JP2006260504A - Atm system, method, and cash card - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To prioritize a biometric identification system in an ATM system, as a whole, without implementing the biometric identification system in all ATMs, in an ATM system comprising a plurality of ATMs with the biometric identification system, together with a plurality of ATMs with a simple identification system. <P>SOLUTION: A cash deposit and payment method by means of ATM comprises a step S1 for a customer to insert a cash card into an ATM or bring the card into contact with the ATM, allowing the ATM to read content information in the cash card; a step S2 for the ATM to perform personal identification; a step S3 for checking whether the user identification in the step S2 is based on biometrics; and selective amount limit execution steps for checking the requested withdrawal amount and deposit information (S6) and executing cash payment up to the amount of deposit (step S7), when the identification is based on biometrics, and for checking the requested withdrawal amount and a transaction amount limit (S8) and executing cash payment up to the transaction amount limit, if the identification is not based on biometrics. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

The present invention relates to an automatic teller machine (hereinafter referred to as ATM) automatic teller machine method, an ATM system, and a cash card used therefor. More specifically, in an ATM system in which ATMs each having a new and old identity authentication system are mixed on the network, the automatic cash deposit can ensure compatibility between the old and new ATMs and enhance security. The present invention relates to a payment method, an ATM system, and a cash card used therefor.

Traditionally, financial institutions such as banks and consumer finance have attempted to rationalize customer deposits and loans by using ATMs. ATMs installed at storefronts, unmanned stores, and the like, which have been used at the counter until now, are widely used as terminals that allow customers to easily withdraw money by their own operations. This ATM is a host computer that manages certain customer attributes such as customer name, address, or account number, and transaction history information such as deposit information, and is connected to multiple ATM networks such as dedicated lines. It constitutes a wide range of ATM systems. Customers can check and confirm the deposit information stored in the ATM server with ATMs installed at various points where ATMs are handled, and deposit and withdraw deposits.

The customer inserts a cash card in which information such as his / her account number is stored as magnetic information into this ATM, presses a 4-digit PIN with the ATM keyboard, authenticates the identity, and accesses his / her deposit information. . If the authentication is successful, the customer's deposit can be withdrawn under certain conditions. Recently, however, damages such as stealing cash card magnetic data with a skimming device and impersonating the customer and withdrawing deposits have occurred frequently. ATMs that can perform authentication have also appeared. As for cash cards, IC cash cards with integrated IC (integrated circuit) chips have appeared, making it possible for ATM systems to read more sophisticated information in a non-contact manner. It has come to be given.
As examples of ATMs using these advanced personal authentications, ATMs with authentication technology using current palm vein feature information and ATMs with authentication technology using fingerprint feature information are largely divided into two banks. It is becoming popular. Of course, these two ATMs are not compatible.
At present, customers with ATM usage accounts that use these high-level personal authentications are provided with theft security, etc., instead of restricting transactions with ATMs equipped with conventional authentication systems.

Japan's ATM system is generally equipped with a mechanism to limit the amount of withdrawals to a deposit of 500,000 yen. However, as the amount of impersonation withdrawal increases, this amount will be reduced. It is being considered. There is an example where a limit of tens of thousands of yen has already been set in the ATM system overseas. In addition, a system has been released that allows notification information such as an email address to be registered in a cash card and used to notify the registered email address when it is used under certain conditions. Various technologies have been developed to combat impersonation withdrawal. ing.

On the other hand, the ATM system can be interpreted as a server client system centered on the ATM server, and many ATMs can be installed far away from the ATM server installation location, and networking with other financial institutions is realized. However, technologies that generate transactions such as withdrawals between networks are also widely used.

However, in order to prevent damage from impersonation withdrawal of deposits, it is necessary to install a security system with a large amount of information and expensive facilities in all ATMs, which is costly and time consuming. In addition, when two or more networks are connected by a service alliance, it is necessary to replace all the alliance networks with the unified security system, which is not rational.
At present, various security technologies and identity authentication technologies have been devised to solve problems such as unauthorized withdrawal of ATMs and impersonation withdrawals, but if not introduced to all ATM terminals, ATM terminals with weak security will be aimed at eventually. The usefulness of security and personal authentication cannot be obtained. Also, even if these excellent security technologies and identity authentication systems are introduced to all ATM terminals, if ATMs have network compatibility in multiple ATM systems, the security is still too thin and advanced security compatibility The big problem is that the ATM system in the incompatible network is aimed at and the usefulness cannot be obtained.
For example, even if Bank A introduces an ATM for advanced personal authentication corresponding to fingerprint authentication, if the ATM is not installed in all branches, it cannot be prevented from receiving a spoofed withdrawal from an old ATM. Also, even if this fingerprint authentication is introduced at all the branches of Bank A, if the Bank B, which has partnered with deposit withdrawal, does not introduce this fingerprint authentication, it will eventually not be handled by the ATM of Bank B that does not support it. There is no denying the possibility of spoofed damage.
In addition, for example, a security technology that reduces the damage caused by spoofing by notifying an ATM transaction by e-mail has also been released, but this can be said to be less effective if all ATMs do not support that security technology. .
The most important issue is to devise a technology that can realize sufficient security even if ATMs capable of advanced personal authentication and ATMs capable of simple authentication are mixed on the ATM system network. Is the first issue.

