server of the payment management device 3 on the browser program 23 via the network 5 as described later. An interface program 24 such as an ActiveX component received from the server 30 is executed.

The personal computer 22 has a display, a keyboard, a mouse, and the like. In the illustrated example, a personal computer 22 to which the reader / writer 21 can be connected is used as an example of the client device.
However, any device capable of exchanging information with a data storage device such as an IC card in a contact or non-contact manner is not limited to the personal computer 22, but may be a portable terminal device or a portable telephone terminal. It is also possible to use a device or the like.

As shown in FIG. 4, the browser program 23 is, for example, a personal computer 22 such as Internet Explorer of Microsoft Corporation.
This is a program that runs on the server and can display services provided by the network server on a terminal on the client side. In the present embodiment, the browser program 23 executes the network server 40 of the shop device 4.
The transmission source adds signature information using its own private key and the transmission destination verifies the signature information using the public key corresponding to the secret key, with the HTTPS layer 60 using the PKI protocol. .

The interface program 24 operates on the personal computer 22, as shown in FIG.
APS of application server 30 of payment management device 3
Between the upper layer 30a and the PKI protocol,
Add signature information using its own private key at the sender,
And a program capable of verifying the signature information using a public key corresponding to the secret key at a transmission destination.

The interface program 24 is
During execution of the browser program 23, the reader / writer 21
And also functions as a function expansion program for easily realizing access to local resources such as the data storage device 20 such as an IC card via the.

[Payment Management Device 3] The payment management device 3
As shown in FIGS. 1 and 6, an application server 30 functioning as a virtual electronic money system, a security server 31 functioning as a security management system, an information management server 32 functioning as a scrutiny / settlement system, and the present embodiment Although not directly related, an application server 33 functioning as a real electronic money system is provided.

The application server 30 of the settlement management device 3 can perform two-way communication with the personal computer 22 of the user 2 and the network server 40 of the store device 4 via the network 5 such as the Internet.

The application server 30 of the settlement management device 3 holds the public key KSHOP, P corresponding to the secret key KSHOP, S of the network server 40 of the store device 4, and stores the network key of the store device 4 as described later. The first signature information SIG1 attached to the payment request information BILL generated by the server 40 is verified.

Further, as shown in FIG. 5, the application server 30 of the settlement management device 3 has an APS upper layer 30a and an APS lower layer 30b.

Security server 31 of settlement management device 3
Stores a common key KC shared with the data storage device 20 such as the user's 2 IC card.

Security Server 31 of Payment Management Device 3
5, a reader / writer 21 for a data storage device such as an IC card, and an interface program 2 as shown in FIG.
4, browser program 23, personal computer 22, network 5, and application server 3
0, and encrypts and decrypts information transmitted / received to / from the data storage device 20 such as an IC card by a common key encryption method using a common key KC.

The information management server 32 stores and manages, for example, personal information of registered users.

[Store Apparatus 4] The store apparatus 4 is provided with a network server 40.

The network server 40 of the store device 4
As shown in FIG. 4, the browser program 23 operating on the personal computer 22 and the HTTPS layer are configured to be capable of bidirectional communication via the PKI protocol.

The network server 4 of the store device 4
0 stores, for example, introduction information of a product or service, payment request information BILL for requesting payment corresponding to the amount charged by the store apparatus 4 to the user 2, and its own private key for the payment request information. The first signature information SIG created using KSHOP, S is generated.

The store device 4 can be configured as a single member store 42 as shown in FIG. Or,
As shown in FIG. 6, the store device 4 can be configured as a member store 42 configured as a member store of the mall 41.

In the example of the configuration of the electronic settlement system shown in FIG. 6, in addition to the virtual electronic money system 30 applied to the settlement when the user makes a virtual shopping via the personal computer 22 or the like, the user is required It also includes a real electronic money system 33 applied to settlement when actually going to the store 7 and shopping in real.

[0107] The real electronic money system 33 is connected to a real shop 7 to which a user can actually visit via a communication system such as a public line network 6. The real store 7 can be configured as an independent store 71, or can be configured as a subordinate store 72 subordinate to the headquarters 71. However, since the real electronic money system 33 is different from the gist of the present invention, detailed description will be omitted.

Next, the flow of information in the settlement system according to the present embodiment will be described with reference to FIG.

As described above, in the settlement system according to the present embodiment, the receiver and the sender of the information are the settlement management device 3, the store device 4, the personal computer 22 and the client device 2 comprising the reader / writer 21, and It is a data storage device 20 such as an IC card.

Information circulating between the receiver and the sender of the information includes purchase request information, settlement request information, settlement information, settlement completion information, settlement completion receipt information, value update information, and the like.

[0111] The "purchase request information" is stored in the browser 2 of the personal computer 22 as a client device.
This is information for accessing the network server 40 of the store device 4 via the server 3 and selecting a product or service to be purchased from the products and services developed by the site of the store device 4 and transmitting the selected product or service to the store device 4.

The “payment request information” is created by the store apparatus 4 and is used by the user to request the payment management apparatus 3 to settle the purchase request information transmitted to the store apparatus via the personal computer 22 as a client apparatus. Various information is included. The legitimacy of the settlement request information is determined by adding a first signature created using the secret key of the store device 4, and the settlement management device 3 sets the first signature to a public key corresponding to the secret key of the store device 4. It is ensured by using and verifying.

The "payment information" is created by the payment management device 3 based on the payment request information transmitted from the store device 4 to the payment management device 3, and is transmitted from the payment management device 3 to the personal computer 22 which is a client device. Data storage device 2 such as an IC card via reader / writer 21
Various information for performing settlement by increasing or decreasing the value information stored in “0” is included. The security of the payment information is ensured by a common key shared between the payment management device 3 and the data storage device 20 such as an IC card.
Further, the legitimacy of the settlement information is determined by attaching a second signature created using the secret key of the settlement management device 3, and the personal computer 22 as a client device using the second signature as the secret key of the settlement management device 3. It is secured by verification using the corresponding public key.

