JP2008165411A - COMMUNICATION SYSTEM, SERVER DEVICE, COMMUNICATION DEVICE, AND COMMUNICATION PROCESSING PROGRAM - Google Patents

Abstract

[PROBLEMS] To correctly confirm that a service provider and a user have faced each other.
A face-to-face control server device 1 generates a nonce as a random number in accordance with a request from a provider device 2 and transmits a nonce including an issue time to the provider device 2 as user invitation information. When the provider device 2 receives the user invitation information from the face-to-face control server device 1, the user invitation unit 220 confirms this reception and then displays a two-dimensional code of this information. The user device 3 acquires user invitation information by reading the two-dimensional code displayed on the provider device 2. When acquiring the user invitation information, the user device 3 transmits a nonce to the facing control server device 1 of the transmission source. When the face-to-face control server device 1 receives a nonce from the user device 3, the current time is compared with the issue time of the received nonce, and if the current time has not passed 10 seconds from the issue time, the nonce It is determined that it is within the expiration date.
[Selection] Figure 1

Description

  The present invention relates to a communication system, a server device, a communication device, and a communication processing program used when meeting between a service provider and a user.

  In recent years, IT has become popular, and it has become possible to conduct business transactions regardless of location and time. However, there are many areas in which the importance of face-to-face operations such as courier services, bank window operations, insurance visit operations, and audit operations is not lost.

  In this face-to-face work, it was difficult for the evidence of what kind of face-to-face work was actually performed to remain in the hands of each other. For example, consumers deceived by illegal door-to-door sales are difficult to prove damage without evidence of face-to-face business.

Therefore, as disclosed in, for example, Patent Document 1, there is a content check technology for business procedures as a technology related to compliance in face-to-face business.
Japanese Patent Laid-Open No. 2005-250809

  However, in the above-mentioned method, only the pre-registered person on the business providing side is allowed to operate, so the situation of the fact that the service provider and the user faced and performed a predetermined transaction There is no record of evidence.

  Accordingly, an object of the present invention is to provide a communication system, a server device, a communication device, and a communication processing program capable of correctly confirming that a service provider and a user have faced each other.

  That is, the communication system according to the present invention includes a server device, a provider terminal device for use by a service provider, a user terminal device for use by a service user, and a provider for use by a service provider. The server device is a system having a certification device, and the server device generates verification information for meeting the service provider and the service user in accordance with a request from the provider terminal device, and the generated verification information is provided to the provider terminal. The verification information transmitted from the user terminal device is received, the received verification information is compared with the generated verification information, the service provider identification information is stored, and the identification information is used. The provider terminal device requests the server device to generate verification information, receives the verification information transmitted from the server device, and closes the received verification information. The information is transmitted to the user terminal device by remote communication, and the user terminal device receives the information transmitted by the near field communication from the provider terminal device, transmits the received verification information to the server device, and transmits from the server device. The received identification information, and after receiving the identification information transmitted from the provider certification device, the identification information received from the server device and the identification information received from the provider certification device are collated, and the provider The proving device stores the identification information of the service provider and transmits the stored identification information to the user terminal device by short-range communication.

  According to the present invention, it is possible to correctly confirm that the service provider and the user have faced each other.

Embodiments of the present invention will be described below with reference to the drawings.
(First embodiment)
First, a first embodiment of the present invention will be described.
A person involved in the face-to-face business system according to the first embodiment of the present invention will be described. The main participants of the face-to-face business system are service providers and service users.

  A service provider is a person who provides or executes services or services to service users. For example, a business operator that operates an insurance business or a delivery business is a service business operator. A person who supports a service provided by a service provider, for example, an employee who has a duty to face a user in particular, is hereinafter referred to as a provider. The provider may be, for example, an insurance sales representative or a delivery service delivery person.

  A service user is a person who provides services or services by a service provider or provider. This person is hereinafter referred to as a user. The user may be a general consumer or a third party.

FIG. 1 is a block diagram showing a configuration example of a face-to-face business system according to the first embodiment of the present invention.
This face-to-face business system includes a face-to-face control server device 1, a provider device 2, a user device 3, a user identification medium 4, and CA5. The face-to-face control server device 1, the provider device 2, and the user device 3 are devices such as a computer.

The face-to-face control server device 1 is a server device operated by a service provider.
The provider device 2 is a communication terminal device for the provider to access the face-to-face control server device 1, and is a notebook PC, PDA, mobile phone, or the like distributed to the provider by the service provider.
The user device 3 is a communication terminal device that is always carried at hand for the convenience of the user, regardless of the service provided by the service provider, and the processing necessary for the face-to-face business system on the user device 3 A mobile phone or PDA in which a program for performing is installed.

  The provider device 2 and the user device 3 can communicate with the face-to-face control server device 1 via communication networks 10a and 10b such as the Internet. Further, the provider device 2 and the user device 3 have a function of performing short-range wireless communication via the short-range communication path 20.

The provider identification medium 4 is a card-like identification card of the provider. The provider identification medium 4 is distributed from the service provider to the provider, and is always carried by the provider during face-to-face operations. For example, a two-dimensional code such as a QR code is attached to the provider identification medium 4. The user device 3 performs short-range communication with the provider identification medium 4 via the short-range communication path 30 by reading the two-dimensional code of the provider identification medium 4. The provider identification medium 4 may be attached with a medium different from the two-dimensional code, for example, an RFID, and the user device 3 may perform near field communication by reading the RFID.
The CA 5 is an information system operated by a certificate authority that is not related to the service provider, and manages user certificates.

Hereinafter, the configurations of the face-to-face control server device 1, the provider device 2, and the user device 3 will be described.
FIG. 2 is a block diagram showing a configuration example of the face-to-face control server device of the face-to-face business system according to the first embodiment of the present invention.

  As shown in FIG. 2, the face-to-face control server device 1 includes a communication unit 101, a program storage unit 102, a provider authentication control unit 110, a provider authentication unit 111, a provider information storage unit 112, a certification unit 120, and a certificate storage. Unit 121, key storage unit 122, signature unit 123, user authentication control unit 130, provider information providing unit 140, user authentication unit 150, encryption communication management unit 170, time management unit 175, nonce management unit 180, nonce generation Unit 181, session management unit 190, session information storage unit 192, history management unit 195, and history storage unit 196.

  The communication unit 101 of the face-to-face control server device 1 is an interface device that performs transmission / reception processing with the provider device 2, the user device 3, and the CA5. The program storage unit 102 is a storage medium such as a hard disk drive or a non-volatile memory, for example, and stores a program for realizing processing of each unit in the facing control server device 1.

  The provider authentication control unit 110 controls authentication processing between the provider device 2 and the face-to-face control server device 1. The certification unit 120 proves the validity of the face-to-face control server device 1 to the provider.

  The provider information storage unit 112 is a storage medium such as a hard disk drive or a non-volatile memory, and stores attribute information including identification information of the provider. FIG. 3 is a diagram showing an example of storage contents of the provider information storage unit of the face-to-face control server device of the face-to-face business system according to the first embodiment of the present invention. As shown in FIG. 3, the provider identification information is information associated with an employee number, password, affiliation, name, telephone number, and facial photo.