If damages such as theft of cash card information and impersonation and withdrawal of deposits based on that information increase in the future, it will be necessary to enhance security and identity authentication. A password with a large amount of information has a problem that it is difficult to realize a password because it is not only possible to deny the possibility of the customer forgetting the password, but there may be an increase in the number of customers who do not know the operation.

Recently, ATMs installed in retail stores other than financial institutions have become widespread, and it is assumed that the ATM system owner and the ATM owner may be separated. Is extremely difficult.
Furthermore, in the case of a system in which deposits can be withdrawn at a financial institution of another company using a connection between ATM networks of a plurality of financial institutions, it becomes more difficult to unify security.

On the other hand, in the method of limiting the withdrawal amount of the deposit, if the daily usage amount is limited, the convenience of the user is remarkably impaired, and there is a risk that the advancement of technology may be countered.
Similarly, customers who have made a cash card for an ATM usage account that has introduced an advanced authentication system have restrictions on the use of the conventional ATM with this cash card, which also results in a loss of convenience. .

[Configuration 1] In order to solve the above problems, the present invention is first a method of automatic cash deposit,
A terminal that can be connected to a network, and a plurality of ATMs configured to be able to read content information of at least a customer's cash card; and
An ATM host computer configured to be connectable to a plurality of the ATMs via a network, and one or a plurality of ATM servers capable of managing at least customer personal attributes and deposit or loan information;
In the ATM system configured by
A limit setting step for inputting and storing a transaction limit amount of cash to be paid to the customer once or within a predetermined period;
A card reading step in which a customer causes the ATM to read information stored in a cash card in advance,
Further, if the customer who has executed the card reading step has executed the simple authentication step for authenticating the person by the simple personal authentication system, the payment limit with the transaction limit set in the limit setting step as an upper limit is set. The ATM system runs,
In addition, if the customer performs the advanced authentication step of authenticating the user by the advanced authentication system, the ATM system can execute payment exceeding the transaction limit set in the limit setting step. The method further includes a step of executing a set limit amount.

Here, when terms are defined or explained, first, the “network” here refers to a dedicated network generally used for ATM, but in the present invention, a public network, the Internet, an intranet, a LAN. , WAN, enterprise network, and the like.

"Cash card" is customer information including at least the customer's attribute information that can identify an individual such as the account number or address name of the customer when the customer deposits and pays cash from the ATM. Is stored in advance in a magnetic storage medium, IC or the like, and can be read by an ATM. In the case of a magnetic medium method, this reading method is mainly performed by inserting it into an ATM, but in the case of an IC cash card incorporating an IC chip, it can also be performed by non-contact reading.

"ATM" is a device that allows financial institutions to automatically withdraw cash from customers. Here, cash is configured to be connectable via a network to a host server that manages customer deposit data. It is defined as a terminal that can automatically withdraw. Multiple ATMs with different functions connected to one host server, such as ATMs that can only withdraw deposits, ATMs that can deposit and withdraw cash, ATMs that can check balances, ATMs that can transfer money to other financial institutions, etc. It is common to be done. In the present invention, a cash dispenser is naturally included in one aspect of ATM.

An “ATM server” refers to an ATM host computer that is a server of a server client system using ATM as a terminal. A server client system in which an ATM and an ATM server are connected via a network is defined herein as an “ATM system”.

“Personal attributes” are usually classified into static attributes, which are invariant information such as customer names, account numbers, and cash card IDs, and dynamic attributes such as biometric data, authentication scores, and transaction logs. Then, it defines as the information content including the information which can identify a customer selected from static attribute data at least.
The “transaction limit” referred to here represents the upper limit of cash that can be withdrawn by the customer through the ATM system. This transaction limit amount can be set at an amount smaller than the upper limit of one transaction amount provided in advance in the ATM system. Currently, a single ATM transaction usually has a limit of 500,000 yen as the withdrawal limit, but in the present invention, there is another restriction, for example, a daily cash withdrawal limit of 50,000 yen. In addition to this uniform 500,000 yen limit, setting the limit as a limit setting step is also included. In this case, customers connected with the simple authentication system can only withdraw 50,000 yen cash, In addition, customers who connect with the advanced authentication system can also withdraw cash exceeding the 50,000 yen set in the limit setting step, and up to 500,000 yen as before. Naturally, it is included in the present invention.

Here, the “simple personal authentication system” is defined as a system for performing personal authentication by an ID / password method. The ID and password method is a method in which the customer ID is verified by comparing the card ID stored in the customer's cash card with the password entered by the customer into the ATM terminal. A method of authenticating whether or not a person operating the ATM is permitted to connect to the account using the card ID stored in the card and the four-digit password entered by the customer. This is a method of authenticating the person. A general system for personal authentication currently provided in the ATM system is this simple personal authentication system. The difference between the “simple personal authentication system” and the “advanced personal authentication system” is that a system that requires at least personal authentication based on data with a larger amount of information than the simple personal authentication system is defined as an advanced personal authentication system. Shall be distinguished. For example, if the simple identity authentication system is a system that inquires the personal attribute stored in the cash card and the 4-digit password entered by the customer and authenticates the identity, the advanced authentication system uses information such as biometric feature data in the IC cache. It refers to an advanced authentication system such as a biometric authentication system that stores information on a card and authenticates the person by comparing the information with the biometric feature data of the customer who actually operates the ATM input from the interface. In addition to this biometric authentication system, the advanced authentication system includes electronic authentication by an electronic certificate authority, personal authentication for enhancing information stored in the cash card using an IC cash card, personal authentication using a password-only IC card, And so on.