[0114] The "payment completion information" is
It is generated after confirming that the payment has been made by increasing or decreasing the value information stored in the data storage device 20 such as a C card, and is transmitted to the store device 4 and includes various information regarding the completion of the payment. . The legitimacy of the settlement completion information is determined by adding a third signature generated using the secret key of the settlement management device 3, and the store device 4 changing the third signature to a public key corresponding to the secret key of the settlement management device 3. It is secured by verifying using.

The “payment completion receipt information” is generated after the store device 4 confirms that the payment has been completed based on the data storage device 20 such as an IC card owned by the user, and is generated by the payment management device 3 and the client device. Is transmitted to the personal computer 22, whereby the completion of the settlement is confirmed, and the goods or services can be delivered from the store apparatus 4 to the user. The validity of the settlement completion receipt information is determined by adding a fourth signature generated using the secret key of the store device 4 and allowing the settlement management device 3 and the personal computer 22 as the client device to correspond to the secret key of the store device 4. It is secured by performing verification using the public key to be used.

"Value update information" is information for increasing or decreasing the value information stored in the data storage device 20 such as an IC card, and is transmitted from the settlement management device 3 to the personal computer 22 and the reader / writer 21 as client devices. Is input to a data storage device 20 such as an IC card via the PC. The security of the value update information is ensured by a common key shared between the settlement management device 3 and the data storage device 20 such as an IC card. Further, the validity of the value update information is determined by adding a fifth signature created using the secret key of the settlement management device 3 and the personal computer 22 serving as a client device signing the fifth signature with the secret key of the settlement management device 3. Is secured by verifying using the public key corresponding to.

In the settlement system according to the present embodiment, the electronic signature used for guaranteeing the validity of the transmitted information is the first signature to the first signature according to the type of the transmitting side and the receiving side. Five signatures are used.

The “first signature” is created using the secret key of the store device 4, attached to the payment request information, and
Is a signature verified using the corresponding public key.

The “second signature” is a signature created with the secret key of the payment management device 3, attached to the payment information, and verified by the personal computer 22 as a client device using the corresponding public key. .

The “third signature” is created using the secret key of the payment management device 3, attached to the payment completion information, and
Is a signature verified using the corresponding public key.

The “fourth signature” is a signature created using the secret key of the store device 4 and attached to the payment completion receipt information and verified by the payment management device 3 using the corresponding public key.

The “fifth signature” is a signature created with the secret key of the settlement management device 3 and attached to the value update information and verified by the personal computer 22 as the client device using the corresponding public key. is there.

Next, an electronic money dispensing operation in the settlement system according to the present embodiment will be described with reference to FIG.

[0124] The user 2 is
The user 2 accesses the network server 40 of the member store 42 via the website and selects a product or service that the user 2 desires to purchase from the products or services provided on the site ().

The member store 42 transmits to the user information on the total price of the product or service selected by the user 2 ().

The user 2 requests the mall 41 to which the member store 42 belongs for settlement by electronic money using the settlement system according to the present embodiment ().

In response to the electronic money settlement request from the user 2, the mall 41 issues an order number and
Issue signed payment request information ().

[0128] The user 2 receives the first
Signed settlement request information and card information (ID, balance, etc.)
Is transmitted to the cyber electronic money system 30 ().

The cyber electronic money system 30 has the first
Receiving the signed settlement request information, the IC owned by the user 2
It communicates with the data storage device 20 such as a card, transmits the second signed payment information to the data storage device 20 such as an IC card, and purchases from the value information stored in the data storage device 20 such as an IC card. The value corresponding to the product or service is subtracted, and the history information in the card is collected ().

After the settlement is completed, the cyber electronic money system 30 transmits the third signature-added settlement completion information to the mall 71.
Send to ().

After the settlement is completed, the cyber electronic money system 30 transmits the third signature-added settlement completion information to the user 2 ().

After confirming that the payment has been completed by the third payment completion information with signature, the user 2 requests the member store 42 for a payment completion screen ().

In response to the payment completion screen request from the user 2, the member store 42 transmits the fourth signature payment completion reception information to the user 2 and the cyber electronic money system 30, and displays the payment completion screen of the user 2 It is displayed on the computer 22 ((10)).

After the settlement is completed by the above steps, goods or services are delivered from the member store 42 to the user 2. For example, in a case where the product is digital content, the member store 42 permits the user 2 to download the digital content.
Delivery of the goods is performed ((11)).

Next, referring to FIGS. 9 to 11, a product information transmission sequence and a value information transmission sequence in the electronic payment system according to the present embodiment having high security using a common key, a public key, and an electronic signature. Will be described in detail.

First, before the merchandise is determined by the user shown in FIG. 9, the user 2 uses the browser program 23 running on the personal computer 22 to connect to the network server 40 of the store apparatus 4 via the network 5.
Access to. With this access, the merchandise information provided by the store apparatus 4 is transmitted from the network server 40 to the personal computer 22 via the network 5, and a screen corresponding thereto is displayed on the personal computer 22
Is displayed on the display.

(First Embodiment) Hereinafter, the operation of the electronic settlement system 1 will be described for each step shown in FIGS. 12 to 20 show examples of screen display of the personal computer 22 of the client device.

In the operation described below, when information or a request is transmitted and received between the personal computer 22 of the client device and the network server 40, the signature information created using the private key of the transmission source is transmitted. In the above, the verification is performed using the public key corresponding to the secret key, but the description of the processing is omitted.

Similarly, the personal computer 2
When transmitting or receiving information or a request between the application server 2 and the application server 30, the electronic signature information created using the private key of the transmission source is verified at the transmission destination using the public key corresponding to the private key. However, the description of the processing is omitted except for steps ST14 and ST15.

