JP2003242414A - Fee charging method, fee charging system, streaming contents distribution system, internet connection service system, service providing server, authentication fee charging server, fee charging program, and storage medium storing fee charging program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To conduct periodic fee charging work safely and at a low cost to be conducted in receiving communication service and streaming contents service provided by a plurality of unspecified service providers. <P>SOLUTION: In this method, a certification medium connected to a terminal is authenticated to sign information of periodic fee charge using a sign key paid out of an authentication fee charging server. Service to be followed by periodic fee charging is requested to a service providing server based on signed data. The signed data are delivered from the service providing server to the certification fee charging server. Periodic fee charging is thus conducted to signed information in the certification fee charging server. <P>COPYRIGHT: (C)2003,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a charging method, a charging system, a streaming content delivery system, an Internet connection service system, a service providing server, an authentication charging server, a charging program, and a storage medium storing the charging program, and more particularly, On a network such as the Internet, a charging method and a charging system, a streaming content delivery system, an Internet connection service system, a service providing server, and an authentication charging server in a small amount of instant payment system that periodically occurs for communication services and streaming services, and The present invention relates to a billing program and a storage medium storing the billing program.

[0002] More specifically, a small amount of instant prepaid or periodical prepaid billing that secures flexibility and safety at the time of billing in a highly public place such as a street terminal and is light in processing at a billing center. The present invention relates to a charging method, a charging system, a streaming content delivery system, an Internet connection service system, a service providing server, an authentication charging server, a charging program, and a storage medium storing the charging program.

[0003]

2. Description of the Related Art Conventionally, a prepaid card or a postpaid card for card authentication has been used as a charging means for periodically charging charges such as communication charges and call charges in public-use terminals such as public phones on the street. In some cases, communication and authentication for billing are performed between a center (a telephone exchange, an exchange or the like in the case of a telephone), which controls billing, and a terminal or a card for each billing that occurs periodically.

In addition, in the method of charging by notifying the service provider of a card ID such as a credit card number, the service requester who receives the service fully trusts the service provider of the notification destination and periodically With regard to the charges that occur, the service provider can freely charge by using the card ID once notified.

[0005]

However, in the system using a card such as a prepaid card or a postpaid card as the charging means, if the charging frequently occurs, the communication and the authentication frequently occur. There is a problem that costs and communication costs increase.
In particular, when an IC card or the like with enhanced security is used to perform authentication every time a charge is made, processing costs are extremely high.

[0006] Also, a card ID such as a credit card
In the method of notifying the service provider of the above, there is a risk of erroneous billing / overcharging from the service provider to the credit card company and unauthorized use of the card ID. Especially when purchasing streaming content from multiple unspecified service providers using the Internet, etc.
There is a great risk to the service requester who receives the service.

The present invention has been made in view of the above points, and in public-use terminals such as streets, services such as communication services and streaming contents provided by a plurality of unspecified service providers using the Internet or the like. Periodic billing that is performed when you receive a fee, ・ The cost of processing is low in the case of frequent billing, ・ High security (reliable and accurate billing from multiple service providers), and billing method Another object of the present invention is to provide a billing system, a streaming content delivery system, an internet connection service system, a service providing server, an authentication billing server, a billing program, and a storage medium storing the billing program.

[0008]

FIG. 1 is a diagram for explaining the principle of the present invention.

The present invention (claim 1) provides a plurality of authentication media,
Multiple purchase control terminals, multiple service providing servers and 1
In a billing method that consists of two authentication billing servers and bills transactions including purchase of contents on the network periodically, when the certification medium purchased by the service requester is connected to the purchase control terminal (step 1) , The authentication and billing server is requested to authenticate the authentication medium (step 2), and the authentication and billing server authenticates the authentication medium based on the authentication request from the purchase control terminal (step 3), and the authentication is successful. Then, a bill signature key for generating bill information, which is billing permission information for the medium ID for uniquely identifying the authentication medium, is generated (step 4),
It transmits to the purchase control terminal (step 5), and the purchase control terminal uses the bill signature key as the bill information, which is the information for permitting the charging that occurs periodically during the service as a payment procedure for the service providing server. The service request is generated (step 6) and transmitted to the service providing server to make a service request (step 7). When the service providing server receives the bill information, it is valid for the service provided by the bill information. (Step 8), and if the inspection is successful, the billing information is sent to the authentication billing server to make a billing start request (step 9). It is checked whether the bill of exchange information has been accepted, and if it has not been accepted, the bill of exchange information is confirmed using the bill of signature signing key (step 10). If it is confirmed that is correct, the periodic billing setting is made so that the payee specified by the bill information corresponding to the stored medium ID is paid the unit amount for each billing unit. Do (step 11),
The charging start notification is transmitted to the service providing server (step 12), the service providing server starts the requested service upon receiving the charging start notification (step 13), and the purchase control terminal requests the service. When the person instructed to terminate the service, the medium ID is specified to the authentication and billing server and a billing stop request is transmitted (step 14), and the certification and billing server executes the periodic billing corresponding to the medium ID. A process for stopping the charge including a process for discarding the setting is performed (step 15), and when the charge is stopped, a charge end notification is transmitted to the service providing server (step 1).
6) When the service providing server acquires the charge end notification, the service providing server ends the service for the purchase control terminal (step 17).

The present invention (claim 2) provides a plurality of authentication media,
In a billing method that comprises a plurality of purchase control terminals, a plurality of streaming content distribution servers, and one authentication billing server and periodically bills for streaming services on the network, the service requester purchases at the purchase control terminal. When the authentication medium is connected, the authentication / charging server is requested to authenticate the authentication medium, and the authentication / billing server authenticates the authentication medium based on the authentication request from the purchase control terminal. Is successful, a bill signature key for generating bill information that is billing permission information for the medium ID for uniquely identifying the authentication medium is generated and transmitted to the purchase control terminal, and the purchase control terminal, Information for permitting periodic charging during the service as a payment procedure for the streaming content distribution server. That the bill information generated by using the bill signing key by sending to the streaming content distribution server performs streaming service request,
Upon receiving the bill of exchange information, the streaming content distribution server checks whether the billing information is valid for the service provided, and if the check is successful, the billing information is sent to the authentication billing server to perform billing. When the billing information is received and the billing information is received, the authentication / billing server checks whether the billing information has been accepted. If not, the billing key is used to confirm the billing information, and the billing information is confirmed. When it is confirmed that the bill information is correct, the periodic billing is performed so that the payee designated by the bill information corresponding to the stored medium ID is paid the unit amount for each billing unit. Performs settings and sends a charging start notification to the streaming content distribution server, and the streaming content distribution server triggers the purchase control When the purchase control terminal starts the delivery of the requested streaming content, and the service requester instructs the service to end, the medium ID is specified to the authentication billing server and the billing stop request is sent. Then, the authentication billing server performs a billing stop process including a process of discarding the periodic billing setting corresponding to the medium ID, and when billing is stopped, transmits a billing end notification to the streaming content distribution server, When the streaming content distribution server acquires the charging end notification,
The distribution of the streaming content to the purchase control terminal ends.

The present invention (claim 3) provides a plurality of authentication media,
In a billing method comprising a plurality of purchase control terminals, one communication control server for controlling an internet gate device and one authentication billing server, the billing method periodically bills for transactions including content purchase on a network. In, when the authentication medium purchased by the service requester is connected, the authentication / billing server is requested to authenticate the authentication medium, and the authentication / billing server, based on the authentication medium authentication request from the purchase control terminal, Authenticate the authentication medium,
When the authentication is successful, a bill signature key for generating bill information, which is billing permission information for the medium ID for uniquely identifying the certification medium, is generated and transmitted to the purchase control terminal. As a payment procedure for the communication control server, bill information, which is information for permitting charging that occurs periodically during the service, is generated using a bill signature key and is transmitted to the communication control server, so that a service request is made. Then, the communication control server, when receiving the bill information, checks whether the bill information is valid for the service provided, and if the check is successful, the bill information is transmitted to the authentication billing server. When a billing start request is made and the billing information is received, the authentication billing server checks whether the billing information has been accepted, and if not, the billing signature key is used. Confirms the shape information, the 該手 type information that is confirmed correct medium has stored ID
To the payee specified from the bill information corresponding to, set the periodical billing so that the unit amount is paid for each billing unit, and send the billing start notification to the communication control server, Upon receiving the billing start notification, the communication control server grants the Internet gate device permission to connect to the Internet from the purchase control terminal, and the purchase control terminal receives a service end instruction from the service requester. , Specifies a medium ID to the authentication billing server, transmits a billing stop request, and the authentication billing server performs a billing stop process including a process of discarding the periodic billing setting corresponding to the medium ID, When the billing is stopped, the billing end notification is transmitted to the communication control server, and when the billing end notification is received, the communication control server controls the purchase to the Internet gate device. Revoke the permission to connect to the Internet from the terminal.

The present invention (claim 4) provides a plurality of authentication media,
Multiple purchase control terminals, multiple service providing servers and 1
In a billing method in the service providing server in a system consisting of two certification billing servers, which periodically bills for transactions including content purchase on the network, the billing key is generated from the certification billing server. Also, as a payment procedure, the bill information, which is the information for permitting the billing that occurs periodically during the service, is received, it is checked whether the bill information is valid for the service provided, and if the check is successful, , The bill information is transmitted to the authentication and billing server, and upon receipt of the billing start notification from the authentication and billing server, the requested service is started for the purchase control terminal and the billing end notification is received from the authentication and billing server. Then, the service for the purchase control terminal is terminated.

