JP7490396B2 - Verification server and program - Google Patents

Description

The present invention relates to a verification server and a program.

Cited Document 1 discloses an online payment assisting device that uses digitalized data of biometric characteristics such as a fingerprint as authentication information.
[Prior Art Literature]
[Patent Documents]
[Patent Document 1] JP 2008-15924 A

Highly secure identity verification is desired.

In a first aspect of the present invention, a verification server is provided. The verification server includes a verification information receiving unit that receives identification information of a person to be verified from a verification request device that requests the verification. The verification server includes a biometric information receiving unit that receives biometric information of the person to be verified acquired by a user terminal. The verification server includes a verification unit that performs identity verification based on a comparison result between the biometric information received by the biometric information receiving unit and biometric information previously registered in association with the person to be verified. The verification server includes a verification result transmitting unit that transmits information indicating the result of the identity verification performed by the verification unit to the verification request device.

The verification server may further include a request information sending unit that sends request information for biometric information to a user terminal associated with the person to be verified when the verification information receiving unit receives the identification information of the person to be verified.

The confirmation information receiving unit may further receive information indicating the person requesting the identity verification. The request information sending unit may further send the information indicating the requester to a user terminal associated with the person to be verified.

The person to be verified may be a credit card payment user. The identification information of the person to be verified may be the identification information of a credit card used by the credit card payment user for payment. The verification request device may be a credit verification request device that requests credit verification of a credit card payment. The information indicating the person requesting identity verification may include store information indicating a store requesting payment based on a credit card. The request information sending unit may send the request information for biometric information and the store information to a user terminal associated with the credit card payment user. The verification unit may perform identity verification and credit verification based on the result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the credit card user. The verification result sending unit may send information indicating the results of the identity verification and credit verification by the verification unit to the credit verification request device.

The confirmation information receiving unit may receive location information of the person requesting identity confirmation from the confirmation request device. The biometric information receiving unit may acquire biometric information of the person being confirmed and location information of the user terminal. The confirmation unit may generate a negative identity confirmation result if the location information of the person requesting identity confirmation and the location information of the user terminal do not match.

The biometric information receiving unit may receive biometric information of the person to be confirmed before the confirmation information receiving unit receives the identification information of the person to be confirmed from the confirmation request device. The confirmation unit may perform identity confirmation in advance based on a result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the person to be confirmed before the confirmation information receiving unit receives the identification information of the person to be confirmed. The confirmation result transmitting unit may transmit the result of the identity confirmation previously performed to the confirmation request device when the confirmation information receiving unit receives the identification information of the person to be confirmed from the confirmation request device.

The confirmation information receiving unit may receive location information of the person requesting identity verification from the confirmation request device. The biometric information receiving unit may acquire biometric information of the person being verified and location information of the user terminal. When the confirmation information receiving unit receives identification information of the person being verified from the confirmation request device, the confirmation result transmitting unit may transmit a positive identity verification result to the confirmation request device if (i) the location information of the person requesting identity verification matches the location information of the user terminal, and (ii) the result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the person being verified is a positive judgment.

When the confirmation information receiving unit receives identification information of the person to be confirmed from the confirmation requesting device, the confirmation result transmitting unit may transmit a positive identity confirmation result to the confirmation requesting device if (i) the location information of the person requesting identity confirmation matches the location information of the user terminal, (ii) the time elapsed since the timing of identity confirmation is less than a predetermined time, and (iii) the result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the person to be confirmed is a positive judgment.

The biometric information may be at least one of fingerprint information, palm print information, voice print information, user photo information, iris information, and finger vein information.

In a second aspect of the present invention, a program is provided. The program may cause a computer to function as the above-mentioned confirmation server. A computer-readable medium storing the program may be provided. The computer-readable medium may be a non-transitory computer-readable medium. The computer-readable medium may be a computer-readable recording medium.

Note that the above summary of the invention does not list all of the necessary features of the present invention. Also, subcombinations of these features may also be inventions.

1 illustrates a schematic diagram of an example of the configuration of a system 10 according to an embodiment. FIG. 2 is a block diagram showing the functional configuration of the confirmation server 40. The process sequence when a user 80a performs online shopping is shown. The process sequence for purchasing a product in a physical store is shown below. 13 shows the data structure of payment information stored in a payment information storage unit 186. 13 shows a data structure of user information stored in a user information storage unit 182. 13 shows a data structure of confirmation result information stored in a confirmation result information storage unit 184. 8 is an example of a screen 800 that the user terminal 82 displays in response to a request for biometric information. 13 is a flowchart showing a procedure of a process executed by the check server 40. 2 shows an example of a computer 2000 according to the present embodiment.

The present invention will be described below through embodiments of the invention, but the following embodiments do not limit the invention according to the claims. Furthermore, not all of the combinations of features described in the embodiments are necessarily essential to the solution of the invention. In the drawings, the same reference numbers may be used to designate the same or similar parts, and duplicate explanations may be omitted.

Figure 1 shows an example of the configuration of a system 10 in one embodiment. In this embodiment, the system 10 is a system for verifying the identity of a user who makes a credit card payment.

The system 10 includes a verification server 40, a credit confirmation request device 62a, a credit confirmation request device 62b, a store terminal 52, a personal computer 84, a user terminal 82a, a user terminal 82b, and a user terminal 82c. The verification server 40 is, for example, a server operated by a credit card issuer. In this embodiment, the user terminals 82a, 82b, and 82c may be collectively referred to as "user terminals 82". The user terminal 82 is a terminal with communication capabilities such as a smartphone. The credit confirmation request device 62a and the credit confirmation request device 62b may be collectively referred to as "credit confirmation request devices".

User 80a is the user of user terminal 82. User 80b is the user of user terminal 82b. User 80c is the user of user terminal 82c. In this embodiment, user 80a, user 80b, and user 80c may be collectively referred to as "user 80."