[Configuration 2] An automatic cash deposit method,
At least the card reading step;
Permits customers connected to the ATM system through the advanced authentication step to input and store in the ATM system the setting of a transaction limit for one or a predetermined period of cash to be paid to the customer, or a change thereof. The person's limit setting step,
It was characterized by having

If a customer connected to the ATM system using a biometric authentication or other advanced authentication system can set and change the amount that can be withdrawn within a predetermined period, for example, within one business day, It is convenient to set the upper limit according to your usage.
It is also possible to set the amount of risk for impersonation withdrawal by others according to your own economic situation, and individual risk hedging is possible for each customer.
When ATMs with advanced authentication systems and conventional ATMs are mixed on the network, the limit is set at the ATMs installed at the headquarters of banks with advanced authentication systems. It is convenient to take measures such as using at ATM.
Of course, when you withdraw large amounts of cash, you can use an ATM with a high-level authentication system, but even if there is no ATM with a high-level authentication system in the vicinity, you can set the transaction limit in advance, so It is possible to hedge against risks.
Here, “within a predetermined period” includes not only when there is a limited time limit such as one day or one month but also within an indefinite period such as as long as a bank account exists.

[Configuration 3] Automatic cash deposit method, comprising at least the card reading step,
A customer who has executed the card reading step in the ATM system in which a general account and an account with a withdrawal limit capable of managing a limit of cash paid by the ATM to the customer are managed.
If the simple authentication step is executed, access to the withdrawal limit account data is permitted,
In addition, if the advanced authentication step is executed, a selective access permission step for permitting access to the data of the general account is provided.

Here, the “general account” is an ATM system that can manage information related to individual customers including at least information on the total deposit amount or rentable amount of the customer and personal attributes of the customer holding the account. A data area for each customer in the storage unit or a storage unit allocated for each customer.

If only customers who have executed the advanced authentication step are allowed to access the general account, and customers who have executed the simple authentication step can be restricted to access only the account with withdrawal limit that has been moved in advance, Even if impersonation withdrawal is performed, it is possible to complete the amount of damage up to the amount transferred in advance to an account with a withdrawal limit.

[Configuration 4] An automatic deposit and withdrawal method comprising at least the card reading step,
A customer who has executed the card reading step in the ATM system in which a general account and an account with a withdrawal limit capable of managing a limit of cash paid by the ATM to the customer are managed.
If the advanced authentication step is executed, the customer's deposit or loanable amount managed in the general account is permitted to be transferred to the withdrawal limit account,
If the simple authentication step is executed, the movement process is prohibited.
It is characterized by a selective fund transfer permission step.

By executing the advanced authentication step and allowing only customers who have accessed in a higher security state to transfer funds to an account with a withdrawal limit, a system that combines security and convenience can be obtained.

[Configuration 5] The automatic teller and deposit method according to any one of Configurations 1 to 4, wherein the advanced authentication step includes at least biometric feature information selected from a customer's finger, palm, vein, iris, and voice. A biometric information reading step read by the ATM operated by the customer;
A biometric information storage step for storing the biometric feature information in advance on the cash card or the ATM system;
A biometric information collating step for verifying the identity of the customer by collating the information read in the biometric information reading step with the information stored in the biometric information storing step;
A biometric authentication step characterized by comprising:

The biometric feature information of a customer is information that has different features for each customer such as the position and shape of a fingerprint, the position and shape of a vein, and is difficult to change. It is possible to verify the identity by checking whether the data read from the received interface is the same or an approximation that can withstand the identity. This biometric authentication is an excellent authentication method having both strong security and easy operation, but the disadvantage is that ATM is expensive. According to this configuration, an ATM equipped with this expensive biometric authentication system may be introduced into a part of all ATMs, and most ATMs are sufficient for conventional ATMs.
Also, if an incompatible advanced authentication system is introduced by multiple financial institutions, for example, if Bank A introduces fingerprint authentication, Bank B introduces palm authentication, etc., Bank A Bank B has an ATM alliance. Even in such a case, the bank A cannot use the bank B's ATM for palm authentication. Therefore, when using bank A's cash card, bank B authenticates itself with the conventional simple authentication, but if the bank card is lost or the bank card data is stolen, an improper user impersonates and pulls it out. In this case, the unauthorized user can perform withdrawal from the bank B by the conventional simple authentication, and the meaning of the ATM having the fingerprint authentication of the bank A introduced at the corner is reduced. However, according to this configuration, when biometric authentication is not performed, the amount that can be withdrawn is limited to a preset amount, so that damage can be minimized.

[Configuration 6] The automatic deposit and deposit method according to any one of Configurations 1 to 5,
The simple authentication step includes
A customer inserts the cash card into the ATM, and the ATM reads information stored in the cash card;
A customer operates the ATM and inputs a four-digit password to authenticate the user;
It is characterized by consisting of.

At most financial institutions, most ATMs use this four-digit password to authenticate themselves, and even if a new authentication system is developed, it is difficult to introduce it to all ATMs. Advances in the security environment are hindered.
According to this configuration, most conventional ATMs can be used as they are, and if a security system with a large cost is partially introduced into ATMs, it is possible to expect a security effect immediately.