The present invention (claim 5) provides a plurality of authentication media,
Multiple purchase control terminals, multiple service providing servers and 1
A billing method in the certification billing server, which comprises one certification billing server and periodically bills for transactions including purchase of contents on the network, wherein the certification medium is based on a certification request of the certification medium from the purchase control terminal. When the authentication is successful, a bill signature key for generating bill information, which is billing permission information for the medium ID for uniquely identifying the certification medium, is generated and transmitted to the purchase control terminal. , When receiving the bill information from the purchase control terminal,
The bill information is checked to see if it has been accepted. If not, the bill signature key is used to confirm the bill information. If it is confirmed that the bill information is correct, it is saved. Periodic billing is set so that a unit amount is paid for each billing unit to the payee specified from the bill information corresponding to the medium ID, and a billing start notification is sent to the service providing server. When the request is sent and the charge stop request is received from the purchase control terminal, the charge stop process including the process of discarding the periodic charge setting corresponding to the medium ID is performed, and when the charge is stopped, the service providing server is charged. Send an end notification.

FIG. 2 is a block diagram showing the principle of the present invention.

The present invention (claim 6) provides a plurality of authentication media 1.
0, a plurality of purchase control terminals 200, a plurality of service providing servers 300 and a single authentication and billing server 100,
A charging system for periodically charging a transaction including content purchase on a network, wherein the purchase control terminal 200 connects the authentication charging server to an authentication charging server when an authentication medium purchased by a service requester is connected. Authentication request means 201 for requesting authentication of an authentication medium, and service providing server 30
Generate bill information, which is information for permitting billing that occurs periodically during the service as a payment procedure for 0, using the bill signature key acquired from the authentication billing server 100, and send it to the service providing server 300. According to the bill information generation means 202 for making a service request and the service end request from the service requester, a billing stop request means for designating a medium ID to the authentication billing server 100 and transmitting a billing stop request. 203 and
The authentication and billing server 100 authenticates the authentication medium based on the authentication request from the purchase control terminal 200, and when the authentication is successful, generates the bill information for the medium ID for uniquely identifying the authentication medium. Upon receipt of bill information from the purchase control terminal 200 via the service providing server 300 and the authentication result transmitting means 101 for generating the bill signature key and transmitting it to the purchase control terminal 200, whether the bill information has been accepted or not. If the bill information is confirmed to be correct by the bill information verifying means 102 for checking the bill information by using the bill signing key and the bill information is not accepted, the bill saving information is stored. The periodical billing is set so that the payment amount designated for each billing unit is paid to the payee specified from the bill information corresponding to the medium ID. It includes a billing setting means 103 for transmitting a billing start notification to the service providing server 300, and a process for discarding the periodic billing setting corresponding to the medium ID when a service end request is received from the purchase control terminal 200. If you stop billing and stop billing,
When the service providing server 300 receives the bill information from the purchase control terminal 200, the bill providing means 104 transmits a billing end notification to the service providing server 300. It is checked whether it is appropriate, and if the check is successful, the billing information is transmitted to the authentication billing server 100 to make a billing start requesting means 301 for making a billing start request, and the authentication billing server 100.
When a charge end notification is acquired from the service providing unit 302 that starts the service requested to the purchase control terminal 200 upon receipt of the charge start notification from the authentication charge server 100, the service to the purchase control terminal 200 is started. And a service ending means 303 for ending.

The present invention (Claim 7) is a service providing server which is connected to a plurality of purchase control terminals to which a plurality of authentication media are connected and one authentication / charging server via a network and provides a service on the network. When the bill control information, which is the information for permitting the charging that occurs periodically during the service, is received from the purchase control terminal, it is checked whether the bill support information is valid for the service provided and the inspection is performed. If the billing information is successful, the billing information is transmitted to the authentication billing server, and the billing start requesting means for making a billing start request and the purchase control terminal are triggered by the receipt of the billing start notification from the authentication billing server. The service providing means for starting the specified service and the service for ending the service for the purchase control terminal when the charge end notification is acquired from the authentication charge server Ryo and means.

According to the present invention (claim 8), a transaction including a plurality of purchase control terminals to which a plurality of authentication media are connected and a service providing server for providing a service via a network and including content purchase on the network. The authentication billing server that periodically bills the authentication medium, authenticates the authentication medium based on an authentication medium authentication request from the purchase control terminal, and uniquely identifies the authentication medium when the authentication is successful. Authentication result transmitting means for generating a bill signature key for generating bill information, which is billing permission information for the medium ID, and transmitting it to the purchase control terminal, and receiving the bill information during the service from the purchase control terminal. Then, the bill information verification means for checking whether or not the bill information has been received, and if the bill information is not received, the bill information verification means for confirming the bill information, and the bill information. When the verification means confirms that the bill information is correct, the unit payment is made for each billing unit to the payee designated by the bill information corresponding to the stored medium ID. Charging setting means for performing a general charging setting and transmitting a charging start notification to the service providing server, and when receiving a service end request from the purchase control terminal, the periodic charging setting corresponding to the medium ID is set. And a billing ending means for performing billing stop processing including discarding processing and transmitting a billing end notification to the service providing server when billing is stopped.

The present invention (Claim 9) includes a plurality of authentication media,
A streaming content delivery system comprising a plurality of purchase control terminals, a plurality of streaming content distribution servers, and one authentication and billing server, and periodically billing for a streaming service on a network, wherein the purchase control terminal is a service request. When an authentication medium purchased by a person is connected, the authentication requesting means for requesting the authentication and billing server to authenticate the authentication medium and the billing periodically generated during the service as a payment procedure for the streaming content distribution server are permitted. There is a service request means for requesting a streaming service by generating bill information, which is information for performing the billing, using a bill signature key and transmitting it to the streaming content distribution server, and a service end instruction from the service requester. And the authentication and billing server Medium I for uniquely specifying the medium
And a charge stop request means for transmitting a charge stop request by designating D, and the authentication charge server authenticates the authentication medium based on the authentication request of the authentication medium from the purchase control terminal, and the authentication is performed. If successful, a billing signature key for generating billing information, which is billing permission information for the medium ID, is generated, and authentication result transmitting means for transmitting the billing signature key to the purchase control terminal and billing information is received via the streaming distribution server. , Checks whether or not the bill of exchange information has been accepted, and if it has not been accepted, confirms the bill of exchange information using the bill of signature signature key, and when the bill of exchange information is confirmed to be correct, saves it. Periodic billing is set so that a unit amount of money is paid for each billing unit to the payee specified from the bill information corresponding to the medium ID, and the streaming content distribution server is set. When the charging setting means for transmitting the charging start notification and the charging stop request are received from the purchase control terminal, the charging stop processing including the processing for discarding the periodic charging setting corresponding to the medium ID is performed, and when the charging is stopped ,
When the billing information is received from the purchase control terminal, the streaming content distribution server receives the billing end means for transmitting the billing end notification to the streaming content distribution server, and the billing information distribution server determines that the billing information is valid for the service provided by the billing information. If there is a check, and if the check is successful, the billing information is transmitted to the authentication billing server, and the billing start request means for making a billing start request and the receipt of the billing start notification from the authentication billing server are used as a trigger. For purchase control terminals,
It has a distribution means for starting the distribution of the requested streaming content and a distribution ending means for ending the distribution of the streaming content to the purchase control terminal when the charging end notification is acquired from the authentication charging server.

The present invention (Claim 10) comprises a plurality of authentication media, a plurality of purchase control terminals, one communication control server for controlling the Internet gate apparatus, and one authentication / charging server, and includes content purchase on the network. An internet connection service system for periodically charging a transaction, wherein a purchase control terminal requests an authentication and billing server to authenticate the authentication medium when the authentication medium purchased by a service requester is connected. Authentication request means to
To generate bill information, which is information for permitting charging that occurs periodically during the service as a payment procedure for the communication control server, using the bill signature key acquired from the authentication billing server, and send it to the communication control server. Thus, when there is a service requesting means for making a service request and a service end request from the service requester, a medium ID for uniquely identifying the authentication medium is designated to the authentication and billing server, and a billing stop request is transmitted. The billing stop request means, and the authentication billing server authenticates the authentication medium based on the authentication request of the authentication medium from the purchase control terminal, and when the authentication is successful, generates bill information for the medium ID. When the bill information is received via the authentication result transmitting means for generating the bill signature key of the bill and transmitting it to the purchase control terminal and the communication control server, the bill information becomes If it is not accepted, the bill signature key is used to check the bill information, and if the bill information is confirmed to be correct, the bill ID is saved in the stored medium ID. A billing setting that performs periodic billing settings so that a unit amount is paid for each billing unit to the payee specified from the corresponding bill information, and sends a billing start notification to the communication control server. And a purchase control terminal, a charge stop process including a process of discarding the periodic charge setting corresponding to the medium ID is performed, and when the charge is stopped, the communication control server is charged. When the billing information is received from the purchase control terminal, the communication control server examines whether the billing information is valid for the service provided by the billing stopping means, and the examination succeeds. If you do By transmitting the billing information to the authentication and billing server, the billing start requesting means for making a billing start request and the receipt of the billing start notification from the certification and billing server trigger the Internet gate device to connect to the Internet from the purchase control terminal It has a gate open instructing means for giving permission of connection, and a gate close instructing means for revoking permission of internet connection from the purchase control terminal to the internet gate device when the billing end notification is acquired from the authentication billing server.

The present invention (Claim 11) is a service providing server, which is connected to a plurality of purchase control terminals to which a plurality of authentication media are connected and one authentication / charging server via a network and provides a service on the network. Is the billing program executed by the billing control terminal, and when the billing information, which is information for permitting billing that occurs periodically during the service, is received from the purchase control terminal, is the billing information appropriate for the service provided? If the check is successful, the billing information is transmitted to the authentication billing server, and the purchase control is triggered by the billing start request process for making a billing start request and the receipt of the billing start notification from the authentication billing server. When the service provision process for starting the requested service for the terminal and the charging end notification from the authentication charging server are acquired, the purchase control terminal And a service termination process to terminate the service against.

