JP2021064074A - Payment system - Google Patents

Abstract

To provide a payment system that enables credit card payment in a short time and ensures high data confidentiality.SOLUTION: In a payment system, a card issuer server 10 is configured to: issue a user identification number ID and a password PW required for accessing the card issuer server 10 to a user terminal 20 (S105); when there is an authorization request (S107) for using a card of a user US using the user identification number ID and the password PW, after sending an authorization code (S108), receiving an access key request (S109), sending an access key (S110), receiving a payment information linkage request (S111), and returning encryption for payment (S114), allow an encryption code in place of card specific information to be displayed on the user terminal 20; read the encryption code by a business terminal 31 upon credit card payment; and allow sales permission linkage to be performed (S121) for a payment request (S118) in a payment approval unit 18.SELECTED DRAWING: Figure 1

Description

This disclosure relates to a payment system.

Conventionally, in order to make a payment by credit card, the user first asks the credit card issuer to issue a credit card. The credit card issuer examines the user, meets the predetermined conditions, and issues the credit card to the user if the examination is passed. After the credit card arrives, the user presents the credit card when providing goods or services, and payment by credit card is possible.

Further, in order to prevent the theft of credit card information, it is considered to convert the credit card information into encrypted information such as a QR code (registered trademark) using a mobile terminal and use it (for example, Patent Document 1). See).

Japanese Unexamined Patent Publication No. 2012-83913

However, as described above, in the case of a technology that enables payment by credit card after the credit card arrives, it takes time until payment by credit card becomes possible.

In addition, the technology described in Patent Document 1 and the technology for making payments using a QR code (registered trademark) using a mobile terminal are based on the premise that the credit card has already arrived. It was not possible to settle immediately after requesting issuance. Further, in the technique described in Patent Document 1, since the credit card information is sent directly to the mobile terminal of the user, there is a problem in terms of data confidentiality.

By the way, in recent years, various proposals have been made in order to shorten the time from requesting the issuance of a credit card to enabling settlement as described above. For example, from the request for issuing a credit card to the issuance of a credit card, it is possible to use a payment method different from that of the card company. Specifically, a fixed, low and one-time usage limit, which is separate from the credit card usage limit, is uniformly assigned, and payment within that amount is possible.

However, since the payment by other payment companies is different from the payment by credit card, it is not possible to settle within the usage limit by credit card.

This disclosure focuses on the above problems, and aims to provide a payment system that enables payment as a credit card in a short time and ensures high data confidentiality.

The first payment system of the present disclosure can connect to a user terminal, a business server managed by a business registered in advance with a card issuer, and a payment agent server via a communication network. An examination department that examines whether or not to permit the issuance of the credit card in response to a request for issuance of the credit card from the user terminal, and when the examination department permits the issuance of the credit card, the credit card It is a payment system provided with a card issuer server having a user management unit that sets and holds card specific information including a card number and card usage conditions in association with the user who requested the issuance. Then, when the examination unit determines that the issuance permission is given to the credit card issuance request from the user terminal, the card issuer server further associates the card with the card specific information of the user. The identification number / password issuing processing unit that issues the user identification number and password required for accessing the issuer server to the user terminal, and the usage using the user identification number and the password from the business server. The authorization code sending unit that sends the authorization code to the operator server of the registration destination when there is a request for authorization to use the card of the person, and the authorization code and the authorization code are given to the operator in advance by the operator server. When there is an access key request based on the business identification number, there is a request for cooperation between the access key sending unit that sends the access key to the business server and the business server using the access key. In this case, the payment information cooperation request output unit that sends the payment information cooperation request linked to the card specific information of the user to the payment agent server, and the payment agent server in response to the payment information cooperation request. Upon receiving the payment code associated with the card specific information output from the above, the payment code return unit that returns the payment code to the business server in response to the payment information linkage request, and the above-mentioned matters. When the approval request from the payment agent server in response to the payment request using the payment code output from the vendor server is received together with the card identification information obtained by decrypting the payment code, the payment request is made. After identifying the user, the card usage condition of the user is referred to, and if the payment request conforms to the card usage condition, the payment agent server requests the business operator to make the payment. It is equipped with a settlement approval department that allows the cooperation of sales licenses for the server.

The second payment system of the present disclosure can connect the user terminal and the business server managed by the business registered in advance with the card issuer via a communication network, and credits from the user terminal. The examination department that examines whether or not to permit the issuance of the credit card in response to the card issuance request, and the use of the credit card issuance request when the examination department permits the issuance of the credit card. It is a payment system provided with a card issuer server having a user management unit that sets and holds card specific information including a card number and card usage conditions in association with a person. Then, when the examination unit determines that the issuance permission is given to the credit card issuance request from the user terminal, the card issuer server further associates the card with the card specific information of the user. The identification number / password issuing processing unit that issues the user identification number and password required for accessing the issuer server to the user terminal, and the usage using the user identification number and the password from the business server. The authorization code sending unit that sends the authorization code to the operator server of the registration destination when there is a request for authorization to use the card of the person, and the authorization code and the authorization code are given to the operator in advance by the operator server. When there is an access key request based on the business identification number, the access key sending unit that sends the access key to the business server and the business server request the card specific information using the access key. If there is, the user of the payment request is specified for the card specific information output unit that sends the card specific information to the business server and the payment request using the card specific information from the business server. Then, referring to the card usage conditions of the user, if the payment request conforms to the card usage conditions, the business server is permitted to cooperate with the sales permission for the payment request. It has a payment approval department.

The payment system of the present disclosure enables payment as a credit card in a short time and can ensure high data confidentiality.