The user terminal 82 has installed thereon an identity verification application that works in conjunction with the verification server 40. The user terminal 82 is equipped with a fingerprint sensor that acquires a fingerprint. The user terminal 82 acquires the fingerprint of the user 80 using the fingerprint sensor in accordance with the control of the identity verification application. The user terminal 82 generates fingerprint information from the fingerprint of the user 80 using the fingerprint sensor and transmits it to the verification server 40. The verification server 40 stores the fingerprint information that the user terminal 82 has acquired in advance from each finger of the user 80.

User 80a is the owner of credit card 88a. User 80a uses personal computer 84 to visit a mail order site and purchase a product. User 80a pays for the product using credit card 88a. Credit confirmation request device 62a includes a web server function that provides the online mail order site, and makes the payment using the credit card.

User 80b is the owner of credit card 88b. User 80b pays for goods at store 60 using credit card 88b. Credit confirmation request device 62 is installed in store 60 and is an affiliated store terminal for making payments using a credit card.

User 80c uses his/her identity verification document 86 to enter into a consumer contract with the business operator at store 50. For example, store 50 is a sales outlet for a mobile communications business operator, and user 80c enters into a new contract for a mobile line.

The verification server 40, the personal computer 84, the credit verification request device 62a, the credit verification request device 62b, the store terminal 52, and the user terminal 82 are connected via a network 90. The network 90 may include a network such as a CAFIS network used for communication between the credit verification request device 62b and the credit verification request device 62a and the verification server 40. The network 90 may include a public network such as the Internet, a mobile communication network, a private network, etc.

First, an overview of the process when a user 80a purchases a product using a personal computer 84 at home 70 will be described. When the user 80a makes a payment request for the product using the personal computer 84, the credit confirmation request device 62a sends an authorization message including the identification information of the credit card 88a and the payment amount to the confirmation server 40. The authorization message is an example of an identity confirmation request. The confirmation server 40 identifies the user terminal 82a associated with the identification information of the credit card 88a and sends a biometric information request to the user terminal 82a.

When the user terminal 82a receives the biometric information request, it acquires the fingerprint of the user 80a and generates fingerprint information. The user terminal 82a transmits the fingerprint information to the verification server 40. The verification server 40 compares the preregistered fingerprint information of the user 80a with the fingerprint information received from the user terminal 82a, and determines that the identity of the user 80a has been confirmed if it determines that the preregistered fingerprint information of the user 80a matches the fingerprint information received from the user terminal 82a. When the identity of the user 80a has been confirmed and the current credit balance of the user 80a is equal to or less than the credit limit, the verification server 40 transmits an authorization code to the credit verification request device 62a. When the credit verification request device 62a receives the authorization code from the verification server 40, it performs sales processing.

Similarly, when user 80b pays for a product at the store 60, the credit confirmation request device 62b sends an authorization message including the identification information of the credit card 88b and the payment amount to the confirmation server 40. The confirmation server 40 identifies user 80b from the identification information of the credit card 88b and sends a biometric information request to the user terminal 82b. When the user terminal 82b receives the biometric information request, it obtains the fingerprint of the user 80b and sends the generated fingerprint information to the confirmation server 40. The confirmation server 40 compares the fingerprint information of user 80b registered in advance with the fingerprint information received from the user terminal 82b, and if it determines that they match, it determines that the identity of the user has been confirmed. When the identity of user 80b has been confirmed and the current credit balance of user 80b is equal to or less than the credit limit, the confirmation server 40 sends an authorization code to the credit confirmation request device 62a. When the credit confirmation request device 62a receives the authorization code from the confirmation server 40, it performs sales processing.

Next, a case will be described in which user 80c uses personal identification document 86 to make a consumer contract with a business operator at store 50. Store terminal 52 transmits information for identifying the individual written on personal identification document 86 to verification server 40. Verification server 40 identifies user 80c from the information received from store terminal 52 and transmits a biometric information request to user terminal 82c. When user terminal 82b receives the biometric information request, it acquires the fingerprint of user 80c and transmits the generated fingerprint information to verification server 40. Verification server 40 compares the fingerprint information of user 80b registered in advance with the fingerprint information received from user terminal 82c, and if it determines that they match, it determines that the identity of user 80c has been confirmed. If the identity of user 80c has been confirmed, verification server 40 transmits information associated with user 80c to store terminal 52. The information associated with user 80c may be, for example, the address or home telephone number of user 80c.

According to the system 10, the verification server 40 can perform identity verification using the fingerprint of the user 80 before performing authorization. This can prevent the fraudulent use of credit cards. In addition, the verification server 40 can provide personal information of the user 80 to an external party after performing identity verification using the fingerprint of the user 80. This can prevent the fraudulent use of personal information.

Figure 2 is a block diagram showing the functional configuration of the verification server 40. The verification server 40 comprises a processing device 100 and a storage device 180. The processing device 100 comprises a verification information receiving unit 110, a request information transmitting unit 120, a verification requester information acquiring unit 160, a biometric information receiving unit 130, a verification unit 140, and a verification result transmitting unit 150. The processing device 100 performs verification of the identity of the user 80. If the result of the verification is a positive determination, the processing device 100 performs a process of credit card settlement and providing personal information to an external party. The processing device 100 is realized by a dedicated or general-purpose arithmetic processing device such as a processor, a data communication device, etc.

The storage device 180 includes a user information storage unit 182, a confirmation result information storage unit 184, a payment information storage unit 186, and a confirmation request device information storage unit 188. The storage device 180 is realized by a non-volatile storage device. The storage device 180 may be provided separately from the confirmation server 40. The processing device 100 and the storage device 180 may be connected by a communication network. The storage device 180 may be a database system external to the confirmation server 40.

The user information storage unit 182 stores the biometric information and personal information of the user 80 in association with the identification information of the user 80. The confirmation result information storage unit 184 stores the result of identity verification by the processing device 100 in association with the identification information of the user 80. The payment information storage unit 186 stores information related to payment. The payment information storage unit 186 stores payment information such as credit card information.

The confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device that requests the identity verification. In this embodiment, the confirmation request device is the credit confirmation request device 62 or the store terminal 52. In this embodiment, the person to be confirmed is the user 80.

When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed, the request information sending unit 120 sends a request information for biometric information to the user terminal 82 associated with the person to be confirmed. The biometric information receiving unit 130 receives the biometric information of the person to be confirmed acquired by the user terminal 82. The biometric information may be, for example, fingerprint information, palm print information, voice print information, photo information such as a face photo of the user 80, iris information, and finger vein information of the user 80.

The confirmation unit 140 performs identity verification based on the result of matching the biometric information received by the biometric information receiving unit 130 with biometric information previously registered in association with the person to be verified. The verification result transmitting unit 150 transmits information indicating the result of identity verification by the confirmation unit 140 to the verification requesting device.

The confirmation information receiving unit 110 may further receive information indicating the person requesting the identity verification. The person requesting the identity verification is, for example, information for identifying the name of the mail order business operator or the name of the store 60. The information indicating the person requesting the identity verification may be, for example, an affiliated store identification number. The request information transmitting unit 120 may further transmit the information indicating the person requesting the identity verification to the user terminal 82 associated with the person to be confirmed. The user terminal 82 may present the information indicating the person requesting the identity verification and then acquire biometric information from the user 80. The confirmation information receiving unit 110 may receive a confirmation request device identifier (for example, a MAC address, etc.) that identifies the confirmation request device. The confirmation request device information storage unit 188 may store information indicating the person requesting the identity verification in association with the confirmation request device identifier. The identity verification requester information acquisition unit 160 may acquire information indicating the person requesting the identity verification by referring to the confirmation request device information stored in the confirmation request device information storage unit 188.

When the person to be verified is a user 80a or 80b of a credit card payment, the identification information of the person to be verified may be the identification information of the credit card 88 used by the user 80a or 80b for payment, and the verification request device may be a credit verification request device 62 that requests credit verification of the credit card payment. The information indicating the person requesting the identity verification may include store information indicating the store requesting the payment based on the credit card 88. The credit verification request is, for example, an authorization message. Then, the request information sending unit 120 sends the request information of the biometric information and the store information to the user terminal 82 associated with the credit card payment user. Then, the verification unit 140 performs identity verification and credit verification based on the result of matching between the biometric information received by the biometric information receiving unit 130 and the biometric information registered in advance in association with the credit card user. Then, the verification result sending unit 150 transmits information indicating the result of the identity verification and credit verification by the verification unit 140 to the credit verification request device 62. For example, the information indicating the result of the identity verification and credit verification may be, for example, an authorization code. Examples of parties requesting identity verification include stores where credit cards 88 are used, as well as mobile phone shops where identity verification is required to sign a mobile phone contract or update information, libraries when renewing library cards, election management committees accepting early votes, stores and financial institutions when entering into service contracts, etc.

The confirmation information receiving unit 110 may receive the location information of the person requesting the identity confirmation from the confirmation request device. For example, when the identity of the person to be confirmed who visited the physical store is confirmed, the credit confirmation request device 62b store terminal 52 transmits the location information of the physical store to the confirmation server 40. In this case, the request information transmitting unit 120 requests the user terminal 82 to transmit the location information together with the biometric information. When the biometric information receiving unit 130 acquires the biometric information of the person to be confirmed and the location information of the user terminal 82, the confirmation unit 140 generates a negative identity confirmation result when the location information of the person to be confirmed and the location information of the user terminal 82 do not match. Even if the result of matching between the biometric information received by the biometric information receiving unit 130 and the biometric information registered in advance in association with the person to be confirmed is a positive judgment, the confirmation unit 140 generates a negative identity confirmation result when the location information of the person to be confirmed and the location information of the user terminal 82 do not match. The confirmation request device information storage unit 188 may store the location information of the person to be confirmed in association with the confirmation request device identifier. Based on the confirmation request device identifier received by the confirmation information receiving unit 110, the identity verification requester information acquiring unit 160 may refer to the confirmation request device information stored in the confirmation request device information storage unit 188 to acquire location information of the person requesting identity verification.

The biometric information receiving unit 130 may receive the biometric information of the person to be confirmed before the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device. The confirmation unit 140 may perform identity confirmation in advance based on the result of matching the biometric information received by the biometric information receiving unit 130 with biometric information previously registered in association with the person to be confirmed before the confirmation information receiving unit 110 receives the identification information of the person to be confirmed. The confirmation unit 140 stores the identity confirmation previously performed in the confirmation result information storage unit 184. When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device, the confirmation result sending unit 150 sends the result of the identity confirmation previously performed to the confirmation request device. When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device, the confirmation unit 140 sends the result of the identity confirmation previously performed to the confirmation request device on the condition that the time elapsed from the execution timing of the identity confirmation is less than a predetermined time.

When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device, it is preferable that the biometric information receiving unit 130 acquires the biometric information of the person to be confirmed and the location information of the user terminal 82. It is also preferable that the confirmation information receiving unit 110 receives the location information of the person requesting the identity confirmation from the confirmation request device. When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device, the confirmation result transmitting unit 150 may transmit a positive identity confirmation result to the confirmation request device if (i) the location information of the person requesting the identity confirmation matches the location information of the user terminal 82, and (ii) the result of matching the biometric information received by the biometric information receiving unit 130 with the biometric information registered in advance in association with the person to be confirmed is a positive judgment.