The present invention (Claim 12) is a transaction including a plurality of purchase control terminals to which a plurality of authentication media are connected, and a service providing server that provides a service via a network, including content purchase on the network. Is a billing program executed by the certification billing server that periodically bills the certification medium, and certifies the certification medium based on a certification request for the certification medium from the purchase control terminal. Medium ID for uniquely identifying the authentication medium
The billing signature key for generating billing information which is billing permission information, and the authentication result sending process for sending the billing signature key to the purchase control terminal, and the billing control terminal which permits the billing periodically generated during the service. When receiving the bill information which is information for checking the bill information, whether or not the bill information has been accepted, if not accepted, the bill signature key is used to confirm the bill information, and a bill information verification process, When the bill information is confirmed to be correct in the bill information verification process, payment of a unit amount for each billing unit is made to the payee specified from the bill information corresponding to the stored medium ID. Set the periodic billing to the service provisioning server, send the billing start notification to the service providing server, and receive the service end request from the purchase control terminal. And a charge end process of performing a charge stop process including a process of discarding the periodic charge setting corresponding to the ID and transmitting a charge end notification to the service providing server when the charge is stopped.

The present invention (Claim 13) is a transaction including a plurality of purchase control terminals to which a plurality of authentication media are connected, and a service providing server that provides a service via a network, and including content purchase on the network. 13. The program according to claim 12, which is a storage medium storing the authentication billing server that periodically bills a billing fee and a billing program executed by the service providing server, the program being executed by the service providing server. The program according to claim 11 is stored as a program to be stored and executed by the authentication / billing server.

As described above, according to the present invention, the bill signature key obtained by authenticating the authentication medium purchased in advance by the service requester and the information for determining the periodic charging method are generated. By issuing the bill of exchange information to the service providing server, and passing the bill of exchange information to the authentication / billing server, the authentication / billing server automatically sends the bill of exchange information to the authentication / billing server without giving instructions from the terminal or service providing server through communication. In addition, the terminal and the service providing server can make a periodical charge for the value information of the authentication medium.

Further, even when a service end request is made by the service requester, it is possible to surely stop the charging under the control of the terminal by the authentication cancellation notification to the charging server.

[0025]

BEST MODE FOR CARRYING OUT THE INVENTION Embodiments of the present invention will be described below with reference to the drawings.

FIG. 3 shows a system configuration on which the present invention is based.

As shown in the figure, the system on which the present invention is based comprises a plurality of authentication media 10, a plurality of purchase control terminals 200, a plurality of service providing servers 300 and a single authentication / charging server 100. It

Of these, the authentication medium 10 is a medium such as a card to which an identifier (medium ID) that can be used by connecting to the purchase control terminal 200 and which can uniquely identify each medium is assigned. By including the authentication from the billing server 100, it includes a function for guaranteeing that the medium is a valid medium.

The purchase control terminal 200 is a terminal that makes a request for a communication service or a streaming content distribution service to the service providing server 300 according to the operation of the service requester, and is connected when making a service request. By performing authentication control of the authentication medium and generation of bill information, the generated bill information is transmitted to the service providing server 300, and payment control is performed to the service providing server 300 from the value information associated with the medium ID. It is a terminal.

The service providing server 300 is a server that provides a service for periodically charging according to time, such as a communication service or a streaming content distribution service in response to a request from the purchase control terminal 200,
The billing information received at the time of the service request is passed to the authentication / charging server to make a charging start request, and the authentication / charging server 100
It is a server that starts a service when it receives a billing start notification from. The service provider having the service providing server 300 will receive the price corresponding to the charge amount by the settlement processing from the authentication charge server 100.

The authentication billing server 100 is a server that manages the value information associated with the medium ID of the authentication medium 10, and the authentication connected to the purchase control terminal 200 at the request of the purchase control terminal 200. The medium 10 is authenticated. Further, the authentication billing server 100 checks the validity of the bill information received by the billing start request from the service providing server 300, and at the same time, the medium ID in the bill information.
The value information associated with is billed according to the billing method specified in the bill information. Further, in the authentication / charging server 100, the service providing server 300
Pay the price corresponding to the billing amount.

Next, the operation will be described.

FIG. 4 is a sequence chart showing an operation as a premise of the system in the embodiment of the present invention.

First, the connected medium is authenticated within the range shown in the "medium authentication process" of FIG. 1, but before this, the authentication medium 1 is operated by an operation such as card insertion by the service requester.
0 is assumed to be connected to the purchase control terminal 200, and the "medium authentication process" is performed when the authentication medium 10 is connected, or a service requester issues a service request instruction. You may go after exiting or at another time.

In the "medium authentication process", first, the purchase control terminal 200 sends a medium authentication request to the authentication / charging server 100 (step 101) to request medium authentication for the connected authentication medium 10, Upon receiving the medium authentication request, the authentication / billing server 100 performs mutual authentication processing on the authentication medium 10 via the purchase control terminal 200 (step 102). (The purchase control terminal 200 mediates a message for medium authentication). Authentication medium 1
The authentication process for 0 performs a process according to the authentication function included in the authentication medium 10, but the medium ID of the authentication medium 10 and the medium in the authentication / charging server 100 are the valid medium for the medium ID by the authentication process. It can be confirmed, and there are the following methods.

The authentication medium 10 holds the medium ID and the secret data associated with the medium ID, and the authentication / billing server 100 also holds the medium ID and the secret data associated with the medium ID (or the data that can confirm the secret data ( Holds the decryption key, etc.)).

At the time of authentication, the medium ID stored in the authentication medium 10 is transmitted to the authentication / charging server 100, and the medium ID
Confirm the secret data associated with. The following several methods can be considered to confirm the secret data.

The secret data is also transmitted to the authentication / charging server 100, and the authentication / charging server 100 verifies the secret data (password method; secret data = positioned as password).

From the created data such as message authentication function (hash function), digital signature function, encryption function, etc., the random number data is transmitted from the authentication / charging server 100 and the secret data is used as a key in the medium 10. Response data is created by a method in which the secret data is difficult to guess, and the response data is returned to the authentication and billing server 100, so that the authentication and billing server 100 secret data (or
Confirm the response data using the key that can confirm the secret data (decryption key, etc.) (challenge and response method).

If necessary, the secret data of the medium ID and the secret data of the authentication / billing server 100 (or the data capable of confirming the secret data (decryption key, etc.) are updated.

By the method as described above, it is possible to confirm the medium ID and that the medium is a valid medium for the medium ID.

When the medium authentication is completed, the authentication / charging server 100
When it is confirmed that the medium ID and the medium are valid media for the medium ID, a bill signature key is generated corresponding to the medium ID, the medium of the medium ID has been authenticated, and the bill information is displayed at the start of charging. The bill signature key is stored as information for confirmation (step 103) and the bill signature key is transmitted to the purchase control terminal 200 as a medium authentication result (step 104).

Next, within the range shown in "Payment procedure" in FIG. 4, payment procedure is performed for periodical charges during services such as communication service and streaming content distribution service by generating and paying bill information. The processing is usually performed when the service requester issues a service request instruction.

In the "payment procedure", first, the bill ID is generated using the bill ID key and the like received from the certification / charging server 100 based on the medium ID of the authenticated certification medium 10 and the medium certification result (step 105). .

The bill information comprises: information for identifying the transaction; information for identifying the charging method; signature information; where the information for identifying the transaction is information that can uniquely identify the medium such as the medium ID. And so on. The information that identifies the charging method includes a payee that uniquely identifies the service provider, a charging unit amount, a charging unit (time, etc.) that determines a charging cycle, and an upper limit amount that limits the total charging amount. Consists of. In addition, the signature information uses a bill signing key that can be known only to the terminal that has performed the authentication, encrypts the transaction identification information and the billing method identification information, generates an electronic signature, and generates a message authentication identifier. The message authentication information and the like are generated by performing the above.

When the bill information is generated in step 105, the bill control information, which is the information for payment, is transmitted from the purchase control terminal 200 to the service providing server 300 (step 106), whereby communication service and When a service such as a streaming content delivery service is requested and the bill providing information is received, the service providing server 300 checks whether the information specifying the billing method in the bill information matches the billing condition for the service, and the billing information matches. Then, the bill information is transmitted as a billing start request to the authentication billing server 100 (step 107).

When the authentication billing server 100 receives the bill information in response to the billing start request, it fetches the medium ID which is the information for identifying the transaction in the bill information and fetches the medium I.
By checking whether the bill signature key is stored corresponding to D, it is checked whether the medium ID is authenticated. If it is certified, the bill signature key generated and stored corresponding to the medium ID. Is used to check whether the signature information in the bill information is correct (in other words, whether the information identifying the transaction and the information identifying the billing method are correct) (step 108). If the signature information is successfully checked in the bill information check, a billing start notification is sent to the service providing server 300 (step 10).
A charge start process is performed together with 9) (step 110).

In the billing start process (step 110), a unit amount is paid for each billing unit to the payee designated by the value information held in the authentication billing server 100 in correspondence with the medium ID. Set the periodical charging so that In addition, in the authentication billing server 100, after the periodic billing is set, thereafter, there is a billing stop request, the designated upper limit amount is reached, or the upper limit value of the value information set in the medium ID is reached. Until that is reached, periodic billing will continue.

Upon receiving the billing start notification, the service providing server 300 starts services such as communication service and streaming content distribution to the purchase control terminal 200 (step 111).
You will receive the service.

Next, within the range shown in "Billing process" in FIG. 4, according to the periodic billing setting in the authentication billing server 100, with respect to the value information held corresponding to the set medium ID. A unit amount of money is charged for each charge unit (step 112), and a settlement log is recorded so that payment is made to a designated payee. The authentication and billing server 100 continues the periodic billing until there is a billing stop request, the designated upper limit is reached, or the upper limit of the value information set in the medium ID is reached.

Here, in the authentication / billing server 100, the medium ID
When the prepaid balance is managed, the charge for the value information is subtracted from the prepaid balance, and when the authentication charging server 100 is the postpaid method, the charge for the value information is the postpaid settlement amount. Will be added to.

