JP2023025738A - Payment terminal and payment system - Google Patents

Abstract

[Problem] To provide a payment terminal for a payment system that provides high security for cashless payment information and that can issue a payment statement at a relatively low cost and without hassle. [Solution] The payment terminal includes a payment information reader for receiving cashless payment information, a communication module that connects to the payment information reader and transmits and receives information via the Internet, and a contactless notifier that is configured to transmit or display payment statement information to a customer terminal, the communication module is configured to connect to an automatic settlement machine and receive sales information including the sales price from the automatic settlement machine, the communication module is configured to transmit the cashless payment information and the sales information to an external party via the Internet, and the communication module is configured to receive payment statement information from an external party via the Internet. [Selected Figure] Figure 2

Description

The present invention relates to a payment terminal for cashless payment of the sales price of an automatic payment machine. The present invention also relates to a payment system comprising the payment terminal.

In patent document 1, when paying by card for travel, mail-order sales, and other telephone reservations, reservation receiving means such as a reservation recipient who accepts the reservation of the reservation sender, and information necessary for card payment are sent to the card company. A card reservation/settlement system by telephone reception is described, which is characterized by comprising means for transmitting card information to be transmitted, means for matching and replying to a card company, and means for completing a reservation.

Patent document 2 discloses a portable online payment assistance device that authenticates the identity of a contractor using a one-time password, and enables online commerce transactions based on payment using identification information when the identity is confirmed. Are listed.

Patent Literature 3 describes the use of tokenization in the card transaction service management server.

Patent Literature 4 describes a payment system for paying the sales price of a store with a credit card. Specifically, Patent Document 4 describes that a payment system includes an information input encryption device, a communication module, a payment server, a key management server, and a payment information storage device. In addition, Patent Document 4 discloses that an information input encryption device has a function of encrypting credit card information and converts it into encrypted credit card information, and that a payment server issues a token corresponding to the credit card information. It is stated that

WO2004/104882 JP 2008-15924 A JP 2018-14088 A JP 2019-149075 A

2. Description of the Related Art In recent years, stores such as convenience stores and supermarkets are introducing automatic payment machines such as toll payment machines due to labor shortages. In addition, in automatic payment machines such as toll payment machines, payment by cashless payment means is being introduced because it saves the trouble of handling cash. Automatic payment machines generally issue a printed paper payment statement (for example, a receipt) as proof of receipt of charges. Note that many automatic payment machines, such as beverage vending machines, do not issue payment statements for small-value payments.

Moreover, in recent years, in order to improve the security of cashless payment information, there has been a demand for non-retention of cashless payment information at stores. Non-retention of cashless payment information at retailers means that the retailer or a device under the management of the retailer does not directly make payments by credit card, does not transmit cashless payment information, and does not transmit cashless payment information. means not to store.

PCI DSS (Payment Card Industry Data Security Standard), which is a security standard for credit cards, has been proposed for non-retention of cashless payment information. However, since PCI DSS has many requirements, when dealers try to introduce PCI DSS, the load is very heavy and the cost for introduction is high.

When an employee of a company purchases an article, it is common to show the company's accountant a receipt and a payment statement such as a receipt to settle the account. Therefore, there are many customers who need to issue payment statements. However, in order to issue paper statements, it is necessary to install a printer and a cartridge of payment statement paper in an automatic payment machine, such as a toll machine. Installation of the printer requires space and the cost of installation increases the cost of the toll dispenser. Further, when the payment statement paper runs out, it takes time and effort to replace the payment statement paper cartridge. So, for example, it is common for beverage vending machines not to accept payment statements. When an employee of a company uses an automatic payment machine such as a vending machine, a statement of payment is not issued, which may hinder payment in the company.

Therefore, the present invention provides a payment system with high security for cashless payment information that can be made non-retainable for cashless payment information in automatic payment machines. The purpose is to provide a settlement system that can issue Another object of the present invention is to provide a payment terminal that can be used in the above payment system.

In order to solve the above problems, the present invention has the following configurations.

(Configuration 1)
Configuration 1 of the present invention is a payment terminal for cashless payment of the sales price of an automatic payment machine,
payment terminal
a payment information reader for receiving cashless payment information;
a communication module for connecting to a payment information reader and transmitting/receiving information via the Internet;
a contactless notifier configured to transmit or display payment statement information to a customer terminal;
including
a communication module configured to connect to the automatic payment machine and receive sales information including the sales price from the automatic payment machine;
the communication module is configured to transmit cashless payment information and sales information to the outside via the Internet;
The communication module is a payment terminal configured to externally receive payment statement information via the Internet.

According to the configuration 1 of the present invention, in a payment system with high security of cashless payment information that can make cashless payment information non-retainable in an automatic payment machine, it is relatively low cost and easy It is possible to obtain a payment terminal that can be used in a payment system that can issue payment statements.

(Configuration 2)
In configuration 2 of the present invention, the payment terminal further includes an information encryption device connected to the payment information reader,
The information encryption device has a function of encrypting the received cashless payment information and converting it into encrypted cashless payment information,
a communication module connecting to the information encryption device and receiving encrypted cashless payment information from the information encryption device;
The payment terminal of Configuration 1, wherein the cashless payment information that the communication module transmits to the outside via the Internet is encrypted cashless payment information.

According to configuration 2 of the present invention, it is possible to obtain a payment terminal capable of highly secure payment by encrypting cashless payment information.

(Composition 3)
Configuration 3 of the present invention is a payment system for cashless payment of the sales price of an automatic payment machine,
a payment terminal of configuration 1;
a payment server connected to a communication module via the Internet;
a payment information storage device connected to a payment server;
including
the communication module is configured to transmit sales information including the sales price to the settlement server;
A payment system wherein a payment server is configured to issue an electronic payment statement and transmit payment statement information corresponding to the electronic payment statement to the communication module.

According to the configuration 3 of the present invention, in a payment system (a payment system with high security of cashless payment information) in which the automatic payment machine 10 can make the cashless payment information non-retainable, it is relatively low cost and time-consuming. It is possible to obtain a settlement system that can issue a payment statement without taking any time.

(Composition 4)
Configuration 4 of the present invention is the payment system of configuration 3, wherein the payment statement information is a URL (Uniform Resource Locator) corresponding to the electronic payment statement.

According to the configuration 4 of the present invention, an automatic payment machine having a payment system capable of non-retaining cashless payment information does not have a printer for issuing payment statements and a cartridge for payment statement paper. payment statements can be issued as electronic payment statements.

(Composition 5)
Configuration 5 of the present invention is the payment system of configuration 3 or 4, wherein the payment system further comprises a token service provider, the token service provider having a token server.

According to configuration 5 of the present invention, it is possible to obtain a safer payment system by using a token when paying by credit card or the like.

(Composition 6)
In configuration 6 of the present invention, the payment terminal further includes an information encryption device connected to the payment information reader,
The information encryption device has a function of encrypting the received cashless payment information and converting it into encrypted cashless payment information,
a communication module connecting to the information encryption device and receiving encrypted cashless payment information from the information encryption device;
6. The payment system according to any one of configurations 3 to 5, wherein the cashless payment information that the communication module transmits to the outside via the Internet is encrypted cashless payment information.

According to the configuration 6 of the present invention, by encrypting the cashless payment information, it is possible to obtain a payment system capable of highly secure payment.

(Composition 7)
In configuration 7 of the present invention, the payment system further includes a key management server that connects with the payment server,
The payment system of configuration 6, wherein the key management server decrypts the encrypted cashless payment information and converts the encrypted cashless payment information into cashless payment information.

According to configuration 7 of the present invention, since the payment system has the key management server, the encrypted cashless payment information can be decrypted and converted into cashless payment information.