In addition, the biometric information receiving unit 130 may receive the biometric information of the person to be confirmed, the time when the user terminal 82 acquired the biometric information, and the location information of the user terminal 82 when the biometric information was acquired, before the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device. When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device, the confirmation result transmitting unit 150 may transmit a positive identity confirmation result to the confirmation request device if (i) the location information of the person requesting the identity confirmation and the location information of the user terminal 82 when the biometric information was acquired match, (ii) the time elapsed since the time when the user terminal 82 acquired the biometric information is less than a predetermined time, and (iii) the result of matching between the biometric information received by the biometric information receiving unit 130 and the biometric information registered in advance in association with the person to be confirmed is a positive judgment. In addition, whether or not the location information matches may be determined by determining whether or not the distance between the location indicated by the location information of the person requesting the identity confirmation and the location information of the user terminal 82 when the biometric information was acquired is equal to or less than a predetermined distance. This makes the technology applicable to cases where the consistency of biometric information is determined in advance.

When the confirmation information receiving unit 110 receives the identification information of the person to be confirmed from the confirmation request device, the confirmation result transmitting unit 150 may transmit a positive identity confirmation result to the confirmation request device if (i) the location information of the person requesting identity confirmation matches the location information of the user terminal 82, (ii) the time elapsed since the timing of execution of the identity confirmation is less than a predetermined time, and (iii) the result of matching the biometric information received by the biometric information receiving unit 130 with the biometric information previously registered in association with the person to be confirmed is a positive judgment.

Figure 3 shows the processing sequence when user 80a does online shopping. Here, we explain the case where user 80a uses personal computer 84 to access a mail-order site and makes a credit card payment using credit card 88a.

When the user 80a issues a payment instruction for a product via the personal computer 84, a payment request is sent to the credit confirmation request device 62 (S300). The credit confirmation request device 62a sends an authorization message to the confirmation server 40 (S302). The authorization message contains the identification information of the credit card 88a, the payment amount, and the identification information of the affiliated store conducting the mail order.

When the confirmation information receiving unit 110 in the confirmation server 40 receives the authorization message, the request information sending unit 120 identifies the user terminal 82a associated with the member ID of the credit card 88a and sends a biometric information request to the identified user terminal 82a (S304). The biometric information request may include the name of the affiliated store, the payment amount, etc.

When the user terminal 82a receives the biometric information request, it displays the affiliated store name, payment amount, etc., and activates the fingerprint sensor to obtain the fingerprint of the user 80a. After obtaining the fingerprint of the user 80a, the user terminal 82a transmits the fingerprint information to the verification server 40 (S306).

In the verification server 40, when the biometric information receiving unit 130 receives the fingerprint information, the verification unit 140 compares the fingerprint information received by the biometric information receiving unit 130 with the fingerprint information stored in the user information storage unit 182 in association with the member ID of the credit card 88a to generate a matching result (S308). If the verification unit 140 determines that the fingerprint information received by the biometric information receiving unit 130 and the fingerprint information stored in the user information storage unit 182 in association with the member ID of the credit card 88a are of the same person, it generates a positive matching result, and if it determines that the fingerprint information stored in the user information storage unit 182 in association with the member ID of the credit card 88a are not of the same person, it generates a negative matching result. If the verification unit 140 generates a positive matching result, it obtains the credit limit and remaining credit of the credit card 88a and determines whether or not the payment amount included in the authorization message can be paid by credit card (S310). If it is determined that credit card payment is possible, an authorization code is sent to the credit confirmation request device 62a (S312).

When the credit confirmation request device 62a receives the authorization code from the confirmation server 40, it performs sales processing (S314), and when the sales processing is completed, it sends a payment completion notification to the personal computer 84.

Figure 4 shows the processing sequence when purchasing a product at a physical store. Here, we explain the case where user 80b performs identity verification based on fingerprint information in advance when purchasing a product at store 60.

For example, while waiting in line at the register in store 50, user 80b completes identity verification using biometric information. For example, while waiting in line at the register, user 80b acquires user 80b's fingerprint with user terminal 82b. User terminal 82b sends a pre-verification request including the acquired fingerprint information to verification server 40. User terminal 82b sends the fingerprint information to verification server 40 together with information indicating the current location of user terminal 82b.

In the verification server 40, when the biometric information receiving unit 130 receives the fingerprint information, the verification unit 140 acquires the fingerprint information stored in the user information storage unit 182 in association with the member ID of the credit card 88b corresponding to the identification information of the user terminal 82b, and compares the acquired fingerprint information with the fingerprint information received by the biometric information receiving unit 130 (S404). The verification unit 140 stores the fingerprint information comparison result and the location information of the user terminal 82b in the verification result information storage unit 184 in association with the member ID of the credit card 88b.

When user 80b's turn comes to the register and he/she uses credit card 88b to make a credit card payment, credit confirmation request device 62b sends an authorization message to confirmation server 40 (S406). The authorization message contains the identification information of the affiliated store.

In the verification server 40, when the verification information receiving unit 110 receives the authorization message, the verification unit 140 reads the matching result associated with the member ID of the credit card 88b and the location information of the user terminal 82b from the verification result information storage unit 184. If the matching result is a positive judgment and the location information of the store specified from the member store's identification information matches the location information read from the verification result information storage unit 184, it is determined that the identity of the user has been verified. In this case, the verification unit 140 obtains the credit limit and remaining balance of the credit card 88b and determines whether or not the payment amount included in the authorization message can be paid by credit card (S410). If it is determined that credit card payment is possible, the verification unit 140 transmits an authorization code to the credit verification request device 62b (S412).

When the credit confirmation request device 62b receives the authorization code from the confirmation server 40, it performs sales processing (S414). This completes the payment using the credit card 88b.

In this way, user 80b can complete identity verification based on fingerprint information in advance. This allows user 80b to reduce the time it takes to verify his or her identity at the cash register.

Figure 5 shows the data structure of the payment information stored in the payment information storage unit 186. The payment information stores the member ID, card number, credit limit, expiration date, remaining balance, online usage confirmation information, and brick-and-mortar usage confirmation information in association with each other.