Finally, the charge status for the medium ID is discarded within the range shown in "charge end processing" in FIG.

The "charging end process" is performed when a card is removed or a service end instruction is issued (step 113): When the authentication medium 10 is disconnected from the purchase control terminal 200; Is instructed;

First, when the purchase control terminal 200 transmits the medium ID to the authentication billing server 100 in a billing stop request message (step 114), as billing stop processing,
By deleting the periodical charging setting corresponding to the medium ID, the charging process for the specified medium ID is stopped,
The usage statement indicating how much the total periodic charging is charged is transmitted to the purchase control terminal 200 (step 116). However, the process of transmitting the usage statement is not necessarily required.

Further, the authentication billing server 100 sends a billing end notification (step 117) to notify the service providing server 300 that the billing has been accommodated, and the service providing server 300 performs a service end process ( Step 118).

In addition to the charging end processing shown in FIG. 4, the authentication charging server 100 also stops charging in the following cases.

When the total charge amount reaches the upper limit amount in the bill after performing the charge start process.

When the upper limit of the value information set in the medium ID is reached (in the case of the prepaid method, the remaining amount is exhausted).

When a message requesting to stop charging is received from the service providing server 300.

In the system of the present invention, on the premise of the above-mentioned system, the fee that is periodically generated is charged.

In the purchase control terminal 200, an IC card (ID) that holds value information in the authentication and billing server 100 is used as a payment means when receiving a communication service or a distribution service such as streaming from the service providing server 300.
An authentication medium 10 capable of ID authentication such as a card) is used.

First, before the service is started, the service requester connects the purchase control terminal 200 with the authentication medium 10 previously purchased from the business operator having the authentication / charging server 100.
The terminal requests the authentication / charging server 100 to authenticate the connected authentication medium.

When the authentication / billing server 100 successfully authenticates the authentication medium 10, the authentication / billing server 100 generates a key (billing signature key) for generating billing permission information (billing signature information) for the medium ID, and the purchase control terminal. Send to 200. The bill signature key must be sent in a form that cannot be seen by a third party other than the purchase control terminal 200.

At the start of the service, the purchase control terminal 200
As a payment procedure from the service providing server 100, the service request such as the communication service and the stream content distribution service is performed by transmitting information (billing information) for permitting the charging that occurs periodically during the service.

This bill information includes a payee for uniquely identifying the service provider, a unit amount of charge, a charge unit (time, etc.) for determining a charge cycle, and an upper limit amount for limiting the total charge amount. , Authentication and billing server 1 for these information
The billing method includes data (billing signature information) encrypted and digitally signed using the billing signature key sent from 00 (billing signature information) and a medium ID that is a billing destination.
The data is difficult to be forged or tampered with by a third party other than the purchase control terminal 200 or the authentication / charging server 100.

The payee, the unit amount of money, and the unit of charge are usually the purchase control terminal 200 and the service providing server 3 in advance.
Specify the agreed value between 00.

When the service providing server 300 receives the bill information, the payee / unit amount /
The billing unit is inspected for a valid value for the service provided, and if the inspection is successful, billing information is sent to the authentication billing server 100 to make a billing start request.

When the billing information is received, the authentication / billing server 100 checks whether the billing information has been received. If not, the billing key corresponding to the medium ID is used for decryption and electronic signature verification. When the hand confirms the signature information and confirms that the bill signature information is correct, the payment information designated by the value information corresponding to the medium ID stored in the authentication / charging server 100 is sent to the specified payee. Periodic charging is set so that a unit amount of money is paid for each charging unit, and a charging start notification is sent to the service providing server 300.

In the authentication / billing server 100, after the periodical billing is set, thereafter, there is a billing stop request, the designated upper limit is reached, or the value information set in the medium ID is set. Until the maximum amount is reached, periodic billing will continue.

Since the service providing server 300 knows that the charging has started by receiving the charging start notification from the authentication charging server 100, the communication service requested to the purchase control terminal 200 by the charging start notification or Services such as stream content distribution services can be started.

Further, in the purchase control terminal 200, when the service requester gives an instruction to end the service, the authentication charge server 100 sends a message of a charge stop request specifying the medium ID to stop the charge. Request.

As a result, the authentication / charging server 100 performs processing for stopping the charging, such as discarding the periodic charging setting corresponding to the medium ID, and when the charging is stopped,
A charge end notification is sent to the service providing server 300.

In the service providing server 300, when the service is terminated, the service providing server 300
From the authentication billing server 100, a billing stop request message may be transmitted.

[0074]

Embodiments of the present invention will be described below with reference to the drawings.

[First Embodiment] The system of the present embodiment is
As the authentication medium 10, a prepaid system (prepaid card) system using an IC card is premised, and the service requester purchases the prepaid card (IC card) in advance, so that the amount of value information of the prepaid card can be obtained. It is assumed that you have paid to the card issuer.

Further, it is premised that the value information of the purchased prepaid card is managed by the authentication / charging server 100 owned by the card issuer (or entrusted by the card issuer). In other words, after the service requester pays the service price with the prepaid card, the card issuer and the service provider carry out the settlement based on the information of the authentication / charging server, and finally the payment to the service provider is made. It is assumed that the system will be performed.

Further, the service provider of this embodiment is
It is assumed that the purchase control terminal 200 has a streaming content distribution server that provides a streaming content distribution service.

FIG. 5 shows the system configuration of the first embodiment of the present invention.

As shown in the figure, the system of the present embodiment has a plurality of IC cards 10 and a plurality of purchase control terminals 200.
(Hereinafter, simply referred to as a terminal), a plurality of streaming content distribution servers 300 (hereinafter, simply referred to as a distribution server), and one authentication / charging server 100.

Of these, the IC card 10 is the terminal 200
A communication unit 11 that communicates with the authentication / charging server 100, an authentication response unit 12 that executes card authentication by generating a response to an authentication message from the authentication / charging server 100, and a card ID or a card that is an identifier that can uniquely identify each card. The card data holding unit 13 is a memory that holds a card authentication key, which is secret data for authentication, and ensures that the card is a valid card for the card ID by being authenticated by the authentication and billing server 100. It is a prepaid card with value information that includes functions.

FIG. 6 shows an example of data in the card data holding section of the IC card of the first embodiment of the present invention.

The data in the card holder 13 is the data of each IC.
Card ID, which is an identifier that uniquely identifies the card 10.
And a card authentication key used to generate authentication data during card authentication. As the attribute of the card ID, it is necessary that reading from the outside is “permitted”, but writing is preferably “not permitted”. Further, as the attribute of the card authentication key, it suffices that it can be used by the authentication response unit 12 when generating the authentication data, and it is desirable that both reading and writing from the outside are “impossible”. However, it is desirable that the card authentication key can be updated from the authentication / charging server 100 under specific conditions upon successful authentication.

The terminal 200 is composed of a communication unit 210, a streaming service unit 220, a billing control unit 230, and a card R / W (reader / writer) 240, and the distribution server 300 from the prepaid balance of the inserted IC card 10. Is a terminal that provides services such as reproduction of streaming content to the service requester by controlling payment to the service requester.

Card R / W (reader / writer) 240
The IC card 1 by inserting the IC card 10.
Communicate with 0.

The communication unit 210 is connected to the network 400 such as the Internet and communicates with the authentication / charging server 100 and the distribution server 300.

The streaming service unit 220 has input / output means such as a key button device and a display device, and the charging control unit 23 is operated by a service requester or the like.
The billing control unit 230 is requested to generate bill information by an operation from 0, and the generated bill information is transmitted to the communication unit 210.
By passing it to the distribution server 300 through the mediation of, the service request and payment processing and the reproduction of the distributed streaming content are performed.

The billing control unit 230 controls the authentication of the IC card 10 by controlling the communication with the billing server 100 and the communication with the IC card 10, and generates bills information at the request of the streaming service unit 220. Or

It is assumed that a plurality of terminals 200 are installed. For example, “Kio” installed on the street.
It is a "sk terminal", a personal computer installed at home with a card reader / writer connected, or a streaming content reproduction terminal installed at any other place.

The distribution server 300 also includes a communication unit 31.
0, a control unit 320, and a content DB 330.

The communication unit 310 is connected to a network such as the Internet, and is connected to the terminal 200 and the authentication / billing server 1.
Communication with 00.

The control unit 320 accepts the service request from the terminal 200, sends the bill information received at the time of accepting the service request to the authentication billing server 100, thereby issuing the billing start request, and sending the billing start request to the terminal 200 to the terminal 200. In addition, streaming content distribution services such as streaming content distribution and charging control associated with the services are performed.

The content DB 330 stores streaming content distributed as a service.

The service provider having the distribution server 300 receives the payment corresponding to the charge amount by the settlement processing from the authentication charge server 100.

Note that the distribution server 300 allows a plurality of distribution servers to be installed, and it is basically assumed that each distribution server is installed.

Further, the authentication / charging server 100 includes the communication unit 1
10, an authentication management unit 120, a charging management unit 130, a value information management DB 140, and a settlement unit 150.

The communication section 110 is connected to a network such as the Internet and is connected to the terminal 200 and the distribution server 300.
Communicate with.

The authentication management unit 120 authenticates the IC card 10 according to the card authentication request from the terminal 200, manages the authentication information, and confirms the bill information according to the charging start request from the distribution server 300. Then, the periodical charging information is passed to the charging management unit 130.

The billing management unit 130 stores the setting of the periodic billing information passed from the authentication management unit 120, and bills the prepaid balance according to the stored periodic billing setting.

The value information management DB 140 is the IC card 1
The prepaid balance of 0 and information for card authentication are managed for each card ID.

[0100] The settlement unit 150 performs processing for settlement to the payee when the billing management unit 130 succeeds in billing.