(Composition 8)
In configuration 8 of the present invention, after the information encryption device encrypts the input cashless payment information, it does not transmit the pre-encrypted cashless payment information to the outside of the information encryption device. 8. The payment system of configuration 6 or 7, wherein the payment system is configured to clear the cashless payment information of the

According to the configuration 8 of the present invention, the information encryption device encrypts the input cashless payment information by a predetermined operation and deletes the cashless payment information before encryption, thereby enabling the automatic payment machine to: Non-holding of cashless payment information can be achieved at relatively low cost.

(Composition 9)
Configuration 9 of the present invention is the payment system according to any one of configurations 6 to 8, wherein the information encryption device satisfies PCIPTS (Payment Card Industry Pin Transaction Security) SRED (Secure Reading and Exchange of Data) requirements.

According to configuration 9 of the present invention, the encryption of cashless payment information satisfies the SRED requirements, so that non-holding of cashless payment information in automatic payment machines can be ensured.

(Configuration 10)
Configuration 10 of the present invention is the payment system according to any one of configurations 6 to 9, wherein encryption of cashless payment information by the information encryption device is performed by a key management protocol based on DUKPT (Derived Unique Key Per Transaction). .

According to configuration 10 of the present invention, encryption of cashless payment information by the information encryption device is performed by a key management protocol based on DUKPT, so that encrypted cashless payment information can be transmitted and received with higher security. can be done.

According to the present invention, in a payment system with high security of cashless payment information that can be made non-holding of cashless payment information in an automatic payment machine, a payment statement can be issued at a relatively low cost and without much effort. It is possible to provide a settlement system that can issue Further, it is possible to provide a payment terminal that can be used in the above payment system.

1 is a configuration diagram showing an example of the configuration of the settlement system of the present invention and the connection of the settlement system with the outside; FIG. 1 is a configuration diagram showing an example of the configuration of an automatic payment machine equipped with a payment terminal that can be used in the payment system of the present invention, and an example of connection between the automatic payment machine and the outside. FIG. 4 is a flow diagram showing an example of a payment procedure by the payment system of Embodiment 1. FIG. It is a flowchart which shows an example of the procedure which issues a statement of payment by the payment system of this invention. FIG. 4 is a configuration diagram showing another example of the configuration of the settlement system of the present invention and the connection of the settlement system with the outside; FIG. 4 is a configuration diagram showing yet another example of the configuration of the settlement system of the present invention and the connection of the settlement system with the outside. FIG. 3 is a flow chart showing an example of the operation for issuing a token by the settlement system shown in FIGS. 5 and 2, and is a flow chart mainly showing procedures of an automatic payment machine; FIG. FIG. 3 is a flow chart showing an example of the operation for issuing a token by the payment system shown in FIGS. 5 and 2, and is a flow chart showing procedures outside the automatic payment machine. FIG. 3 is a flow chart showing an example of the operation for making a payment using a token by the payment system shown in FIGS. 5 and 2, and mainly showing the procedure of an automatic payment machine; FIG. FIG. 3 is a flow diagram showing an example of the operation for making a payment using a token by the payment system shown in FIGS. 5 and 2, and is a flow diagram showing a procedure outside the automatic payment machine; FIG.

Hereinafter, embodiments of the present invention will be specifically described with reference to the drawings. It should be noted that the following embodiments are modes for embodying the present invention, and are not intended to limit the scope of the present invention.

In this specification, the phrase "device A connects to device B" means that when at least information transmission and reception is required between device A and device B via wired or wireless information communication means including the Internet, It means that the device A and the device B are connected so that they can transmit and receive information to each other. In addition, "the device A connects to the device B" means that the device A and the device B can mutually transmit and receive information via the device C which is another device between the device A and the device B. including being connected as

FIG. 1 is a configuration diagram showing an example of the configuration of an embodiment of the payment system of this embodiment. The settlement system of the present embodiment is a settlement system for cashless settlement of the sales price of the automatic payment machine 10 .

As shown in FIG. 1, the payment system of this embodiment includes at least a payment terminal 20, a payment server 32, and a payment information storage device . According to the present embodiment, it is possible to obtain a payment system that can issue a payment statement at a relatively low cost and without much effort in a payment system with high security for cashless payment information. In addition, in one embodiment of the present embodiment, in a payment system with high security of cashless payment information that can not hold cashless payment information of automatic payment machines, it is relatively low cost and time-consuming. It is possible to obtain a settlement system capable of issuing a payment statement without having to pay. In this specification, "payment statement" means a receipt, receipt, receipt, purchase slip, etc., which indicates that payment has been made for the sale of goods and the provision of services. . The payment statement can be a paper payment statement. Also, the payment statement can be, for example, a PDF file or an electronic form of payment statement displayed based on a predetermined programming language (electronic payment statement).

Devices that constitute the settlement system of the present embodiment will be described below.

<Automatic payment machine 10>
In this specification, the "automatic payment machine 10" is a device for making payment for the sale of goods or the provision of services. An example of the automatic payment machine 10 is a vending machine 50 . As the automatic checkout machine 10, in addition to the automatic checkout machine 50 for beverages and the like, for example, cash registers and automatic checkout devices in stores such as convenience stores and supermarkets, automatic checkout devices in parking lots, and the like can be mentioned. When the automatic fare adjustment machine 10 sells commodities (that is, in the case of the vending machine 50), the automatic fare adjustment machine 10 has a function of selling commodities and a function of receiving payment. Also, in this specification, the vending machine 50 includes a device used for settlement of fees when providing services. The settlement system of this embodiment is the settlement system of the automatic payment machine 10 .

The automatic payment machine 10 including the predetermined payment terminal 20 can be a payment terminal (eg, a CCT terminal) such as those found in stores. Further, the automatic payment machine 10 may or may not be attached with a printer for printing receipts.

It should be noted that in the description of the embodiment of the present invention and the description of the example below, the payment system of the present embodiment will be described with an example in which the vending machine 50 is used as the automatic payment machine 10 .

In the payment system of the embodiment shown in FIG. 1, the vending machine 50 (automatic payment machine 10) receives an order from the customer 60. In the payment system shown in FIG. Specifically, for example, if the vending machine 50 is a beverage vending machine 50, the customer 60 presses a button indicating a predetermined beverage to receive an order from the customer 60 to sell a predetermined beverage. The vending machine 50 includes a payment terminal 20 for cashless payment of the sales price.

FIG. 2 shows the configuration of a vending machine 50 (automatic payment machine 10) having a payment terminal 20 that can be used in the payment system of the present invention. The configuration shown inside the dotted frame as the vending machine 50 does not necessarily need to be physically arranged in the same place. For example, the settlement terminal 20 can be arranged appropriately as necessary, such as by arranging it outside the frame of the vending machine 50 .

The settlement terminal 20 arranged in the vending machine 50 connects with the order receiving application 54 of the vending machine 50 . The order taking app 54 can be part of an order taking system for vending machine 50 sales. In that case, the payment terminal 20 can be configured to transmit and receive information between the payment terminal 20 and the order receiving system of the vending machine 50 by connecting to the order receiving system via the order receiving application 54 .

<< Order Application 54 >>
The order receiving application 54 is connected to the settlement terminal 20 arranged in the vending machine 50 and controls the functions of the vending machine 50 related to receiving orders and sales. Ordering app 54 may be at least part of an ordering system for vending machine 50 . Order application 54 connects to vending machine display 56 for notifying customer 60 of information regarding the order. The customer 60 can input predetermined items regarding an order for goods to be sold to the order receiving application 54 using a predetermined input device (not shown) such as a touch panel and buttons. The order receiving application 54 can record information necessary for connection with the payment terminal 20 in a predetermined storage device (not shown). When a token is used for payment, the token can be stored in a predetermined storage device. The order receiving application 54 can generate sales information. Sales information is information related to sales, such as a transaction number of sales, a sales amount of sales goods or sales services, and a sales product name or sales service name. The items of sales information can be selected appropriately as needed.