"Member ID" is the identification information of the credit card member. "Card number" indicates the credit card number. "Credit limit" indicates the credit card member's credit card transaction credit limit. "Expiration date" indicates the expiration date until which the credit card 88 can be used. "Available balance" indicates the current available balance of the credit card 88.

"Internet use verification information" indicates whether or not identity verification based on fingerprint information is performed when purchasing a product through Internet shopping. "Yes" indicates that identity verification based on fingerprint information is performed when shopping online, and "No" indicates that identity verification based on fingerprint information is not performed when shopping online.

"Verification information when using a physical store" indicates whether or not identity verification based on fingerprint information is performed when purchasing a product at a physical store. "Yes" indicates that identity verification based on fingerprint information is performed when purchasing a product at a physical store, and "No" indicates that identity verification based on fingerprint information is not performed when purchasing a product at a physical store.

Figure 6 shows the data structure of user information stored in the user information storage unit 182. The user information storage unit 182 stores the user ID, member ID, biometric information, user terminal ID, personal information, and disclosure range.

"User ID" is identification information of users including user 80a, user 80b, and user 80c. "Member ID" is identification information of the card member, as described above.

"Biometric information" is pre-registered fingerprint information. Fingerprint information is registered in advance by each user 80. For example, the user terminal 82 registers the fingerprint of the user 80 acquired by a fingerprint sensor of the identity verification application user terminal 82. The fingerprint information may be the fingerprint image itself, or may be information indicating features extracted from the fingerprint image.

The "user terminal ID" is information that identifies the user terminal 82. The "user terminal ID" is used by the request information sending unit 120 to send a biometric information request to the identity verification application of the user terminal 82 via push notification.

"Personal information" includes multiple items related to personal information, such as the user's name, address, date of birth, telephone number, email address, driver's license number, and My Number. "Scope of disclosure" is information that indicates the scope of disclosure of personal information. For example, "scope of disclosure" indicates a combination of the disclosure recipient and the disclosure items that are permitted to be disclosed to that recipient. The disclosure recipient indicates the type of disclosure recipient, such as a public institution or a general store. The disclosure items are one or more items out of the multiple items included in "personal information." This makes it possible to restrict the disclosure items for each disclosure recipient. For example, it is possible to restrict disclosure of telephone numbers and addresses to public institutions and only telephone numbers to general stores.

Figure 7 shows the data structure of the confirmation result information stored in the confirmation result information storage unit 184. The confirmation result information storage unit 184 stores the user ID, biometric information, confirmation result, confirmation request ID, location information, and time in association with each other.

As described above, "user ID" is identification information of users including user 80a, user 80b, and user 80c. "Biometric information" is biometric information received from user terminal 82. The "biometric information" in the confirmation result information storage unit 184 is fingerprint information received by the biometric information receiving unit 130. In other words, the "biometric information" is fingerprint information received by the biometric information receiving unit 130 in response to the request information sending unit 120 sending a biometric information request to the user terminal 82, or fingerprint information included in the advance confirmation request received from the user terminal 82.

"Confirmation result" is information indicating the result of fingerprint matching by the confirmation unit 140. "OK" indicates a positive judgment, and "NG" indicates a negative judgment.

"Location information" includes latitude and longitude information received from the user terminal 82. "Time" indicates the time when identity verification or fingerprint information matching was performed.

Figure 8 is an example of a screen 800 that the user terminal 82 displays in response to a biometric information request. The screen in Figure 8 is displayed on the user terminal 82 under the control of the identity verification application.

Screen 800 includes object 810, object 820, and send button 830. Object 810 is a text object that indicates the name of the store requesting identity verification. Object 820 is a text object that indicates the payment amount. In this way, screen 800 displays information indicating the name of the store used by user 80 and the payment amount, allowing user 80 to decide whether or not to obtain a fingerprint.

The send button 830 is enabled when fingerprint acquisition is completed using the touch key serving as the fingerprint sensor 802. When the send button 830 is selected by the user 80 after the fingerprint information is acquired by the fingerprint sensor 802, the user terminal 82 transmits the fingerprint information acquired by the fingerprint sensor 802 to the verification server 40.

Figure 9 is a flowchart showing the procedure of the process executed by the verification server 40. The process of the flowchart in Figure 9 is mainly executed by the processing device 100 of the verification server 40. The process of the flowchart in Figure 9 is started when the verification information receiving unit 110 receives a request for personal identification from the credit verification request device 62 or the store terminal 52, or when the biometric information receiving unit 130 receives a request for advance verification from the user terminal 82. Note that in the explanation of Figure 9, the process will mainly be explained when making a credit card payment.

At S900, it is determined whether the received information is a personal identification request (authorization message) from the credit confirmation request device 62 or a pre-confirmation request from the user terminal 82.

If it is determined in step S900 that the received information is a pre-confirmation request, the confirmation unit 140 compares the fingerprint information included in the pre-confirmation request with the fingerprint information stored in the "biometric information" of the user information shown in FIG. 6 (S930), records the fingerprint information comparison result in the confirmation result information of FIG. 6 (S932), and ends the processing of this flowchart.

If it is determined in S900 that the received information is a request for identity verification, then in S902 the verification unit 140 determines whether or not to perform identity verification. If it is determined that identity verification is not to be performed, the process proceeds to S916, and if it is determined that identity verification is to be performed, the process proceeds to S904. The verification unit 140 determines whether or not to perform identity verification based on the "Internet usage confirmation information" and "physical store usage confirmation information" shown in FIG. 5. For example, based on the business type information and affiliated store information included in the authorization message, if the authorization message is from an affiliated store that conducts mail order sales, it may determine whether or not to perform identity verification based on the Internet usage confirmation information. On the other hand, based on the business type information and affiliated store information included in the authorization message, if the authorization message is from an affiliated store that does not conduct mail order sales, it may determine whether or not to perform identity verification based on the physical store usage confirmation information.