Although various methods are conceivable as the settlement method in the settlement section 150, in the description of the present embodiment, the settlement log is held in the settlement section 150, and payment is made to the payee based on the settlement log. The payment method for performing the above will be described as a whole, and a specific payment method for the payee is outside the scope of the present invention.

FIG. 7 shows an example of the value information management DB in the authentication / charging server according to the first embodiment of the present invention.

The value information management DB 140 includes a card ID that is an identifier that uniquely identifies each IC card 10,
It consists of a prepaid balance, which is value information for the card ID, and a card authentication key used to generate authentication data during card authentication.

FIG. 8 shows an example of the authentication information held by the authentication management unit of the authentication / charging server according to the first embodiment of the present invention.

In the example shown in the figure, the authentication information of the authentication / charging server 100 consists of a card ID and a bill signature key. Of these, the card ID is the ID of the IC card 10 that has received the authentication and has been successfully authenticated.

The bill signature key is a key used to confirm the bill information generated for the card ID.
It may be generated in a form that is not inferred from the third other than 00, and a method such as using a random number generated by a pseudo-random number generation function can be adopted.

FIG. 9 shows an example of periodical charging settings held by the charging management unit according to the first embodiment of the present invention.

To set the periodical charging, the unit price of the charging obtained from the card ID, which is an identifier for uniquely identifying each IC card 10, the bill information, and the time of the billing cycle obtained from the bill information are set. It is composed of a charge unit to be expressed, an upper limit amount for limiting the total charge amount, a next charge time when the next charge is scheduled, and a total amount which is a settlement of the charge after starting the charge.

FIG. 10 shows an example of the settlement log (settlement log DB) held by the settlement unit of the first embodiment of the present invention.

The data of the settlement log DB includes a payee ID, which is an identifier for uniquely identifying a payee (usually a service provider), a settlement amount which is a sum of payment amounts for each transaction for the payee ID, and information. It is a record of payment from the card of the service requester to the service provider, and is composed of a card ID and a transaction list that specifies the content of the transaction such as the total charge.

The operation of the system of this embodiment will be described below.

FIG. 11 is a sequence chart of the operation of the system according to the first embodiment of the present invention.

First, the IC card 10
Is inserted (step 201), the terminal 200
IC inserted in the range shown in "IC card authentication process"
The card 10 is authenticated.

In the "IC card authentication process", first, the terminal 200 transmits a card ID read command to the IC card 10 (step 202), and the IC card 10 is read.
Then, the card ID held in the card data holding unit 13 is read and transmitted to the terminal 200 (step 203), thereby reading the card ID of the inserted IC card 10. Further, when the terminal 200 finishes reading the card ID, it sends an IC card authentication request to the authentication / billing server 100 to request card authentication for the inserted IC card 10. IC
Send the card ID of the card 10 (step 20)
4).

When the authentication / charging server 100 receives the IC card authentication request, it generates a random number using a pseudo-random number generation function or the like (step 205), and transmits the generated random number to the terminal 200 as a calculation request (step 206). ).

In the terminal 200, the calculation request message received from the authentication / charging server 100 is sent to the IC card 10 as it is (step 207). When the IC card 10 receives the calculation request, the authentication response unit calculates the received random number. 12 (step 208).

An example of response calculation performed by the authentication response unit 12 is shown in FIG.
2 shows.

In the example shown in the figure, the random number generated by the authentication / charging server 100 and the card authentication key held by the card data holding unit 13 are used as the parameters used for the response calculation, and the random number is input to the encryption function. Then, the encryption result obtained by using the card authentication key as the encryption key is used as the calculation result of the response calculation.

Here, it is difficult for the encryption function to infer the calculation result from the random number which is the input sentence, or to infer the card authentication key from the random number which is the input sentence and the calculation result which is the output sentence. Anything will do.

The response calculation may be performed by a method other than that shown in FIG. 12, and it is difficult to infer the calculation result from the input random number by using the card authentication key secretly set for each card. Any calculation method may be used. In particular, I
In order to manufacture the C-card medium at low cost, it is preferable that the calculation can be performed by a simple logic, and the method can be determined from the manufacturing cost and safety of the medium (difficulty of guessing the calculation result).

In the IC card 10, when the calculation result is obtained by the response calculation, the calculation result is transmitted to the terminal 200 (step 209), and the terminal 200 transmits the calculation request response as it is to the authentication / charging server 100 (step 210). ).

In the authentication / billing server 100, when the calculation result for the random number is obtained, the authentication management unit 120 causes the IC card 10 to use the random number and the card authentication key corresponding to the card ID stored in the value information management DB 140. The same calculation as the response calculation is performed, and the calculation result received from the IC card 10 is compared with the calculation result in the authentication management unit 120. If both calculation results are the same, it is determined that the card authentication has succeeded, If the result is different, it is assumed that the card authentication has failed (step 211).

When the card authentication is successful, the authentication / billing server 100 generates a bill signature key for the card ID (step 212), and the bill signature key generated for the card ID and the value information management DB 140 correspond to the card ID. The prepaid balance managed by the above is transmitted to the terminal 200 (step 213), and the authentication management unit 120 holds it as authentication information indicating that the card ID has been authenticated (step 214). Upon receiving the bill signature key and the prepaid balance, the terminal 200 holds the received data as data for generating bill information in the charging control unit 230, and displays the received prepaid balance on the display device of the streaming service unit 220 or the like. By doing so, it is presented to the service requester (step 215).

Next, in FIG. 11, the streaming content is reproduced and the payment processing is performed by the generation and payout of the bill information within the range shown in “Payment procedure”. The timing of the payment procedure is the above-mentioned “payment procedure”. After the "IC card authentication process" and before the "charge end process", it may be performed at any time, but it is usually performed when the service requester gives an instruction to reproduce the streaming content.

In the "payment procedure" of this embodiment, information on the product to be purchased (content ID, payee ID, unit amount of money, billing unit) is provided before payment processing such as bill information generation is performed.
Is obtained and it is premised that there is an instruction to reproduce a specific streaming content from the service request.

First, in the terminal 200, the distribution server 300
A menu list of content information including a content name, a content ID, a payee ID, a unit amount of money, a charge unit, and the like is obtained from (step 216), and the obtained content name, content ID, payee ID, unit amount of money, billing unit, etc. The payment condition is presented to the service requester by displaying the menu list consisting of on the display device or the like of the streaming service unit 220, and the reproduction instruction is prompted (step 217), and the key button device or the like of the streaming service unit 220 is used. When the reproduced content is designated by the service requester (step 218), payment processing such as bill issuance is started (step 219).

The terminal 200 first generates bill information by using the bill signature key obtained from the IC card authentication result to create a bill signature by the billing control unit 230 (step 219).

FIG. 13 shows an example of the bill information of the first embodiment of the present invention.

In the example of the figure, the bill information comprises a card ID, a payee ID, a unit amount, a billing unit, an upper limit amount and a bill signature, and the card ID read from the IC card 10 is entered to make a payment. The value obtained from the content menu is entered in the destination ID, unit price, and billing unit, and the bill signature created by the billing control unit 230 is entered in the bill signature.

FIG. 14 shows an example of a method for creating a bill signature in the billing control unit 230 according to the first embodiment of the present invention.

In the example of the figure, the bill signature key, the card ID, and the payee I are used as parameters for creating the bill signature.
D, unit amount, billing unit, and upper limit amount are used, the bill signature key is used as the encryption key, and the bill function signature as the MAC (message authenticator) is obtained by the MAC function using the data obtained by combining other parameters as the input message. ing. The MAC function is premised on a message identifier generation method using an encryption function, and MAC (Message Authentication) as defined in ISO 9797 which is an international standard.
Code: Message authenticator) Generation function etc. can be used.

Further, the method for creating a bill signature is as follows:
A method other than that shown in FIG. 14 may be used as long as a bill signature can be created as information that can prove that the payee ID, unit amount, billing unit, and maximum amount have not been tampered with. For example, the bill signature key is used as a key. A digital signature or the like using an asymmetric (public key) cryptosystem may be used. However, when the asymmetric encryption method is used, the bill signature key held by the terminal is used as the authentication key, and the bill signature key held by the authentication / billing server 100 is used as the verification key, which are associated with each other as a pair, Must use different data keys.

When the bill information is generated in step 219, the terminal 200 sends to the distribution server 300
The purchase of the content is requested by transmitting the content ID designating the reproduced content and the bill information which is information for payment (step 220).

When the distribution server 300 receives the content ID and the bill information in the service request message, the payee ID, unit amount, and charging unit in the bill information are the same as the data presented for the content ID in the menu list. It is checked whether there is any (step 221), and if they are the same,
The bill information is transmitted to the authentication / charging server 100 (step 222).

When the authentication billing server 100 receives the bill information in response to the billing request, first, the card ID in the bill information.
From the authentication information stored in the authentication management unit 120, and if there is the corresponding authentication information, it is determined that the authentication for the requested bill information is valid (step 22).
3) The process shifts to the process of checking the bill information. On the contrary, if there is no corresponding authentication information, the delivery server 300 is notified of the charging failure, and the process ends.

Next, as the check of the bill information, the bill signature key of the corresponding authentication information retrieved and the bill information received from the distribution server 300 are used to check the bill signature in the bill information. In the inspection of the bill of signature, the bill of signature is created by the same procedure as when creating the bill of signature in the terminal 200, using the bill signature key, the card ID in the bill information, the payee ID, the unit amount, the charging unit, and the upper limit amount as parameters, The bill signature in the bill information and the created bill signature are compared to see if they are the same (step 224).

Here, when the bill signature in the bill information is different from the created bill signature, it is determined that the bill information is invalid, and the distribution server 300 is notified of the charging failure,
The process ends.