Step ST1: An SSL (Sec.) Is established between the personal computer 22 and the network server 40.
server authentication or mutual authentication using a secure socket layer, and a secure communication path is established.

Step ST2: When the user 2 operates the keyboard or mouse of the personal computer 22 to determine a desired product to be purchased on the product selection screen as shown in FIG. From the computer 22 to the network server 40
Sent to.

Step ST3: Network server 40
Receives the product determination information from the personal computer 22, and transmits the estimation information to the personal computer 2.
Send to 2.

Step ST4: The personal computer 22, as shown in FIG.
Display the estimate information received from the display on the display. If the user 2 agrees with the estimation, the user 2 selects a payment method on the screen shown in FIG. User 2
When the user operates the keyboard or the like of the personal computer 22 to select payment using electronic money, a billing request is transmitted to the network server 40.

Step ST5: Network server 40
Is generated by using the private key KSHOP, S of the store device 4 for the payment request information indicating the amount charged by the store device 4 to the user 2 upon receipt of the request for the charge amount from the personal computer 22. First signature information SIG1
And the interface program 24 to the personal computer 22.

Step ST6: As shown in FIG. 15, the personal computer 22 displays on the display the amount indicated by the settlement request information received from the network server 40 in step ST5.

Step ST7: When the user 2 who agrees with the amount displayed on the display in step ST6 issues a predetermined instruction using the keyboard of the personal computer 22, etc., the network server 40 in step ST5.
The interface program 24 received from is started.

When the user 2 holds the data storage device 20 such as an IC card over the reader / writer 21 in accordance with the screen display as shown in FIG.
4, server authentication or mutual authentication using SSL is performed with the application server 30 of the payment management device 3 to establish a secure communication path.

While the settlement system according to the present embodiment is performing settlement processing, a screen prompting the user to wait is displayed on the display of the personal computer 22, as shown in FIG.

Step ST8: The personal computer 22 sends the payment request information including the payment request information received from the network server 40 of the store apparatus 4 in step ST5 and the first signature information SIG1 corresponding to the payment request information to the payment management device 3. To the application server 30.

Step ST9: The application server 30 uses, for example, the public key KSHOP, P corresponding to the secret key of the shop device 4 read from the information management server 32,
The first signature information SIG1 received in step ST8 is verified, and if it is determined that the first signature information SIG1 is valid in the network server 40 of the shop device 4, the process of step ST10 is performed.

If the application server 30 determines that the first signature information SIG1 is invalid, the application server 30 notifies the personal computer 22, for example, and ends the processing.

Step ST10: Next, the application server 30 of the payment management device 3 transmits, for example, payment request information to the security server 31.

Step ST11: Security server 3
Upon receiving the settlement request information from the data storage device 20 such as an IC card, the device 1 performs mutual authentication with the application server 30 and performs data authentication on the data storage device 2 such as an IC card.
The session key KSES is generated from the common key KC used between 0 and 0. Similarly, the data storage device 20 such as an IC card generates the session key KSES from the common key KC.

Step ST12: Security server 3
1 generates payment information, performs encryption processing using the session key KSES, and outputs the result to the application server 30. At this time, the security server 31 attaches a second signature created using the secret key of the payment management device.

The application server 30 issues the balance read request (BR) input from the security server 31.
The payment information including C) is transmitted to the personal computer 22.

The personal computer 22 receives the balance reading request BR received from the application server 30.
The payment information including C is output to the data storage device 20 such as an IC card via the reader / writer 21.

Step ST13: When the payment information including the balance reading request BRC from the personal computer 22 is input to the data storage device 20 such as an IC card, the data is stored in the session key K generated in step ST11.
Decrypt using SES.

The data storage device 20 such as an IC card is processed by the processing circuit 51 in accordance with the settlement information including the balance reading request BRC from the tamper-resistant memory 52 in the data storage device 20 such as the IC card. The payment information including the balance information BI is read out, encrypted with the session key KSES, and then output to the personal computer 22.

The personal computer 22 sends the payment information including the balance information BI from the data storage device 20 such as an IC card to the application server 30.

The application server 30 outputs the balance information BI received from the personal computer 22 and the settlement information to the security server 31.

The security server 31 decrypts the settlement information including the balance information BI input from the application server 30 using the session key KSES, and generates log information.

Step ST14: Security server 3
1 subtracts the billing amount from the log write information for writing the log information generated in step ST13 to the data storage device 20 such as an IC card and the amount indicated by the balance information stored in the data storage device 20 such as an IC card. Then, a settlement processing request SPC including the subtraction information indicating the amount of the subtraction is generated, and this is subjected to encryption processing using the session key KSES.

Next, the security server 31 transmits the plaintext balance information BI and the payment processing request SP that has been subjected to the encryption processing.
And outputs payment information including C to the application server 30.

The application server 30 creates the second signature information for the payment information including the balance information BI and the payment processing request SPC input from the security server 31 using the secret key of the application server 30.

Next, the application server 30 attaches the second signature information to the payment information including the balance information BI and the payment processing request SPC input from the security server 31, and transmits the payment information to the personal computer 22.

Step ST15: The personal computer 22 verifies the validity of the second signature information SIG2 received from the application server 30 using the public key of the application server 30, and after the validity is recognized, The following processing is performed.

As shown in FIG. 18, the personal computer 22 displays on the display the balance indicated by the balance information BI received from the application server 30 and the amount indicated by the estimated information received from the network server 40 in step ST3 (invoice amount). indicate.

Step ST16: When the user 2 who agrees with the balance and the bill displayed on the display in step ST15 gives a predetermined instruction using the keyboard of the personal computer 22, the personal computer 22 issues a settlement processing request SPC. The data is output to a data storage device 20 such as an IC card via a data storage device reader / writer 21 such as an IC card. While the payment confirmation process is being performed, a screen prompting the user to wait as shown in FIG. 19 is displayed on the display of the personal computer 22.