It is a block diagram which shows the whole structure of the payment cooperation system including the payment system of Embodiment 1. FIG. It is a sequence diagram which shows the processing flow of the payment cooperation system including the payment system of Embodiment 1 in time series. It is a sequence diagram which shows the processing flow of the payment cooperation system including the payment system of Embodiment 2 in time series. It is a sequence diagram which shows the processing flow of the payment cooperation system including the payment system of Embodiment 3 in time series. It is a sequence diagram which shows the processing flow of the payment cooperation system including the payment system of Embodiment 4 in time series.

Hereinafter, a mode for realizing the payment system of the present disclosure will be described based on the embodiment.
(Embodiment 1)
First, the overall configuration of the payment system of the first embodiment will be described.
FIG. 1 is a block diagram showing an overall configuration of a payment cooperation system including the payment system of the first embodiment. The payment cooperation system including the payment system of the first embodiment enables the user US who requested the issuance of a credit card to make a credit card payment while ensuring a high security level before the credit card is actually issued. Is to be.

<Explanation of payment cooperation system>
The payment cooperation system includes a card issuer server 10, a user terminal 20, a business operator server 30, and a payment agent server 40. The payment system of the first embodiment is built on the card issuer server 10.

The card issuer server 10 can transmit information to the user terminal 20, the business operator server 30, and the payment agent server 40 via a communication network.

The user terminal 20 is a mobile terminal such as a mobile phone, a personal computer, or the like owned by a credit card user US (see FIG. 2). In the first embodiment, the user terminal 20 is a mobile terminal provided with a display screen.

The business server 30 is managed by a business BP (so-called card member store, see Fig. 2) that sells goods and provides services to the user US (see FIG. 2), and is managed by the business server 30. Is connected to the operator terminal 31 via a communication network.

The business terminal 31 is a computer installed in a store of the business BP, and includes a display device and a reading device (not shown). The business operator BP can request credit card payment after concluding a contract with the card issuer CC that manages the card issuer server 10 in advance. Further, the business operator server 30 is registered in advance and is given a unique business operator identification number (hereinafter, referred to as a client ID).

The settlement agent server 40 is managed by the settlement agent PA that has previously entered into a settlement agent contract with the card issuer CC and the business operator BP. Then, between the payment agent server 40 and the business server 30, a process of performing credit card payment using a payment encryption (so-called security token) is performed.

<Explanation of the card issuer server to which the payment system of the first embodiment is applied>
The card issuer server 10 includes an examination unit 11, a user management unit 12, an identification number / password issuance processing unit 13, an authorization code sending unit 14, an access key sending unit 15, a payment information linkage request output unit 16, and a payment encryption return unit. It includes a unit 17, a settlement approval unit 18, and a sales billing unit 19.
The details of each part 11 to 19 will be described below together with the flow of processing executed by the card issuer server 10, the user terminal 20, the business operator server 30, and the payment agent server 40 based on the sequence diagram of FIG. ..

FIG. 2 shows the flow of processing when the user US makes a credit card payment at a store without using a credit card. That is, FIG. 2 shows the user terminal 20 used at the store of the business operator BP before the actual credit card arrives, or when the credit card arrives but does not have the credit card. It shows the case of shopping by credit card payment. To apply for the issuance of a credit card by the user US, access the membership form on the card issuer's site and enter the necessary information. In this case, for example, the user US can go to the store to install the application provided by the store, or follow the guidance at the store. In addition, once the application is installed via the store or the Internet, applications can be made not only at the store but also at the store.

The examination unit 11 examines whether or not to permit the issuance of the credit card in response to the credit card issuance request (S101) from the user terminal 20 (S102).
Here, the procedure when the user US requests the issuance of a credit card will be described. In this case, first, the user installs the application provided by the business operator BP from the business operator server 30 to the user terminal 20. Then, the user US launches this application on the user terminal 20. Further, the user US displays the above-mentioned enrollment form on the display screen of the user terminal 20, and the necessary items (for example, name, age, date of birth, address, telephone number, e-mail address, etc.) displayed on the enrollment form are displayed. ) To perform the specified transmission operation. As a result, the card issuance request is transmitted to the examination unit 11 of the card issuer server 10 together with the information of the user US (S102). The application may be provided indirectly from the business operator BP, or directly or indirectly from the card issuer CC.

The examination unit 11 examines whether or not to issue a credit card based on the information entered in the admission form and the information registered in advance (S102). Then, the examination result (here, the issuance of the credit card is permitted) is transmitted to the user terminal 20 by e-mail (S103), and the cooperation of the issuance permission is transmitted to the user management unit 12 (S104). ).

In the case of issuance permission (examination OK), the user management unit 12 sets the card specific information and card usage conditions necessary for payment, and holds the card in association with the user US who requested the issuance of the credit card. Here, the card specific information is information necessary for credit inquiry (authorization) of payment, and includes a card number and an expiration date. The card number is a 15 to 16 digit card number called a primary account number (PAN (Primary Account Number)). The user management unit 12 shown in FIG. 1 corresponds to the member management and host in FIG.

The identification number / password issuance processing unit 13 is included in the user management unit 12, and when the examination unit 11 determines that the issuance is permitted, the user identification number ID and password PW are set in association with the card identification information of the user US. Then, it is sent to the user terminal 20 by e-mail, short message, or the like (S105). The user identification number ID and password PW are required when accessing the business server 30 and when requesting credit card payment by the application installed on the user terminal 20 described above.