The provider authentication unit 111 verifies the validity of the identification / authentication information received from the provider by checking the stored content of the provider information storage unit 112.
The certification unit 120 performs certification from the certificate storage unit 121 to prove the validity of the facing control server device 1 to the provider device 2 or the user device 3 connected to the facing control server device 1. Obtain and send the certificate information. The signature unit 123 generates a response to the given challenge.

The session information storage unit 192 is a storage medium such as a hard disk drive or a nonvolatile memory, and stores session information. FIG. 4 is a diagram showing an example of storage contents of the session information storage unit of the face-to-face control server device of the face-to-face business system according to the first embodiment of the present invention.
The certificate storage unit 121 is a storage medium such as a hard disk drive or a nonvolatile memory, and stores certificate information issued to the face-to-face control server device 1.

FIG. 5 is a diagram showing an example of a certificate stored in the certificate storage unit of the meeting control server device of the meeting business system according to the first embodiment of the present invention.
The key storage unit 122 is a storage medium such as a hard disk drive or a nonvolatile memory, and stores the secret key of the face-to-face control server device 1. That is, this secret key is a secret key that is paired with a public key described in a certificate issued to the face-to-face control server device 1. The secret key is a key having specifications such as RSA 1024 bits.

  The signature unit 123 generates a response to the given challenge. The challenge is a random number that cannot be predicted before it is generated, and the response is information obtained by encrypting the challenge with a secret key.

  The user authentication control unit 130 controls authentication processing between the user device 3 and the face-to-face control server device 1. The certification unit 120 proves the validity of the face-to-face control server device 1 to the user device 3.

The provider information providing unit 140 acquires provider information to be provided to the user device 3 from the provider information storage unit 112.
The user authentication unit 150 verifies the validity of the user certificate. The user authentication unit 150 stores an issuer certificate of a certificate having the format shown in FIG. 5 in an internal memory in advance, and verifies a signature portion in the certificate by the issuer using the certificate.
In addition, the user authentication unit 150 generates a challenge and verifies a response generated for the challenge.

  The nonce management unit 180 causes the nonce generation unit 181 to generate a nonce, acquires the time from the time management unit 175, and stores it in the session information storage unit 192. A nonce is a random number that cannot be predicted before it is generated.

  The nonce management unit 180 determines whether the nonce received from the user device 3 is valid. The expiration date of the nonce is a predetermined constant value, for example, “10 seconds from the issue time”. At this time, for example, since the issue time of the nonce “538382379232” shown in the first line of the session information table shown in FIG. 4 is “20061019 10:23:34”, it is valid until “20061019 10:23:44”.

  The time management unit 175 maintains and manages the current time. The encryption communication management unit 170 manages encryption communication. The encrypted communication management unit 170 also has a function of sharing an encryption key with the provider device 2 and the user device 3, stores the shared key in the session information storage unit 192, and performs encrypted communication using the shared key.

  The session management unit 190 manages a communication session with the provider device 2 and the user device 3. Specifically, the session management unit 190 issues a session ID and stores it in the session information storage unit 192 in association with the connection destination ID of the provider device 2 or the user device 3. The session ID is information for identifying a partner with which the face-to-face control system is communicating at the same time. In the present embodiment, communication with the provider device 2 and the user device 3 is identified by one session ID.

  The history management unit 195 manages the processing history of the face-to-face control server device 1 itself. The history management unit 195 may also manage processing histories reported from the provider device 2 and the user device 3. At that time, the history management unit 195 stores the processing history in the history storage unit 196 in association with the session ID and the provider device 2 or the user device 3 that is the reporter or the face-to-face control server device 1.

The history storage unit 196 is a storage medium such as a hard disk drive or a nonvolatile memory, and stores history information.
The history management unit 195 extracts and presents information satisfying the specified condition from the history stored in the history storage unit 196.

FIG. 6 is a block diagram illustrating a configuration example of the provider device of the face-to-face business system according to the first embodiment of the present invention.
As shown in FIG. 6, the provider device 2 includes a communication unit 201, an authentication control unit 202, an authentication unit 203, a provider certification unit 204, a program storage unit 207, an encryption communication unit 210, a key storage unit 211, and a user invitation. Unit 220, display unit 221, history recording unit 240, and time management unit 250.

The communication unit 201 of the provider device 2 is an interface device that performs transmission / reception processing between the face-to-face control server device 1 and the user device 3.
The authentication control unit 202 controls authentication between the face-to-face control server device 1 and the provider device 2.
The connection destination authentication unit 203 verifies the certificate from the face-to-face control server device 1. Specifically, the connection destination authenticating unit 203 stores a certificate issuer's certificate in the internal memory in advance, and verifies the signature part in the certificate by the issuer based on the certificate. Also, a challenge is generated, transmitted to the facing control server device 1, a response is received from the facing control server device 1, and the response is verified with the certificate of the facing control server device 1.

  The provider certification unit 204 includes an operation unit for the provider to input identification authentication information. The provider certification unit 204 acquires the identification and authentication information of the provider according to the input by the provider, and transmits it to the face-to-face control server device 1.

  The program storage unit 207 is a storage medium such as a hard disk drive or a non-volatile memory, for example, and stores a program for realizing processing of each unit in the provider device 2.

  The user invitation unit 220 provides the user apparatus 3 with user invitation information serving as a means for connecting to the face-to-face control server apparatus 1. The display unit 221 displays user invitation information from the face-to-face control server device 1 as a two-dimensional image. Instead of displaying a two-dimensional image, user invitation information may be transmitted by infrared rays, or user invitation information may be transmitted by Bluetooth (registered trademark).

The user invitation unit 220 causes the history recording unit 240 to record that the process of displaying the two-dimensional image has been performed. The history recording unit 240 records the processing history of the provider device 2. The time management unit 250 maintains and manages the current time.
The encryption communication unit 210 controls encryption communication with the face-to-face control server device 1. The encryption communication unit 210 shares a key with the face-to-face control server device 1 and performs encryption communication using this key.

FIG. 7 is a block diagram illustrating a configuration example of the user device of the face-to-face business system according to the first embodiment of the present invention.
As shown in FIG. 7, the user apparatus 3 includes a communication unit 301, an invitation receiving unit 302, a display unit 303, a program storage unit 304, a connection destination authentication unit 310, a certificate storage unit 320, a signature unit 330, and a key storage unit. 331, an authentication control unit 350, a user certification unit 351, an encryption communication unit 360, a key storage unit 361, a provider identification information verification unit 370, a history recording unit 380, and a time management unit 382.

The communication unit 301 of the user device 3 is an interface device that performs transmission / reception processing between the face-to-face control server device 1 and the provider device 2.
The invitation receiving unit 302 extracts user invitation information from the two-dimensional image displayed by the provider device 2, extracts a nonce from the user invitation information, and transmits it to the face-to-face control server device 1. . The invitation receiving unit 302 includes a photographing device and an operation unit for reading a two-dimensional image. The program storage unit 304 is a storage medium such as a hard disk drive or a non-volatile memory, for example, and stores a program for realizing processing of each unit in the user device 3.