In S904, the confirmation unit 140 determines whether or not identity verification has been performed in advance. For example, the confirmation unit 140 determines whether or not identity verification has been performed in advance by referring to the "location information" and "time information" of the confirmation result information shown in FIG. 7. For example, the confirmation unit 140 determines that identity verification has been performed when (1) an authorization message has been received from an affiliated store that has a physical store that sells products at a retail store based on the business type information and affiliated store information included in the authorization message, and (2a) the "location information" of the confirmation result information in FIG. 7 is close to the location of the affiliated store's physical store, (2b) the difference between the "time" of the confirmation result information in FIG. 7 and the current time is shorter than a predetermined time, and (2c) there is confirmation result information in which the "confirmation result" of the confirmation result information in FIG. 7 is "OK".

If it is determined that identity verification has been performed, the process proceeds to S914. If it is determined that identity verification has not been performed, in S906, the request information sending unit 120 sends a biometric information request to the user terminal 82. At this time, the request information sending unit 120 identifies the member ID from the identification information of the credit card 88, and identifies the user terminal 82 to which the biometric information request is to be sent by identifying the member ID associated with the member ID with reference to the user information in FIG. 6.

Next, in S908, the biometric information receiving unit 130 receives fingerprint information from the user terminal 82. The confirmation unit 140 compares the fingerprint information associated with the member ID in the user information in FIG. 6 with the received fingerprint information (S910), and records the comparison result in the confirmation result information storage unit 184 (S912).

In S914, the confirmation unit 140 judges the result of the fingerprint information match. If a positive match is obtained as a result of the fingerprint information match, in S916, processing after identity confirmation is performed. Examples of processing after identity confirmation when making a credit card payment include confirmation of the credit limit based on the payment amount, remaining balance, and credit limit, and generation of an authorization code. In S918, the confirmation result transmission unit 150 transmits the processing result to the sender of the identity confirmation request. For example, the confirmation result transmission unit 150 transmits an authorization code to the credit confirmation request device 62.

If it is determined in step S914 that a negative match result has been obtained as a result of matching the fingerprint information, then in step S920 the confirmation result sending unit 150 notifies the sender of the identity confirmation request that identity confirmation has not been possible. For example, the confirmation result sending unit 150 sends an authorization NG to the credit confirmation request device 62.

The flowchart shown in FIG. 9 mainly describes the process for credit card payment. However, the process can also be applied to the process when the store terminal 52 requests identity verification or when the store terminal 52 requests personal information. For example, when an identity verification request including a driver's license number is received from the store terminal 52, in S906 the request information sending unit 120 may refer to the personal information in the user information, identify the user terminal ID associated with the driver's license number included in the identity verification request, and send a biometric information request. In addition, in S916 the confirmation unit 140 may refer to the user information to identify items to be disclosed to the store terminal 52, and the confirmation result sending unit 150 may send the personal information of the identified items to the store terminal 52.

The credit card 88 described above is an example of a payment card. Payment cards may include debit cards, electronic money cards, etc. A payment card is also an example of a payment device. A payment device may include a mobile terminal such as a smartphone that has payment functions such as a credit payment function, an electronic money payment function, and a points payment function.

As described above, the verification server 40 can provide a secure payment service that performs credit card payments after verifying the identity of the user. With the method of verifying the identity of the user using the verification server 40, even if the user terminal 82 is stolen, the probability of the user terminal 82 being used fraudulently can be significantly reduced. As described in relation to FIG. 7, the verification server 40 records the fingerprint information received from the user terminal 82, so that the fingerprint information can be used in criminal investigations. In addition, even if the user 80 is forced to use a different user terminal 82 after purchasing a new user terminal 82 or sending the user terminal 82 that he or she normally uses for repairs, the user can be authenticated without having to re-register the fingerprint information in the user terminal 82.

As described above, the verification server 40 can provide personal information to the store terminal 52, etc. after performing fingerprint matching. In this way, the verification server 40 can provide a secure information bank service that provides personal information after performing identity verification.

The verification server 40 can provide various services based on identity verification, in addition to credit card settlement services and personal information provision services. For example, the verification server 40 can provide a secure identity verification service based on fingerprint information matching. Examples of destinations for such identity verification services include web servers. For example, when the verification server 40 is used as a login authentication means for a web service, the verification server 40 receives a request from the web server, acquires fingerprint information of the user 80 from the user terminal 82, performs fingerprint matching, and transmits the result of identity verification based on fingerprint matching to the web server. The verification server 40 also receives information such as the My Number, name, and date of birth from an external information bank server or local government server, identifies the user terminal 82 based on the received information, performs identity verification of the user 80 based on fingerprint matching, and transmits the result of identity verification to the external information bank server or local government server.

The following supplementary notes are further disclosed regarding the above embodiment: The check server 40 may be a check server having the following configuration.
[Additional Note 1] (Send confirmation information to the confirmation requester)
a confirmation information receiving unit that receives identification information of a person to be confirmed from a confirmation request device that requests the person to be confirmed;
a transmission unit that transmits information enabling identity verification to the verification request device based on a user instruction received from a user terminal;
A verification server comprising:
[Appendix 2] (receives designation of confirmation information from confirmation request device)
Further comprising a designated information acquisition unit for designating a type of the confirmation information.
2. The validation server of claim 1.
[Supplementary Note 3] (Transmitting an image of an identification medium or data of an identification medium)
The verification information is any one of driver's license information, health insurance card information, My Number card information, passport information, and identification medium information (employee ID card, staff ID card, membership card, etc.).
3. The verification server according to claim 2.

Figure 10 shows an example of a computer 2000 according to the present embodiment. A program installed on the computer 2000 can cause the computer 2000 to function as an apparatus such as the verification server 40 according to the embodiment or each part of the apparatus, to perform operations associated with the apparatus or each part of the apparatus, and/or to perform a process or steps of the process according to the embodiment. Such a program can be executed by the CPU 2012 to cause the computer 2000 to perform specific operations associated with some or all of the blocks of the process steps and block diagrams described herein.