The authorization code sending unit 14 transmits the authorization code associated with the user identification number ID and the password PW to the operator server 30 when there is an authorization request (S107) for using the card from the operator server 30 (S107). S108). The transmission of the card use authorization request from the business server 30 is performed based on the operation when the user US wishes to make a credit card payment using the user terminal 20 without using a credit card. Will be. In this case, the user US launches the above-mentioned application, inputs the user identification number ID and the password PW, and makes an authorization request (S106). As will be described later, this operation enables the user terminal 20 to display an encryption code (for example, a barcode or a QR code (registered trademark)) required for credit card payment.

Here, the authorization code is output from the authorization code sending unit 14 after confirming the business operator BP and the user US who requested the authorization. That is, it is confirmed whether the business BP that made the authorization request is the business BP that has been registered in advance and the client ID is given, and the user US specified by the user identification number ID and the password PW is the card. Confirm that it is the user US who has approved the issuance. Further, the output destination of the authorization code is performed to the business server 30 registered in advance. Therefore, even if something other than the business BP impersonates the business BP and outputs an authorization request, the destination of the authorization code is the preset business BP, and the authorization code is output for "spoofing". Will not be done.

When the access key sending unit 15 sends an access key request based on the authorization code and the client ID that identifies the business BP from the business server 30 (S109), the access key sending unit 15 responds to this and sends it to the business server 30. Send the access key (S110). The access key destination of the access key sending unit 15 is the pre-registered business server 30. That is, when the authorization code and the client ID are sent from the pre-registered business server 30, the access key is sent to the registered business server 30. This doubles prevent the authorization code and access key from being sent back to the "impersonation" of the business operator BP.

In the business server 30, the process of sending the access key request (S109) is executed in response to the authorization code being sent from the card issuer server 10. Further, in the business server 30, when the access key is sent from the card issuer server 10 (S110), the card issuer server makes a request for cooperation of payment information (token) using the access key in response to the access key (S110). Send to 10 (S111).

When the payment information cooperation request is sent from the business server 30 using the access key, the payment information cooperation request output unit 16 makes a payment agent for the payment information cooperation request linked to the card specific information of the user US. It is sent to the person server 40 (S112).

The payment agent server 40 creates a payment code (for example, a token for payment) that can be used for authentication of the user US when receiving a payment information cooperation request in cooperation with the card specific information, and creates a card issuer server. It is sent to the settlement code return unit 17 of 10 (S113). A predetermined character string is used as the payment token as the payment encryption.

When the settlement code return unit 17 receives the payment code output from the payment agent server 40 in response to the payment information cooperation request, the business operator server 30 uses this payment code as a response to the payment information cooperation request. Return to (S114). Then, the business server 30 generates an encryption code associated with the payment encryption based on the above-mentioned application, and makes it possible to display it on the user terminal 20 (S115). As a result, the user terminal 20 can launch the above-mentioned application and display the encryption code on the display screen when making a credit card payment. Further, since the payment code is sent only to the business server 30 and is not sent to the user terminal 20, it is possible to prevent the payment code from leaking from the user terminal 20 to the outside. , Confidentiality can be ensured.

Therefore, when the user US wishes to make a credit card payment using the user terminal 20 when purchasing goods or providing services at the store of the business operator BP, the user US launches the application and starts the application of the user terminal 20. The encryption code is posted on the display screen (S116). Then, the encryption code is read by using the reading device function of the business terminal 31 (S117).

The business operator server 30 decrypts the encryption code read by the business operator terminal 31 into a payment cipher, and sends a payment request to the payment agent server 40 using this payment cipher (S118).

When the payment agent server 40 receives a payment request based on the payment code, the payment agent decrypts the payment code into card specific information, and issues a card issuance of the payment request approval request received from the business server 30 together with the card specific information. It is sent to the person server 10 (S119).

Upon receiving the payment request approval request, the payment approval unit 18 of the card issuer server 10 identifies the user US of the payment request based on the card identification information, and then refers to the card usage conditions of the user US and the like. Determine if the payment request meets the card usage conditions. Then, when the payment request conforms to the card usage conditions, the payment approval unit 18 sends a sales approval (OK) cooperation permission for the payment request to the payment agent server 40 (S120). Here, as a card usage condition, a determination as to whether or not the payment request amount is included within the card usage limit is included, and the use of credit card payment within the card usage limit is included. It is possible.

Then, when the settlement agent server 40 receives the cooperation permission of the sales approval (OK), it sends the cooperation permission of the sales approval for the payment request to the business server 30 (S121). Upon receiving the cooperation permission of the sales approval, the business server 30 notifies the user US of the completion of the credit card payment via the business terminal 31 or through an application (S122), and sells the goods at the store. Provide services, etc.

Further, the business server 30 sends the sales information of the settlement to the settlement agent server 40 (S123). Then, the payment agent server 40 outputs the sales to the card issuer server 10 at a predetermined time (S124). Further, when the sales billing unit 19 of the card issuer server 10 receives the sales recording information, it executes a process of billing the billing amount to the user terminal 20 at a predetermined time (S125).

<About the user's operation procedure>
The procedure for operating the user US, which enables credit card payment using the user terminal 20, will be described below based on the user identification number ID and password PW.
The user US requests the issuance of a credit card using the application of the business operator BP (S101), and when the issuance is approved after being examined (S102), it is immediately used to the e-mail address of the user US. A person identification number ID and a password PW are issued (S105). The user US can purchase goods and provide services by credit card payment using the user terminal 20 through personal authentication by the user identification number ID and password PW.

