JP2004342120A - Reception authentication system and method via web site - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To receive various kinds of service applications via a web site to execute authentication for personal identification. <P>SOLUTION: This reception authentication system is used for receiving application information related to a specific service from a customer terminal via the web site to execute authentication relating to a customer. A reception authentication server has: a storage means for storing specific display information attached to a customer-carried medium issued to the customer; a reception means for receiving application information related to a specific service from the customer terminal; an input request means for requesting input of the specific display information attached to the customer-carried medium to the customer terminal in the reception of the application information; and an authentication means for executing authentication relating to the customer by checking the specific display information inputted from the customer terminal in response to the input request against the specific display information stored in the storage means. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to a system and method for receiving applications for various business-related services via a website and performing authentication for identity verification.

  In recent years, various customer services have been widely provided by financial institutions such as banks using websites. For example, in so-called Internet banking, a customer can access a website on a bank homepage from a terminal device having a browser, and can apply for and perform various services related to an account.

In the above-described system realized via a website via the Internet, security, security of transactions, prevention of fraud, and the like are serious problems. One of them is a problem of a procedure for confirming whether or not a customer is the principal. For example, a bank ATM, which is also an unmanned system, is equipped with a card or passbook reader equipped with a magnetic recording medium. We can confirm that procedure is being performed.
Yatsuka Yoshida, "Enhancing the Content of Mobile Banking Services to Attract Users Across Generations" TORIGGER, Vol. 19, No. 6, June 2000, pp. 32-33

  However, in the case of a procedure via a communication network such as the Internet, a general customer terminal is a general-purpose computer, and usually does not have a card or a passbook reader. Therefore, as a method for verifying the identity, there is a method of inputting a password set in advance and stored by the customer from the customer terminal, and collating it. For example, the personal identification number of the bank cash card is used as it is. As another method, as described in Non-Patent Document 1, a card or the like displaying a random number table is given to a customer in advance, and a combination of predetermined numbers in the random number table is input from a customer terminal. This predetermined combination of numbers is changed for each access. It is common to verify the identity using both a personal identification number and a random number table.

  In consideration of transaction security and fraud prevention, it is required that at least two authentication means are provided for personal identification. One is to use a password stored by the customer himself. In addition to this, it is desirable to provide another authentication means. However, in the method using the above-mentioned random number table, the customer must have a random number table separately in addition to the card or passbook normally held. It is troublesome to pick up the numbers correctly while looking at the random number table. Also, a random number table must be issued in advance.

  In view of the above situation, an object of the present invention is to provide a system, a method, and a program for receiving various service applications via a website and executing authentication for identity verification.

  In order to achieve the above object, the present invention provides a reception authentication system and method having the following configuration.

(1) A reception authentication system via a website according to claim 1 is a reception authentication system for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication for a customer. The authentication server
(A) first storage means for storing the cash card issue date information displayed on the bank card of the financial institution issued to the customer;
(B) receiving means for receiving application information relating to a specific service from the customer terminal;
(C) second storage means for temporarily storing the application information;
(D) input requesting means for requesting the customer terminal to input the cash card issuance date information displayed on the cash card in receiving the application information;
(E) Matching the cash card issue date information input from the customer terminal in response to the input request with the cash card issue date information stored in the first storage means, thereby relating to the customer. An authentication means for performing authentication;
(F) means for displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and delivering the application information to the specific service providing system. Features.

(2) A reception authentication system via a website according to claim 2 is a reception authentication system for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication for the customer. The authentication server
(A) first storage means for storing information on the bookkeeping status of the passbook displayed on the passbook of the financial institution issued to the customer;
(B) receiving means for receiving application information relating to a specific service from the customer terminal;
(C) second storage means for temporarily storing the application information;
(D) input requesting means for requesting the customer terminal to input information relating to the bookkeeping status of the passbook displayed in the passbook upon reception of the application information;
(E) matching the information on the bookkeeping status of the passbook entered from the customer terminal in response to the input request with the information on the bookkeeping status of the passbook stored in the first storage means, Authentication means for performing authentication regarding
(F) means for displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and delivering the application information to the specific service providing system. Features.