[0138] Further, it is inspected whether "the upper limit of the bill information ≤ prepaid balance of the value information management DB 140", and if the condition is not satisfied, the service cannot be executed until the upper limit is reached, and therefore the distribution server 300 is notified. It notifies the charging failure and ends the process. In the inspection of bill information,
If the condition of the inspection is satisfied, as a response to the charging start request, the authentication charging server 100 transmits a charging start notification notifying that the charging has started to the distribution server 300 (step 225) and charges the charging. The card ID, payee ID, unit amount, charging unit, and upper limit amount extracted from the bill information are added to the periodic charging setting managed by the management unit 130, the next charging time is set to the current time, and the total amount is set. Make it 0 yen (step 226).

Upon receipt of the billing start notification, the distribution server 300 starts the streaming service of the requested content to the terminal 200 (step 22).
8).

Next, when the setting information is entered in the periodic charging setting managed by the charging management unit 130 in the authentication charging server 100, the charging management unit 130 performs the periodic charging processing according to the setting information. Be seen.

The next charge time in all the charge settings that are regularly set by the charge management unit 130 is inspected, and a unit amount of money is added to the card ID of the record that satisfies the condition of next charge time ≧ current time. Is charged (step 229).

Here, if the upper limit amount of the relevant record is smaller than the total amount + the unit amount, the total amount exceeds the upper limit amount when charging is performed, and therefore the charging end process is performed without charging.

For the charging, the unit amount is subtracted from the prepaid balance which is managed in the value information management DB 140 corresponding to the card ID, and the time for the charging unit is added to the next charging time of the record to obtain the total amount. It is done by adding a unit amount to.

Finally, the periodic charging of the IC card 10 is stopped within the range shown in the "charging end process" of FIG. When the "charging end process" is performed, the periodic billing setting of the target card is deleted, and thus the card is not billed in the periodic billing of the billing process.

In the description of the present embodiment, it is premised that the charging end processing is performed by transmitting the charging stop request message from the terminal 200 when the card is removed, but the service requester ends the service. For example, the authentication state end process may be performed with the transmission of the billing stop request message from the terminal when there is an instruction such as the above, or with the receipt of the billing stop request message from the distribution server 300 due to accommodation of streaming content distribution. .

Further, as described in the billing process, by billing, even if the upper limit is exceeded, it will trigger the termination of billing.

In the "charging end process", first, when the authenticated card is pulled out by the "IC card authentication process" (step 230), the card removal is detected by the card R / W 240, and the billing control unit of the terminal 200 is detected. At 230, the card ID is transmitted to the authentication / charging server 100 to request periodic stop of charging corresponding to the card ID (step 231).

When the authentication / charging server 100 receives the charging stop request, the authentication management unit 1 uses the received card ID.
The authentication information held in 20 is searched, and the authentication information found is deleted by deleting the searched authentication information, and the card ID is included from the periodical charging setting held in the charging management unit 130. After searching the records and extracting the payee ID and the total amount from the searched records,
Periodic billing is stopped by deleting the record (step 232).

Further, the card ID and the total amount taken out are added to the transaction list of the record matching the payee ID taken out in the settlement log DB 150, and the total amount is added to the settlement amount of the record (step. 23
3).

When the distribution server 300 is notified that the periodical charging has stopped (step 234), the terminal 200 is notified of the total amount of charges (step 235).

When the delivery server 300 receives the billing end notification, the delivery of the streaming content to the terminal 200 is stopped (step 236).

Further, when the terminal 200 receives the total amount according to the usage statement, the total amount is displayed on the display device or the like of the streaming service unit 220, and the process ends. [Second Embodiment] Next, a second embodiment of the present invention will be described.

The system of this embodiment is based on a prepaid system (prepaid card) system using an IC card as the authentication medium 10, as in the case of the first embodiment described above, and the service requester prepaid in advance. By purchasing a card (IC card), it is assumed that the card issuer is paid the amount of value information of the prepaid card. Further, it is assumed that the value information of the purchased prepaid card is managed by the authentication / charging server 100 owned by the card issuer (or entrusted by the card issuer). In other words, after the service requester pays the service price with the prepaid card, the card issuer and the service provider settle the payment based on the information of the authentication and billing server 100, so that the payment to the service provider is finally made. Assuming a system to be performed.

In this embodiment, it is assumed that the service provider provides the terminal 200 with the Internet connection service.

FIG. 15 shows the system configuration of the second embodiment of the present invention.

As shown in the figure, the system of the present embodiment has a plurality of IC cards 10 and a plurality of purchase control terminals 20.
0, the communication control server 500, the Internet gate device 600, and the authentication / charging server 100.

Of these, the IC card 10 and the authentication / charging server 100 have the same configurations as those of the first embodiment.

Further, the purchase control terminal 200 has the above-mentioned first
In this embodiment, the streaming service unit 220 is provided with input / output means such as a key button device and a display device, and the billing control unit 230 is requested to generate bills information by an operation from a service requester. Then, the bill information thus generated is transferred to the communication control server 500 through the intermediary of the communication unit 210, so that the communication service unit 250 for performing service request / payment processing, Internet connection / Internet information display, etc. is provided. This is the same as the first embodiment, and is a terminal that provides a service requester with an Internet connection service by controlling payment from the prepaid balance of the inserted IC card 10 to the communication control server 500.

It is assumed that a plurality of purchase control terminals 200 are installed, such as a "Kiosk terminal" installed on the street, or a card reader on a personal computer installed at home. -An internet connection terminal that is connected to a writer or installed anywhere else.

Further, the communication control server 500 includes the communication unit 5
10 and a control unit 520.

Control unit 510 is connected to network 400 such as the Internet and communicates with purchase control terminal 200 and authentication / charging server 100.

The control unit 520 accepts a service request from the purchase control terminal 200, sends the bill information received at the time of accepting the service request to the authentication billing server 100, thereby issuing a billing start request, and issuing the billing start request to the Internet from the result of the billing start request. By controlling the gate device 600, the purchase control terminal 200 is allowed to perform Internet connection services such as permission to connect to the Internet, and charging control associated with the services. The service provider having the communication control server 500 will receive the price corresponding to the charge amount by the settlement process from the authentication charge server 100.

Also, the internet gate apparatus 600
Is a relay device for connecting the purchase control terminal 200 to the Internet, and is a device such as a router that receives control from the communication control server 500 and performs relay control of communication between the terminal and the Internet. The internet gate device 600 is provided from the communication control server 500 to the purchase control terminal 2
When receiving the control for permitting the Internet connection to 00, the communication between the purchase control terminal 200 and the Internet is relayed.

The communication between the purchase control terminal 200, the authentication / charging server 100 and the purchase control terminal 200 is also relayed.

Even in such a system, the same charging as in the above-mentioned first embodiment can be performed. Hereinafter, according to the sequence chart shown in FIG. 16, the points different from the first embodiment will be described.

On the sequence chart shown in the figure, the only difference from the first embodiment is that the streaming distribution server 300 is changed to a communication control server 500, and the stream mig communication distribution server 300 and the communication control server 500 are different.
The difference in operation is that "starting streaming service" in step 228 in FIG. 11 is step 3 in FIG.
28, "gate open,""streaming service end" in step 236 in FIG. 11 corresponds to step 3 in FIG.
It is only changed to 37 "Gate Close".

Here, in the "gate open" processing of step 328, the communication control server 500 controls the Internet gate apparatus 600 to permit the Internet connection from the purchase control terminal 200. At 600, it is set to relay communication between the purchase control terminal 200 and the Internet.

In the "gate close" processing of step 337, the communication control server 500 controls the Internet gate apparatus 600 to cancel the permission of the Internet connection from the purchase control terminal 200. The communication between the purchase control terminal 200 and the Internet is set not to be relayed.

Other sequences and operations are the same as those in the above-mentioned first embodiment.

Further, it is also possible to construct the constituent elements of each of the above devices as a program and install them in a medium and a computer used as an IC card, a purchase control terminal, a streaming distribution server, a communication control server, an authentication / charging server. . In addition, the constructed program is stored in a hard disk device connected to a computer used as a purchase control terminal, a streaming distribution server, a communication control server, an authentication and billing server, or a portable storage medium such as a flexible disk or a CD-ROM. In addition, the present invention can be easily realized by installing it when carrying out the present invention.

The present invention is not limited to the above embodiments, but various modifications and applications are possible within the scope of the claims.

[0172]

As described above, according to the present invention, the service distribution server stores the bill information generated by the bill signature key obtained by authenticating the authentication medium purchased in advance by the service requester. The service distribution server can issue a billing start request to the value information of the authentication medium by passing the bill information to the authentication billing server. Based on the information of the successful billing request, the service distribution server In this case, the service can be started, and if the purchase control terminal and the service distribution server agree on the authentication billing server, according to the billing settings (unit amount, billing unit, upper limit amount), only the addition / subtraction cycle is performed without communicating with others. Billing becomes possible.

[0173] Finally, by making a payment (payment) from the billing authentication server to the service provider, the service requester having the authentication medium can pay the service provider having the service distribution server. It has the characteristic that

As a result, when billing frequently occurs in periodic billing, it is not necessary for the certification / billing server to perform authentication processing or communication processing for each billing, and processing costs and communication costs can be reduced. Becomes

Further, the electronic signature is applied to the billing information (unit amount, billing unit, upper limit amount) agreed upon by using the bill authentication key which can be known only by the terminal and the authentication billing server at the time of certification. Therefore, even if the card ID is leaked, it is possible to prevent erroneous billing / overbilling and unauthorized use of the value information for the card ID.

[Brief description of drawings]

FIG. 1 is a diagram for explaining the principle of the present invention.

FIG. 2 is a principle configuration diagram of the present invention.

FIG. 3 is a system configuration diagram that is a prerequisite for the present invention.

FIG. 4 is a sequence chart showing a prerequisite operation of the system in the embodiment of the present invention.

FIG. 5 is a system configuration diagram of the first embodiment of the present invention.

FIG. 6 is a data example of a card data holding unit of the IC card according to the first embodiment of the present invention.