When the user US wishes to make a credit card payment using the user terminal 20, the user US first launches the application on the user terminal 20 and inputs the user identification number ID and password PW. The card usage request (S106) is performed. The business operator server 30, the card issuer server 10, and the payment agent server 40 perform payments (S107 to S114) in response to the card usage request (S106) to the user terminal 20 for payment associated with the payment encryption. The code is sent (S115). As a result, the user terminal 20 is in a state where an encryption code that can identify the user US can be displayed based on an application directly or indirectly provided by the business operator or the card issuer (S116). The input itself of the user identification number ID and the password PW described above is not limited to the one in which the user US directly performs the act. For example, the user management unit 12 sends the user identification number ID and password PW in the form of another signal such as encryption, and the user US indicates the user identification number ID and password PW. It is possible to perform an operation to output a signal. In short, it suffices if the user management unit 12 can perform personal authentication based on the user identification number ID and password PW.

Therefore, when the user US receives the purchase of goods or the provision of services by credit card payment at a store of the business operator BP, the encryption code is displayed on the display screen of the user terminal 20 and read by the business operator terminal 31. (S116, S117). The processing (S118 to S121) executed by the business server 30, the card issuer server 10, and the payment agent server 40 in response to this enables credit card payment within the credit card usage limit. In this way, credit card payment is possible even before the credit card arrives.

At the time of the first operation of the credit card usage request (S106), the display is automatically performed after the operation of the usage request (S106) without displaying in response to the operation for display by the user US shown in S116. The encryption code may be displayed on the display screen of the user terminal 20. In addition, at the time of the second and subsequent credit card payments, when the user US launches the application on the user terminal 20, the encryption code is automatically displayed on the display screen of the user terminal 20. You may.

Alternatively, in both the first time and the subsequent credit card payment, the encryption code may be displayed by performing an operation of displaying a predetermined encryption code in the state where the application is started.

Further, in the above description, the user terminal 20 has been described as displaying a certain encryption code to the user US, but each time a credit card payment is made, a different encryption code is received and displayed. You may do so. In this case, the credit card usage request (S106) is operated every time a credit card payment is made, and a different payment cipher is sent and a different cipher code is sent each time. Therefore, the user terminal 20 does not hold a certain encryption code, and the confidentiality of the data becomes higher.

As described above, in the first embodiment, the credit card payment becomes possible even before the credit card is actually issued, and high convenience can be obtained.

Moreover, as the input operation on the user terminal 20, a simple operation such as launching the application, inputting the user identification number ID and password PW for using the application, or an operation instead of the user identification number ID may be performed. Therefore, the input operation is easier and the usability is excellent as compared with the case where all the card specific information is input.
Further, in the user terminal 20, even after receiving the encryption code, the application can display the encryption code on the above-mentioned display screen, and the credit card payment using the user terminal 20 can be continuously performed. can do. Therefore, even higher convenience can be obtained.

Further, in this credit card payment, the business operator BP and the user US do not receive the card specific information such as the primary account number (PAN) and the expiration date. Therefore, there is no possibility that the card specific information is leaked to the outside, and a high security level can be ensured. In addition, since the user terminal 20 does not receive the payment cipher, a high security level can be ensured in this respect as well.

Further, before the user US makes a request for authorization to use the card and the encryption code can be displayed, the operator server 30 and the card issuer server 10 send the authorization code, receive the access key request, and so on. Send access key and request cooperation of payment information.

In this case, the authorization code is sent from the card issuer server 10 to the business server 30, and the access key is sent only to the pre-registered business BP and business server 30. Therefore, even if the "impersonation" of the business operator BP and the business operator server 30 tries to obtain the user identification number ID and password PW by some means to obtain the permission code and access key, they cannot be obtained and are expensive. The security level can be ensured.

<Effect of Embodiment 1>
The effects of the payment system of the first embodiment described above are listed below.
(1) The payment system of the first embodiment is a communication network between a user terminal 20, a business server 30 managed by a business BP registered in advance with a card issuer, and a pre-contracted payment agent server 40. It is possible to connect via. Then, when the examination unit 11 examines whether or not the credit card issuance is permitted in response to the credit card issuance request (S101) from the user terminal 20, and the examination unit 11 permits the issuance of the credit card. , A payment system including a card issuer server 10 having a user management unit 12 that sets and holds card specific information including a card number and card usage conditions in association with the user US that requested the issuance of a credit card. Is.

The card issuer server 10 further includes the following identification number / password issuance processing unit 13, authorization code sending unit 14, access key sending unit 15, payment information linkage request output unit 16, payment encryption return unit 17, and payment approval unit. 18 is provided.
When the examination unit 11 determines that the credit card issuance request from the user terminal 20 is permitted, the identification number / password issuance processing unit 13 associates the card identification information of the user US with the card issuer server 10 The user identification number ID and password PW necessary for accessing the user terminal 20 are issued to the user terminal 20 (S105).
The authorization code sending unit 14 authorizes the registered operator server 30 when there is an authorization request (S107) for using the user US card using the user identification number ID and password PW from the operator server 30. Send the code (S108).
The access key sending unit 15 sends the registered business server 30 to the registered business server 30 when there is an access key request (S109) based on the authorization code and the client ID from the business server 30 registered in advance and given the client ID. Send the access key (S110).
When there is a payment information linkage request (S111) from the business server 30 using the access key, the payment information linkage request output unit 16 setstles the payment information linkage request linked to the card specific information of the user US. It is sent to the agent server 40 (S112).
When the payment code return unit 17 receives the payment code associated with the card specific information sent from the payment agent server 40 in response to the payment information linkage request (S112) (S113), the payment code is used. It is returned to the business server 30 as a response to the payment information linkage request (S111) (S114).
The payment approval unit 18 converts the approval request from the payment agent server 40 in response to the payment request (S118) using the payment code sent from the business server 30 into the card identification information obtained by decrypting the payment code. When the payment request is received in association with (S119), the user US of the payment request is specified, the card usage conditions of the user US are referred to, and if the payment request conforms to the card usage conditions, the payment agent server 40 Allows the business server 30 to link the sales permission for the payment request (S121) (S120).