(3) The reception authentication system via a website according to claim 3 is a reception authentication system for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication related to a customer. The authentication server
(A) first storage means for storing identification information displayed on a rewritable portion displayed on a rewritable cash card of the financial institution issued to the customer;
(B) receiving means for receiving application information relating to a specific service from the customer terminal;
(C) second storage means for temporarily storing the application information;
(D) input requesting means for requesting the customer terminal to input identification information displayed on the rewritable portion displayed on the rewritable cash card upon receiving the application information;
(E) collating identification information displayed on the rewritable part input from the customer terminal in response to the input request with identification information displayed on the rewritable part stored in the first storage means. Authentication means for performing authentication for the customer by
(F) means for displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and delivering the application information to the specific service providing system. Features.

(4) The reception and authentication method via a website according to claim 4 is a reception and authentication method for receiving application information on a specific service of a financial institution from a customer terminal via a website and executing authentication for a customer. The authentication server
(A) storing in the first storage means the cash card issuance date information displayed on the cash card of the financial institution issued to the customer;
(B) receiving application information relating to a specific service from the customer terminal;
(C) temporarily storing the application information in a second storage means;
(D) requesting the customer terminal to input the cash card issuance date and time information displayed on the cash card at the reception of the application information by input request means;
(E) The cash card issue date information input from the customer terminal in response to the input request is compared with the cash card issue date information stored in the first storage means by the authentication means. Performing authentication for the customer;
(F) displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and transferring the application information to the specific service providing system. Features.

(5) The reception authentication method via a website according to claim 5 is a reception / authentication method for receiving application information on a specific service of a financial institution from a customer terminal via a website and executing authentication for a customer. The authentication server
(A) storing, in a first storage unit, information on the bookkeeping status of the passbook displayed on the passbook of the financial institution issued to the customer;
(B) receiving, by a receiving unit, application information relating to a specific service from the customer terminal;
(C) temporarily storing the application information in a second storage means;
(D) requesting the customer terminal to input information relating to the bookkeeping status of the passbook displayed on the passbook at the reception of the application information by input request means;
(E) collating information on the bookkeeping status of the passbook entered from the customer terminal in response to the input request with information on the bookkeeping status of the passbook stored in the first storage means. Authentication means for performing authentication for the customer by
(F) displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and transferring the application information to the specific service providing system. Features.

(6) The reception authentication method via a website according to claim 6 is a reception authentication method for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication for the customer. The authentication server
(A) storing, in a first storage unit, identification information displayed on a rewritable portion displayed on a rewritable cash card of the financial institution issued to the customer;
(B) receiving, by a receiving unit, application information relating to a specific service from the customer terminal;
(C) temporarily storing the application information in a second storage means;
Requesting input of identification information displayed on the rewritable portion displayed on the rewritable cash card to the customer terminal at the reception of the application information by input request means,
(D) The identification information displayed on the rewritable part input from the customer terminal in response to the input request and the identification information displayed on the rewritable part stored in the first storage means are authenticated by the authentication means. Performing authentication for the customer by collating;
(F) displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and transferring the application information to the specific service providing system. Features.

  Since the reception authentication system and method via a website according to the present invention has an authentication means for personal identification other than the personal identification number, it is possible to secure the security of various service transactions via the network and prevent fraud.

  Further, in the present invention, the customer possesses the medium possessed by the customer without fail, and uses the simple unique information explicitly displayed on the customer possessed medium as the personal identification information as the identity confirmation means. There is no need to have a separate authentication-dedicated medium, and recognition of unique information is easy.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
1) Outline of System Configuration FIG. 1 is a diagram showing a schematic and schematic configuration of a reception authentication system via a website according to the present invention. Each function of the present system is realized by the web reception authentication server 10 which is substantially an appropriate computer and software (program) mounted on the server. The web reception authentication server 10 shown in FIG. 1 is schematically shown, and is actually configured to include one or a plurality of servers (including ones appropriately connected via a network) and peripheral devices thereof. Further, since this system is a reception authentication system for various services provided by a financial institution through a network, that is, via the website 18, it is essentially a system that should cooperate with those various service providing systems. . Therefore, the present system is usually implemented in a form incorporated as a function of each of these service providing systems or in a form that functions in conjunction with each service providing system. In this specification, a detailed description of parts other than the present system is omitted, but the actual specific system configuration for realizing various service providing systems including the reception authentication system of the present invention via the website 18 is as follows. Various considerations are possible and are not limited to a specific configuration.