Note that the order receiving application 54 is preferably configured not to receive cashless payment information and encrypted cashless payment information. The encrypted cashless payment information is preferably not sent to anyone else, other than to the payment server 32 via the communication module 22 and over the Internet.

<Payment terminal 20>
As shown in FIG. 2 , payment terminal 20 can include payment information reader 24 , communication module 22 , and contactless communication device 25 . Moreover, the payment terminal 20 can further include an information encryption device 23 and/or a payment terminal display device 26 . The settlement terminal 20 has a function for cashless settlement of the sales price of the vending machine 50 . The settlement terminal 20 is installed inside the vending machine 50, but considering the functions of the settlement terminal 20, the settlement terminal 20 can be considered to be an independent device from the vending machine 50. For example, the self-checkout counter of a store can be configured such that the self-checkout terminal and the payment terminal 20 are independent devices and are communicatively connected to each other.

Moreover, the payment terminal 20 can have a function as a credit inquiry terminal installed in a shop. Also, the payment terminal 20 itself can be the automatic payment machine 10 .

The settlement terminal 20 can be a dedicated terminal equipped with an information processing device. That is, the settlement terminal 20 can be a device connected to the vending machine 50 (automatic payment machine 10) and separate from the vending machine 50 (automatic payment machine 10). Also, the settlement terminal 20 can be a computer such as a personal computer or a server. Also, the payment terminal 20 can be an information processing system connecting a dedicated terminal, a personal computer, a server, and the like. Also, the payment terminal 20 can be a system to which a predetermined information processing device is connected via the Internet. That is, each function of the settlement terminal 20 does not necessarily have to be inside one device, and can be configured by a plurality of distributed devices capable of mutual communication.

According to the payment terminal 20 of the present embodiment, it is possible to make the automatic payment machine 10 non-holding of cashless payment information. In addition, by using the payment terminal 20 of the present embodiment, a payment system that can issue a payment statement at a relatively low cost and without trouble in a payment system with high security of cashless payment information can be realized. can be realized. Each device constituting the payment terminal 20 will be described below.

<<payment information reader 24>>
The payment information reader 24 is a device for receiving cashless payment information (for example, credit card number, expiration date, etc.) of cashless payment means 64 such as credit cards and IC prepaid cards. The payment information reader 24 can read payment information by contacting a cashless payment means 64 having cashless payment information such as a credit card, like a credit card reader. Also, the payment information reader 24 can be a camera. In that case, the camera reads the cashless payment information as a bar code or two-dimensional code displayed on the customer terminal 62 of the customer 60 who has the cashless payment means 64, and the payment terminal 20 decodes the contents of the bar code. can be done. The payment information reader 24 can be connected to the information encryption device 23 . The barcode or two-dimensional code can be a so-called barcode or two-dimensional code (for example, QR code (registered trademark)) for barcode settlement.

<<non-contact communication device 25>>
The non-contact communication device 25 is configured to enable wireless communication using electromagnetic waves with a customer terminal 62 such as a smart phone, a credit card capable of non-contact communication, and a non-contact IC card. Like the payment information reader 24, the non-contact communication device 25 can receive cashless payment information (for example, credit card number, expiration date, etc.) possessed by the cashless payment means 64 by wireless communication using electromagnetic waves. . Also, as will be described later, the contactless communication device 25 can transmit payment statement information to the customer terminal 62 . The contactless communication device 25 can be connected to the information encryption device 23 and the communication module 22 .

<<settlement terminal display device 26>>
The settlement terminal display device 26 can be configured to display at least the payment statement information in a bar code or two-dimensional code (for example, QR code (registered trademark)) for the customer terminal 62 to read. That is, the customer terminal 62 such as a smartphone reads the payment statement information of the predetermined bar code or two-dimensional code displayed on the payment terminal display device 26 by the camera attached to the customer terminal 62, and reads the payment statement information. can be obtained. A payment terminal display device 26 can be connected to the communication module 22 .

Note that the payment terminal 20 may not have the payment terminal display device 26 . In that case, the payment terminal 20 is configured to send a predetermined signal to the vending machine display 56 of the vending machine 50 so that the necessary information can be displayed on the vending machine display 56 .

For example, if the automatic payment machine 10 is, for example, a convenience store register, the payment terminal 20 can be configured to send a predetermined signal to the display of the register installed facing the customer. The predetermined signal includes payment statement information, which will be described later, and the display of the register can display a bar code or two-dimensional code (eg, QR code (registered trademark)) corresponding to the payment statement information.

Moreover, the payment terminal 20 can convey the necessary information to the customer 60 by voice instead of displaying the necessary information. Moreover, the payment terminal 20 can cause the customer terminal 62 to display the necessary information by performing wireless communication with the customer terminal 62 instead of displaying the necessary information. In addition, the payment terminal 20 can be configured so that a plurality of the display methods described above can be employed at the same time.

<<Non-contact notification machine>>
The contactless notifier is configured to transmit or display payment statement information to customer terminal 62 . The contactless communicator can be, for example, a contactless communicator 25 configured to wirelessly transmit payment statement information to the customer terminal 62 . Also, the contactless notification device can be, for example, a payment terminal display device 26 such as a display attached to the payment terminal 20 . The contactless notifier is configured to transmit or display payment statement information to customer terminal 62 .

<<Information encryption device 23>>
The payment terminal 20 can have an information encryption device 23 as required. The information encryption device 23 has a function of encrypting the cashless payment information read by the payment information reading device 24 or the contactless communication device 25 and converting it into encrypted cashless payment information. The information encryption device 23 can be a single device, and can be connected to the communication module 22 via an interface such as USB. When settlement is made using a credit card, it is necessary to maintain high security. Therefore, it is preferable to install a payment terminal 20 having an information encryption device 23 in the automatic payment machine 10 that accepts credit cards.

If the payment terminal 20 of the present embodiment has the information encryption device 23, the information encryption device 23 preferably does not store the information in the information encryption device 23 after encrypting the input cashless payment information. . That is, after encrypting the input cashless payment information, the information encryption device 23 can automatically delete the cashless payment information before encryption without transmitting the cashless payment information to the outside. It is preferable to be able to Since the vending machine 50 does not hold an encryption key for decrypting the cashless payment information encrypted by the information encryption device 23, the encrypted cashless payment information cannot be decrypted. Therefore, non-holding of cashless payment information by the vending machine 50 can be achieved.

In the payment system of the present embodiment, the information encryption device 23 preferably satisfies PCI PTS (Payment Card Industry Pin Transaction Security) SRED (Secure Reading and Exchange of Data) requirements. The SRED requirement is a security requirement for encryption in compliance with PCI PTS to implement non-retention of cashless payment information by the vending machine 50 as described above. That is, the information encryption device 23 satisfies the SRED requirement, so that the information can be encrypted at the moment when the cashless payment information is input to the information encryption device 23 .

The cashless payment information encrypted by the information encryption device 23 can be deciphered (decrypted) only by the key management server 34, which will be described later. In this embodiment, the decryption of the encrypted cashless payment information by the key management server 34 is preferably performed based on P2PE (Point-to-Point Encryption). By adopting a P2PE-based method in which the information is encrypted by the information encryption device 23 and decrypted by the key management server 34, cashless payment information can be transmitted and received with high security.