[Configuration 7] A terminal that can be connected to a network, and a plurality of ATMs configured to be able to read content information of at least a customer's cash card;
An ATM host computer configured to be connectable to a plurality of the ATMs via a network, and one or a plurality of ATM servers capable of managing at least customer personal attributes and deposit or loan information;
An ATM system configured by
The ATM system includes a plurality of security systems,
A limit setting means configured to allow a customer to set a transaction limit that allows the customer to receive automatic cash payment once or within a predetermined period;
The ATM system further includes
A means for permitting automatic payment of cash exceeding a transaction limit set by the limit setting means when a customer connects to the ATM system using a specific security system selected from the plurality of security systems; When,
Means for executing a payment limit based on a transaction limit set by the limit setting means when a customer connects to the ATM system using a security system other than the specific security system;
It was characterized by having.

The term “security system” means at least damages from unauthorized users who use ATMs illegally, access deposit information of specific customers on the ATM system, etc., and cause financial damage to those specific customers. A mechanism on the ATM system for preventing or reducing the above.
Specifically, when a person who operates an ATM using a cash card and an authentic user of the cash card are the same, or when a deposit is withdrawn in advance, A system that notifies registered users of usage status and prevents the spread of damage.

[Configuration 8] The ATM system includes a plurality of personal authentication systems,
A limit setting means configured to allow a customer to set a transaction limit that allows the customer to receive automatic cash payment once or within a predetermined period;
The ATM system further includes
When a customer connects to the ATM system using a specific authentication system selected from the plurality of authentication systems, automatic payment of cash exceeding the transaction limit set by the limit setting means is permitted. Means to
When a customer connects to the ATM system using a personal authentication system other than the specific personal authentication system, a means for executing a payment limit based on a transaction limit set by the limit setting means;
It was characterized by having

In this configuration, the plurality of security systems described in Configuration 7 are limited to a plurality of identity authentication systems. However, because the security target according to the present invention is limited to the financial damage of the customer, Considering the cost of ATM security measures and the increase in security holes newly generated by an extra security system, it is effective to implement the present invention to limit to the construction of an ATM system specialized for personal authentication. It is.

[Configuration 9]
The ATM system according to Configuration 8, wherein in the ATM system, the plurality of personal authentication systems are:
First, a simple identity authentication system,
Secondly, an advanced personal authentication system characterized in that the amount of data referred to by the ATM system during authentication is larger than that of the simple personal authentication system;
It is characterized by being composed of a combination of

In this configuration, when there are a plurality of advanced personal authentication systems or simple personal authentication systems, according to the description of configuration 8, a predetermined advanced personal authentication system specified in advance is used as an advanced personal authentication system, and other advanced personal authentication systems are used. The system and the simple personal authentication system are all defined as a simple personal authentication system.

Generally speaking, from the viewpoint of preventing unauthorized use of ATM, it is possible to obtain an advantage in terms of safety when a transaction exceeding a transaction limit is permitted when complicated authentication is performed.

[Configuration 10] The ATM system includes at least a plurality of the identity authentication systems and the limit amount setting unit.
Further, the limit setting means is provided in one or more selected from the ATM server or the cash card as a transaction limit that a customer authenticated by the advanced authentication system can withdraw. It is a personal limit setting means configured to be stored in the storage unit or to be able to change the storage.

The limit amount setting means can be set in advance by the ATM administrator, but it is better for the customer himself to set the limit amount in consideration of the customer's economic situation and ATM usage situation. Useful for risk management.

[Configuration 11] The ATM system according to any one of Configurations 8 to 10,
The advanced authentication system includes at least:
An interface unit configured to allow the ATM operated by a customer to read the biometric feature information;
A biometric information storage unit configured to be able to store the biometric feature information on the cash card or the ATM system in advance;
The ATM system further includes biometric information for authenticating a customer by collating the biometric feature information read by the interface unit with the biometric feature information stored in advance in the biometric information storage unit. A biometric authentication system comprising a verification means;
It was characterized by being.

The biometric authentication system can adopt a part of an individual's body as a method of personal authentication, can perform personal authentication more safely and more precisely, and the work becomes complicated compared to password input. This is ideal for advanced authentication of ATMs.

[Configuration 12] The ATM system according to any one of Configuration 8 to Configuration 11,
The ATM system includes
A remittance limit setting means configured to be able to input and memorize a remittance limit for one time or within a predetermined period of a money transferred by a customer to a third party;
Furthermore, the ATM system includes
When a customer connects to the ATM system using a specific user authentication system selected from the plurality of user authentication systems, the remittance limit set by the remittance limit setting means is exceeded, and a third party is transferred. Means to authorize remittance,
When a customer connects to the ATM system using a personal authentication system other than the specific personal authentication system, means for executing a remittance limit based on the remittance limit set by the remittance limit setting means;
It was characterized by having.

Originally, remittance to a third party using ATM is considered to be a transaction in which two transactions, withdrawal of a deposit and remittance to a third party, were performed at the same time. Assuming that remittances are used for crimes similar to impersonation withdrawals, an ATM system capable of countermeasures is provided. “Remittance” as used herein refers to transferring the amount of money operated by a customer from a customer's deposit data that can be accessed via ATM to a third party's deposit account using ATM.

[Configuration 13] The ATM system according to Configuration 7 to Configuration 12, wherein the ATM system is an ATM system network in which a plurality of the ATM systems are connected to each other.