Step ST17: The data storage device 20 such as an IC card decrypts the payment processing request SPC input from the personal computer 22 using the session key KSES, and the processing circuit 51 performs the payment processing corresponding to the payment processing request. Execute.

Specifically, the data storage device 20 such as an IC card, by the processing of the processing circuit 51, converts the log write information included in the settlement processing request SPC into a tamper resistant data stored in the data storage device 20 such as an IC card. Is stored in the memory 52. Also, a data storage device 20 such as an IC card is used.
Is set by the processing of the processing circuit 51 from the balance indicated by the balance information stored in the memory 52 to the settlement processing request SPC.
Is subtracted, and the result is stored in the memory 52 as balance information.

Step ST18: When the processing in step ST17 is completed, the data storage device 20 such as an IC card generates a processing completion notification PCN indicating that the processing has been completed, and performs an encryption process on this with the session key KSES. Later, the data is transmitted to the security server 31 via the personal computer 22 and the application server 30.

Step ST19: Security server 3
When receiving a processing completion notification PCN from the data storage device 20 such as an IC card, the PC 1 uses the session key KSE
After decrypting using S, and confirming the processing completion notification PCN, payment completion information ACN is generated and transmitted to the personal computer 22 and the network server 40 via the application server 30. At this time, the legitimacy of the payment completion information is secured by attaching a third signature generated by the payment management device.

Step ST20: When the personal computer 22 receives the settlement completion notice ACN from the security server 31, the personal computer 22 displays information corresponding to the notice, for example, a screen prompting the download of digital contents on the display as shown in FIG. indicate.

As described above, the electronic settlement system 1
According to this, the common key KC is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, the user 2 is required to use the data storage device 2 such as an IC card.
Even if 0 is lost, since the secret key is not stored in the memory 52, it is possible to prevent the signature of the user 2 from being illegally used using the secret key.

According to the electronic settlement system 1, the common key KC is used only inside the data storage device 20 such as an IC card and the security server 31, so that the risk of the common key KC being stolen can be reduced. , Secure transactions can be realized, and key management can be facilitated.

In addition, according to the electronic settlement system 1, the IC
Information and requests input / output to / from a data storage device 20 such as a card are made via a personal computer 22,
When information and requests are transmitted and received between the personal computer 22 and the application server 30 and the network server 40, signature verification using a secret key and a public key is performed. Can be avoided, and the security of transactions using the network 5 can be secured.

Further, according to the electronic settlement system 1, the network server 40 of the store device 4 attaches the signature information SIG created by using its own secret key KSHOP, S to the billing amount information BILL, and performs settlement management. The application server 30 of the device 3 verifies the signature information SIG using the public key KSHOP, P corresponding to the secret key KSHOP, S.
Is determined to be legitimate, the payment can be prevented from being performed in the personal computer 22 of the user 2 or the like based on the fraudulently falsified billing amount information BILL.

In the electronic settlement system 1, as described above, the personal computer 22 stores the balance indicated by the balance information BI received from the application server 30,
In addition, the amount (invoice amount) indicated by the estimate information received from the network server 40 is displayed on a display, and after the user 2 has agreed with the contents, the settlement processing request SPC received from the application server 30 is transmitted to a data storage device such as an IC card. The data is output to a data storage device 20 such as an IC card via a reader / writer 21. Therefore, the user 2 can confirm in advance the details of the payment processing finally performed in the data storage device 20 such as an IC card, and can prevent the payment processing from being performed with illegally tampered contents.

Further, according to the electronic settlement system 1, the number of procedures involved in the settlement processing can be reduced as compared with the conventional one, the information transmission via the network 5 can be reduced, the usage amount of the network 5 can be reduced, and the processing time can be shortened. Can be achieved.

Further, according to the electronic settlement system 1, it is not necessary to perform signature information generation and verification many times as in the conventional SET method.

(Second Embodiment) Next, a merchandise information transmission sequence and a value information transmission sequence by a settlement system according to another embodiment will be described with reference to FIGS.

ST101: First, the personal computer 22 of the user 2 and the network server 4 of the shop device 4
SSL authentication is established for secure communication between the server and the server.

ST102: Next, the user 2 selects a product according to the screen displayed on the display of the personal computer 22.

ST103: The network server 40 of the store device 4 transmits the settlement processing request information with the first signature created using the secret key of the store device 4 according to the product selected by the user 2 to the user. 2 to the personal computer 22.

ST104: Personal computer 22
Is an interface program 2 such as ActiveX
4 is started to access the data storage device 20 such as an IC card via the reader / writer 21 and read the balance of the data storage device such as the IC card.

ST105: The read balance is taken into the personal computer 22 of the user 2 by using a predetermined browsing mechanism and displayed on the display.

ST106: Next, secure SSL authentication is established between the personal computer 22 of the user 2 and the application server 30 of the settlement management device 3,
Prepare for the value information transmission sequence.

ST107: Next, the payment request information with the first signature including the balance information of the data storage device 20 such as an IC card is transmitted from the personal computer 22 of the user 2 to the payment management device 3.

The application server 30 of the settlement management device 3 uses the public key corresponding to the secret key of the
The validity of the transmitted settlement request information is verified, and necessary information is passed to the security server 31.

ST108: The security server 31 of the settlement management device 3 sets the data storage device 20 such as an IC card.
The mutual authentication is performed between the two, and a session key is generated from the common key. Similarly, the data storage device 20 such as an IC card
The side also performs mutual authentication with the security server 31, and generates a session key from the common key.

ST109: The security server 31
The payment information is encrypted with the session key and transmitted to the personal computer 22 of the user 2 via the application server 30.