The PCI P2PE solution may include the information encryption device 23 having the SRED function for encryption and the encryption method that cannot be decrypted until a predetermined endpoint is reached. The PCI P2PE solution is one of the security standards defined by the PCI SSC (Payment Card Industry Security Standards Council, LLC., a council jointly established by VISA/MasterCard/JCB/American Express/Diners). The payment system of this embodiment can be a system conforming to the PCI P2PE solution.

In order for the payment system of this embodiment to comply with the PCI P2PE solution, the business operator that is the payment information management business operator 30 must be PCI P2PE solution accredited, and the payment will be made in compliance with the PCI P2PE solution provided by the business operator. The system can adopt the method utilized by vending machine 50 . In this case, the payment information management business operator 30 can prepare a payment terminal 20 including a predetermined information encryption device 23 (a device that satisfies PCI PTS requirements) and place it in the vending machine 50 . The cashless payment information is encrypted by a predetermined information encryption device 23 arranged in the vending machine 50 and decrypted only within the PCI DSS compliant payment information management business operator 30 . The vending machine 50 cannot decrypt the cashless payment information at all.

In the payment system of this embodiment, encryption of cashless payment information by the information encryption device 23 is performed by a key management protocol based on DUKPT (Derived Unique Key Per Transaction). Encryption of cashless payment information by the information encryption device 23 is performed by a key management protocol based on DUKPT, so that encrypted cashless payment information can be transmitted and received with higher security.

An example of the information encryption device 23 conforming to SRED and DUKPT as described above is "SREDKey" manufactured by ID TECH.

<<communication module 22>>
Communication module 22 transmits and receives information via the Internet. That is, the communication module 22 can transmit cashless payment information to the outside via the Internet. The communication module 22 is arranged in the payment terminal 20 of the vending machine 50 . Communication module 22 connects to payment information reader 24 . If the payment terminal 20 has an information encryption device 23 , the communication module 22 connects to the information encryption device 23 and connects to the payment information reading device 24 via the information encryption device 23 . Communication between the information encryption device 23 and the communication module 22 can be performed by connection conforming to the USB (Universal Serial Bus) standard, for example. The communication module 22 can receive cashless payment information encrypted by the information encryption device 23 . Also, the communication module 22 can transmit and receive information to and from the settlement server 32 via the Internet. Therefore, the communication module 22 can transmit encrypted cashless payment information to the payment server 32 . After transmitting the encrypted cashless payment information, the communication module 22 can immediately delete the encrypted cashless payment information from its inside without sending it to other devices in the vending machine 50. .

The communication module 22 is configured to connect to the order receiving application 54 of the vending machine 50 and receive sales information including the transaction number of the sale and the sales amount from the vending machine 50 . The communication module 22 is preferably configured not to transmit the cashless payment information and the encrypted cashless payment information to the order receiving application 54 (and other internal devices of the vending machine 50). Generally, the payment terminal 20 is provided by a payment information management business operator 30 and is under the management of the payment information management business operator 30 . Therefore, by using the predetermined communication module 22, non-holding of cashless payment information can be realized in the vending machine 50 (and the vendor installing the vending machine 50).

In this embodiment, the communication module 22 is configured to transmit sales information including the sales price to the settlement server 32 . If communication between the communication module 22 and the settlement server 32 can be performed using a communication line other than the Internet, communication can be performed using a predetermined communication line instead of the Internet. can be done. The same is true for other communications in this specification.

<Payment system>
The settlement system of the present embodiment is a system for cashless settlement of the sales price of the automatic payment machine 10 (vending machine 50).

As shown in FIG. 1, the payment system of this embodiment includes at least the predetermined payment terminal 20 described above, a payment server 32, and a payment information storage device . If the payment terminal 20 has the information encryption device 23, the payment system of this embodiment can further have a key management server 34. FIG. Also, the payment system of the embodiment can have a payment agency server 42 . According to this embodiment, in a payment system with high security of cashless payment information that can be made non-holding of cashless payment information of the automatic payment machine 10, payment can be made at relatively low cost and without trouble. A settlement system can be obtained that can issue statements.

<< payment terminal 20 >>
The payment terminal 20 described above can be used as the payment terminal 20 included in the payment system of the present embodiment.

The settlement terminal 20 of this embodiment described above can have a predetermined information encryption device 23 . After encrypting the input cashless payment information, the information encryption device 23 encrypts the cashless payment information before encryption without transmitting the cashless payment information before encryption to the outside of the information encryption device 23. can be erased. Also, the information encryption device 23 of the payment terminal 20 of the payment system of this embodiment can satisfy the SRED (Secure Reading and Exchange of Data) requirements of PCIPTS (Payment Card Industry Pin Transaction Security). Also, encryption of cashless payment information by the information encryption device 23 of the payment terminal 20 of the payment system of the present embodiment can be performed by a key management protocol based on DUKPT (Derived Unique Key Per Transaction).

<<settlement server 32>>
In the payment system of this embodiment, the payment server 32 connects to the communication module 22 of the payment terminal 20 via the Internet. The settlement server 32 also connects to the customer terminal 62 via the Internet. As shown in FIG. 1, the settlement server 32 can be connected to a receiving institution 80 via a communication line such as the Internet. The receiving institution 80 means a settlement agency service company such as a credit card company, an electronic money company, and a QR code (registered trademark) settlement company.

In addition, in the embodiment shown in FIG. 6, the payment server 32 can be connected to the payment agency server 42 via the Internet. Although not shown in FIG. 6, the settlement agent server 42 can be connected to the receiving institution 80 via a communication line such as the Internet. Also, the payment agency server 42 can be owned by the receiving institution 80 .

The payment server 32 is located at the payment information management business operator 30 and connects to the communication module 22 of the vending machine 50 via the Internet.

The payment server 32 shown in FIG. 6 can function as a token server 72 to issue a token corresponding to cashless payment information. A known method can be used as a tokenization technique such as a token issuance method. Note that the settlement server 32 does not necessarily have the function of the token server 72 . For example, as shown in FIG. 5, the payment agency 40 can have a token server 72 and the payment agency 40 can issue tokens. Also, if the payment system does not need to use tokens, the payment system may not have the token server 72 .

In the payment system of this embodiment, the payment server 32 is configured to issue an electronic payment statement and transmit payment statement information corresponding to the electronic payment statement to the communication module 22 . The settlement server 32 can issue an electronic payment statement after transmitting cashless settlement information to a receiving institution 80 including a card company and receiving settlement results from the receiving institution 80 . The payment statement information transmitted to the communication module 22 is transmitted or displayed to the customer terminal 62 by the non-contact notification device of the payment terminal 20 . The customer terminal 62 can receive an electronic payment statement from the settlement server 32 based on the payment statement information received from the contactless notification device.

The electronic payment statement includes the name and address of the vending machine 50, the amount of the sales price, the date and time of use, the processing number, the payment method, the payment brand name (name of credit card, etc.), the membership number, the approval number, the transaction details, and the Information on at least one of payment class and the like may be included.

The payment statement information displayed on the contactless notification device is preferably a URL (Uniform Resource Locator) corresponding to the electronic payment statement. In this specification, the URL corresponding to the electronic payment statement is referred to as payment statement information. According to this embodiment, even if the automatic payment machine 10 having a payment system capable of non-retaining cashless payment information does not have a printer for issuing a payment statement and a cartridge for payment statement paper, can also issue payment statements to customers 60 as electronic payment statements. However, the payment system of the present embodiment is applicable even when the automatic payment machine 10 has a printer for issuing payment statements.

<<Key Management Server 34>>
The settlement system of this embodiment can have a key management server 34 . The key management server 34 can be connected to the settlement server 32 . The key management server 34 has a function of decrypting the encrypted cashless payment information and converting the encrypted cashless payment information into cashless payment information.