Therefore, from the time when the examination unit 11 permits the issuance of the credit card and issues the user identification number ID and the password PW, the credit card can be settled regardless of the presence or absence of the credit card, and the convenience is improved. Moreover, when making a credit card payment using the user identification number ID and password PW, the payment request should be made using the payment encryption after exchanging the authorization code and access key with the business server 30. Therefore, high confidentiality can be ensured. Further, in the procedure of this credit card payment, the user US only needs to input the user identification number ID and the password PW, so that the operation is compared with the case where the card number, the date of birth, etc. are input. Excellent in sex. Further, since the card specific information of the user US is not passed to the business server 30 and the user terminal 20, there is no possibility that the card specific information is leaked from the business server 30 and the user terminal 20 to the outside, which is high. Confidentiality can be obtained.

(2) In the payment system of the first embodiment, the card use authorization request (S107) using the user identification number ID and password PW uses the user identification number ID and password PW from the user terminal 20. It was sent from the business server 30 in response to the card usage request (S106), and the payment request using the payment cipher is a cipher converted from the payment cipher displayed on the display screen of the user terminal 20. The code is read by the reading device of the business terminal 31 connected to the business server 30, and the encryption code is decrypted into the payment encryption by the business server 30 and output.

Therefore, when the user US wishes to make a credit card payment at a store, he / she only needs to display the encryption code on the display screen of the user terminal 20 and post it, which is excellent in usability of the user US. In particular, in the first embodiment, if the encryption code acquired once in the user terminal 20 can be used repeatedly as information for identifying the user US, the user identification number ID and password PW are input. It can be used without repeating, and it is also easy to use. Moreover, since the payment code required for the payment process on the payment agent server 40 is only sent to the business server 30 and not passed to the user terminal 20, the payment code is sent from the user terminal 20. Can be ensured with high confidentiality without leaking.

(Other embodiments)
Next, the payment system of another embodiment will be described. In the description of the other embodiments, the same reference numerals are given to the configurations common to the configurations already described, the description is omitted, and only the differences will be described.

(Embodiment 2)
The payment cooperation system including the payment system of the second embodiment will be described below. FIG. 3 is a sequence diagram showing a processing flow of a payment cooperation system including the payment system of the second embodiment.

The second embodiment is an example in which the business operator server 30 has a security level equal to or higher than a predetermined value in advance. The security level above the specified level refers to the Payment Card Industry Data Security Standard, which is jointly operated and managed by five international credit card brands. Further, the security level is not limited to the one directly provided by the business operator BP, but may be provided by the server consignor.
Further, in the second embodiment, as in the first embodiment, the business operator BP has the business operator terminal 31 in the store, and the user US installs a predetermined application on the user terminal 20 and installs the predetermined application in the store. This is an example of making a credit card payment.

As shown in FIG. 3, the card issuer server 10 that realizes the payment system of the second embodiment has the same examination unit 11, the user management unit 12, and the identification number / password issuing processing unit 13 as in the first embodiment. The authorization code sending unit 14 and the access key sending unit 15 are provided. The processes executed by these are also the same as those described in the first embodiment.

The differences from the first embodiment will be described below.
The card issuer server 10 includes a card specific information output unit 216, a sales permission cooperation unit 218, and a sales billing unit 219 as a configuration different from that of the first embodiment.

When the card specific information output unit 216 receives a link request for the card specific information from the business server 30 using the access key (S201), the card specific information output unit 216 sends the card specific information to the business server 30 (S202).

Upon receiving the card specific information, the business server 30 generates a payment identification number (a so-called security token, hereinafter referred to as a payment ID) as a payment code based on the card specific information, and the user. It is sent to the terminal 20 (S203). In the user terminal 20, the application installed from the business server 30 in advance generates an encryption code for payment such as a barcode based on the sent payment ID, and the user terminal 20 is in a state where it can be displayed on the display screen.

Therefore, when the user US wants to make a credit card payment using the user terminal 20 at the store of the business operator BP, the payment is made on the display screen of the user terminal 20 at the store as in the first embodiment. The operation of displaying the encryption code of (S116) is performed.

The business server 30 reads the payment encryption code displayed on the display screen of the user terminal 20 by the reading device of the business terminal 31 (S117), and reads the payment encryption code from the payment ID and further the card. After decrypting it into specific information, a payment request is sent together with the card specific information (S204).

When the sales permission cooperation unit 218 receives the payment request, the user US is specified based on the card identification information, and then the card usage conditions of the user US are referred to, and whether the payment request conforms to the card usage conditions. Judge whether or not. Then, when the payment request conforms to the card usage conditions, the business server 30 is linked with the sales permission for the payment request (S205).

Therefore, when the business operator BP receives the cooperation of the sales license, the business operator BP can sell the goods and provide the service to the user US by credit card payment (S122).

When the sales recording information of the settlement based on the card specific information is sent from the business server 30 to the card issuer server 10 (S206), the sales billing unit 219 charges the user terminal 20 for the billing amount at a predetermined time. (S207).