  The authentication control unit 350 performs an authentication process between the user device 3 and the face-to-face control server device 1. The connection destination authentication unit 310 verifies the validity of the certificate from the face-to-face control server device 1. Specifically, the connection destination authenticating unit 310 stores a certificate issuer's certificate in the internal memory in advance, and verifies the signature unit in the certificate by the issuer based on the certificate. The connection destination authentication unit 310 generates a challenge, transmits it to the meeting control server apparatus 1, receives a response from the meeting control server apparatus 1, and proves the meeting control server apparatus 1 that has received the received response from the meeting control server apparatus 1. Verify by certificate.

The certificate storage unit 320 is a storage medium such as a hard disk drive or a non-volatile memory, and stores a certificate issued to the user.
The user certification unit 351 transmits the user certificate stored in the certificate storage unit 320 to the face-to-face control server apparatus 1, and in response to the challenge sent from the face-to-face control server apparatus 1, the signing section 330. A response is generated and sent to the face-to-face control server apparatus 1 to prove the validity of the user to the face-to-face control server apparatus 1.

  The key storage unit 331 is a storage medium such as a hard disk drive or a non-volatile memory, and stores a secret key that is paired with a public key described in a certificate issued to the user. In addition, the signature unit 330 generates a response to the given challenge.

The provider identification information verification unit 370 verifies the consistency between the provider identification information acquired from the face-to-face control server device 1 and the provider identification information acquired from the provider identification medium 4.
The encryption communication unit 360 controls encryption communication with the face-to-face control server device 1. Moreover, the encryption communication part 360 shares a key with the facing control server apparatus 1, and performs encryption communication with this key.
The history recording unit 380 records the processing history of the user device 3. The time management unit 382 maintains and manages the current time.

FIG. 8 is a diagram showing an example of the external appearance of the provider identification medium of the face-to-face business system according to the first embodiment of the present invention.
As shown in FIG. 8, the provider identification medium 4 has a two-dimensional code 4a. FIG. 9 is a diagram showing an example of the content of the two-dimensional code of the provider identification medium of the face-to-face business system according to the first embodiment of the present invention. The signature is a signature of the service provider, and is generated using a secret key stored in the key storage unit 122 of the meeting control server device 1. The subject of the signature is the affiliation, name, and employee number. Note that the private key stored in the key storage unit 122 may not be used if the signature is a signature that is clearly proved by the service provider.

  Hereinafter, processing of the face-to-face business system having such a configuration will be described. FIG. 10 is a flowchart showing an example of authentication processing between the face-to-face business server device and the provider device of the face-to-face business system according to the first embodiment of the present invention.

  First, as advance preparation, the service provider generates a public key and a private key of the face-to-face control server device 1 in advance, and has the CA 5 issue a certificate to the public key. This certificate is stored in the certificate storage unit 121 of the meeting control server device 1. The secret key is stored in the key storage unit 122. At this time, the portion of the target person in the certificate of the format shown in FIG. 5 becomes the identifier of the service provider.

  The service provider registers the identification information of the provider in the provider information storage unit 112 of the face-to-face control server device 1 in advance. In the example illustrated in FIG. 3, provider information for two persons is registered in the provider information storage unit 112.

  After information based on the information registered in the provider information storage unit 112 is stored in the provider identification medium 4, the provider identification medium 4 is distributed to the provider. The provider device 2 is also distributed to the provider.

  The user generates a public key and a private key of the user in advance, and asks the CA 5 to issue a certificate for the public key. This certificate is stored in the certificate storage unit 320 of the user device 3. The secret key is stored in the key storage unit 331.

Next, a process in which the provider authenticates the face-to-face control server device 1 will be described.
First, the authentication control unit 202 of the provider device 2 transmits a connection destination authentication request signal including the connection destination ID of the provider device 2 to the facing control server device 1 via the communication unit 201 (step S1).

  When the communication unit 101 of the face-to-face control server device 1 receives the authentication request signal from the provider device 2, the session management unit 190 starts managing a session with the provider device 2. Specifically, the session management unit 190 issues a session ID and stores it in the session information storage unit 192 in association with the connection destination ID of the provider device 2 (step S2). Hereinafter, it is assumed that a session ID is attached to information transmitted / received between devices.

  Next, the certification unit 120 of the facing control server device 1 reads the certificate from the certificate storage unit 121. The provider authentication control unit 110 transmits this certificate to the provider device 2 via the communication unit 101 (step S3).

  When the communication unit 201 of the provider device 2 receives the certificate from the face-to-face control server device 1, the authentication control unit 202 instructs the connection destination authentication unit 203 to verify the certificate. The connection destination authentication unit 203 verifies the validity of the certificate from the face-to-face control server device 1 (step S4).

  The connection destination authentication unit 203 generates a challenge if the certificate is valid. The authentication control unit 202 transmits the generated challenge to the facing control server device 1 via the communication unit 201 (step S5).

  When the communication unit 101 of the face-to-face control server device 1 receives a challenge from the provider device 2 (step S6), the provider authentication control unit 110 generates a response to the challenge in the signature unit 123 via the certification unit 120. Instruct.

  The signature unit 123 generates a response to the challenge from the provider device 2 based on the secret key stored in the key storage unit 122. The certification unit 120 outputs the generated response to the provider authentication control unit 110, and the provider authentication control unit 110 transmits the response to the provider device 2 via the communication unit 101 (step S7).

When the communication unit 201 of the provider device 2 receives the response from the face-to-face control server device 1, the authentication control unit 202 instructs the connection destination authentication unit 203 to verify the response. The connection destination authentication unit 203 verifies the response from the face-to-face control server apparatus 1 using the certificate of the face-to-face control server apparatus 1 acquired earlier (step S8).
This completes the authentication of the face-to-face control server device 1 by the provider.

Next, the authentication of the provider by the facing control server device 1 will be described.
First, when the connection destination authenticating unit 203 verifies the validity of the response, it notifies the authentication control unit 202 of this. Upon receiving the notification from the connection destination authentication unit 203, the authentication control unit 202 causes the display unit 221 to display an input screen for provider identification and authentication information.

FIG. 11 is a diagram showing an example of an input screen for identification / authentication information in the provider device of the face-to-face business system according to the first embodiment of the present invention.
According to this screen, when the provider inputs the ID and password, which are identification and authentication information, in the areas f1 and f2 on the screen, respectively, using the provider certification unit 204, the provider certification unit 204 displays the inputted information. Output to the authentication control unit 202. The authentication control unit 202 transmits this identification and authentication information to the facing control server device 1 via the communication unit 201 (step S9). In this example, the identification authentication information is communicated through a communication path that is not encrypted. However, an encryption communication path may be established prior to identification and authentication.

  When the communication unit 101 of the face-to-face control server device 1 receives the identification authentication information from the provider device 2 (step S10), the provider authentication control unit 110 instructs the provider authentication unit 111 to verify the identification authentication information. . The provider authentication unit 111 verifies the validity of the identification authentication information by confirming whether the identification authentication information from the provider device 2 and the identification authentication information stored in the provider information storage unit 112 are the same. Verification is performed (step S11).

When the identification authentication information is valid, the provider authentication unit 111 outputs the employee number associated with the identification authentication information stored in the provider information storage unit 112 to the provider authentication control unit 110. The provider authentication control unit 110 instructs the session management unit 190 to reflect the employee number in the session information.
The session management unit 190 associates the employee number that received the instruction with the current session ID on the session information database stored in the session information storage unit 192.