As described above, when the payment terminal 20 has the information encryption device 23, the information encryption device 23 of the payment terminal 20 encrypts the cashless payment information. Therefore, the key management server 34 is configured to be capable of decryption corresponding to encryption by the information encryption device 23 . Specifically, if the encryption of cashless payment information is based on P2PE, the key management server 34 is configured to serve as the endpoint for decryption. Further, when the encryption of the cashless payment information by the information encryption device 23 is performed by a key management protocol based on DUKPT, the key management server 34 uses the DUKPT-based key management protocol of the information encryption device 23. It is configured to be able to decrypt the corresponding cipher. The key management server 34 converts the cashless payment information encrypted by the information encryption device 23 into cashless payment information before encryption, thereby decrypting the cashless payment information into a usable format. can be done.

The key management server 34 is configured so that the cashless payment information stored in the payment information storage device 36 can be encrypted by a predetermined method. Security can be further enhanced by encrypting the cashless payment information.

The settlement server 32 is connected to the key management server 34 within the settlement information management business operator 30 .

Encrypted cashless payment information is transmitted from the payment server 32 to the key management server 34 in order to decrypt the encrypted cashless payment information. The cashless payment information decrypted by the key management server 34 is transmitted from the key management server 34 to the payment server 32 .

<<settlement agent server 42>>
The payment system of this embodiment can have a payment agency server 42 . The settlement agency server 42 is located at the settlement agency 40 and connects to the communication module 22 of the vending machine 50 through the settlement server 32 of the settlement information management business 30 via the Internet. The payment agency server 42 shown in FIG. 5 can have a function as a token server 72 to issue a token corresponding to cashless payment information. A known method can be used as a tokenization technique such as a token issuance method. Note that, as described above, the settlement agency server 42 does not necessarily have the function of the token server 72 . For example, as shown in FIG. 6, the token server 72 can be owned by the payment information management business operator 30 . In this case, the payment agency business operator 40 can request the payment information management business operator 30 to issue a token. Also, the payment agency server 42 can be owned by the receiving institution 80 . Also, the payment system of this embodiment can be configured as shown in FIG.

The settlement server 32 can be connected to the settlement agency server 42 of the settlement agency business 40 . The payment information management business operator 30 can also serve as the payment agency business operator 40 . In addition, the settlement agency business operator 40 can be performed by an external business operator other than the payment information management business operator 30, for example, the collection agency 80. In this case, the connection between the settlement server 32 and the settlement agency 40 can be established via the Internet using a communication method that ensures high security, such as HTTPS (Hypertext Transfer Protocol Secure). As shown in FIG. 5, the payment agency 40 can also serve as a token service provider 70 . The settlement method by the settlement agency business operator 40 to the receiving institution 80 such as a credit card company is well known.

<<Token server 72>>
When the payment system of this embodiment makes payments using tokens, the payment system can have a token server 72 . As shown in FIG. 5, the payment agency 40 can have a token server 72 . In this case, the token server 72 can be the same server as the payment agency server 42 . The token server 72 issues tokens corresponding to cashless payment information. As another embodiment, as shown in FIG. 6, the payment information management business operator 30 can own the token server 72, and the token server 72 and the payment server 32 can be the same.

In this specification, the entity having the token server 72 is called a token service provider 70 (token processing company). The token service provider 70 uses tokens to implement the non-retention of cashless payment information in the vending machine 50 (automatic payment machine 10). means a business operator of The system in the token service provider 70 (the payment information management business operator 30 or the payment agency business operator 40) including the payment information storage device 36 (also referred to as "Token Vault") is configured to maintain a predetermined high security state. , PCI DSS compliant configuration.

As shown in FIG. 5, in the payment system of this embodiment, the payment agency 40 is a token service provider 70, and the payment agency 40 or the token service provider 70 is a token server 72 and a key management server 34. and a payment information storage device 36 . According to this embodiment, a safer payment system can be obtained by using the payment agency 40 such as a credit card company as the token service provider 70 .

As shown in FIG. 5, when the payment agency 40 is the token service provider 70, the token server 72 is located in the payment agency 40 and is used to send the payment via the Internet via the payment information management business 30. It connects to the communication module 22 of the vending machine 50 .

In the payment system of this embodiment, tokens are preferably described by 16-digit numbers. Since the token is described by the same 16-digit number as the credit card number, it can be diverted to the system used for credit card processing, so that the versatility of the settlement system can be enhanced.

In the case of the embodiment shown in FIG. 6, cashless payment information and corresponding tokens are transmitted from the payment server 32 to the payment information storage device 36 . The cashless payment information and the corresponding token are preferably encrypted by the key management server 34 before being sent to the payment information storage device 36 . Cashless payment information corresponding to a predetermined token is transmitted from the payment information storage device 36 to the payment server 32 in response to a call from the payment server 32 using the predetermined token.

In the payment system of this embodiment, the token server 72 can transmit the issued token to the communication module 22 . By transmitting the token to the communication module 22 located in the vending machine 50, the token can be used for payment by the vending machine 50 without the vending machine 50 possessing cashless payment information. do.

In the payment system of this embodiment, the token server 72 receives tokens and sales information from the communication module 22, and can obtain cashless payment information stored in the payment information storage device 36 based on the received tokens. . The token server 72 obtains the cashless payment information stored in the payment information storage device 36 based on the token sent from the vending machine 50, so that the vending machine 50 holds the cashless payment information. Instead, the token service provider 70 can prepare the cashless payment information.

In the payment system of the embodiment shown in FIG. 6, the payment server 32 (token server 72) can transmit cashless payment information and sales information to the payment service provider 40. FIG. In the payment system of the embodiment shown in FIG. 5, the payment agency 40 is a token service provider 70. In the payment system shown in FIG. The payment service provider 40 can send cashless payment information and sales information to the credit card company through secure communication. As a result, the settlement by credit card can be completed.

Token server 72 is preferably configured to transmit issued tokens to communication module 22 either directly or indirectly. By transmitting the token to the communication module 22 arranged in the automatic fare adjustment machine 10 (vending machine 50), the token can be used for payment without the automatic fare adjustment machine 10 possessing cashless payment information. can be done.

Token server 72 is configured to receive tokens and vending information directly or indirectly from communication module 22 and to obtain cashless payment information stored in payment information storage 36 based on the received tokens. preferably. The token server 72 obtains the cashless payment information stored in the payment information storage device 36 based on the received token. , can prepare cashless payment information for payment

Token server 72 is preferably configured to transmit cashless payment information and sales information to payment agency server 42 . The payment agency 40 can receive the cashless payment information and sales information, and the payment agency 40 can send the information to a receiving institution 80 such as a credit card company. As a result, payment can be completed using cashless payment information such as credit card information.

<<Payment information storage device 36>>
The payment information storage device 36 connects with the payment server. The payment information storage device 36 stores cashless payment information. In addition, if the payment system of this embodiment can use tokens, the payment information storage device 36 can further store tokens. The payment server 32 is configured to link the cashless payment information and/or the issued token and store it in the payment information storage device 36 . As a result, cashless payment using tokens can be made possible, and the security of cashless payment information can be enhanced.