<Effect of Embodiment 2>
The effects of the second embodiment are listed below.
(2-1) The payment system of the second embodiment is a card capable of connecting to the user terminal 20 and the business server 30 managed by the business BP registered in advance in the card issuer CC via a communication network. The issuer server 10 is provided. Then, the card issuer server 10 has an examination unit 11 that examines whether or not to permit the issuance of the credit card in response to the credit card issuance request (S101) from the user terminal 20, and the examination unit 11 examines the credit card. The user management unit 12 sets and holds the card number and the card specific information including the card usage conditions in association with the user US who requested the issuance of the credit card when the issuance of the credit card is permitted.

The card issuer server 10 further includes the following identification number / password issuing processing unit 13, authorization code sending unit 14, access key sending unit 15, card specific information output unit 216, and sales permission cooperation unit 218.
When the examination unit 11 determines that the credit card issuance request (S101) from the user terminal 20 is permitted, the identification number / password issuance processing unit 13 issues the card in association with the card specific information of the user US. The user identification number ID and password PW necessary for accessing the user server 10 are issued to the user terminal 20.
The authorization code sending unit 14 authorizes the registration destination operator server 30 when there is an authorization request (S107) for using the user US card using the user identification number ID and password PW from the operator server 30. Send the code (S108).
The access key sending unit 15 sends an access key to the business server 30 when there is an access key request (S109) based on the authorization code and the client ID given to the business BP in advance from the business server 30. (S110).
The card specific information output unit 216 sends the card specific information to the business server 30 (S202) when there is a link request (S201) for the card specific information from the business server 30 using the access key.
In response to the payment request (S204) using the card identification information from the business server 30, the sales permission cooperation unit 218 identifies the user US of the payment request, refers to the card usage conditions of the user US, and makes a payment. If the request conforms to the card usage conditions, the business server 30 is permitted to cooperate with the sales permission for the payment request (S205).

Therefore, as described in (1) of the first embodiment, the credit card payment is possible from the time when the user identification number ID and the password PW are issued, and the convenience is improved. Moreover, when making a credit card payment using the user identification number ID and password PW, the payment request should be made using the payment encryption after exchanging the authorization code and access key with the business server 30. Therefore, high confidentiality can be ensured.

In addition, in the second embodiment, if the security level of the business operator server 30 is equal to or higher than a predetermined value, the card specific information can be used without interposing the payment agent server 40 to link the card specific information with the payment encryption. It can be sent directly to the operator server 30. As a result, the cost of settlement can be reduced.
Further, similarly to the effect described in (2) of the first embodiment, when the user US wishes to make a credit card payment at a store, the user US displays an encryption code on the display screen of the user terminal 20. It is easy to use the user US because it is only necessary to post.

(Embodiment 3)
Next, the processing of the payment cooperation system including the payment system of the third embodiment will be described.
FIG. 4 is a sequence diagram showing a processing flow of a payment cooperation system including the payment system of the third embodiment.

In the third embodiment, when the user US accesses the business server 30 via the communication network and performs so-called online shopping, the user US makes a credit card payment using the user identification number ID and password PW. Is. That is, in the first and second embodiments, the user US installs the necessary application directly or indirectly from the business operator BP, performs a predetermined procedure such as enrollment, and then makes a credit card payment. Was explained.

On the other hand, the third embodiment is an example in which the user US accesses the business server 30 by the user terminal 20 and makes a credit card payment by operating the display screen of the user terminal 20 without going to the store. is there. Further, the third embodiment is an example assuming a case where the security level of the business server 30 is a relatively low level at which the card specific information cannot be given, as in the first embodiment. In the case of the third embodiment, the user terminal 20 is not limited to a mobile terminal, and a non-portable so-called desktop type personal computer or the like can also be used.
As shown in FIG. 4, the card issuer server 10 that realizes the payment system of the third embodiment has the same examination unit 11, the user management unit 12, and the identification number / password issuing processing unit 13 as in the first embodiment. It includes an authorization code sending unit 14 and an access key sending unit 15.

Further, the card issuer server 10 that realizes the payment system of the third embodiment includes a payment information linkage request output unit 16, a payment encryption return unit 17, and a payment approval unit 18 similar to those of the first embodiment.

The differences from the first embodiment will be described below.
The authorization code sending unit 14 is common to the first embodiment in that it receives an authorization request for card use from the business server 30, but in this case, the operation (S301) by the user terminal 20 is the first embodiment. Different from.

In the case of the first embodiment, the user US sends a card usage request for receiving the encryption code necessary for performing the credit card payment using the user terminal 20 at the store to the business server 30 (S106). .. Then, the business operator server 30 sends an authorization request in response to this.

On the other hand, in the third embodiment, the user US accesses the business server 30 via the communication network and the so-called online shopping screen on the display screen of the user terminal 20. Then, an item to be purchased or the like is selected on the display screen, and a payment request operation by credit card is performed using the user identification number ID and password PW on the payment method setting screen (S301). The business server 30 that has received the credit card payment request sends an authorization request (S107) to the card issuer server 10 as the first stage processing for the payment request.

The difference from the next embodiment 1 is the processing of the settlement approval unit 18.
Here, the point that the settlement approval unit 18 permits the cooperation of approval in response to the approval request (S119b) sent from the settlement agent server 40 is common to the first embodiment. However, the flow of the process of sending the payment request from the business operator server 30 that triggers the payment agent server 40 to send the approval request (S119b) is different from that of the first embodiment.