In the personal computer 22, the sent settlement information is stored in the data storage device 2 such as an IC card.
0 is decrypted with the session key stored and displayed on the screen. When the user 2 approves the sent settlement information, the contents are transmitted to the data storage device 20 such as an IC card via the reader / writer 21 and subtracted in the data storage device 20 such as the IC card. A predetermined settlement process such as a process is performed.

It should be noted here that the settlement sequence according to the present embodiment is different from the settlement sequence described with reference to FIGS. 9 to 11 and is generated by the security server 31 of the settlement management device 3. Is that the payment information is simply encrypted with the common key, and the second signature generated using the secret key of the payment management device 3 is not attached.

As described above, the identity of the transmitted payment information can be confirmed simply by encryption / decryption using the common key, and therefore, as in the payment system according to the present embodiment,
By omitting the second signature, it is possible to reduce the redundancy of the processing.

ST110: As described above, I
When a predetermined payment process is completed in the data storage device 20 such as a C card, the result is transmitted to the reader / writer 2
1, transmitted to the security server 31 via the personal computer 22 and the application server 30.

ST111: When the settlement completion is confirmed by the security server 31, the settlement completion information is sent to the application server 30. Then, the payment completion information (receipt) is transmitted to the network server 40 of the store device 2 with the application server 31 attaching a third signature generated using the secret key of the payment management device 3.

ST112: The network server 40 verifies the payment completion information with the public key corresponding to the secret key of the payment management device 3, and after confirming the contents, generates payment completion reception information. The settlement completion receipt information is attached with a fourth signature generated using the secret key of the store device 4,
It is transmitted to the application server 30 of the payment management device 3.

Then, the application server 30 of the payment management device 3 transmits the fourth signature-completed payment completion reception information to the personal computer 22 of the user 2, so that the display of the personal computer 22 is displayed.
An indication that a series of electronic money settlement processing has been completed is displayed.

As described above, according to the electronic settlement system of the present embodiment, the common key is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, even if the user 2 loses the data storage device 20 such as an IC card, since the secret key is not stored in the memory 52, it is possible to prevent the signature of the user 2 from being illegally used using the secret key. .

According to the electronic settlement system of the present embodiment, since the common key is used only inside the data storage device 20 such as an IC card and the security server 31, there is a risk that the common key is stolen. Can be lowered,
Secure transactions can be realized, and key management can be facilitated.

Further, according to the electronic settlement system of the present embodiment, information and requests input / output to / from the data storage device 20 such as an IC card are made via the personal computer 22, and the personal computer 22 and the application server 30 and network server 4
When the information and the request are transmitted and received to and from the network 5, the signature verification using the secret key and the public key is performed, so that the information and the request can be prevented from being tampered with illegally on the network 5. The security of the transaction using is ensured.

Even when signature verification is not performed,
Since the identity of the payment information to be transmitted can be confirmed by encryption / decryption using the common key, the redundancy of the processing can be reduced as in the payment system according to the present embodiment.

Further, according to the electronic settlement system of the present embodiment, the network server 40 of the shop device 4 attaches the first signature information created using its own secret key to the settlement request information, The application server 30 of the payment management device 3 verifies the first signature information using the public key corresponding to the private key, and the first signature information is valid in the network server 40 of the store device 4. Therefore, it is possible to prevent the payment from being performed on the personal computer 22 or the like of the user 2 based on the illegally tampered payment request information.

In the electronic settlement system according to the present embodiment, as described above, the personal computer 2
2 displays the balance indicated by the balance information received from the application server 30 and the amount (billed amount) indicated by the estimate information received from the network server 40 on the display, and after the user 2 agrees with the contents, the application server 30 Payment request SPC received from
Is output to a data storage device 20 such as an IC card via a data storage device reader / writer 21 such as an IC card. Therefore, the user 2 can confirm in advance the details of the payment processing finally performed in the data storage device 20 such as an IC card, and can prevent the payment processing from being performed with illegally tampered contents.

Further, according to the electronic settlement system 1, the number of procedures involved in the settlement processing can be reduced as compared with the conventional case, the information transmission via the network 5 can be reduced, the usage amount of the network 5 can be reduced, and the processing time can be shortened. Can be achieved.

According to the electronic settlement system 1, there is no need to create and verify signature information many times unlike the conventional SET method, so that the redundancy of the processing procedure can be reduced.

(Electronic Money Deposit System) FIGS. 24 to 3
1, an electronic money deposit system and a sequence in the settlement system according to the present embodiment will be described.

In the settlement system according to the present embodiment, the data storage device 20 such as an IC card is used as prepaid electronic money. The user 2 is stored in the data storage device 20 such as an IC card. When the balance of the value information is insufficient, the value information needs to be updated so as to increase the balance. Or,
In some cases, the data storage device 20 such as an IC card may be used.
It is necessary to update the value information so that the value information stored in the value information is reduced.

When depositing electronic money into a data storage device such as an IC card, the user 2 uses the reader / writer 21
To access the application server (cyber electronic money system) 30 of the payment management device 3 via the personal computer 20 which can access the data storage device 20 such as an IC card, and requests the payment screen to be displayed on the display ( ).

In response to the payment screen request, the application server 30 displays a payment screen as shown in FIG. 25 on the display of the personal computer 20 of the user 2 via a predetermined interface program 24 such as an ActiveX component. ().

When the user 2 selects payment on the payment screen shown in FIG. 25, an instruction is given to set the data storage device 20 such as an IC card on the reader / writer 21 as shown in FIG.

When the user 2 sets the data storage device 20 such as an IC card on the reader / writer 21, the balance and the like stored in the data storage device 20 such as an IC card are read out and stored in the cyber electronic money system 30. Transferred (). At the same time, history information in the card is also downloaded to the cyber electronic money system (). While these processes are being performed, a display indicating that the process is being performed is displayed on the display as shown in FIG.