As used herein, “multiple ATM systems” refers to an ATM system in which at least the owner or administrator having the authority to change the configuration of the ATM system covers a plurality of banks, and specifically, a plurality of banks managed by a plurality of financial institutions. An ATM system.
In order to form a tie-up for deposit withdrawal, etc., multiple financial institutions connect ATM systems to each other via a network. The “ATM system network” refers to a plurality of ATM systems connected via a network. Assume that the entire ATM partner network connected is defined as one huge ATM system.

[Configuration 14] A cash card that can be used in the ATM system according to configurations 7 to 13, and can store authentication data used in at least two or more authentication systems selected from the plurality of personal authentication systems. It is characterized by being configured.

The authentication data here refers to data for collating with personal authentication data that is actually input to the ATM, such as biometric feature data, data for identifying the card user, such as a cash card ID, and identification of the ATM server. This data is characterized by including the minimum information necessary for user authentication, such as data for accessing the verification data.
In order to use the ATM according to the present invention, a cash card that can be used for at least an ATM having a simple security system and an ATM having a high security system,
Alternatively, it is necessary to use either a cash card that can be used for either an ATM equipped with a simple personal authentication system or an ATM equipped with an advanced personal authentication system.

[Configuration 15] The cash card according to Configuration 14, wherein the cash card further includes an IC chip capable of storing at least the biometric feature information.

If biometric feature information is stored in the IC cash card in advance, it is convenient to save communication traffic between the ATM and the ATM server.
The IC cash card includes an IC chip (integrated circuit) incorporated in a card such as a plastic, and the IC chip includes a main control unit, a storage unit, and the like.

[Configuration 16] A cash card according to any one of Configuration 14 or Configuration 15, wherein the cash card is configured to store a transaction limit set by the principal limit setting means. Characterized by further comprising

If the transaction limit is stored in the IC cash card, it is convenient to save communication traffic between the ATM and the ATM server as in the case of the biometric feature information.

According to the present invention, when a new advanced security technology related to an ATM system or a new advanced technology for personal authentication, which is one of the security technologies, is developed, it is not necessary to introduce the security technology and authentication technology to all ATMs. It is possible to reduce fraud using ATM effectively.
In addition, in a plurality of financial institutions affiliated with the ATM system network, compatibility can be maintained even if different advanced authentication technologies are introduced into the ATM systems managed by the respective financial institutions.

Hereinafter, the present invention will be described in detail with reference to the drawings showing the best mode for carrying out the invention. The embodiment shown here is a non-limiting example, and in addition to the configuration shown here, the device type, contents, configuration, program type, configuration, communication method, system configuration, arrangement, etc. are within the scope of the present invention. Can be arbitrarily combined, and is not limited to the configuration.

FIG. 1 is a flowchart showing a configuration example of the present invention. According to this configuration example, the customer first inserts or contacts a cash card in the ATM, and reads the content information of the ATM cash card in step S1. Next, the customer inputs a personal identification number with the ATM keyboard or holds his / her palm over the ATM interface, and at step S2, the customer authenticates with the ATM.

Here, it is confirmed in step S3 whether or not the personal authentication in step S2 is based on biometric authentication, and if it is biometric authentication, a menu without a transaction limit display is displayed and a customer input is awaited. If it is not biometric authentication, it displays a menu with a transaction limit display and waits for customer input.

The ATM executes a transaction limit setting process in step S5 if the customer selects the limit setting in step S4 and inputs it to the ATM from a menu without a transaction limit display. Specifically, the processing flow in step S5 is such that the limit amount input request screen is not displayed on the ATM display, the customer inputs the limit amount into the ATM using the keyboard, and the ATM stores the limit amount in the cash card. It is configured. Further, if the customer selects other than the limit amount setting and inputs it to the ATM in step S4, each transaction is executed. Each transaction consists of deposits, withdrawals, remittances, etc., but if you choose to withdraw from them, ATM specially stores the withdrawal request amount and the deposit stored in the ATM server in step S6. Information is inquired, and automatic payment of cash with the deposit amount as an upper limit is executed in step S7. In the case of other transactions, each transaction is executed with reference to a general transaction processing flow that the ATM system has in advance.

In addition, when the ATM executes each transaction from the menu with the transaction limit display, and selects the withdrawal of the deposit in the transaction, the ATM is specially stored in the withdrawal request amount and the cash card in step S8. The transaction limit is inquired, and automatic payment of cash up to the transaction limit is executed in step S9. In the case of other transactions, as in the case of step S7, each transaction is executed with reference to the general transaction processing flow that the ATM system has in advance.

Here, the transaction limit storage destination and reference destination are cash cards, but it is of course possible to use the storage unit of the ATM server.

FIG. 2 is a flowchart showing an embodiment of the present invention. According to this configuration example, first, the customer inserts or contacts a cash card in the ATM, and reads the contents information of the ATM cash card in step S11. Next, the customer inputs the personal identification number with the ATM keyboard or places his / her palm over the ATM interface, and at step S12, the customer authenticates the user.

Here, it is confirmed in step S13 whether or not the personal authentication in step S12 is based on biometric authentication. If biometric authentication is performed, a setting screen is displayed and a customer input is awaited. In S18, it connects to an account with a withdrawal limit and waits for customer input.