FIG. 7 is an example of a value information management DB in the authentication / charging server according to the first embodiment of this invention.

FIG. 8 is an example of authentication information in the authentication management unit in the authentication / charging server according to the first embodiment of this invention.

FIG. 9 is an example of setting of periodic charging held by a charging management unit in the authentication charging server according to the first embodiment of this invention.

FIG. 10 is an example of a settlement log DB in the authentication / charging server according to the first embodiment of this invention.

FIG. 11 is a sequence chart of system operation of the first exemplary embodiment of the present invention.

FIG. 12 is a diagram showing an IC card authentication response calculation method according to the first embodiment of the present invention.

FIG. 13 is an example of bill information according to the first embodiment of this invention.

FIG. 14 is a diagram showing a handprint signature generation method according to the first embodiment of this invention.

FIG. 15 is a system configuration diagram of a second embodiment of the present invention.

FIG. 16 is a sequence chart of the system operation of the second embodiment of the present invention.

[Explanation of symbols]

10 authentication medium 11 communication unit 12 authentication response unit 13 card data storage unit 100 authentication billing server 101 authentication result sending unit 102 bill information verification unit 103 billing setting unit 104 billing ending unit 110 communication unit 120 authentication management unit 130 billing management unit 140 value Information management DB 150 Settlement unit (settlement log DB) 200 Purchase control terminal 201 Authentication request unit 202 Bill information generation unit 203 Charge stop request unit 210 Communication unit 220 Streaming service unit 230 Charge control unit 240 Card R / W 250 Service communication unit 300 Service providing server, streaming distribution server 301 Accounting start requesting means 302 Service providing means 303 Service ending means 310 Communication unit 320 Control unit 330 Content DB 400 Network 500 Communication control server 510 Communication unit 52 0 control unit 600 Internet gate device

─────────────────────────────────────────────────── ─── Continuation of front page (51) Int.Cl. ⁷ Identification code FI theme code (reference) H04L 9/32 H04L 9/00 675Z (72) Inventor Keinobu Yamada 2-3-3 Otemachi, Chiyoda-ku, Tokyo F-Term in Japan Telegraph and Telephone Corporation (Reference) 5J104 EA15 NA02 PA07 PA11 PA12 (54) [Title of Invention] Billing method and billing system, streaming content delivery system, Internet connection service system, service providing server, and authentication billing server And storage medium storing billing program and billing program

Claims (13)