  Next, key distribution between the facing control server device 1 and the provider device 2 will be described. Here, a Diffie-Hellman key distribution method is shown, but the present invention is not limited to this method.

First, the encryption communication management unit 170 of the meeting control server device 1 generates a prime number p. Next, the cryptographic communication management unit 170 selects one primitive element g in the remainder group Zp * formed by the entire reversible element of the remainder ring Zp with the prime p of the integer ring Z.
The encryption communication management unit 170 generates a random number x and calculates the following equation (1).

a = g ^ x mod p-1 Formula (1)
The encryption communication management unit 170 transmits the calculated random number a, the prime number p, and the primitive element g to the provider device 2 via the communication unit 101 (step S12). The prime number p and the primitive element g may be made public so that anyone can obtain them.

  When the communication unit 201 of the provider device 2 receives the random number, the prime number p, and the primitive element g from the face-to-face control server device 1 (step S13), the cryptographic communication unit 210 generates a random number y, and the following equation (2 ).

b = g ^ y mod p-1 Formula (2)
The cryptographic communication unit 210 transmits b, which is the calculated random number, to the facing control server device 1 via the communication unit 201 (step S14).
When the communication unit 101 of the face-to-face control server device 1 receives a random number from the provider device 2 (step S15), the encryption communication management unit 170 performs the calculation of the following equation (3).

ka = b ^ x mod p (3)
The encryption communication management unit 170 uses the calculated ka as an encryption key and outputs it to the session management unit 190 (step S18). The session management unit 190 associates this encryption key with the current session ID on the session information database stored in the session information storage unit 192 as the provider encryption communication key.

In addition, the encryption communication unit 210 of the provider device 2 performs the calculation of the following formula (3).
kb = a ^ y mod p (3)
The encryption communication unit 210 stores the calculated kb as an encryption key in the key storage unit 211 (step S16).
These generated ka and kb are always equal. Let it be k.

The encryption communication management unit 170 of the face-to-face control server apparatus 1 starts encryption communication using k as a key (step S19).
Further, the encryption communication unit 210 of the provider device 2 starts encryption communication using k as a key (step S17).

  Next, user invitation processing will be described. FIG. 12 is a flowchart showing an example of communication processing of user invitation information by the face-to-face business system according to the first embodiment of the present invention.

First, the user invitation part 220 of the provider apparatus 2 transmits a user invitation information request signal to the facing control server apparatus 1 via the communication part 201 (step S31).
When the communication unit 101 of the face-to-face control server device 1 receives a request signal from the provider device 2 (step S32), the session management unit 190 notifies the nonce management unit 180 of this. The nonce management unit 180 instructs the nonce generation unit 181 to generate a nonce.

  Then, a nonce generation unit 181 nonce is generated and output to the nonce management unit 180 (step S33). The nonce management unit 180 outputs this nonce to the session management unit 190. When the nonce is input, the session management unit 190 outputs the current time managed by the time management unit 175 together with the nonce as the nonce issuance time.

  When session manager 190 receives the nonce and issue time from nonce manager 180, session manager 190 associates the nonce and issue time information with the currently communicating session ID in the session information database stored in session information storage 192. .

  The session management unit 190 transmits user invitation information including connection destination information and nonce to the provider device 2 via the communication unit 101 (step S34). The connection destination information is connection destination information unique to the face-to-face control server device 1.

  When the communication unit 201 of the provider device 2 receives the user invitation information from the face-to-face control server device 1 (step S35), the user invitation unit 220 confirms the reception and then obtains the two-dimensional code of this information. Generated and displayed on the display unit 221.

FIG. 13 is a diagram showing an example of a display screen of user invitation information in the provider device of the face-to-face business system according to the first embodiment of the present invention.
The invitation receiving unit 302 of the user device 3 acquires the user invitation information by reading the two-dimensional code displayed on the display unit 221 of the provider device 2 while directing the imaging device to be displayed on the display unit 303. (Steps S36, 37). FIG. 14 is a diagram showing an example of a user invitation information display screen in the user device of the face-to-face business system according to the first embodiment of the present invention. The user operates the operation unit of the invitation receiving unit 302 while referring to the display screen, and selects the icon labeled “read” on the screen to read the two-dimensional code. The two-dimensional coding of the user invitation information may be performed by the provider device 2 as described above, or the face-to-face control server device 1 two-dimensionally codes the user invitation information and transmits it to the provider device 2. May be.

  When the invitation receiving unit 302 of the user device 3 acquires the user invitation information, the nonce and the connection destination ID of the user device 3 are given to the face-to-face control server device 1 which is a device corresponding to the connection destination information included in this information. The verification request signal including it is transmitted via the communication unit 301 (step S38).

  When the communication unit 101 of the face-to-face control server device 1 receives a signal from the user device 3 (step S39), the session management unit 190 is included in the database stored in the session information storage unit 192 and the received signal. The nonce is collated, and it is verified whether or not the received nonce exists in the database. When the received nonce exists in the database, the nonce management unit 180 is instructed to determine whether the nonce is valid.

  Then, the nonce management unit 180 acquires the current time managed by the time management unit 175, compares the current time with the issued nonce issued time, and if the current time has not passed 10 seconds from the issuance time. It is determined that the nonce is within the expiration date (step S40). In this way, by setting the nonce validity period to about 10 seconds, a difficult process is realized without facing each other.

  Further, the session management unit 190 associates the connection destination ID of the user device 3 with the current session ID on the session information database stored in the session information storage unit 192.

  Next, the flow of authentication of the face-to-face control server device 1 by the user will be described. FIG. 15 is a flowchart showing an example of authentication processing between the face-to-face business server device and the user device of the face-to-face business system according to the first embodiment of the present invention.

  First, the certification unit 120 of the meeting control server device 1 reads the certificate from the certificate storage unit 121. The user authentication control unit 130 transmits this certificate to the user device 3 via the communication unit 101 (step S51).

  When the communication unit 301 of the user device 3 receives the certificate from the face-to-face control server device 1, the authentication control unit 350 instructs the connection destination authentication unit 310 to verify the certificate. The connection destination authenticating unit 310 verifies the validity of the certificate from the face-to-face control server device 1 (step S52).

  The connection destination authentication unit 310 generates a challenge if the certificate is valid. The connection destination authenticating unit 310 outputs the generated challenge to the authentication control unit 350. The authentication control unit 350 transmits this challenge to the facing control server device 1 via the communication unit 301 (step S53).

  When the communication unit 101 of the face-to-face control server device 1 receives a challenge from the user device 3 (step S54), the user authentication control unit 130 generates a response to the challenge in the signature unit 123 via the certification unit 120. Instruct.

  The signature unit 123 generates a response to the challenge from the user device 3 based on the secret key stored in the key storage unit 122. The certification unit 120 outputs the generated response to the user authentication control unit 130, and the user authentication control unit 130 transmits this response to the user device 3 via the communication unit 101 (step S55).

When the communication unit 301 of the user device 3 receives the response from the face-to-face control server device 1, the authentication control unit 350 instructs the connection destination authentication unit 310 to verify the response. The connection destination authenticating unit 310 verifies the response from the face-to-face control server apparatus 1 using the certificate of the face-to-face control server apparatus 1 acquired earlier (step S56).
This completes the authentication of the face-to-face control server device 1 by the user.