From the setting screen, if the customer selects the transfer of funds and inputs it to the ATM in step S14, the ATM executes a transfer process of funds from the general account to the account with a withdrawal limit in step S15. Specifically, in the process flow in step S15, an input request screen for the amount of money transfer is displayed on the ATM display, and the customer inputs the amount of money transfer to the ATM using the keyboard, and passes the data to the ATM server via communication. The ATM server is configured such that the transfer amount is transferred from a general account to an account with a withdrawal limit and stored.
Further, if the customer selects other than the transfer of funds and inputs it to the ATM in step S14, the connection process is executed for the general account in step S16. In the general account, each transaction is executed by referring to the general transaction processing flow of the ATM system in advance. If the withdrawal is selected in the transaction, the ATM uses the deposit amount as the upper limit in step S17. Make a payment.

Further, when the ATM is connected to the account with a withdrawal limit in step S18, the ATM executes the payment of cash up to the amount of the deposit transferred to the account with the withdrawal limit in step S19. In the case of other transactions, as in the case of step S17, each transaction is executed with reference to the general transaction processing flow that the ATM system has in advance.

FIG. 3 is a block diagram of an ATM system which is a configuration example of the present invention. An ATM system as an example of the configuration includes an ATM server 301, a plurality of ATM terminals A303 having a biometric authentication system connected by a dedicated network 302, and a plurality of ATM terminals B304 not having a biometric authentication system. Has been. The biometric authentication system is an in-card information reading unit 331 and a biometric authentication unit 332 provided in the main control unit 315 of the ATM terminal A303, a card information reading scanner 335 and a biometric information reading device 335 provided in the interface unit 316, and the like. A system that consists of

The ATM server 301 includes at least a main control unit 311, a storage unit 312, a communication unit 313, and the like. Further, the main control unit 311 includes at least a selective principal limit setting unit 321, a selective deposit payment execution unit 322, Transaction limit inquiry means 323, payment restriction means 324, and the like are provided, and the storage unit 312 includes a customer attribute data area 325, a deposit data area 326, a transaction limit data area 327, and the like.

The ATM terminal A303 includes at least a communication unit 314, a main control unit 315, and an interface unit 316. The interface unit 316 includes a keyboard 334, a card information reading device 335, a biometric information reading scanner 336, a cash deposit and payment mechanism 337, and the like. Is done. The cash deposit / dispensing mechanism 337 includes a storage unit that stores cash, a cash reading unit that reads deposits, an open / close holder that deposits and withdraws cash, and the like.

The main control unit 315 is provided with in-card information reading means 331, biometric authentication means 332, and cash payment execution means 333.

The ATM terminal B 304 includes at least a communication unit 317, a main control unit 318, and an interface unit 319, and the interface unit includes a keyboard 344, a card information reading device 345, a cash deposit and withdrawal mechanism 346, and the like.

Further, the main control unit 318 is provided with an in-card information reading unit 341, a simple personal authentication unit 342, a cash payment execution unit 343, and the like.

If the customer starts a transaction at the ATM terminal A303, first, the contents information of the cash card is read by the card information reading device 335 of the ATM terminal A303, and the card information reading means 331 determines the cash card ID in the card. The biometric feature information stored in advance is converted into data and temporarily stored. Next, the customer holds his / her hand over the biometric information reading scanner 336 to read his / her biometric information into the ATM terminal A303, and the biometric authentication unit 332 verifies whether the customer is the customer.

When a customer who has succeeded in biometric authentication sets a transaction limit amount from the keyboard 334, the setting request is converted into transmission data by the communication unit 314 and sent to the communication unit 313 of the ATM server 301 through the dedicated line network 302. Is sent to the main control unit 311. The main control unit 311 stores the transaction limit data requested by the customer in the transaction limit data area 327 after confirming the success of biometric authentication by the selective principal limit setting means 321.

Further, when a customer who succeeds in biometric authentication inputs deposit withdrawal from the keyboard 334, the withdrawal request is converted into transmission data by the communication unit and sent to the communication unit 313 of the ATM server 301 through the dedicated line network 302 to decode the received data. And sent to the main control unit 311. In the main control unit 311, the selective deposit payment execution unit 322 confirms the success of biometric authentication, and inquires the customer attribute data area 325 and the deposit data area 326 for the amount requested by the customer, and permits payment. The data is transmitted as data to the ATM terminal A303 via the communication unit 313, and the cash payment execution means 333 pays cash to the customer from the cash deposit and payment mechanism 337 based on the payment permission data.

On the other hand, if the customer starts a transaction at the ATM terminal B304, the contents information of the cash card is first read by the in-card information reading device 345 of the ATM terminal B304, and the in-card information reading means 341 allows the cash in the card to be read. The card ID is referred to connect to the ATM server 301, and the ID and password stored in the customer attribute data area 325 are referred to. Next, when the customer inputs the personal identification number from the keyboard 344, the simple personal authentication means 342 collates whether the personal identification number referred to matches the personal identification number entered by the customer, and executes the personal authentication of the customer.

When the customer who has succeeded in the simple identity authentication inputs the withdrawal of the deposit from the keyboard 344, the withdrawal request is converted into transmission data by the communication unit, sent to the communication unit 313 of the ATM server 301 through the dedicated line network 302, and the received data is decrypted. And sent to the main control unit 311. In the main control unit 311, the selective deposit payment execution unit 322 confirms the success of the simple personal authentication, and inquires the transaction limit data area 327 and the deposit data area 326 for the amount requested by the customer, As payment permission data, it transmits to ATM terminal B304 via the communication part 313, and the cash payment execution means 343 pays cash to the customer from the cash deposit and payment mechanism 346 based on the payment permission data.
If there is a payout request exceeding the transaction limit stored in the transaction limit data area 327, the payment restriction means 324 sends it as payment refusal data to the ATM terminal B304 via the communication unit 313 for cash payment. The execution means 343 instructs the display provided in the interface unit 319 to display that payment cannot be made.