The computer 2000 according to this embodiment includes a CPU 2012 and a RAM 2014, which are interconnected by a host controller 2010. The computer 2000 also includes a ROM 2026, a flash memory 2024, a communication interface 2022, and an input/output chip 2040. The ROM 2026, the flash memory 2024, the communication interface 2022, and the input/output chip 2040 are connected to the host controller 2010 via the input/output controller 2020.

The CPU 2012 operates according to the programs stored in the ROM 2026 and RAM 2014, thereby controlling each unit.

The communication interface 2022 communicates with other electronic devices via a network. The flash memory 2024 stores programs and data used by the CPU 2012 in the computer 2000. The ROM 2026 stores programs such as boot programs executed by the computer 2000 upon activation and/or programs that depend on the hardware of the computer 2000. The input/output chip 2040 may also connect various input/output units such as a keyboard, mouse, and monitor to the input/output controller 2020 via input/output ports such as a serial port, a parallel port, a keyboard port, a mouse port, a monitor port, a USB port, an HDMI port, etc.

The programs are provided via a computer-readable medium such as a CD-ROM, DVD-ROM, or memory card, or a network. RAM 2014, ROM 2026, or flash memory 2024 are examples of computer-readable media. The programs are installed in flash memory 2024, RAM 2014, or ROM 2026, and executed by CPU 2012. Information processing described in these programs is read by computer 2000, and brings about cooperation between the programs and the various types of hardware resources described above. An apparatus or method may be constructed by realizing the operation or processing of information according to the use of computer 2000.

For example, when communication is performed between computer 2000 and an external device, CPU 2012 may execute a communication program loaded into RAM 2014 and instruct communication interface 2022 to perform communication processing based on the processing described in the communication program. Under the control of CPU 2012, communication interface 2022 reads transmission data stored in a transmission buffer processing area provided in a recording medium such as RAM 2014 or flash memory 2024, transmits the read transmission data to a network, and writes received data received from the network to a reception buffer processing area or the like provided on the recording medium.

The CPU 2012 may also cause all or a necessary portion of a file or database stored on a recording medium such as a flash memory 2024 to be read into the RAM 2014, and perform various types of processing on the data on the RAM 2014. The CPU 2012 then writes the processed data back to the recording medium.

Various types of information, such as various types of programs, data, tables, and databases, may be stored in the recording medium and subjected to information processing. The CPU 2012 may execute various types of processing, including various types of operations, information processing, conditional judgment, conditional branching, unconditional branching, information search/replacement, etc., described herein and specified by the instruction sequence of the program, on the data read from the RAM 2014, and write back the results to the RAM 2014. The CPU 2012 may also search for information in a file, database, etc. in the recording medium. For example, when a plurality of entries each having an attribute value of a first attribute associated with an attribute value of a second attribute are stored in the recording medium, the CPU 2012 may search for an entry that matches a condition in which an attribute value of the first attribute is specified from among the plurality of entries, read the attribute value of the second attribute stored in the entry, and thereby obtain the attribute value of the second attribute associated with the first attribute that satisfies a predetermined condition.

The above-described programs or software modules may be stored on a computer-readable medium on the computer 2000 or in the vicinity of the computer 2000. A recording medium such as a hard disk or RAM provided in a server system connected to a dedicated communication network or the Internet can be used as the computer-readable medium. The programs stored in the computer-readable medium may be provided to the computer 2000 via the network.

A program installed in computer 2000 and causing computer 2000 to function as confirmation server 40 may act on CPU 2012, etc., to cause computer 2000 to function as each part of confirmation server 40. When the information processing described in these programs is loaded into computer 2000, it functions as each part of confirmation server 40, which is a concrete means in which software and the various hardware resources described above work together. These concrete means then realize the calculation or processing of information according to the intended use of computer 2000 in this embodiment, thereby constructing a unique confirmation server 40 according to the intended use.

Various embodiments have been described with reference to block diagrams. In the block diagrams, each block may represent (1) a stage of a process in which an operation is performed or (2) a portion of an apparatus responsible for performing an operation. Particular stages and portions may be implemented by dedicated circuitry, programmable circuitry provided with computer-readable instructions stored on a computer-readable medium, and/or a processor provided with computer-readable instructions stored on a computer-readable medium. Dedicated circuitry may include digital and/or analog hardware circuitry, and may include integrated circuits (ICs) and/or discrete circuits. Programmable circuitry may include reconfigurable hardware circuitry, including logic AND, logic OR, logic XOR, logic NAND, logic NOR, and other logic operations, memory elements such as flip-flops, registers, field programmable gate arrays (FPGAs), programmable logic arrays (PLAs), and the like.

A computer-readable medium may include any tangible device capable of storing instructions that are executed by a suitable device, such that the computer-readable medium having instructions stored thereon constitutes at least a portion of a product that includes instructions that can be executed to provide a means for performing the operations specified in a process or block diagram. Examples of computer-readable media may include electronic storage media, magnetic storage media, optical storage media, electromagnetic storage media, semiconductor storage media, and the like. More specific examples of computer-readable media may include floppy disks, diskettes, hard disks, random access memories (RAMs), read-only memories (ROMs), erasable programmable read-only memories (EPROMs or flash memories), electrically erasable programmable read-only memories (EEPROMs), static random access memories (SRAMs), compact disk read-only memories (CD-ROMs), digital versatile disks (DVDs), Blu-ray disks, memory sticks, integrated circuit cards, and the like.

The computer readable instructions may include either assembler instructions, instruction set architecture (ISA) instructions, machine instructions, machine-dependent instructions, microcode, firmware instructions, state setting data, or source or object code written in any combination of one or more programming languages, including object-oriented programming languages such as Smalltalk, JAVA, C++, etc., and conventional procedural programming languages such as the "C" programming language or similar programming languages.