  Next, key distribution between the facing control server device 1 and the user device 3 will be described. First, the encryption communication unit 360 of the user device 3 calculates a random number a in the same procedure as the key distribution between the face-to-face control server device 1 and the provider device 2 described above, and this a is transmitted via the communication unit 301. It transmits to the facing control server apparatus 1 (step S57).

  When the communication unit 101 of the face-to-face control server device 1 receives a random number from the user device 3 (step S58), the cryptographic communication management unit 170 generates a random number y and calculates the random number b according to the above-described equation (2). Then, b is transmitted to the user device 3 via the communication unit 101 (step S59).

  When the communication unit 301 of the user device 3 receives the random number from the face-to-face control server device 1 (step S60), the encryption communication unit 360 calculates ka according to the above-described equation (3), and uses this ka as the encryption key. Is stored in the key storage unit 361 (step S63).

  Further, the encryption communication management unit 170 of the face-to-face control server apparatus 1 calculates kb according to the above-described equation (3), and outputs this kb to the session management unit 190 as an encryption key (step S61). The session management unit 190 associates this encryption key with the current session ID on the session information database stored in the session information storage unit 192 as the user encryption communication key.

The encryption communication management unit 170 of the face-to-face control server device 1 starts encryption communication using k as a key (step S62).
Also, the encryption communication unit 360 of the user device 3 starts encryption communication using k as a key (step S64).

  Next, the flow of user authentication processing will be described. FIG. 16 is a flowchart showing an example of the provider identification information communication process by the face-to-face business system according to the first embodiment of the present invention.

  First, a process in which a user authenticates a provider will be described. The session management unit 190 of the face-to-face control server device 1 reads out the employee number associated with the session ID of the current communication stored in the session information storage unit 192 and notifies the provider authentication control unit 110 of the employee number. Then, the provider authentication control unit 110 instructs the user authentication control unit 130 to read the provider information corresponding to the employee number.

  Then, the user authentication control unit 130 instructs the provider information providing unit 140 to acquire provider information. Then, the provider information providing unit 140 reads out the information on the affiliation, name, telephone number, and face photograph associated with the employee number on the provider information database stored in the provider information storage unit 112, together with the employee number. The data is output to the user authentication control unit 130. The user authentication control unit 130 transmits these pieces of information as provider identification information to the user device 3 via the communication unit 101 (step S71).

  When the communication unit 301 of the user device 3 receives the provider identification information from the face-to-face control server device 1 (step S72), the invitation receiving unit 302 receives the employee number, affiliation, name, telephone number, and face photo. Is displayed on the display unit 303. In addition, the provider identification information verification unit 370 holds the received provider identification information in the internal memory.

FIG. 17 is a diagram showing an example of a display screen of provider identification information in the user device of the face-to-face business system according to the first embodiment of the present invention.
Here, it is assumed that the user requests the provider to present the provider identification medium 4.
The invitation receiving unit 302 of the user device 3 reads the two-dimensional code attached to the provider identification medium 4 (Step S73).

  The provider identification information verification unit 370 verifies the signature attached to the read two-dimensional code. Next, the provider is confirmed by collating the affiliation, name, and employee number corresponding to this signature with the provider identification information received from the face-to-face control server device 1 as described above (step S74). Also, the provider identification information verification unit 370 displays the read information on the display unit 303, so that the user can visually confirm the provider.

  Next, the process in which the face-to-face control server device 1 authenticates the user will be described. First, the user certification unit 351 of the user device 3 reads the user certificate from the certificate storage unit 320. The user certification unit 351 outputs this certificate to the authentication control unit 350. The authentication control unit 350 transmits this certificate to the facing control server device 1 via the communication unit 301 (step S75).

  When the communication unit 101 of the face-to-face control server device 1 receives the certificate from the user device 3, the user authentication control unit 130 instructs the user authentication unit 150 to verify the certificate. The user authentication unit 150 verifies the validity of the certificate from the user device 3 (step S76).

  If the certificate is valid, the user authentication unit 150 generates a challenge. The user authentication control unit 130 transmits the generated challenge to the user device 3 via the communication unit 101 (step S77).

  When the communication unit 301 of the user device 3 receives the challenge from the face-to-face control server device 1 (step S78), the authentication control unit 350 generates a response to the challenge in the signature unit 330 via the user certification unit 351. Instruct.

  The signature unit 330 generates a response to the challenge from the face-to-face control server device 1 based on the secret key stored in the key storage unit 331. The user certification unit 351 outputs the generated response to the authentication control unit 350, and the authentication control unit 350 transmits the response to the facing control server device 1 via the communication unit 301 (step S79).

  When the communication unit 101 of the face-to-face control server device 1 receives a response from the user device 3, the user authentication control unit 130 instructs the user authentication unit 150 to verify the response. The user authentication unit 150 verifies the response from the user device 3 based on the already received user certificate (step S80). This completes the user authentication by the face-to-face control server device 1.

  As described above, in the face-to-face business system according to the first embodiment of the present invention, the face-to-face control server device 1 generates a nonce according to an instruction from the provider device 2, transmits it to the provider device 2, and provides it. The person apparatus 2 transmits this nonce to the user apparatus 3 by short-range communication, and when the user apparatus transmits this nonce to the meeting control server apparatus 1, the meeting control server apparatus 1 receives the generated nonce. Match nonces. As a result, it is possible to correctly confirm that the service provider and the user have faced each other.

  In this embodiment, it has been described that the provider device 2 and the provider identification medium 4 are different from each other. However, the provider device 2 and the provider identification medium 4 are attached by attaching a two-dimensional code to the provider device 2. May be integrated.

(Second Embodiment)
Next, a second embodiment of the present invention will be described. In addition, description of the structure similar to the structure demonstrated in 1st Embodiment among the structures of the system which concerns on this embodiment is abbreviate | omitted.
FIG. 18 is a block diagram illustrating a configuration example of the provider device of the face-to-face business system according to the second embodiment of the present invention.

  The face-to-face control system according to the second embodiment of the present invention has a provider device 2b instead of the provider device 2. As shown in FIG. 18, the provider device 2b includes a provider certification unit 204b instead of the provider certification unit 204 provided in the provider device 2, and further includes a signature unit 205 and a key storage unit 206. The key storage unit 206 stores the provider secret key.

FIG. 19 is a diagram showing an example of the storage contents of the storage unit of the server device of the face-to-face business system according to the second embodiment of the present invention.
In the second embodiment, the face-to-face control server device 1 includes a storage unit 112b instead of the provider information storage unit 112. The storage unit 112b includes a certificate repository in addition to the provider information database stored in the provider information storage unit 112. The certificate repository stores the provider's certificate. In the provider information database, certificate IDs are managed instead of passwords.

  In the first embodiment, as shown in FIGS. 5 and 6, the authentication processing of the facing control server device 1 by the user and the authentication processing of the user by the facing control server device 1 are performed separately. In this embodiment, as will be described below, these processes can be performed with a small number of communications.