When storing the cashless payment information and/or tokens in the payment information storage device 36, the cashless payment information and/or tokens are preferably encrypted and stored in the payment information storage device 36. For example, in the case of the configuration shown in FIG. 6, encryption of cashless payment information and/or tokens can be performed using the key management server 34 . Specifically, the payment server 32 transmits cashless payment information and/or tokens to the key management server 34, and the key management server 34 encrypts the cashless payment information and/or tokens. The encrypted cashless payment information and/or tokens are transmitted to payment server 32 and further stored in payment information storage device 36 . By encrypting the cashless payment information and/or tokens and storing them in the payment information storage device 36 in this manner, the security of the cashless payment information within the payment information management business operator 30 can be enhanced. As shown in FIG. 5, when the payment agency 40 is a token service provider 70, the key management server 34 encrypts the cashless payment information and/or tokens as a payment agency server. 42 can be installed.

By using the payment system of the present embodiment described above, it is possible to realize non-holding of cashless payment information in the vending machine 50 at a relatively low cost in the payment of the sales price by a payment method such as a credit card. . In addition, in a payment system with high security of cashless payment information, it is possible to provide a payment system capable of issuing a payment statement at relatively low cost and without much effort.

A specific example of using the payment terminal 20 and the payment system of the present embodiment will be described below as an example. The embodiment described as the present embodiment is an example in which the payment terminal 20 and the payment system of the present embodiment are used for payment at the vending machine 50 . However, the embodiment described as this example is not intended to limit the present invention.

(Embodiment 1)
FIG. 1 shows an example of a payment system according to the first embodiment. The payment system of this embodiment includes at least a predetermined payment terminal 20, a payment server 32, and a payment information storage device . The predetermined payment terminal 20 includes at least a communication module 22 and a contactless notification device (contactless communication device 25 and/or payment terminal display device 26). In FIG. 1, the portion connected to the Internet in this embodiment is indicated by a thick line.

As shown in FIG. 3, the settlement terminal 20 of the settlement system of Embodiment 1 is arranged in a vending machine 50. As shown in FIG. Note that the payment terminal 20 used in the first embodiment does not include the information encryption device 23, as shown in FIG. The communication module 22 of the payment terminal 20 can be included in the order receiving application 54 of the vending machine 50 . Moreover, the payment terminal 20 can further include an order receiving application 54 . However, from the viewpoint of non-retention of cashless payment information of the vending machine 50, it is preferable that the order receiving application 54 of the vending machine 50 and the payment terminal 20 are independent single devices. In the first embodiment, a case where the settlement terminal 20 is an independent single device different from the order receiving application 54 for controlling the vending machine 50 will be described as an example. That is, the settlement terminal 20 of the first embodiment is installed in the vending machine 50 but is a device independent of the vending machine 50 .

In the example shown in FIG. 1 , the payment server 32 and the payment information storage device 36 are arranged within the payment information management business operator 30 .

FIG. 3 shows a flow chart of an example of operations for making a payment and issuing a payment statement to the customer 60 by the payment system of the first embodiment. Symbols S01 to S13 in FIG. 3 indicate steps of operation by the settlement system of this embodiment.

First, the vending machine 50 receives an order from the customer 60 when the customer 60 makes a predetermined input using a predetermined button of the vending machine 50 or the vending machine display device 56 with a touch panel. The vending machine 50 notifies the order entry application 54 of the details of the order (sales details) (S01). The order receiving application 54 of the vending machine 50 determines the sales price of the order and the processing number related to the sale. In this specification, the order contents (sales details), the processing number and the sales price are collectively referred to as sales information. After the order receiving application 54 determines the sales price of the order contents, the order receiving application 54 notifies the communication module 22 of the settlement terminal 20 that the order has been received, and if necessary, the sales information including the processing number and the sales price. is transmitted (S02). Note that the order receiving application 54 is configured not to receive information for payment, such as cashless payment information such as a credit card number and expiration date.

The communication module 22 sends a signal to the payment terminal display device 26 to prompt the customer 60 to enter cashless payment information (S03). The customer 60 visually recognizes the information displayed on the payment terminal display device 26 (S04). The customer 60 who visually recognizes the information on the payment terminal display device 26 inputs cashless payment information (S05). At this time, the customer 60 can cause the payment information reader 24 to read the cashless payment information stored in, for example, a credit card (S05a). In addition, the customer 60 can cause the non-contact communication device 25 to read the cashless payment information stored in the customer terminal 62 such as a smart phone through wireless communication (S05b). The cashless payment information read by the payment information reader 24 or the contactless communication device 25 is transmitted to the communication module 22 (S06).

The communication module 22 transmits the cashless payment information (and sales information if necessary) to the payment server 32 of the payment information management business operator 30 via the Internet (S07). After transmitting the cashless payment information, the communication module 22 does not transmit the information to other devices of the vending machine 50 and does not record the cashless payment information in the communication module 22 . That is, the cashless payment information passes through the communication module 22 and is transmitted to the payment server 32 .

After receiving the cashless payment information, the payment server 32 transmits the cashless payment information (and sales information if necessary) to the receiving institution 80 (S08). Communication between the payment information management business operator 30 and the receiving institution 80 is preferably a secure communication.

The receiving agency 80 determines whether settlement is possible. The determination result is sent by communication from the receiving institution 80 to the settlement server 32 (S09).

The cashless payment information (and sales information if necessary) and the determination result of the receiving institution 80 may be sent from the payment server 32 to the payment information storage device 36 and stored in the payment information storage device 36. Preferably (S10).

The settlement server 32 transmits the judgment result of the receiving institution 80 and, if necessary, sales information (hereinafter referred to as "determination result etc. ) is transmitted (S11).

The determination results and the like received by the communication module 22 of the settlement terminal 20 are sent to the order receiving application 54 (S12). If it is determined that the settlement is possible as a result of the determination, predetermined items are transmitted to the vending machine display device 56 as necessary (S13). The vending machine display device 56 can display predetermined items to convey information to the customer 60 . Further, in the case of the vending machine 50, for example, the order receiving application 54 can deliver the product purchased by the customer 60 to the customer.

Next, the procedure for issuing a payment statement after the sales price is settled by the cashless payment information as described above will be described with reference to FIG.

Prior to the procedure described below, the payment terminal 20 can ask whether the customer 60 wishes to issue a payment statement. The payment terminal 20 can obtain an answer from the customer 60 using a button or touch panel attached to the payment terminal 20 . The settlement terminal 20 can notify the settlement server 32 by communication that the customer 60 wishes to issue a payment statement.

As shown in FIG. 4, the settlement server 32 of the settlement information management business operator 30 creates and issues an electronic payment statement including the above-mentioned predetermined items based on the sales information including the transaction number and the sales price. (S301). Information necessary for creating an electronic payment statement can be obtained by downloading the cashless payment information, sales information, and/or determination results of the collection agency 80 stored in the payment information storage device 36. The electronic payment statement is placed on the Internet so that it can be accessed, and a URL (Uniform Resource Locator) corresponding to the electronic payment statement is determined. The payment statement information means the URL corresponding to the electronic payment statement. Electronic payment statements can be issued in HTML (Hypertext Markup Language) and PDF (Portable Document Format) formats.

The settlement server 32 transmits payment statement information via the Internet to the communication module 22 of the settlement terminal 20 installed inside the vending machine 50 (S302).

The customer terminal 62 of the customer 60 reads the barcode or two-dimensional code of the payment statement information displayed on the payment terminal display device 26 from the payment terminal 20, or reads the payment statement information transmitted from the contactless communication device 25. is received, payment statement information can be obtained (S303-S305). In this specification, a non-contact device for sending payment statement information from the payment terminal 20 to the customer terminal 62 of the customer 60, such as the payment terminal display device 26 and the contactless communication device 25. Called a notifier. That is, the non-contact notification device includes the payment terminal display device 26, the non-contact communication device 25, and the like.