4 and 5 are part of a structural diagram showing an example of the contents in the data used in this embodiment. FIG. 4 shows an example of the contents of static customer attribute information, which is universal information. In each field, a cash card ID, a personal identification number, a high authentication information storage flag, and the like are arranged. FIG. 5 shows an example of the contents of dynamic customer attribute information, which is variable information. In each field, a data code, advanced authentication information, authentication score log, transaction limit information, and the like are arranged.

6 and 7 are front views showing the configuration of an IC cash card which is one embodiment of the present invention. In FIG. 6, an IC chip 602 is stored on the surface 601 of the plastic card body, and a customer name 603, a transaction bank code, a branch code, and an account number 604 are shown. The IC chip 602 stores a cash card ID and customer biometric feature information.

In FIG. 7, a magnetic data storage unit 702 and a personal signature column 703 are provided on the back surface 701 of the plastic card body. The magnetic data storage unit 702 stores a cash card ID and transaction limit information.

When the customer uses an ATM having a biometric authentication system, the IC chip 602 is read by the ATM. When the customer uses an ATM having a simple authentication system, the magnetic data storage unit 702 is read by the ATM.

FIG. 8 is a flowchart showing an example of the processing flow of the transaction limit execution means. The transaction limit execution means is activated when the customer succeeds in simple personal authentication in step S81, and first displays a limit addition menu on the ATM display in step S82. When the customer inputs a cash payment request to the ATM, the payment request is accepted in step S83. Next, in step S84, if the amount of the payment request is within the transaction limit amount, the payment request amount is paid in step S85, and if it exceeds the payment limit amount, the usage limit amount is exceeded in S86. Is displayed on the ATM display, and the process returns to step S82 again to display the menu for adding a limit. When the transaction limit execution means is completed, the process is sent to the next step, and the transaction limit execution means ends.

FIG. 9 is a structural diagram showing the contents of the limit amount adding menu displayed by the transaction limit execution means. On the ATM display, a display indicating that the customer's transaction limit is 50,000 yen and a transaction menu icon are displayed. Here, if an icon for payment or transfer is selected, an upper limit of 50,000 yen is set for the transaction.

The present invention can contribute to the rapid dissemination of advanced security and identity authentication technologies, while multiple incompatible security and identity authentication technologies are widely used in multiple financial institutions. Therefore, it is considered that it can contribute to complementing the compatibility and can provide socially significant technology for preventing crime.

It is a flowchart which shows the structural example of this invention. It is a flowchart which shows one embodiment of this invention. It is a block diagram of the ATM system which is a structural example of this invention. It is a part of structural diagram which shows the example of the content of the static customer attribute information used for the ATM system which is the structural example of this invention. It is a part of structure diagram which shows the example of the content of the dynamic customer attribute information used for the ATM system which is the structural example of this invention. It is a front view which shows the plastic card | curd main body surface in the structure of the IC cash card | curd which is 1 aspect of this invention. It is a front view which shows the plastic card main body back surface in the structure of the IC cash card | curd which is 1 aspect of this invention. It is a flowchart which shows an example of the processing flow of a transaction amount execution means. It is a structure figure which shows the content of the limit addition menu displayed by the transaction limit execution means.

Explanation of symbols

S1 Cash card reading step by ATM S2 Identity authentication execution step by ATM S3 Connection determination step by biometric authentication S4 Limit amount setting determination step S5 Transaction limit amount setting processing step S6 Withdrawal request amount and deposit information inquiry step S7 Deposit amount Cash payment execution step up to the upper limit S8 Withdrawal request amount and transaction limit inquiry step S9 Cash payment execution step up to the transaction limit amount 301 ATM server 302 Dedicated line network 303 ATM terminal A
304 ATM terminal B
311 Main control unit 312 Storage unit 313 Communication unit 321 Selective principal limit setting means 322 Selective deposit payment execution means 323 Transaction limit inquiry means 324 Payment restriction means 325 Customer attribute data area 326 Deposit data area 327 Transaction limit data area 316 Interface unit 331 Card information reading means 332 Biometric authentication means 333 Cash payment execution means 334 Keyboard 335 Card information reading device 336 Biometric information reading scanner 337 Cash deposit mechanism 601 Plastic card body surface 602 IC chip 702 Magnetic data storage section

Claims (16)