  In the first embodiment, the ID and password are used for authentication of the provider by the face-to-face control server device 1, but in the second embodiment, the face-to-face is provided using a provider private key instead of the ID and password. The control server device 1 authenticates the provider.

  Next, the authentication process of the face-to-face control server apparatus 1 by the user and the user authentication process by the face-to-face control server apparatus 1 will be described. FIG. 20 is a flowchart showing an example between various devices of the face-to-face business system according to the second embodiment of the present invention.

  First, the authentication control unit 350 of the user device 3 transmits a connection destination authentication request signal including the connection destination ID of the user device 3 to the facing control server device 1 via the communication unit 301 (step S91).

  When the communication unit 101 of the face-to-face control server device 1 receives the authentication request signal from the user device 3, the session management unit 190 starts managing a session with the user device 3. Specifically, the session management unit 190 issues a session ID and stores it in the session information storage unit 192 in association with the connection destination ID of the user device 3 (step S92).

Next, the session management unit 190 of the face-to-face control server apparatus 1 instructs the user authentication control unit 130 to transmit a certificate and a challenge. Then, the user authentication control unit 130 instructs the certification unit 120 to read the certificate, and instructs the user authentication unit 150 to generate a challenge.
Then, the certification unit 120 reads the certificate from the certificate storage unit 121. The user authentication unit 150 generates a challenge.

  The user authentication control unit 130 transmits the certificate read by the certification unit 120 and the challenge generated by the user authentication unit 150 to the user device 3 via the communication unit 101 (step S93). In FIG. 20, a certificate issued to the face-to-face control server apparatus 1 is denoted as “certificate (sa)”, and a challenge generated by the face-to-face control server apparatus 1 is denoted as “challenge (sa)”. Yes.

  When the communication unit 301 of the user device 3 receives the certificate or challenge from the face-to-face control server device 1 (step S94), the authentication control unit 350 instructs the connection destination authentication unit 310 to verify the certificate. The connection destination authenticating unit 310 verifies the validity of the certificate from the face-to-face control server device 1 (step S95).

  The connection destination authentication unit 310 notifies the authentication control unit 350 that the certificate is valid. Then, the authentication control unit 350 instructs the signature unit 330 to generate a response to the challenge from the face-to-face control server device 1 via the user certification unit 351 and instructs the user certification unit 351 to read out the user certificate. .

The signature unit 330 generates a response to the challenge from the face-to-face control server device 1 based on the secret key stored in the key storage unit 331 (step S96). The user certification unit 351 outputs the generated response to the authentication control unit 350.
Further, if the certificate is valid, the connection destination authenticating unit 310 generates a challenge and outputs it to the authentication control unit 350 (step S97).

  In addition, the user certification unit 351 reads the user certificate from the certificate storage unit 320 and outputs this certificate to the authentication control unit 350. The authentication control unit 350 transmits the read certificate, the generated response, and the challenge to the facing control server device 1 via the communication unit 301 (Step S98). In FIG. 20, a certificate issued to the user device 3 is denoted as “certificate (right)”, a challenge generated by the user device 3 is denoted as “challenge (right)”, and the user The response generated by the device 3 is described as “response (profit)”.

  When the communication unit 101 of the face-to-face control server device 1 receives the certificate, challenge, and response from the user device 3 (step S99), the user authentication control unit 130 verifies the certificate and response for user authentication. The unit 150 is instructed. The user authentication unit 150 verifies the validity of the certificate from the user device 3 (step S100).

In addition, the user authentication unit 150 performs response verification based on the verified certificate simultaneously with (or before and after) verification of the certificate.
The user authentication control unit 130 instructs the signature unit 123 to generate a response to the challenge from the user device 3 via the certification unit 120.

  The signature unit 123 generates a response to the challenge from the user device 3 based on the secret key stored in the key storage unit 122 (step S101). The certification unit 120 outputs the generated response to the user authentication control unit 130.

  When the user authentication control unit 130 inputs the response, the user authentication control unit 130 instructs the encryption communication management unit 170 to generate the encryption communication key via the session management unit 190. The communication key here is a common key such as Triple DES.

  The encryption communication management unit 170 generates a communication key. The encryption communication management unit 170 stores the public key of the user device 3 in the internal memory, encrypts the generated communication key using the public key of the user device 3, and outputs the encrypted communication key to the user authentication control unit 130. (Steps S102, 103). The user authentication control unit 130 transmits the generated response and communication key to the user device 3 via the communication unit 101 (step S104). In FIG. 20, “response (service)” generated by the response from the meeting control server device 1 is described.

  When the communication unit 301 of the user device 3 receives the response or communication key from the face-to-face control server device 1 (step S105), the authentication control unit 350 instructs the connection destination authentication unit 310 to verify the response, and performs communication. The authentication control unit 350 is instructed to decrypt the key.

  The connection destination authentication unit 310 verifies the response from the face-to-face control server device 1. Further, the authentication control unit 350 instructs the signature unit 330 to decrypt the encrypted communication key from the face-to-face control server device 1 via the user certification unit 351. The signature unit 330 decrypts the encrypted communication key from the face-to-face control server device 1 using the secret key stored in the key storage unit 331, and decrypts the encrypted communication key via the user certification unit 351 and the authentication control unit 350. 360 (step S106).

  The encryption communication unit 360 starts encryption communication with the face-to-face control server device 1 using the decrypted communication key (step S108). Further, the encrypted communication management unit 170 of the face-to-face control server apparatus 1 starts encrypted communication using the generated communication key (step S107).

  Further, the processing from step S109 to step S112, which is the authentication process of the provider by the subsequent user shown in FIG. 20, is the same as the processing from step S71 to step S74 described above.

  Next, the authentication process of the facing control server apparatus 1 by the provider and the authentication process of the provider by the facing control server apparatus 1 will be described. FIG. 21 is a flowchart showing an example of authentication processing between the face-to-face business server device and the provider device of the face-to-face business system according to the second embodiment of the present invention.

  First, the authentication control unit 202 of the provider device 2 transmits a connection destination authentication request signal including the connection destination ID of the provider device 2 to the facing control server device 1 via the communication unit 201 (step S121).

  When the communication unit 101 of the face-to-face control server device 1 receives the authentication request signal from the provider device 2, the session management unit 190 starts managing a session with the provider device 2. Specifically, the session management unit 190 issues a session ID and stores it in the session information storage unit 192 in association with the connection destination ID of the provider device 2 (step S122).

Next, the session management unit 190 of the face-to-face control server apparatus 1 instructs the provider authentication control unit 110 to transmit a certificate and a challenge. Then, the provider authentication control unit 110 instructs the certification unit 120 to read the certificate, and instructs the provider authentication unit 111 to generate a challenge.
Then, the certification unit 120 reads the certificate from the certificate storage unit 121. The provider authentication unit 111 generates a challenge.

  The provider authentication control unit 110 transmits the certificate read by the certification unit 120 and the challenge generated by the provider authentication unit 111 to the provider device 2 via the communication unit 101 (step S123).

  When the communication unit 201 of the provider device 2 receives the certificate or challenge from the face-to-face control server device 1 (step S124), the authentication control unit 202 instructs the connection destination authentication unit 203 to verify the certificate. The connection destination authentication unit 203 verifies the validity of the certificate from the face-to-face control server device 1 (step S125).