In the case of the first embodiment, the approval request received by the payment approval unit 18 responds to the payment request based on the payment encryption decrypted by reading the encryption code displayed on the display screen of the user terminal 20 by the business terminal 31. Then, the settlement agent server 40 sent the approval request.

On the other hand, the approval request received by the payment approval unit 18 in the third embodiment is the payment request (S302) sent by the business server 30 based on the payment code (token) received from the card issuer server 10. In response, the settlement agent server 40 sent an approval request (S119b). The processing of the other parts 11 to 13, 15 to 17 is the same as that of the first embodiment.

Next, the operation of the third embodiment will be briefly described.
When accessing the business server 30 and shopping online, the user US simply enters the user identification number ID and password PW according to the guidance on the display screen and requests credit card payment to issue the card. By processing the personal server 10, the business server 30, and the payment agent server 40, it is possible to receive the purchase of goods and the provision of services from the business BP (S303).

At this time, between the business server 30 and the card issuer server 10, as in the first embodiment, the authorization request (S107), the authorization code transmission (S108), the access key request (S109), and the access key Sending (S110) and request for cooperation of payment information (S111) are made. Further, as in the first embodiment, the card issuer server 10 and the payment agent server 40 form a payment information cooperation request (S112) and a payment code transmission (S113) by linking the card specific information. Will be done. Then, the payment code is returned from the card issuer server 10 to the business server 30 (S114).

Based on the payment code returned to the business server 30, as described above, the payment request (S302), the approval request (S119b), the sales approval (OK) cooperation permission (S120), and the sales permission cooperation (S121) is performed, and credit settlement is performed.

<Effect of Embodiment 3>
In the payment system of the third embodiment described above, the approval request (S107) for using the card using the user identification number ID and password PW from the business server 30 is the user identification number from the user terminal 20. It was sent in response to a payment request (S301) using the ID and password PW. Then, the payment request (S302) using the payment code is sent from the business server 30 in response to the business server 30 receiving the payment code from the card issuer server 10. It is a feature.

Therefore, in the third embodiment, even when the user US conducts so-called online shopping, the credit card payment using the user identification number ID and the password PW can be performed without inputting / transmitting the credit card number. Therefore, even in the third embodiment, the effect described in (1) of the first embodiment can be obtained.

(Embodiment 4)
Next, a payment cooperation system including the payment system of the fourth embodiment will be described. FIG. 5 is a sequence diagram showing a processing flow of a payment cooperation system including the payment system of the fourth embodiment.

The fourth embodiment is a modification of the second embodiment and the third embodiment. That is, in the fourth embodiment, the security level of the business server 30 has a relatively high level capable of giving the card specific information as in the second embodiment, and the credit card payment is carried out. This is an example of performing online shopping in the same manner as in Form 3.

As shown in FIG. 5, the card issuer server 10 that realizes the payment system of the fourth embodiment has the same examination unit 11, the user management unit 12, and the identification number / password issuing processing unit 13 as in the first embodiment. It includes an authorization code sending unit 14 and an access key sending unit 15.

Further, the card issuer server 10 that realizes the payment system of the fourth embodiment includes a card specific information output unit 216, a sales permission cooperation unit 218, and a sales billing unit 219, which are the same as those of the second embodiment.

Then, the authorization request (S107) received by the authorization code sending unit 14 of the fourth embodiment responds to the payment request (S301) of the credit card using the user identification number ID and the password PW, as in the third embodiment. Then, it was sent from the business server 30.

Further, in the fourth embodiment, when the card specific information output unit 216 receives a request for the card specific information using the access key from the business server 30 as in the second embodiment (S201), the business server 30 The card specific information is sent to (S202).

Then, the business server 30 that has received the card specific information sends a payment request based on the card specific information to the card issuer server 10 (S401).

Further, when the sales permission cooperation unit 218 receives the payment request (S401) from the business server 30, it identifies the user US based on the card identification information, refers to the card usage conditions of the user US, and makes a payment. Determine if the request meets the card usage conditions. Then, when the payment request conforms to the card usage conditions, the sales permission cooperation unit 218 links the sales permission for the payment request with the business server 30 (S205b).

Therefore, upon receiving the cooperation of the sales license, the business server 30 can sell goods and provide services to the user US by credit card payment, as in the third embodiment (S303). ).

Further, when the sales accounting information of the settlement based on the card specific information is sent from the business operator server 30 to the card issuer server 10 (S206), the sales billing unit 219 decides a predetermined time. Bill the user terminal 20 for the billing amount (S207).

As described above, in the fourth embodiment, the user identification number ID and the password PW-based card use authorization request (S107) from the operator server 3 are the user identification number ID and the user identification number ID from the user terminal 20. It was sent in response to a payment request (S301) using a password. Then, the payment request (S401) using the card specific information is sent from the business server 30 in response to the business server 30 receiving the card specific information from the card issuer server 10 (S202). ..

Therefore, the user US can complete the credit card payment only by inputting the user identification number ID and the password PW and making a payment request (S301) at the time of online shopping. Therefore, in the fourth embodiment, delivery of goods from the business operator BP, installation of data, and the like are performed by online shopping.

Further, as in the second embodiment, if the security level of the business operator server 30 is equal to or higher than a predetermined value, the card specific information is transmitted without interposing the payment agent server 40 and linking the card specific information with the payment encryption. , Can be sent directly to the operator server 30. As a result, the cost of settlement can be reduced.
In addition, the effect described in (1) of Embodiment 1 can also be obtained.

Although the embodiments of the present disclosure have been described with reference to the drawings, the specific configuration is not limited to the embodiments and deviates from the gist of the invention according to each claim in the claims. Unless otherwise, design changes and additions are allowed.