A terminal that can be connected to a network, and a plurality of ATMs configured to be able to read content information of at least a customer's cash card; and
An ATM host computer configured to be connectable to a plurality of the ATMs via a network, and one or a plurality of ATM servers capable of managing at least customer personal attributes and deposit or loan information;
In the ATM system configured by
A limit setting step for inputting and storing a transaction limit amount of cash to be paid to the customer once or within a predetermined period;
A card reading step in which a customer causes the ATM to read information stored in a cash card in advance,
Further, if the customer who has executed the card reading step has executed the simple authentication step for authenticating the person by the simple personal authentication system, the payment limit with the transaction limit set in the limit setting step as an upper limit is set. The ATM system runs,
In addition, if the customer performs the advanced authentication step of authenticating the user by the advanced authentication system, the ATM system can execute payment exceeding the transaction limit set in the limit setting step. A method for automatically depositing and paying cash, further comprising a step of executing a set limit amount. At least the card reading step;
Permits customers connected to the ATM system through the advanced authentication step to input and store in the ATM system the setting of a transaction limit for one or a predetermined period of cash to be paid to the customer, or a change thereof. The person's limit setting step,
A method for automatically depositing and paying cash. At least the card reading step;
A customer who has executed the card reading step in the ATM system in which a general account and an account with a withdrawal limit capable of managing a limit of cash paid by the ATM to the customer are managed.
If the simple authentication step is executed, access to the withdrawal limit account data is permitted,
An automatic cash deposit and withdrawal method comprising a selective access permission step of permitting access to the data of the general account if the advanced authentication step is executed. At least the card reading step;
A customer who has executed the card reading step in the ATM system in which a general account and an account with a withdrawal limit capable of managing a limit of cash paid by the ATM to the customer are managed.
If the advanced authentication step is executed, the customer's deposit or loanable amount managed in the general account is permitted to be transferred to the withdrawal limit account,
If the simple authentication step is executed, the movement process is prohibited.
An automatic deposit and withdrawal method comprising a selective fund transfer permission step. The biometric information reading step in which the ATM operated by the customer reads biometric feature information selected from at least a customer's finger, palm, vein, iris, and voice,
A biometric information storage step for storing the biometric feature information in advance on the cash card or the ATM system;
A biometric information collating step for verifying the identity of the customer by collating the information read in the biometric information reading step with the information stored in the biometric information storing step;
5. The automatic teller deposit method according to claim 1, further comprising a biometric authentication step. The simple authentication step includes
A customer inserts the cash card into the ATM, and the ATM reads information stored in the cash card;
6. The automatic teller deposit method according to claim 1, further comprising a step of a customer operating the ATM and inputting a four-digit password to authenticate the user. A terminal that can be connected to a network, and a plurality of ATMs configured to be able to read content information of at least a customer's cash card; and
An ATM host computer configured to be connectable to a plurality of the ATMs via a network, and one or a plurality of ATM servers capable of managing at least customer personal attributes and deposit or loan information;
In the ATM system configured by
The ATM system includes a plurality of security systems,
A limit setting means configured to allow a customer to set a transaction limit that allows the customer to receive automatic cash payment once or within a predetermined period;
The ATM system further includes
A means for permitting automatic payment of cash exceeding a transaction limit set by the limit setting means when a customer connects to the ATM system using a specific security system selected from the plurality of security systems; When,
Means for executing a payment limit based on a transaction limit set by the limit setting means when a customer connects to the ATM system using a security system other than the specific security system;
An ATM system characterized by comprising: The ATM system includes a plurality of identity authentication systems,
A limit setting means configured to allow a customer to set a transaction limit that allows the customer to receive automatic cash payment once or within a predetermined period;
The ATM system further includes
When a customer connects to the ATM system using a specific authentication system selected from the plurality of authentication systems, automatic payment of cash exceeding the transaction limit set by the limit setting means is permitted. Means to
When a customer connects to the ATM system using a personal authentication system other than the specific personal authentication system, a means for executing a payment limit based on a transaction limit set by the limit setting means;
An ATM system characterized by comprising: In the ATM system, the plurality of personal authentication systems are:
First, a simple identity authentication system,
Secondly, an advanced personal authentication system characterized in that the amount of data referred to by the ATM system during authentication is larger than that of the simple personal authentication system;
The ATM system according to claim 8, comprising a combination of The ATM system includes at least a plurality of the identity authentication systems and the limit amount setting means, and the limit amount setting means further includes a transaction limit that a customer authenticated by the advanced identity authentication system can withdraw. A person's limit amount setting means configured to store the amount in one or more storage units selected from the ATM server or the cash card, or to change the storage. An ATM system characterized by being. The advanced authentication system includes at least:
An interface unit configured to allow the ATM operated by a customer to read the biometric feature information;
A biometric information storage unit configured to be able to store the biometric feature information on the cash card or the ATM system in advance;
The ATM system further includes biometric information for authenticating a customer by collating the biometric feature information read by the interface unit with the biometric feature information stored in advance in the biometric information storage unit. A biometric authentication system comprising a verification means;
The ATM system according to any one of claims 8 to 10, wherein The ATM system includes
A remittance limit setting means configured to be able to input and memorize a remittance limit for one time or within a predetermined period of a money transferred by a customer to a third party;
Furthermore, the ATM system includes
When a customer connects to the ATM system using a specific user authentication system selected from the plurality of user authentication systems, the remittance limit set by the remittance limit setting means is exceeded, and a third party is transferred. Means to authorize remittance,
When a customer connects to the ATM system using a personal authentication system other than the specific personal authentication system, means for executing a remittance limit based on the remittance limit set by the remittance limit setting means;
The ATM system according to claim 8, further comprising: 13. The ATM system according to claim 7, wherein the ATM system is an ATM system network in which a plurality of the ATM systems are connected to each other. 14. A cash card usable in the ATM system according to claim 7, wherein authentication data used in at least two or more authentication systems selected from the plurality of personal authentication systems can be stored. Cash card characterized by being. The cash card according to claim 14, further comprising an IC chip capable of storing at least the biometric feature information. The said cash card is further provided with the memory | storage part comprised so that the transaction limit set by the said principal amount setting means could be memorize | stored, Either of Claim 14 or Claim 15 characterized by the above-mentioned. The listed cash card.

Images