  The connection destination authenticating unit 203 notifies the authentication control unit 202 that the certificate is valid. Then, the authentication control unit 202 instructs the signature unit 205 to generate a response to the challenge from the face-to-face control server device 1 via the provider certification unit 204b, and instructs the provider certification unit 204b to read the provider certificate. .

The signature unit 205 generates a response to the challenge from the face-to-face control server device 1 based on the secret key stored in the key storage unit 206 (step S126). The provider certification unit 204b outputs the generated response to the authentication control unit 202.
Further, if the certificate and the response are valid, the connection destination authenticating unit 203 generates a challenge and outputs it to the authentication control unit 202 (step S127).

  In addition, the provider certification unit 204 b reads the provider certificate stored in the certificate storage unit 230 and outputs this certificate to the authentication control unit 202. The authentication control unit 202 transmits the read certificate, the generated response, and the challenge to the facing control server device 1 via the communication unit 201 (step S128). In FIG. 20, a certificate issued to the provider device 2 is expressed as “certificate (provided)”, a challenge generated by the provider device 2 is expressed as “challenge (provided)”, and the provider The response generated by the device 2 is referred to as “response (proposed)”.

  When the communication unit 101 of the face-to-face control server device 1 receives the certificate, challenge, and response from the provider device 2 (step S129), the provider authentication control unit 110 verifies the certificate and response with provider authentication. The unit 111 is instructed. The provider authentication unit 111 verifies the validity of the certificate from the provider device 2 by collating with the certificate in the certificate repository in the storage unit 112b and the provider information database (step S130). Further, the provider authentication unit 111 verifies the validity of the response from the provider device 2 based on the certificate that has been verified.

The provider authentication control unit 110 instructs the signature unit 123 via the certification unit 120 to generate a response to the challenge from the provider device 2.
The signature unit 123 generates a response to the challenge from the provider device 2 based on the secret key stored in the key storage unit 122 (step S131). The certification unit 120 outputs the generated response to the provider authentication control unit 110.

  When the provider authentication control unit 110 inputs the response, the provider authentication control unit 110 instructs the encryption communication management unit 170 to generate the encryption communication key via the session management unit 190. The communication key here is a common key such as Triple DES.

  The encryption communication management unit 170 generates a communication key. The encrypted communication management unit 170 encrypts the generated communication key using the public key of the provider device 2 (included in the certificate from the provider device 2) and outputs it to the provider authentication control unit 110 (step). S132, 133). The provider authentication control unit 110 transmits the generated response and communication key to the provider device 2 via the communication unit 101 (step S134).

  When the communication unit 201 of the provider device 2 receives the response or communication key from the face-to-face control server device 1 (step S135), the authentication control unit 202 instructs the connection destination authentication unit 203 to verify the response, and performs communication. The authentication control unit 202 is instructed to decrypt the key.

  The connection destination authentication unit 203 verifies the response from the face-to-face control server apparatus 1 based on the certificate of the face-to-face control server apparatus 1 that has already been received. Further, the authentication control unit 202 instructs the signature unit 205 to decrypt the encrypted communication key from the face-to-face control server device 1 via the provider certification unit 204b. The signature unit 205 decrypts the encrypted communication key from the face-to-face control server device 1 using the secret key stored in the key storage unit 206, and decrypts the encrypted communication key via the provider certification unit 204b and the authentication control unit 202. It outputs to 210 (step S136).

  The encryption communication unit 210 starts encryption communication with the face-to-face control server device 1 using the decrypted communication key (step S138). Further, the encrypted communication management unit 170 of the face-to-face control server device 1 starts encrypted communication using the generated communication key (step S137).

  With such a configuration, it is possible to reduce the number of communications necessary for authentication between devices of the face-to-face business system. In addition, since the provider device 2 has a secret key, authentication processing between the face-to-face control server devices 1 can be performed without using an ID or password.

  In the embodiment described above, the provider is authenticated by the face-to-face control server device 1 using an ID and a password or using a secret key. The provider device 2 has a biometric authentication function, and this function is used. May be authenticated.

  Further, in the above-described example, the user invitation information is delivered from the provider device 2 to the user device 3 by the two-dimensional code. A communication line having a length of about a certain length may be used, leaving a trail indicating that the communication line has been used, or may be delivered by near field communication such as infrared communication or Bluetooth.

Further, the face-to-face control server device 1 may continue processing after authentication of the provider and the user, and may record a history of these processing.
Moreover, you may use near field communication and GPS together.
Further, the number of users is not limited to one and may be plural. At this time, the session management unit 190 has a function of managing a plurality of users. The session information storage unit 192 includes a plurality of columns of connection destination IDs (users).

  In addition, programs that can execute the various processes described in the above-described embodiments are written in a recording medium such as a magnetic disk (flexible disk, hard disk, etc.), optical disk (CD-ROM, DVD, etc.), semiconductor memory, etc. The present invention can be applied to an apparatus, or the program itself can be transmitted through a transmission medium such as a network to be applied to various apparatuses. A computer that implements various apparatuses reads a program recorded in a recording medium or a program provided via a transmission medium, and executes various processes by controlling operations by the program.

  The present invention is not limited to the above-described embodiment as it is, and can be embodied by modifying the constituent elements without departing from the scope of the invention in the implementation stage. Various inventions can be formed by appropriately combining a plurality of constituent elements disclosed in the embodiment. For example, some components may be omitted from all the components shown in the embodiment. Furthermore, you may combine suitably the component covering different embodiment.

The block diagram which shows the structural example of the facing business system according to the 1st Embodiment of this invention. The block diagram which shows the structural example of the facing control server apparatus of the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the memory content of the provider information storage part of the facing control server apparatus of the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the memory content of the session information storage part of the facing control server apparatus of the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the certificate memorize | stored in the certificate memory | storage part of the facing control server apparatus of the facing business system according to the 1st Embodiment of this invention. The block diagram which shows the structural example of the provider apparatus of the facing business system according to the 1st Embodiment of this invention. The block diagram which shows the structural example of the user apparatus of the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the general view of the provider identification medium of the face-to-face business system according to the first embodiment of the present invention. The figure which shows an example of the content of the two-dimensional code of the provider identification medium of the face-to-face business system according to the first embodiment of the present invention. The flowchart which shows an example of the authentication process between the facing control server apparatus and provider apparatus of the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the input screen of the identification authentication information in the provider apparatus of the facing business system according to the 1st Embodiment of this invention. The flowchart which shows an example of the communication process of the user invitation information by the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the display screen of the user invitation information in the provider apparatus of the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the display screen of the user invitation information in the user apparatus of the facing business system according to the 1st Embodiment of this invention. The flowchart which shows an example of the authentication process between the facing control server apparatus and user apparatus of the facing business system according to the 1st Embodiment of this invention. The flowchart which shows an example of the communication process of the provider identification information by the facing business system according to the 1st Embodiment of this invention. The figure which shows an example of the display screen of the provider identification information in the user apparatus of the facing business system according to the 1st Embodiment of this invention. The block diagram which shows the structural example of the provider apparatus of the facing business system according to the 2nd Embodiment of this invention. The figure which shows an example of the memory content of the memory | storage part of the server apparatus of the facing business system according to the 2nd Embodiment of this invention. The flowchart which shows an example between the various apparatuses of the facing business system according to the 2nd Embodiment of this invention. The flowchart which shows an example of the authentication process between the facing control server apparatus and provider apparatus of the facing business system according to the 2nd Embodiment of this invention.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 1 ... Meeting control server apparatus, 2, 2b ... Provider apparatus, 3 ... User apparatus, 4 ... Provider identification apparatus, 4a ... Two-dimensional code, 5 ... CA, 10a, 10b ... Communication network, 20, 30 ... Short-distance communication path 101, 201, 301 ... communication unit, 102, 207, 304 ... program storage unit, 110 ... provider authentication control unit, 111 ... provider authentication unit, 112 ... provider information storage unit, 120 ... proof 121, 230, 320 ... certificate storage unit, 122, 206, 211, 331, 361 ... key storage unit, 123, 330 ... signature unit, 130 ... user authentication control unit, 140 ... provider information providing unit, DESCRIPTION OF SYMBOLS 150 ... User authentication part, 170 ... Encryption communication management part, 175, 250, 382 ... Time management part, 180 ... Nonce management part, 181 ... Nonce generation part, 190 ... Session management part, 192 ... Session information Storage unit, 195 ... History management unit, 196 ... History storage unit, 202, 350 ... Authentication control unit, 203, 310 ... Connection destination authentication unit, 204, 204b ... Provider certification unit, 205 ... Certification unit, 210, 360 ... Encryption communication unit, 220 ... user invitation unit, 221, 303 ... display unit, 240, 380 ... history recording unit, 302 ... invitation reception unit, 351 ... user certification unit, 370 ... provider identification information verification unit.