For example, in the embodiment, for the sake of explanation, the payment system of the embodiment and the payment cooperation system provided with the payment system are described separately for the first to fourth embodiments, but one payment that combines these. It may be a system and a payment cooperation system provided with the system. That is, the security level of the business server 30 that has sent the authorization request is confirmed, and depending on the level, the intervention of the settlement agent server 40 is used properly as in the first and third embodiments, or the second embodiment. As in 4, the card specific information may be sent directly to the business server 30. Further, the user US may be able to handle both the case where the credit card payment is made at the store and the case where the credit card payment is made through online shopping. Alternatively, 2 or 3 of the techniques of embodiments 1 to 4 may be selectively combined.

BP Business CC Card Issuer ID User Identification Number PA Payment Agent PW Password US User 10 Card Issuer Server 11 Examination Department 12 User Management Department 13 Identification Number / Password Issuance Processing Department 14 Authorization Code Sending Department 15 Access Key Sending unit 16 Payment information linkage request output unit 17 Payment encryption return unit 18 Payment approval unit 19 Sales billing unit 20 User terminal 30 Business server 31 Business terminal 40 Payment agent server 216 Card specific information output unit 218 Sales permission cooperation Department 219 Sales Billing Department

Claims (6)

It is possible to connect to the user terminal, the business server managed by the business registered in advance with the card issuer, and the payment agent server via the communication network.
The examination department that examines whether or not to permit the issuance of the credit card in response to the request for issuance of the credit card from the user terminal,
When the examination department permits the issuance of the credit card, the user management department that sets and holds the card specific information including the card number and the card usage conditions in association with the user who requested the issuance of the credit card. ,
It is a payment system equipped with a card issuer server that has
The card issuer server further
A user required to access the card issuer server in association with the card specific information of the user when the examination department determines that the issuance permission is given in response to the credit card issuance request from the user terminal. The identification number / password issuance processing unit that issues the identification number and password to the user terminal,
An authorization code sending unit that sends an authorization code to the operator server when the operator server requests authorization to use the user's card using the user identification number and the password.
An access key sending unit that sends an access key to the business server when the business server requests an access key based on the authorization code and the business identification number given to the business in advance.
When there is a payment information linkage request from the business server using the access key, the payment information linkage request linked to the card specific information of the user is sent to the payment agent server. Request output section and
When the payment code associated with the card specific information output from the payment agent server is received in response to the payment information cooperation request, the payment code is used as a response to the payment information cooperation request. A cryptographic return unit for payment to be returned to the vendor server,
When the approval request from the payment agent server in response to the payment request using the payment code output from the business operator server is received in association with the card identification information obtained by decrypting the payment code. After identifying the user of the payment request, the card usage condition of the user is referred to, and if the payment request conforms to the card usage condition, the payment agent server to the business operator server With the settlement approval department that allows the cooperation of sales permission for the settlement request
Payment system with. In the payment system according to claim 1,
The request for authorization to use the card using the user identification number and the password was sent from the business operator server in response to the card use request using the user identification number and the password from the user terminal. It is a thing
In the payment request using the payment cipher, the encryption code converted from the payment cipher displayed on the display screen of the user terminal is read by the reading device of the business terminal connected to the business server. A payment system in which an encryption code is decrypted into the payment encryption by the business server and output from the business server. In the payment system according to claim 1,
The request for authorization to use the card using the user identification number and the password from the business server was sent in response to the payment request using the user identification number and the password from the user terminal. It is a thing
The payment request using the payment cipher is a payment system sent from the business server in response to the business server receiving the payment cipher from the card issuer server. It is possible to connect the user terminal and the business server managed by the business registered in advance with the card issuer via the communication network.
The examination department that examines whether or not to permit the issuance of the credit card in response to the request for issuance of the credit card from the user terminal,
When the examination department permits the issuance of the credit card, the user management department that sets and holds the card specific information including the card number and the card usage conditions in association with the user who requested the issuance of the credit card. ,
It is a payment system equipped with a card issuer server that has
The card issuer server further
A user required to access the card issuer server in association with the card specific information of the user when the examination department determines that the issuance permission is given in response to the credit card issuance request from the user terminal. The identification number / password issuance processing unit that issues the identification number and password to the user terminal,
An authorization code sending unit that sends an authorization code to the operator server to be registered when the operator server requests authorization to use the user's card using the user identification number and the password.
An access key sending unit that sends an access key to the business server when the business server requests an access key based on the authorization code and the business identification number given to the business in advance.
A card specific information output unit that sends the card specific information to the business server when there is a request for cooperation of the card specific information from the business server using the access key.
In response to a payment request using the card identification information from the business server, the user of the payment request is specified, the card usage condition of the user is referred to, and the payment request is the card usage condition. If it conforms to, the payment approval department that permits the business server to link the sales permission for the payment request, and
Payment system with. In the payment system according to claim 4,
The request for authorization to use the card using the user identification number and the password was sent from the business server in response to the card use request using the user identification number and the password from the user terminal. The payment request using the card specific information is a reading device of the business terminal connected to the business server by converting the encryption code converted from the card specific information displayed on the display screen of the user terminal. A payment system that is read by the business server, decrypts the encryption code into the card specific information on the business server, and is output from the business server. In the payment system according to claim 4,
The request for authorization to use the card using the user identification number and the password from the business server was sent in response to the payment request using the user identification number and the password from the user terminal. It is a thing
The payment request using the card specific information is a payment system sent from the business server in response to the business server receiving the card specific information from the card issuer server.

Images