Next, the user 2 performs the operations shown in FIGS. 28 and 29.
While operating the keyboard and mouse of the personal computer 22 while referring to the screen as shown in (1), the deposit amount, the credit card number, the expiration date and the personal identification number are input and transferred to the cyber electronic money system (). . At the same time, history information in the card is also downloaded to the cyber electronic money system (). While these processes are being performed, as shown in FIG.
An indication that processing is in progress is displayed on the display.

Upon receiving the payment request information as described above, the cyber electronic money system 30 requests the credit device 35 to approve the credit settlement request (). After scrutinizing the credit information, the credit device 35 determines whether or not a credit settlement request can be made. Note that the detailed configuration of the credit device 35 has no direct relationship with the present invention, and thus a detailed description will be omitted.

If the result of the credit is positive, the cyber electronic money system generates value update information.
The cyber electronic money system encrypts the value update information using a common key shared between the payment management device 3 and the data storage device 20 such as an IC card.

[0216] Further, the value update information is stored in the settlement management device 3.
With the fifth signature created by the secret key of the user 2, and transmitted to the personal computer 22 of the user 2. The personal computer 22 of the user 2 verifies the validity of the transmitted value update information using the public key corresponding to the secret key of the payment management device 3 and, if correct, sends the value update information to the payment management device 3. 3 with a common key shared between the data storage device 20 such as an IC card. Then, based on the decrypted value update information, the IC
The value information in the data storage device 20 such as a card is updated ().

The personal computer 22 transmits a payment completion screen request to the cyber electronic money system 30 (), and a payment completion screen as shown in FIG. 31 is displayed on the display of the personal computer 22 (). Thereafter, as shown in FIG. 32, the display returns to the top page of the cyber electronic money system, and a series of value update processing is completed.

The card log information relating to a series of processing is sent to the information management server 32 for the scrutiny / payment system and stored in a batch processing.

As described above, according to the electronic money deposit system using the settlement system according to the present embodiment, the memory 5 of the data storage device 20 such as an IC card is used.
2 stores the common key KC and does not store the secret key. Therefore, even if the user 2 loses the data storage device 20 such as an IC card, since the secret key is not stored in the memory 52, it is possible to prevent the signature of the user 2 from being illegally used using the secret key. .

Further, according to the electronic settlement system 1, the common key is used only inside the data storage device 20 such as an IC card and the security server 31, so that the risk of the common key being stolen can be reduced, and the security can be reduced. A simple payment process can be realized, and key management can be facilitated.

The preferred embodiments of the electronic payment system and the like according to the present invention have been described with reference to the accompanying drawings, but the present invention is not limited to such examples. It is obvious that a person skilled in the art can conceive various changes or modifications within the scope of the technical idea described in the claims, and those changes naturally fall within the technical scope of the present invention. It is understood to belong.

For example, in the above-described embodiment, as shown in FIG. 1, a case where the application server 30, the security server 31, and the information management server 32 are separately provided in the payment management device 3 is exemplified. May be realized by one server.

Further, in the above-described embodiment, the case where the balance information in the data storage device 20 such as an IC card is read to the application server 30 is exemplified. However, the balance information may not be read to the application server 30. .

Further, a series of processes of the electronic settlement method according to the present invention and the processes performed by the settlement management device, the store device, and the client device can be executed by hardware, but can also be executed by software. When the software is executed by a series of software, various functions can be executed by installing a computer or various programs in which programs constituting the software are installed in dedicated hardware. The program may be stored in a package medium such as a floppy (registered trademark) disk or a CD-ROM and provided to a personal computer, or the program may be downloaded via a communication network such as the Internet.

[0225]

As described above, according to the present invention,
An electronic payment system, a payment management device, a store device, a client device, a data storage device such as an IC card, and a computer program for securely performing electronic commerce via a network using a data storage device such as an IC card holding a common key. And a storage medium.

In particular, according to the electronic settlement system of the present invention, the common key is stored in the memory 52 of the data storage device 20 such as an IC card, and the secret key is not stored. Therefore, even if the user loses the data storage device such as the IC card, the secret key is not stored in the memory, so that it is possible to prevent the user from being illegally signed using the secret key.

According to the electronic payment system and the like according to the present invention, since the common key is used only inside the data storage device such as an IC card and the security server, the risk of the common key being stolen can be reduced. , Secure transactions can be realized, and key management can be facilitated.

According to the electronic settlement system and the like according to the present invention, when transmitting and receiving various information and requests circulating through the network, signature verification using a secret key and a public key is performed. Can be prevented from being tampered with on the network, and the security of transactions using the network can be secured.

As described above, according to the electronic payment system and the like according to the present invention, the number of procedures involved in payment processing and payment processing can be reduced as compared with the prior art, information transmission via the network can be reduced, and the amount of network usage can be reduced. Reduction and processing time can be achieved.

[Brief description of the drawings]

FIG. 1 is an overall configuration diagram of an electronic payment system according to an embodiment of the present invention.

FIG. 2 is a schematic explanatory diagram for explaining a configuration of a data storage device such as the IC card shown in FIG. 1;

FIG. 3 is a configuration diagram illustrating another example of the configuration of the electronic payment system according to the embodiment of the present invention;

FIG. 4 is a configuration diagram showing a flow of information in the electronic payment system according to the embodiment of the present invention.

FIG. 5 shows a data storage device such as a user's IC card,
FIG. 4 is a diagram for explaining a communication method between the settlement management device and a security server.

FIG. 6 is a diagram for explaining a communication method between a user's personal computer and a store network server.

FIG. 7 is a diagram illustrating a communication method between a user's personal computer and an application server of a payment management device.

FIG. 8 is an explanatory diagram showing a flow of dispensing electronic money in the electronic settlement system according to the embodiment of the present invention.

FIG. 9 is a diagram for explaining the operation of the electronic payment system shown in FIG. 1, and shows a product information transmission sequence.

FIG. 10 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a value information transmission sequence.