Claims (9)

A system comprising a server device, a provider terminal device for use by a service provider, a user terminal device for use by a service user, and a provider certification device for use by the service provider,
The server device
Generating means for generating in-person verification information between the service provider and the service user according to a request from the provider terminal device;
First transmitting means for transmitting the verification information generated by the generating means to the provider terminal device;
Receiving means for receiving verification information transmitted from the user terminal device;
Collating means for collating the verification information received by the receiving means with the verification information generated by the generating means;
Storage means for storing identification information of the service provider;
Second transmission means for transmitting the identification information stored in the storage means to the user terminal device;
The provider terminal device
Request means for requesting the server device to generate the verification information;
Receiving means for receiving verification information transmitted from the server device;
Transmission means for transmitting the verification information received by the reception means to the user terminal device by short-range communication,
The user terminal device
First receiving means for receiving information transmitted from the provider terminal device by short-range communication;
Transmitting means for transmitting the verification information received by the first receiving means to the server device;
Second receiving means for receiving identification information transmitted from the server device;
Third receiving means for receiving the identification information transmitted from the provider certification device after reception by the second receiving means;
Collating means for collating the identification information received by the second receiving means with the identification information received by the third receiving means;
The provider proof device
Storage means for storing identification information of the service provider;
A communication system comprising: transmission means for transmitting identification information stored in the storage means to the user terminal device by short-range communication. Generating means for generating in-person verification information between the service provider and the service user according to a request from a provider terminal device for use by the service provider;
Transmitting means for transmitting the verification information generated by the generating means to the provider terminal device;
The provider terminal device receives the verification information transmitted by the transmission means, transmits the received information to the user terminal device for use by the service user by short-range communication, and uses the information Receiving means for receiving the verification information transmitted after the provider terminal device has received the verification information transmitted from the provider terminal device;
A server apparatus comprising: a verification unit that collates verification information received by the reception unit with verification information generated by the generation unit. Request means for requesting the server device to generate and transmit information for verification between the service provider and the service user,
Receiving means for receiving verification information transmitted from the server device in accordance with a request by the request means;
Information received by the user terminal device for use by the service user and transmitted to the server device as verification information with the verification information generated by the server device. A communication unit comprising: a transmission unit configured to transmit the information received by the reception unit to the user terminal device through short-range communication; and the device for use by the service provider. Request means for requesting the server device to generate and transmit information for verification between the service provider and the service user,
Receiving means for receiving verification information transmitted from the server device in accordance with a request by the request means;
Information received by the user terminal device for use by the service user and transmitted to the server device as verification information with the verification information generated by the server device. First transmitting means for transmitting information received by the receiving means to the user terminal device by near field communication;
Storage means for storing provider identification information;
Second transmission means for transmitting the provider identification information stored in the storage means to the user terminal device as information for the user terminal device to collate with the provider identification information transmitted from the server device. And a communication device characterized in that the communication device is used by a service provider. In accordance with a request from the provider terminal device for use by the service provider, the server device generates verification information for meeting the service provider and the service user, and transmits the information to the provider terminal device. Receiving means for receiving this information from the provider terminal device by short-range communication when the provider terminal device receives the information,
As a verification information with the verification information generated by the server apparatus, the apparatus includes a transmission means for transmitting the verification information received by the reception means to the server apparatus, and is used by a service user. A communication device characterized by the above. Storage means for storing provider identification information which is identification information of the service provider;
The identification information stored in the storage means is used as information received by the user terminal device possessed by the service user for verification with the provider identification information transmitted from the server device storing the provider identification information. A communication device comprising a transmission means for transmitting to a service provider terminal device and used by a service provider. The server apparatus of a system having a server apparatus, a provider terminal apparatus for use by a service provider, a user terminal apparatus for use by a service user, and a provider certification apparatus for use by the service provider A program for controlling a computer of
The computer,
Generating means for generating in-person verification information between the service provider and the service user in accordance with a request from the provider terminal device;
Transmitting means for transmitting the verification information generated by the generating means to the provider terminal device;
The provider terminal device receives the verification information transmitted by the transmitting means, transmits the received information to the user terminal device by short-range communication, and the user terminal device transmits the provider terminal. Receiving means for receiving the verification information transmitted after receiving the verification information transmitted from the apparatus, and collating means for collating the verification information received by the receiving means with the verification information generated by the generating means A computer-readable communication processing program that functions as a computer. The provider of a system having a server device, a provider terminal device for use by a service provider, a user terminal device for use by a service user, and a provider certification device for use by the service provider A program for controlling a computer of an apparatus,
The computer,
Request means for requesting the server device to generate and transmit verification information for the face-to-face contact between the service provider and the service user;
Receiving means for receiving verification information transmitted from the server device in accordance with a request from the requesting means; and verification information generated by the server device received by the user terminal device and received by the server device As information to be transmitted to the server device as information for collation with the computer, the information received by the receiving unit is made to function as a transmitting unit that transmits to the user terminal device by short-range communication. Communication processing program. The user of the system having a server device, a provider terminal device for use by a service provider, a user terminal device for use by a service user, and a provider certification device for use by the service provider A program for controlling a computer of an apparatus,
The computer,
In accordance with a request from the provider terminal device, the server device generates verification information for meeting the service provider and the service user and transmits the information to the provider terminal device, and the transmitted information is provided to the provider terminal device. A receiving means for receiving this information from the provider terminal apparatus by short-range communication when received by the subscriber terminal apparatus, and the verification received by the receiving means as verification information with the verification information generated by the server apparatus A computer-readable communication processing program that functions as transmission means for transmitting information to the server device.

Images