When the payment statement information is displayed on the payment terminal display device 26, the following procedure can be taken. That is, the communication module 22 of the settlement terminal 20 can transmit the payment statement information to the settlement terminal display device 26 (S303a). The payment terminal display device 26 displays a barcode or two-dimensional code indicating the URL corresponding to the electronic payment statement (S304a). The customer terminal 62 of the customer 60 can read the bar code or two-dimensional code with an attached camera and decode the URL corresponding to the electronic payment statement (S305a).

When the customer terminal 62 receives the payment statement information transmitted from the contactless communication device 25, the following procedure can be taken. That is, the communication module 22 of the payment terminal 20 can transmit payment statement information to the contactless communication device 25 (S303b). The non-contact communication device 25 can wirelessly transmit the character string indicating the URL corresponding to the electronic payment statement to the customer terminal 62 (S304b). The customer terminal 62 of the customer 60 can receive the payment statement information (S305b). The customer terminal 62 can decode the URL corresponding to the electronic payment statement from the received payment statement information.

The payment terminal 20 accesses the payment server 32 of the payment information management business operator 30 via the Internet based on the URL corresponding to the electronic payment statement obtained from the payment statement information, thereby obtaining the electronic payment statement. can be obtained (S306). The format of the electronic payment statement can be HTML format and PDF format. If the customer 60 desires, the electronic payment statement in PDF format can be downloaded from the settlement server 32 to the customer terminal 62 .

The electronic payment statement can be issued by the payment information management business operator 30 . Therefore, the installer of vending machine 50 need not be involved in issuing electronic payment statements. Since the electronic payment statement can be electronically issued by the payment information management business operator 30, the vending machine 50 does not need to have a printer attached to issue the payment statement. Therefore, if the payment system of the present embodiment is used, payment statements can be issued at relatively low cost and without much effort. Further, by using the payment system of the present embodiment, it is possible to make the automatic payment machine 10 non-holding of cashless payment information. Therefore, the payment system of this embodiment can be said to be a payment system with high security for cashless payment information.

(Embodiment 2)
FIG. 5 shows an example of a payment system according to another embodiment (embodiment 2). Embodiment 2 is an embodiment in which a token is used for payment. The payment system of this embodiment includes at least a predetermined payment terminal 20, a payment server 32, a key management server 34, a token server 72, and a payment information storage device . The predetermined payment terminal 20 includes at least a payment information reader 24, an information encryption device 23, a communication module 22, and a contactless notification device (contactless communication device 25 and/or payment terminal display device 26). In FIG. 5, the portion connected to the Internet in this embodiment is indicated by a thick line.

A predetermined payment terminal 20 is arranged in a vending machine 50 . The communication module 22 of the payment terminal 20 can be included in the order receiving application 54 of the vending machine 50 . Moreover, the payment terminal 20 can further include an order receiving application 54 . However, from the viewpoint of non-retention of cashless payment information of the vending machine 50, it is preferable that the order receiving application 54 of the vending machine 50 and the payment terminal 20 are independent single devices. In this embodiment, a case where the payment terminal 20 is an independent single device different from the order receiving application 54 for controlling the vending machine 50 will be described as an example. That is, the settlement terminal 20 of the present embodiment is installed in the vending machine 50 but is a device independent from the vending machine 50 .

7 and 8 show flow diagrams of an example of the operation for issuing a token by the payment system of the second embodiment. Symbols S100 to S115 in FIGS. 7 and 8 indicate steps of operations by the payment system of the second embodiment.

First, the vending machine 50 receives an order from the customer 60 when the customer 60 makes a predetermined input using a predetermined button of the vending machine 50 or the vending machine display device 56 with a touch panel. The vending machine 50 notifies the order entry application 54 of the content of the order (sales content) (S100). The order receiving application 54 of the vending machine 50 determines the sales price of the order and the processing number related to the sale. In this specification, the order contents (sales details), the processing number and the sales price are collectively referred to as sales information. After the order receiving application 54 determines the sales price of the order contents, the order receiving application 54 notifies the communication module 22 of the settlement terminal 20 that the order has been received, and if necessary, the sales information including the processing number and the sales price. is transmitted (S101). Note that the order receiving application 54 is configured not to receive information for payment, such as cashless payment information such as a credit card number and expiration date.

The communication module 22 sends a signal to the payment terminal display device 26 to prompt the customer 60 to enter cashless payment information (S102-1). The customer 60 visually recognizes the information displayed on the settlement terminal display device 26 (S102-2). The customer 60 who visually recognizes the information on the payment terminal display device 26 inputs cashless payment information (S103). At this time, the customer 60 can cause the payment information reader 24 to read the cashless payment information stored in, for example, a credit card (S103a). In addition, the customer 60 can cause the non-contact communication device 25 to read the cashless payment information stored in the customer terminal 62 such as a smart phone through wireless communication (S103b). The cashless payment information read by the payment information reader 24 or the contactless communication device 25 is input to the information encryption device 23 (S104).

The information encryption device 23 immediately encrypts the input cashless payment information using a function based on the SRED requirements. Also, this encryption is performed by a key management protocol based on DUKPT. "SREDKey" manufactured by ID TECH can be used as the information encryption device 23 having such a function.

The cashless payment information encrypted inside the information encryption device 23 is transmitted from the information encryption device 23 to the communication module 22 (S105).

The communication module 22 transmits the encrypted cashless payment information (and sales information, if necessary) to the payment server 32 of the payment information management business operator 30 via the Internet (S106). After transmitting the encrypted cashless payment information, the communication module 22 does not transmit the encrypted cashless payment information to other devices of the vending machine 50 and does not record the encrypted cashless payment information in the communication module 22 . That is, the cashless payment information encrypted by the communication module 22 passes through the communication module 22 and is transmitted to the payment server 32 .

Referring to FIG. 8, after receiving the encrypted cashless payment information, payment server 32 transmits the encrypted cashless payment information to key management server 34 (S107). The key management server 34 decrypts the encrypted cashless payment information using a predetermined decryption means. Specifically, the key management server 34 decrypts the encrypted cashless payment information based on a key management protocol based on DUKPT. The decrypted cashless payment information is transmitted from the key management server 34 to the payment server 32 (S108).

The payment server 32 of the payment information management business operator 30 transmits the decrypted cashless payment information and sales information to the payment agency server 42 of the payment agency business operator 40 (S109). Communication between the payment information management business operator 30 and the payment agency business operator 40 is preferably a secure communication.

The payment agency server 42 of the payment agency business 40 is the token server 72 . The token server 72 (settlement agency server 42) issues a token based on the cashless settlement information (S110).

Cashless payment information and tokens are sent from the payment server 32 to the payment information storage device 36 . The payment information storage device 36 associates and stores the cashless payment information and the token (S111).

The token issued by the payment agency 40, which is the token service provider 70, is sent to the payment server 32 of the payment information management business 30 (S112).

The decrypted cashless payment information and the token issued by the payment information management business operator 30 can be transmitted from the payment server 32 to the key management server 34 and encrypted (not shown). . In that case, the encrypted cashless payment information and token will be sent to the payment server 32 (not shown).

Referring to FIG. 7, payment server 32 transmits the token via the Internet to communication module 22 of payment terminal 20 installed inside vending machine 50 (S113).

The token received by the communication module 22 of the payment terminal 20 is sent to the order receiving application 54 (S114). The token is stored within the order taking app 54, awaiting use. In addition, the order receiving application 54 can display on the vending machine display device 56 that the token has become available, and accept the order of the customer 60 (S115).

9 and 10, the use of tokens obtained by the vending machine 50 as described above will now be described.

FIG. 9 and FIG. 10 show flow charts showing an example of operations for credit card settlement using tokens issued by the settlement system of the present embodiment. Symbols S200-S210 in FIG. 9 indicate the steps of operation in using the issued token.