  The web reception authentication server 10 has a function of transmitting information to and from the customer terminal 30 via the website 18. The website 18 is a website posted on a financial institution or the like, for example. For example, if it is a bank homepage, it has a function of receiving an application for starting to use Internet banking, an application for starting to use mobile banking, an application for an account transfer request, and an application for various services such as an address change. The present system has a function of accepting application information transmitted from the customer terminal 30 (accepting means 14) and a function of executing authentication processing of personal identification (authentication means 12). Then, the received application information is delivered to the corresponding service providing system.

  The web reception authentication server 10 has personal identification information storage means 16 which is an appropriate storage device, and manages it. The personal identification information storage means 16 stores a personal identification number preset for the customer, and also stores unique display information attached to a customer possessed medium previously assigned to the customer. The "PIN" is a number stored by the customer himself, such as a conventional PIN of a cash card (note that "the number" is not limited to a number but includes characters and symbols). "Customer-owned medium" is a physical medium that is always issued to a customer in advance, and may be a paper medium, a magnetic recording medium, or an optical recording medium. For example, a cash card or a passbook issued to a customer having a bank account, and a legitimate customer always uses a possession. The customer is provided with the customer's possession medium such as a cash card or a passbook before accessing the website 18. If a customer wishes to apply for a service that requires identity verification via the website, prepare these customer-owned media (for example, keep them aside for easy reference). Access site 18.

  Further, the “specific display information attached to the customer's possession medium” is composed of characters, numerals, symbols, and the like (including prints, stamps, watermarks, etc.) that are explicitly, that is, visually attached. For example, in the case of a general cash card, this is the card issue date stamped on the card. In the case of August 2001, “01/08” or the like is engraved.

  As another example, there is a cash card of a type having a rewritable portion in which data in a magnetic recording medium is displayed on the card. In the case of this type of cash card, the unique display information is displayed on the rewritable portion. Specific examples of the unique display information are arbitrary, such as random numbers, transaction serial numbers, etc., as long as they are numbered by the bank system and are identification information unique to the customer. Since the unique display information of the rewritable portion can be rewritten every time a transaction is made at an ATM having a rewriting function, the security is higher than permanent information such as the date of card issuance.

Furthermore, when the customer possesses a passbook, as the unique display information, it is possible to use information indicating the bookkeeping status such as how many pages and how many lines are recorded. The information on the bookkeeping status of the passbook is also information that is changed every time the customer performs bookkeeping, and can be said to have higher security than permanent information.
Such information is information uniquely displayed for each customer possessed medium, and is information visually specified. In addition, the information such as the date of card issuance, identification information, and bookkeeping status is information that the bank system also holds. The personal identification information storage means 16 stores such information held by the bank system.

2) Example of System Processing Flow FIG. 2 is a flowchart showing an example of a reception authentication processing flow according to the present invention when an application for a specific service is accepted on a bank homepage posting site. Hereinafter, each step will be described in order with reference to FIG.

Step 101: The customer holding the bank account accesses the bank homepage using the customer terminal. The browser software of the customer terminal displays a selection screen of various services that can be provided on the bank homepage. It should be noted that the bank website configuration can be implemented in various ways. The various services include, for example, an application for starting to use the Internet banking, an application for starting to use the mobile banking, an application for an account transfer request, and an address change.