The computer-readable instructions may be provided to a processor or programmable circuit of a general-purpose computer, special-purpose computer, or other programmable data processing apparatus, either locally or over a wide area network (WAN) such as a local area network (LAN), the Internet, etc., to execute the computer-readable instructions to provide a means for performing operations specified in the process steps or block diagrams described. Examples of processors include computer processors, processing units, microprocessors, digital signal processors, controllers, microcontrollers, etc.

Although the present invention has been described above using an embodiment, the technical scope of the present invention is not limited to the scope described in the above embodiment. It is clear to those skilled in the art that various modifications or improvements can be made to the above embodiment. Furthermore, the details described for a specific embodiment can be applied to other embodiments to the extent that they are not technically inconsistent. It is clear from the claims that such modifications or improvements can also be included in the technical scope of the present invention.

The order of execution of each process, such as operations, procedures, steps, and stages, in the devices, systems, programs, and methods shown in the claims, specifications, and drawings is not specifically stated as "before" or "prior to," and it should be noted that the processes may be performed in any order, unless the output of a previous process is used in a later process. Even if the operational flow in the claims, specifications, and drawings is explained using "first," "next," etc. for convenience, it does not mean that it is necessary to perform the processes in this order.

10 System 40 Verification server 50 Store 52 Store terminal 60 Store 62 Credit verification request device 70 Home 80 User 82 User terminal 84 Personal computer 86 Personal identification document 88 Credit card 90 Network 100 Processing device 110 Verification information receiving unit 120 Request information transmitting unit 130 Biometric information receiving unit 140 Verification unit 150 Verification result transmitting unit 180 Storage device 182 User information storage unit 184 Verification result information storage unit 186 Payment information storage unit 800 Screen 802 Fingerprint sensor 810 Object 820 Object 830 Send button 2000 Computer 2010 Host controller 2012 CPU
2014 RAM
2020 Input/Output Controller 2022 Communication Interface 2024 Flash Memory 2026 ROM
2040 Input/Output Chip

Claims (5)

a confirmation information receiving unit that receives identification information of a person to be confirmed and information indicating a person requesting the confirmation from a confirmation requesting device that requests the confirmation;
a request information sending unit that sends a request for biometric information and information indicating the requester to a user terminal associated with the person to be identified when the confirmation information receiving unit receives the identification information of the person to be identified and information indicating the person requesting the identity confirmation;
a biometric information receiving unit that receives the biometric information of the person to be identified acquired by a user terminal;
a verification unit that performs identity verification based on a result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the person to be verified;
a confirmation result transmission unit that transmits information indicating a result of the identity verification by the verification unit to the verification requesting device ;
The person to be confirmed is a user of credit card payment,
The identification information of the person to be confirmed is identification information of a credit card used by the user of the credit card payment for payment,
the confirmation request device is a credit confirmation request device that requests credit confirmation of the credit card payment,
the information indicating the person requesting the identity verification includes store information indicating a store requesting the credit card-based payment,
the confirmation unit performs the identity confirmation and the credit confirmation based on a result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the user of the credit card;
the confirmation result transmission unit transmits information indicating a result of the identity confirmation and the credit confirmation by the confirmation unit to the credit confirmation request device;
the biometric information receiving unit receives biometric information of the credit card user acquired by the user terminal, a time when the user terminal acquired the biometric information, and location information of the user terminal when the user terminal acquired the biometric information, before the confirmation information receiving unit receives from the credit confirmation request device the identification information of the credit card and information indicating the person requesting the identity confirmation;
the confirmation unit performs the identity verification in advance based on a result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the user of the credit card before the confirmation information receiving unit receives the identification information of the credit card and information indicating the requester of the identity verification from the credit verification request device;
The confirmation result transmission unit is
when the confirmation information receiving unit receives from the credit confirmation requesting device the identification information of the credit card and information indicating the person requesting the identity confirmation after the confirmation unit has performed the identity confirmation in advance, if (i) the location information of the person requesting the identity confirmation matches the location information of the user terminal when the user terminal acquired the biometric information, (ii) the elapsed time from the time the user terminal acquired the biometric information is less than a predetermined time, and (iii) the result of the identity confirmation performed in advance by the confirmation unit is a positive judgment, a positive identity confirmation result is transmitted to the credit confirmation requesting device,
If the confirmation unit has not performed the identity confirmation before the confirmation information receiving unit receives the identification information of the credit card and the information indicating the requester of the identity confirmation from the credit confirmation request device, the confirmation unit generates a positive identity confirmation result when a result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the user of the credit card payment is a positive judgment.
Verification server. The confirmation information receiving unit further receives location information of the store from the credit confirmation request device.
The validation server of claim 1 . A payment information storage section that stores, in association with the identification information of a credit card, first information indicating whether or not identity verification based on biometric information is to be performed when purchasing a product through mail order sales, and second information indicating whether or not identity verification based on biometric information is to be performed when purchasing a product at a store that sells products over the counter.
Further equipped with
The confirmation unit is
if the store indicated by the store information is a store that conducts mail-order sales, based on the credit card identification information and the first information received by the confirmation information receiving unit, determine whether or not to perform identity verification based on a comparison result between the biometric information received by the biometric information receiving unit and biometric information previously registered in association with the user of the credit card;
When the store indicated by the store information is a brick-and-mortar store that sells products over the counter, a determination is made as to whether or not to perform identity verification based on a result of matching the biometric information received by the biometric information receiving unit with biometric information previously registered in association with the user of the credit card, based on the identification information of the credit card received by the confirmation information receiving unit and the second information.
3. The verification server according to claim 1 or 2. 4. The verification server according to claim 1, wherein the biometric information is at least one of fingerprint information, palm print information, voice print information, user's photograph information, iris information, and finger vein information. A program for causing a computer to function as the confirmation server according to any one of claims 1 to 4 .

Images