FIG. 11 is a diagram for explaining the operation of the electronic payment system shown in FIG. 1, and shows a value information transmission sequence.

12 is an example of a screen configuration displayed on a client device during a payment operation of the electronic payment system shown in FIG. 1;

FIG. 13 is a screen configuration example displayed on the client device during the payment operation of the electronic payment system shown in FIG. 1;

14 is an example of a screen configuration displayed on the client device during a payment operation of the electronic payment system shown in FIG. 1;

FIG. 15 is a screen configuration example displayed on the client device during the settlement operation of the electronic settlement system shown in FIG. 1;

FIG. 16 is an example of a screen configuration displayed on a client device during a payment operation of the electronic payment system shown in FIG. 1;

FIG. 17 is a screen configuration example displayed on the client device during the payment operation of the electronic payment system shown in FIG. 1;

18 is an example of a screen configuration displayed on the client device during the payment operation of the electronic payment system shown in FIG. 1.

19 is an example of a screen configuration displayed on the client device during the payment operation of the electronic payment system shown in FIG. 1.

20 is a screen configuration example displayed on a client device during a payment operation of the electronic payment system shown in FIG. 1;

FIG. 21 is a diagram for explaining the operation of the electronic settlement system shown in FIG. 1, and shows a product information transmission sequence.

FIG. 22 is a diagram for explaining the operation of the electronic payment system shown in FIG. 1, and shows a value information transmission sequence.

FIG. 23 is a diagram for explaining the operation of the electronic payment system shown in FIG. 1, and shows a value information transmission sequence.

FIG. 24 is an explanatory diagram showing the flow of electronic money payment in the electronic payment system according to the embodiment of the present invention.

FIG. 25 is an example of a screen configuration displayed on the client device during a deposit operation of the electronic settlement system shown in FIG. 1;

26 is an example of a screen configuration displayed on a client device during a deposit operation of the electronic settlement system shown in FIG. 1;

FIG. 27 is an example of a screen configuration displayed on a client device during a deposit operation of the electronic settlement system shown in FIG. 1;

FIG. 28 is an example of a screen configuration displayed on a client device during a deposit operation of the electronic settlement system shown in FIG. 1;

FIG. 29 is an example of a screen configuration displayed on the client device during a deposit operation of the electronic payment system shown in FIG. 1;

30 is an example of a screen configuration displayed on a client device during a deposit operation of the electronic settlement system shown in FIG. 1;

31 is an example of a screen configuration displayed on a client device during a deposit operation of the electronic settlement system shown in FIG. 1;

32 is an example of a screen configuration displayed on the client device during a deposit operation of the electronic settlement system shown in FIG. 1;

[Explanation of symbols]

 DESCRIPTION OF SYMBOLS 1 ... Electronic payment system, 2 ... User, 3 ... Payment management apparatus, 4 ... Store apparatus, 5 ... Network, 20 ... Data storage device such as IC card, 21 ... Data storage device reader / writer such as IC card, 22 ... Personal Computer, 23: Browser program, 24: Interface program, 30: Application server, 31: Security server, 32: Information management server, 40: Network server

 ──────────────────────────────────────────────────続 き Continuing on the front page (72) Inventor Satoshi Honjo 6-7-35 Kita-Shinagawa, Shinagawa-ku, Tokyo Inside Sony Corporation (72) Inventor Masashi Arakawa 6-35, Kita-Shinagawa, Shinagawa-ku, Tokyo No. Sony Corporation F term (reference) 5J104 AA01 AA09 LA03 LA06 NA37 PA07 PA10

Claims (28)