Step 102: Upon receiving specific service selection information for selecting a specific service (for example, an application for starting use of Internet banking) from the customer terminal, the web reception authentication server 10 displays an application input screen for the specific service on the customer terminal. Let it. On the application input screen, the customer inputs application input information such as information on the account held (name, account number, telephone number, etc.) and usage limit (transfer limit, etc.).

Step 103: Upon receiving the application input information from the customer terminal, the web reception authentication server 10 temporarily stores the application input information in a storage unit as appropriate. Then, an identification confirmation input screen is displayed on the customer terminal. FIG. 3 is a diagram illustrating an example of the personal identification input screen. Basic item information such as "account number" and "name" are automatically displayed based on the above-mentioned application input information. The customer enters the “card PIN” on this screen, and further enters the “card issue date” stamped on the cash card as the unique display information of the customer's possession medium, or the “passing bank line after Enter the number of rows and pages. If the card issue date is "01/10", "October 2001" is entered. In the case of a passbook, for example, if there are entries up to the fourth line of page 3, "3 pages, 5 lines" is input. In the illustrated example, either one may be input.

  If the date of issue is not stamped on the cash card, only the passbook entry status may be used. If there is no stamp or date of issuance of the cash card and no passbook, other card-specific information (for example, a serial number) may be printed and displayed on the cash card in advance and used. Although the account number is unique information, it is not preferable because it is information that is relatively easy to be known to others by being used for a transfer or the like.

  FIG. 4 is a diagram showing an example of a personal identification input screen and an example of a rewritable cash card when the customer possesses a rewritable cash card and the identification information displayed on the rewritable portion is used as unique display information. The identification information ("34786") displayed on the rewritable portion of the card is input to the authentication key input field on the input screen.

Step 104: Upon receiving the personal identification information composed of the card personal identification number and the unique display information from the customer terminal, the web reception authentication server 10 executes an authentication process relating to the personal identification. At the time of authentication, the content stored in the personal identification information storage means 16 in advance is compared with the content input from the customer terminal. That is, the card password is checked and the unique display information of the customer's possession medium is checked. The input unique display information and the previously stored unique display information are collated, and if they match, it can be confirmed that they are who they say they are.

Step 105: As a result of the authentication, if the identity can be confirmed, the process proceeds to the next step 106. If the identity cannot be confirmed (that is, if the result of the collation does not match), the process returns to step 103, and the process is repeated. Require identity verification input.

Step 106: The application contents of the specific service applied by the customer are displayed on the customer terminal, and finally a confirmation of the application contents is requested.

Step 107: When the application confirmation information is received from the customer terminal, the application completion screen is displayed on the customer terminal, and the application input information temporarily stored in step 103 is transferred to the corresponding service providing system. .

FIG. 1 is a diagram showing a schematic and schematic configuration of a reception authentication system via a website according to the present invention. 6 is a flowchart showing an example of a reception authentication processing flow according to the present invention when accepting an application for a specific service on a bank homepage posting site. It is a figure showing the example of the personal identification input screen in the reception authentication system of the present invention. It is a figure which shows another example of the personal identification input screen in the reception authentication system of this invention, and the example of a rewritable cash card.

Explanation of reference numerals

DESCRIPTION OF SYMBOLS 10 Reception authentication server 12 Authentication means 14 Reception means 16 Identity verification information storage means 18 Website 30 Customer terminal

Claims (6)