[Claims] 1. A plurality of authentication media, a plurality of purchase control terminals,
In a billing method comprising a plurality of service providing servers and one authentication billing server and periodically billing for a transaction including content purchase on a network, in the purchase control terminal, the authentication medium purchased by the service requester is When connected, the authentication and billing server is requested to authenticate the authentication medium, and the authentication and billing server authenticates the authentication medium based on the authentication request from the purchase control terminal, and the authentication is successful. Then, the medium ID for uniquely identifying the authentication medium
Generate a bill signature key for generating bill information that is billing permission information for the bill, and send it to the purchase control terminal, and the purchase control terminal periodically occurs during the service as a payment procedure for the service providing server. Generate bill information, which is information for permitting billing, using the bill signing key, and send the bill to the service providing server to make a service request. When the service providing server receives the bill information, , Whether the bill information is valid for a service provided, and if the check is successful, the billing information is transmitted to an authentication billing server to make a billing start request. When receiving the bill information,
The bill information is checked to see if it has been accepted. If not, the bill signature key is used to confirm the bill information, and if the bill information is confirmed to be correct, save it. The periodical billing is set so that a unit amount of money is paid for each billing unit to the payee specified by the bill information corresponding to the medium ID, and the billing is started for the service providing server. The notification is transmitted, the service providing server starts the requested service upon receipt of the charging start notification, and the purchase control terminal receives the service end instruction from the service requester, Specifying the medium ID to the authentication billing server, transmitting a billing stop request, and the authentication billing server includes a process of canceling the periodic billing setting corresponding to the medium ID. When the processing is performed and the charging is stopped, a charging end notification is transmitted to the service providing server, and when the service providing server acquires the charging end notification, the service for the purchase control terminal is ended. How to charge. 2. A plurality of authentication media, a plurality of purchase control terminals,
In a billing method comprising a plurality of streaming content distribution servers and one authentication billing server, which bills a streaming service on a network periodically, an authentication medium purchased by a service requester is connected to the purchase control terminal. Then, the authentication / billing server is requested to authenticate the authentication medium, and the authentication / billing server authenticates the authentication medium based on the authentication request from the purchase control terminal to authenticate the authentication medium. If successful, a bill signature key for generating bill information, which is billing permission information for the medium ID for uniquely identifying the authentication medium, is generated and transmitted to the purchase control terminal, and the purchase control terminal, As a payment procedure for the streaming content distribution server, a fee that is periodically generated during the service is permitted. The billing information, which is the information of the bill, is generated by using the billing signature key and transmitted to the streaming content distribution server to make a streaming service request. When the streaming content distribution server receives the billing information, the billing information is generated. It is checked whether the information is valid for the service provided, and if the check is successful, a billing start request is made by transmitting the bill information to the authentication billing server. Is received,
It is checked whether the bill information has been accepted, and if it has not been accepted, the bill signature key is used to confirm the bill information, and when it is confirmed that the bill information is correct, it is saved. Periodic billing is set so that a unit amount of money is paid for each billing unit to the payee specified from the bill information corresponding to the medium ID, and billing is started for the streaming content distribution server. Sending a notification, the streaming content distribution server starts distribution of the requested streaming content to the purchase control terminal upon receipt of the billing start notification, and the service requester at the purchase control terminal. When there is an instruction from the user to terminate the service, the medium ID is specified to the authentication / charging server, a charging stop request is transmitted, and the authentication / charging server Performs a charge stop process including a process of discarding the periodic charge setting corresponding to the medium ID, and when the charge is stopped, transmits a charge end notification to the streaming content distribution server, The content distribution server ends the distribution of the streaming content to the purchase control terminal, when the content distribution server acquires the charge end notification. 3. A plurality of authentication media, a plurality of purchase control terminals,
A billing method comprising one communication control server for controlling an internet gate device and one authentication billing server, which bills periodically for a transaction including content purchase on a network, wherein the purchase control terminal is a service requester. When the authentication medium purchased by is connected, the authentication and billing server is requested to authenticate the authentication medium, and the authentication and billing server, based on the authentication request for the authentication medium from the purchase control terminal, performs the authentication. The medium is authenticated, and if the authentication is successful, a bill signature key for generating bill information, which is billing permission information for the medium ID for uniquely identifying the certification medium, is generated and transmitted to the purchase control terminal. However, the purchase control terminal is for payment of the communication control server for permitting periodic charging during service. A bill request information is generated by using the bill signature key and is sent to the communication control server to make a service request. When the bill control information is received, the communication control server provides the bill information. If it is checked whether it is valid for the service, and if the check is successful, a billing start request is made by transmitting the bill information to the authentication billing server, and the authentication billing server receives the bill information,
It is checked whether the bill information has been accepted, and if it has not been accepted, the bill signature key is used to confirm the bill information, and when it is confirmed that the bill information is correct, it is saved. Periodic billing is set so that a unit amount is paid for each billing unit to the payee specified from the bill information corresponding to the medium ID, and the billing start notification is sent to the communication control server. The communication control server, upon receipt of the billing start notification, gives the Internet gate device permission to connect to the Internet from the purchase control terminal, and in the purchase control terminal, the service requester When there is an instruction to terminate the service from, the medium ID is specified to the authentication billing server and a billing stop request is transmitted, and the authentication billing server corresponds to the medium ID. Performing the process of stopping the charging including the process of canceling the setting of the periodical charging, and when the charging is stopped, the charging end notification is transmitted to the communication control server, and the communication control server sends the charging end notification. A billing method, characterized in that, upon acquisition, the permission of the Internet connection from the purchase control terminal to the Internet gate device is revoked. 4. A plurality of authentication media, a plurality of purchase control terminals,
In a charging method in the service providing server in a system which comprises a plurality of service providing servers and one authentication charging server and periodically charges a transaction including content purchase on a network, the authentication charging server comprises: Is the bill information valid for the service provided by receiving the bill information generated by using the bill signing key, which is the information for permitting the charging that occurs periodically during the service as the payment procedure, and is provided by the bill information? If the check is successful, the bill information is transmitted to the authentication billing server, and upon receipt of a billing start notification from the authentication billing server, the requested service is started for the purchase control terminal. Then, when the billing end notification is received from the authentication billing server,
A billing method comprising terminating the service for the purchase control terminal. 5. A plurality of authentication media, a plurality of purchase control terminals,
A billing method in the authentication billing server, which comprises a plurality of service providing servers and one authentication billing server and periodically bills for transactions including purchase of contents on the network, wherein authentication of the authentication medium from the purchase control terminal The authentication medium is authenticated based on the request, and when the authentication is successful, a bill signing key for generating bill information, which is billing permission information for the medium ID for uniquely identifying the authentication medium, is generated. , The purchase control terminal, and when the bill information is received from the purchase control terminal, it is checked whether the bill information has been accepted, and if not, the bill signature key is used to check the bill. When the information is confirmed and it is confirmed that the bill information is correct, the billing unit is charged to the payee specified from the bill information corresponding to the stored medium ID. Periodic billing is set so that a unit amount of money is paid every time, a billing start notification is transmitted to the service providing server, and a billing stop request is received from the purchase control terminal. A billing method comprising performing a billing stop process including a process of discarding a corresponding periodic billing setting, and transmitting a billing end notification to the service providing server when billing is stopped. 6. A plurality of authentication media, a plurality of purchase control terminals,
A billing system comprising a plurality of service providing servers and one authentication billing server, which bills periodically for transactions including purchase of contents on a network, wherein the purchase control terminal is a certification that a service requester has purchased. When a medium is connected, authentication requesting means for requesting the authentication and billing server to authenticate the authentication medium, and information for permitting billing that occurs periodically during service as a payment procedure for the service providing server. Bill information is generated using the bill signing key acquired from the authentication and billing server and transmitted to the service providing server, and bill information generating means for making a service request, and a service termination request from the service requester. When instructed, specify the medium ID to the authentication billing server and send a billing stop request. Stop billing Requesting means, wherein the authentication / billing server authenticates the authentication medium based on an authentication request from the purchase control terminal, and if the authentication is successful, a medium for uniquely identifying the authentication medium. An authentication result transmitting unit that generates a bill signature key for generating the bill information for an ID and transmits the bill signature key to the purchase control terminal; and when the bill information is received from the purchase control terminal via the service providing server, A bill information verifying unit that checks whether the bill information has been received, and if the bill information has not been accepted, confirms the bill information by using the bill signature key; and the bill information verifying unit, If it is confirmed that the payment is correct, the unit amount is periodically paid for each billing unit to the payee specified from the bill information corresponding to the stored medium ID. Charging setting means for performing various charging settings and transmitting a charging start notification to the service providing server, and when receiving a service end request from the purchase control terminal, a periodic charging corresponding to the medium ID is performed. Billing termination means for performing billing termination processing including processing for discarding settings and transmitting a billing termination notification to the service providing server when billing is terminated, wherein the service providing server includes the purchase control When the bill information is received from the terminal, it is checked whether it is valid for the service provided by the bill information, and if the check is successful, the bill information is transmitted to the authentication billing server to request the billing start. A charging start requesting unit that performs the request, and the reception of the charging start notification from the authentication charging server starts the requested service to the purchase control terminal. A billing system comprising: a service providing unit; and a service terminating unit that terminates the service to the purchase control terminal when the billing end notification is acquired from the authentication billing server. 7. A purchase control terminal, which is connected to a plurality of purchase control terminals to which a plurality of authentication media are connected, and one authentication / charging server via a network, and provides a service on the network. When the bill information, which is the information for permitting the periodic charging during the service, is received from the terminal,
A billing start requesting unit that makes a billing start request by checking whether the billing information is valid for the service provided, and if the check is successful, sending the billing information to the authentication billing server to make a billing start request. A service providing unit that starts a service requested to the purchase control terminal upon receipt of a charge start notification from the authentication charge server, and a charge end notification from the authentication charge server to the purchase control terminal A service providing server having a service terminating means for terminating a service. 8. A plurality of purchase control terminals to which a plurality of authentication media are connected, and a service providing server that provides a service are connected via a network, and a transaction including content purchase on the network is periodically charged. The authentication / charging server for performing the authentication of the authentication medium on the basis of the authentication request for the authentication medium from the purchase control terminal, and a medium for uniquely specifying the authentication medium when the authentication is successful. An authentication result transmitting unit that generates a bill signature key for generating bill information that is billing permission information for the ID and transmits the bill signature key to the purchase control terminal; and when the bill information is received from the purchase control terminal during service, A bill information verifying unit that checks whether the bill information has been received, and if the bill information has not been received, confirms the bill information using the bill signature key; When the bill information verification means confirms that the bill information is correct, payment of the unit amount for each billing unit is made to the payee designated from the bill information corresponding to the stored medium ID. As described above, the charging setting means for periodically setting the charging and transmitting the charging start notification to the service providing server, and receiving the service end request from the purchase control terminal, correspond to the medium ID. Authentication including a process of stopping charging including a process of discarding the setting of periodical charging, and a charging end means for transmitting a charging end notification to the service providing server when the charging is stopped. Billing server. 9. A plurality of authentication media, a plurality of purchase control terminals,
A streaming content delivery system, comprising a plurality of streaming content delivery servers and one authentication billing server, for periodically billing a streaming service on a network, wherein the purchase control terminal is an authentication that a service requester has purchased. When a medium is connected, an authentication request means for requesting the authentication and billing server to authenticate the authentication medium, and a billing procedure for permitting periodic billing during service as a payment procedure for the streaming content distribution server. When bill information, which is information, is generated using the bill signature key and is transmitted to the streaming content distribution server, there is a service requesting unit for making a streaming service request, and a service end request from a service requester is given, For the authentication billing server Billing stop request means for transmitting a billing stop request by designating a medium ID for uniquely identifying an authentication medium, wherein the authentication billing server responds to the authentication request for the authentication medium from the purchase control terminal. Based on the above, the authentication medium is authenticated, and when the authentication is successful, a bill signature key for generating bill information, which is billing permission information for the medium ID, is generated and transmitted to the purchase control terminal. And a means for receiving the bill information via the streaming distribution server, inspecting whether the bill information has been accepted,
If it is not accepted, the bill information is confirmed using the bill signature key, and if the bill information is confirmed to be correct, the payment designated by the bill information corresponding to the stored medium ID is paid. A billing setting unit that sets a periodic billing so that a unit amount of money is paid for each billing unit, and sends a billing start notification to the streaming content distribution server; and the purchase control terminal. When receiving the billing stop request from
When the billing stop process including the process of discarding the periodic billing setting corresponding to the medium ID is performed and the billing is stopped,
Billing end means for transmitting a billing end notification to the streaming content distribution server, wherein the streaming content distribution server, upon receiving the bill information from the purchase control terminal, provides a service provided by the bill information. If the check is successful, the billing information is transmitted to the authentication billing server to send a billing start request, and billing start request means for making a billing start request, and the billing start notification from the authentication billing server. When receiving the billing end notification from the authentication billing server, the streaming means delivers the streaming content to the purchase control terminal when the billing end notification is obtained from the authentication billing server. And a streaming ending means for ending the delivery. Content delivery system. 10. A plurality of authentication media, a plurality of purchase control terminals, one communication control server for controlling the Internet gate apparatus, and one authentication and billing server, and periodically for transactions including content purchase on the network. An internet connection service system for billing, wherein the purchase control terminal, when an authentication medium purchased by a service requester is connected, an authentication request means for requesting the authentication and billing server to authenticate the authentication medium. , Bill information, which is information for permitting billing that occurs periodically during a service as a payment procedure for the communication control server, is generated using a bill signature key acquired from the authentication billing server, and is generated in the communication control server. By sending, the service request means for making a service request and the service end instruction from the service requester. And a billing stop request means for transmitting a billing stop request by designating a medium ID for uniquely identifying the authentication medium to the authentication and billing server. The authentication medium is authenticated based on the authentication request of the authentication medium from the control terminal, and if the authentication is successful, a bill signature key for generating bill information for the medium ID is generated, and the purchase control terminal When the bill information is received via the authentication result transmitting means for transmitting and the communication control server, it is checked whether or not the bill information has been accepted, and if not, the bill signature key is used to make a bill. When the information is confirmed and it is confirmed that the bill information is correct, the unit amount is paid for each billing unit to the payee specified from the bill information corresponding to the stored medium ID. Will be Charging setting means for performing periodic charging setting as described above and transmitting a charging start notification to the communication control server; and receiving the charging stop request from the purchase control terminal,
When the billing stop process including the process of discarding the periodic billing setting corresponding to the medium ID is performed and the billing is stopped,
Billing stop means for transmitting a billing end notification to the communication control server, the communication control server, when receiving the bill information from the purchase control terminal, with respect to a service provided by the bill information. If the check is successful, and if the check is successful, the billing information is transmitted to the authentication and billing server to request billing start, and the billing start notification is received from the certification and billing server. Upon receiving the charge end notification from the authentication charge server and a gate open instruction unit that gives the Internet gate device permission to connect to the Internet from the purchase control terminal, Gate close instruction means for canceling permission to connect to the Internet from the purchase control terminal. A characteristic Internet connection service system. 11. A billing program executed by a service providing server, which is connected to a plurality of purchase control terminals to which a plurality of authentication media are connected and one authentication billing server via a network, and which provides a service on the network. Then, when receiving the bill information, which is information for permitting charging that occurs periodically during the service, from the purchase control terminal,
A billing start requesting process for making a billing start request by checking whether the billing information is valid for the service provided, and if the check is successful, transmitting the billing information to the authentication billing server; A service providing process for starting the service requested to the purchase control terminal upon receiving the charge start notification from the authentication charge server, and the purchase control when the charge end notification is acquired from the authentication charge server. And a service termination process for terminating a service to a terminal. 12. A transaction is connected to a plurality of purchase control terminals to which a plurality of authentication media are connected and a service providing server that provides a service via a network, and a transaction including a content purchase on the network is periodically charged. Is a billing program executed by the certification billing server, which certifies the certification medium based on a certification request for the certification medium from the purchase control terminal. When the certification is successful, the certification medium is uniquely identified. An authentication result transmission process of generating a bill signature key for generating bill information, which is billing permission information for a medium ID for specifying, and transmitting the bill signature key to the purchase control terminal, and periodically during the service from the purchase control terminal. When the bill information, which is the information for permitting the billing to occur, is received,
A bill information verification process for checking whether the bill information has been received, and if not, a bill information verification process for confirming the bill information by using the bill signing key; If it is confirmed that the bill is correct, the periodic billing is set so that the payee designated by the bill information corresponding to the stored medium ID is paid the unit amount for each billing unit. And a charge setting process for transmitting a charge start notification to the service providing server, and discarding the periodic charge setting corresponding to the medium ID upon receiving a service end request from the purchase control terminal. A billing end process of performing a billing stop process including a process and transmitting a billing end notification to the service providing server when the billing is stopped. Billing program. 13. A purchase control terminal, to which a plurality of authentication media are connected, and a service providing server that provides a service, are connected via a network, and a transaction including a content purchase on the network is periodically charged. A storage medium storing the authentication billing server for performing the above and a billing program executed by the service providing server, wherein the program according to claim 12 is stored as a program executed by the service providing server. A storage medium storing a billing program, wherein the program according to claim 11 is stored as a program executed by a billing server.