[Claims] 1. A data storage device in which value information is stored, a client device having an information input / output function for the data storage device, a store device for providing goods or services, the data storage device and the store device An electronic payment system comprising: a payment management device that manages payment between the devices; and a communication system that connects the client device, the store device, and the payment management device so as to enable two-way communication,
The payment management device generates payment information for performing payment in the data storage device based on payment request information from the store device, and stores the payment information between the payment management device and the data storage device. Performs encryption processing using a common key shared by the client device, transmits the encrypted payment information to the client device, and the client device
An electronic payment system, wherein the payment information received from the payment management device is output to the data storage device. 2. The store apparatus creates a first signature indicating the validity of the payment request information using a secret key of the store apparatus, and sets the payment request information with the first signature to the payment request. The payment management device transmits the first signature received from the store device to a management device and verifies the validity of the first signature using a public key corresponding to a secret key of the store device. 1. The electronic payment system according to 1. 3. The electronic payment system according to claim 2, wherein the payment request information with the first signature is transmitted to the payment management device via the client device. 4. The payment management device creates a second signature indicating the validity of the first signed payment information using a secret key of the payment management device, and applies the second signature to the cryptographic process. The payment information transmitted is transmitted to the client device, and the client device verifies the validity of the second signature received from the payment management device using a public key corresponding to a secret key of the payment management device. Outputting the payment information to the data storage device after the
The electronic payment system according to claim 2. 5. The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using a secret key of the payment management device, and includes the payment information. The payment completion information with the third signature is transmitted to the store device, and the store device checks the validity of the third signature received from the payment management device with the secret key of the payment management device. 2. The electronic payment system according to claim 1, wherein verification is performed using a public key. 6. The store device receives the settlement completion information with the third signature, generates the fourth signature-completed payment completion reception information using a secret key of the store device, and generates the fourth signature. The settlement management device and the client device transmit the payment completion receipt information with the signature to the payment management device and the client device, and the payment management device and the client device determine whether the fourth signature received from the store device corresponds to the secret key of the store device 6. The electronic payment system according to claim 5, wherein the verification is performed using a public key to be executed. 7. The electronic settlement system according to claim 1, wherein the store device is configured as a mall including a plurality of lower store devices. 8. A payment management device capable of updating value information stored in a data storage device via a client device, wherein the payment management device stores value update information in the data storage device in the payment management device. A cryptographic process using a common key shared between a device and the data storage device is performed, and the updated value information having been subjected to the cryptographic process is transmitted to the client device. A payment management device, wherein update information is input to the data storage device. 9. The payment management apparatus generates a fifth signature indicating the validity of the value update information using a secret key of the payment management apparatus, and generates the fifth update information to which the fifth signature is attached. The value update information transmitted to the client device, and the client device verifies the validity of the fifth signature received from the payment management device using a public key corresponding to a secret key of the payment management device. 9. The payment management device according to claim 8, wherein the data is input to the data storage device. 10. A settlement management device for managing settlement between a data storage device in which value information is stored and a store device providing goods or services, wherein the settlement information for performing settlement in the data storage device is: A payment information generation unit that generates the payment information based on the payment request information from the store device, and payment information that performs the encryption processing on the payment information using a common key shared between the payment management device and the data storage device. A cryptographic processing unit; and a payment information output unit configured to output the cryptographically processed payment information to the data storage device via a client device having an information input / output function for the data storage device. Settlement management device. 11. The store apparatus creates a first signature indicating the validity of the payment request information using a secret key of the store apparatus, and sets the payment request information with the first signature to the payment request. The payment management device transmits the first signature received from the store device to a management device and verifies the validity of the first signature using a public key corresponding to a secret key of the store device. 10. The settlement management device according to 10. 12. The payment management device creates a second signature indicating the validity of the first signed payment information using a secret key of the payment management device, and attaches the second signature and performs encryption processing. Transmitting the applied payment information to the client device capable of verifying the validity of the second signature using a public key corresponding to a secret key of the payment management device, and outputting the validity to the data storage device. The settlement management device according to claim 11, wherein the settlement management device is characterized by: 13. The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using a secret key of the payment management device, and includes the payment information. The payment completion information with the third signature is transmitted to the store device whose validity of the third signature can be verified using a public key corresponding to a secret key of the payment management device. The settlement management device according to claim 10, wherein 14. The store apparatus receives the settlement completion information to which the third signature has been added, generates the fourth signature-completed settlement completion information using the secret key of the store apparatus, and
A payment completion receipt information with a signature is transmitted to the payment management device, and the payment management device verifies the validity of the fourth signature received from the store device using a public key corresponding to a secret key of the store device. Claim 1 characterized by the following:
3. The settlement management device according to 3. 15. A computer program for causing a computer to function as the settlement management device according to claim 8. 16. A computer-readable storage medium storing the computer program according to claim 15. 17. A store apparatus for providing goods or services based on a settlement made with a data storage device in which value information is stored via a settlement management device,
A payment request information generation unit for generating payment request information, a first signature generation unit for generating a first signature indicating the validity of the payment request information using a secret key of the store device, and A settlement request information transmitting unit for transmitting the settled settlement request information to the settlement management device capable of verifying the validity of the first signature using a public key corresponding to a secret key of the store device. Store equipment characterized by the following. 18. The payment management device generates payment information for performing payment in the data storage device based on payment request information from the store device, and generates the payment information with the payment management device and the data. An encryption process using a common key shared with a storage device is performed, and the payment information subjected to the encryption process is transmitted to the client device, and the client device transmits the payment received from the payment management device. The store apparatus according to claim 17, wherein information is output to the data storage device. 19. The store apparatus according to claim 17, wherein the payment request information with the first signature is transmitted from the store apparatus to the payment management apparatus via the client apparatus. . 20. The payment management device generates payment completion information, generates a third signature indicating the validity of the payment completion information using a secret key of the payment management device, and includes the payment information. The payment completion information with the third signature is transmitted to the store device, and the store device checks the validity of the third signature received from the payment management device with the secret key of the payment management device. The store apparatus according to claim 17, wherein the verification is performed using a public key. 21. The store device receives the settlement completion information with the third signature, generates the fourth signature-completed settlement completion information using the secret key of the store device, and
The payment settlement completion reception information with signature is transmitted to the settlement management device and the client device, and the settlement management device and the client device determine the validity of the fourth signature received from the store device as a secret key of the store device. 2. The method according to claim 1, wherein the verification is performed using a corresponding public key.
7. The store apparatus according to 7. 22. A computer program for causing a computer to function as the store apparatus according to claim 17. 23. A computer program for causing a computer to function as the store apparatus according to claim 22. 24. An information input / output function for the data storage device used when performing settlement between a store device providing goods or services and a data storage device storing value information via a settlement management device. In the client device provided, the payment management device generates an encryption process based on payment request information from the store device, and performs an encryption process using a common key shared between the payment management device and the data storage device. A client device, comprising: a payment information receiving unit that receives the performed payment information; and a payment information output unit that outputs the payment information received from the payment management device to the data storage device. 25. A data storage device in which value information used when making a payment with a store device providing goods or services via a payment management device is stored, wherein the payment management device is provided in the store device. Payment information generated based on payment request information from the device and subjected to encryption processing using a common key shared between the payment management device and the data storage device; A data storage device, which can be input via the client device having a function. 26. The data storage device according to claim 25, wherein the data storage device is an IC card. 27. An electronic settlement method performed between a client device, a store device, and a settlement management device connected so as to be capable of two-way communication, wherein the settlement is performed by a data storage device in which value information is stored. Information is generated based on a payment request from the store device, and the payment information is subjected to an encryption process using a common key shared between the payment management device and the data storage device. An electronic payment method, comprising transmitting the performed payment information to the client and the device. 28. The shop device creates a first signature indicating the validity of the payment request information using a secret key of the shop device, and creates the first signature attached to the payment request information. The payment management device transmits the first signature to the payment management device, and the payment management device verifies the validity of the first signature received from the store device using a public key corresponding to a secret key of the store device. 28. The electronic settlement method according to claim 27.