In a reception authentication system that receives application information related to a specific service of a financial institution from a customer terminal via a website and executes authentication for a customer, the reception authentication server includes:
(A) first storage means for storing the cash card issue date information displayed on the bank card of the financial institution issued to the customer;
(B) receiving means for receiving application information relating to a specific service from the customer terminal;
(C) second storage means for temporarily storing the application information;
(D) input requesting means for requesting the customer terminal to input the cash card issuance date information displayed on the cash card in receiving the application information;
(E) Matching the cash card issue date information input from the customer terminal in response to the input request with the cash card issue date information stored in the first storage means, thereby relating to the customer. An authentication means for performing authentication;
(F) means for displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and delivering the application information to the specific service providing system. Characteristic Reception authentication system via website. In a reception authentication system that receives application information related to a specific service of a financial institution from a customer terminal via a website and executes authentication for a customer, the reception authentication server includes:
(A) first storage means for storing information on the bookkeeping status of the passbook displayed on the passbook of the financial institution issued to the customer;
(B) receiving means for receiving application information relating to a specific service from the customer terminal;
(C) second storage means for temporarily storing the application information;
(D) input requesting means for requesting the customer terminal to input information relating to the bookkeeping status of the passbook displayed in the passbook upon reception of the application information;
(E) matching the information on the bookkeeping status of the passbook entered from the customer terminal in response to the input request with the information on the bookkeeping status of the passbook stored in the first storage means, Authentication means for performing authentication regarding
(F) means for displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and delivering the application information to the specific service providing system. Characteristic Reception authentication system via website. In a reception authentication system that receives application information related to a specific service of a financial institution from a customer terminal via a website and executes authentication for a customer, the reception authentication server includes:
(A) first storage means for storing identification information displayed on a rewritable portion displayed on a rewritable cash card of the financial institution issued to the customer;
(B) receiving means for receiving application information relating to a specific service from the customer terminal;
(C) second storage means for temporarily storing the application information;
(D) input requesting means for requesting the customer terminal to input identification information displayed on the rewritable portion displayed on the rewritable cash card upon receiving the application information;
(E) collating identification information displayed on the rewritable part input from the customer terminal in response to the input request with identification information displayed on the rewritable part stored in the first storage means. Authentication means for performing authentication for the customer by
(F) means for displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and delivering the application information to the specific service providing system. Characteristic Reception authentication system via website. In a reception authentication method for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication for a customer, the reception authentication server includes:
(A) storing in the first storage means the cash card issuance date information displayed on the cash card of the financial institution issued to the customer;
(B) receiving application information relating to a specific service from the customer terminal;
(C) temporarily storing the application information in a second storage means;
(D) requesting the customer terminal to input the cash card issuance date and time information displayed on the cash card at the reception of the application information by input request means;
(E) The cash card issue date information input from the customer terminal in response to the input request is compared with the cash card issue date information stored in the first storage means by the authentication means. Performing authentication for the customer;
(F) displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and transferring the application information to the specific service providing system. Characteristic Reception authentication method via website. In a reception authentication method for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication for a customer, the reception authentication server includes:
(A) storing, in a first storage unit, information on the bookkeeping status of the passbook displayed on the passbook of the financial institution issued to the customer;
(B) receiving, by a receiving unit, application information relating to a specific service from the customer terminal;
(C) temporarily storing the application information in a second storage means;
(D) requesting the customer terminal to input information related to the bookkeeping status of the passbook displayed in the passbook at the reception of the application information by input request means;
(E) collating information on the bookkeeping status of the passbook entered from the customer terminal in response to the input request with information on the bookkeeping status of the passbook stored in the first storage means. Authentication means for performing authentication for the customer by
(F) displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and transferring the application information to the specific service providing system. Characteristic Reception authentication method via website. In a reception authentication method for receiving application information related to a specific service of a financial institution from a customer terminal via a website and executing authentication for a customer, the reception authentication server includes:
(A) storing, in a first storage unit, identification information displayed on a rewritable portion displayed on a rewritable cash card of the financial institution issued to the customer;
(B) receiving, by a receiving unit, application information relating to a specific service from the customer terminal;
(C) temporarily storing the application information in a second storage means;
Requesting input of identification information displayed on the rewritable portion displayed on the rewritable cash card to the customer terminal at the reception of the application information by input request means,
(D) The identification information displayed on the rewritable part input from the customer terminal in response to the input request and the identification information displayed on the rewritable part stored in the first storage means are authenticated by the authentication means. Performing authentication for the customer by collating;
(F) displaying the application information stored in the second storage means on the customer terminal, and requesting input of application confirmation information;
(G) displaying an application completion screen on the customer terminal in response to receiving the application confirmation information from the customer terminal, and transferring the application information to the specific service providing system. Characteristic Reception authentication method via website.

Images