In order to start credit card payment using the token obtained through the above-described S100 to S115, for example, input by the customer 60 from the button of the input vending machine 50 or from the vending machine display device 56 with a touch panel, It is transmitted to the order receiving application 54 (S200). As a result, the token is transmitted from the order receiving application 54 to the communication module 22 (S201). At this time, the sales information of the received order (contents of the received order, the processing number, and the sales price) can also be transmitted from the order receiving application 54 to the communication module 22 .

The communication module 22 transmits the token and sales information to the payment server 32 of the payment information management business operator 30 via the Internet (S202).

Referring to FIG. 10, settlement server 32, after receiving the token and the sales information, transmits them to settlement agency server 42 (token server 72) of settlement agency 40 (S203).

After receiving the token and the sales information, the token server 72 of the payment agency 40 transmits the token to the payment information storage device 36 (S204). The token server 72 receives the cashless payment information corresponding to the token from the payment information storage device 36 (S205).

As a result, the payment agency server 42 (token server 72) holds predetermined cashless payment information and sales information necessary for credit card payment. If the token has the same number of digits as the credit card number, the format of the cashless payment information can be obtained by replacing the predetermined number of digits of the token with the card number of the decrypted cashless payment information. can. Similarly, by using the same number of digits for the expiration date and the like, replacement can be facilitated.

The payment service provider 40 sends the information to the credit card company through secure communication. After the predetermined approval by the credit card company, the settlement of the sale by credit card is completed (S206). The settlement agency 40 transmits the result of the credit card settlement to the settlement server 32 of the settlement information management business 30 (S207).

Referring to FIG. 9, payment server 32 of payment information management business operator 30 transmits the result of credit card payment to communication module 22 of payment terminal 20 arranged in vending machine 50 (S208).

The credit card settlement result is sent from the communication module 22 to the order receiving application 54 (S209). The order receiving application 54 can transmit the result of the credit card payment to the vending machine display device 56 and display the result of the credit card payment on the vending machine display device 56 (S210). The customer 60 can know the results by viewing the results displayed on the vending machine display device 56 . Also, the vending machine display device 56 can deliver the product to the customer 60 .

In the payment system of the second embodiment, the procedure for issuing a payment statement after the sales price is settled by the cashless payment information as described above is the procedure (S301 to S306).

(Embodiment 3)
FIG. 6 shows an example of a settlement system of still another embodiment (embodiment 3). In the example shown in FIG. 6 , the payment server 32 , the key management server 34 and the payment information storage device 36 are arranged within the payment information management business operator 30 . The method of issuing and using tokens in the third embodiment is the same as in the above-described second embodiment. Further, in the payment system of the third embodiment, the procedure for issuing a payment statement after the sales price is settled by the cashless payment information is the same as the procedure (S301 to S306) described in the first embodiment with reference to FIG. It is the same.

It should be noted that the embodiment described above is an example of the settlement system of this embodiment, and those skilled in the art can make predetermined changes within the scope of this embodiment as necessary. Not even. For example, at S<b>202 , the vending machine 50 can send the token and sales information directly to the payment processor 40 . Also, the same display device can be used as the payment terminal display device 36 and the vending machine display device 56 .

Also, a token can be valid only for one payment, or can be valid for multiple payments. In the case of a token that is valid only for one payment, the token and sales information in the payment information storage device 36 are deleted after the token is used for payment. In the case of a token that can be used for multiple payments, the vending machine 50 holds the token, and the token and sales information in the payment information storage device 36 remain without being deleted. When the vending machine 50 reuses the token to make a payment, by following the procedures of S200 to S210 described above, payment for the product sold using the predetermined cashless payment information of the specific customer 60 can be performed. , can be done multiple times.

According to the second and third embodiments described above, there is an advantage that the token can be used for credit card payment without storing the cashless payment information in the vending machine 50 . In other words, the vending machine 50 can realize non-holding of cashless payment information even though it does not need to comply with PCI DSS. Therefore, the payment system of the present embodiment can be said to be a payment system with relatively low cost and high security of cashless payment information.

In addition, if the payment system of Embodiments 1 to 3 is used, the vending machine 50 can be prevented from holding cashless payment information. and can issue payment statements in a relatively low-cost, hassle-free manner.

When using the payment system of Embodiments 1 to 3, even if the vending machine 50 is attacked by a cyberattack, the cashless payment information does not exist in the vending machine 50, so the leakage of the cashless payment information is prevented. It can be said that

10 automatic payment machine 20 payment terminal 22 communication module 23 information encryption device 24 payment information reader 25 contactless communication device 26 payment terminal display device 30 payment information management business operator 32 payment server 34 key management server 36 payment information storage device 40 payment Agency business operator 42 Settlement agency server 50 Vending machine 54 Order application 56 Vending machine display device 60 Customer 62 Customer terminal 64 Cashless payment means 70 Token service provider 72 Token server 80 Receiving institution

Claims (10)

A payment terminal for cashless payment of the sales price of an automatic payment machine,
payment terminal
a payment information reader for receiving cashless payment information;
a communication module for connecting to a payment information reader and transmitting/receiving information via the Internet;
a contactless notifier configured to transmit or display payment statement information to a customer terminal;
including
a communication module configured to connect to the automatic payment machine and receive sales information including the sales price from the automatic payment machine;
the communication module is configured to transmit cashless payment information and sales information to the outside via the Internet;
A payment terminal, wherein the communication module is configured to externally receive payment statement information via the Internet. The payment terminal further includes an information encryption device connected to the payment information reader,
The information encryption device has a function of encrypting the received cashless payment information and converting it into encrypted cashless payment information,
a communication module connecting to the information encryption device and receiving encrypted cashless payment information from the information encryption device;
2. The payment terminal according to claim 1, wherein the cashless payment information that the communication module transmits to the outside via the Internet is encrypted cashless payment information. A payment system for cashless payment of the sales price of an automatic payment machine,
a payment terminal according to claim 1;
a payment server connected to a communication module via the Internet;
a payment information storage device connected to a payment server;
including
the communication module is configured to transmit sales information including the sales price to the settlement server;
A payment system, wherein the payment server is configured to issue an electronic payment statement and transmit payment statement information corresponding to the electronic payment statement to the communication module. 4. The payment system according to claim 3, wherein the payment statement information is a URL (Uniform Resource Locator) corresponding to the electronic payment statement. 5. A payment system according to claim 3 or 4, wherein the payment system further comprises a token service provider, the token service provider comprising a token server. The payment terminal further includes an information encryption device connected to the payment information reader,
The information encryption device has a function of encrypting the received cashless payment information and converting it into encrypted cashless payment information,
a communication module connecting to the information encryption device and receiving encrypted cashless payment information from the information encryption device;
The payment system according to any one of claims 3 to 5, wherein the cashless payment information that the communication module transmits to the outside via the Internet is encrypted cashless payment information. the payment system further comprising a key management server in communication with the payment server;
7. The payment system according to claim 6, wherein the key management server decrypts the encrypted cashless payment information and converts the encrypted cashless payment information into cashless payment information. After the information encryption device encrypts the input cashless payment information, the cashless payment information before encryption is deleted without transmitting the cashless payment information before encryption to the outside of the information encryption device. 8. A payment system according to claim 6 or 7, configured to: The payment system according to any one of claims 6 to 8, wherein the information encryption device satisfies PCI PTS (Payment Card Industry Pin Transaction Security) SRED (Secure Reading and Exchange of Data) requirements. The payment system according to any one of claims 6 to 9, wherein encryption of cashless payment information by the information encryption device is performed by a key management protocol based on DUKPT (Derived Unique Key Per Transaction).

Images