JP2009169809A - Biological information registration system, IC card, processing terminal, and center system - Google Patents

Abstract

Provided is a biometric information registration system in which a user can register biometric information by using a terminal that can use biometric authentication without requiring identification at a window or the like.
A biometric information registration system including an IC card, a settlement terminal, and a settlement center, wherein the IC card has a biometric authentication application having a registration number generation function. The payment center 300 has a payment processing function 310 and a database 340, and transmits the user's biological information read by the biological information sensor 240 to the IC card 100. The registration number generated by the registration number generation function 153 is recorded, transmitted to the payment center 300 via the payment terminal 200, and recorded in the database 340, whereby the IC card 100 is used using the payment terminal 200. Register biometric information.
[Selection] Figure 1

Description

  The present invention relates to a processing system using an IC card, and more particularly to a technique that is effective when applied to a processing system that registers biometric information in an IC card and performs identity verification through biometric authentication.

  Conventionally, cash cards and credit cards used for financial transactions have mainly used magnetic stripe cards. However, in recent years, fraudulent use using counterfeit cards has increased rapidly, so replacement with IC cards has become possible. Progressing rapidly. An IC card can actively protect data using an IC chip embedded in the card, and counterfeiting is much more difficult than a magnetic stripe card. Currently, EMV (registered trademark) specifications are the de facto standard for cash cards and credit cards using IC cards.

  In the EMV specification, a PIN (Personal Identification Number) verification method is adopted as the identity verification method of the IC card owner. The PIN is a cash card or credit card PIN. However, the PIN verification method has a problem in that the IC card owner himself may forget the PIN value and the so-called impersonation due to the theft of the IC card and PIN cannot be sufficiently prevented.

Therefore, in recent years, attention has been paid to an identification method using biometric authentication using biometric information that is difficult for other people to steal, such as fingerprints, veins, and irises, and that is different for each individual. Furthermore, since there are cases where the corresponding biometric authentication methods such as finger vein authentication and palm vein authentication differ for each financial institution, a plurality of biometric information is stored in one card, and the IC card is compatible with a plurality of biometric authentication methods. Issuance is also progressing. Regarding a transaction method using an IC card storing a plurality of biometric information, for example, a technique such as Japanese Patent Application Laid-Open No. 2007-193476 (Patent Document 1) has been proposed, and a terminal that can use biometric authentication Is spreading.
JP 2007-193476 A

  However, when registering biometric information on an IC card, in order to register the correct biometric information, the identity of the card issuer must be verified using an identification card, etc., and then the biometric information must be registered at the counter. Yes. In this method, the user needs to find a specific window where biometric information can be registered, and a card issuer who does not have a window issues an IC card with a biometric authentication function. There are issues in terms of convenience, such as being unable to do so.

  Accordingly, an object of the present invention is to provide a biometric information registration system in which the user himself / herself can register biometric information using a terminal that can use biometric authentication without requiring identity verification at a window or the like. It is in.

  The above and other objects and novel features of the present invention will be apparent from the description of this specification and the accompanying drawings.

  Of the inventions disclosed in the present application, the outline of typical ones will be briefly described as follows.

  A biometric information registration system according to a representative embodiment of the present invention is a biometric information registration system that includes an IC card, a processing terminal, and a center system, and the IC card passes through the processing terminal and the center system. At least one biometric authentication provided with a communication unit that communicates with each other, a function that performs biometric authentication corresponding to the type of biometric information, and a registration number generation function that generates a registration number when biometric information is registered An application and a processing application having a function of performing processing of a target by biometric authentication in cooperation with the biometric authentication application, and the processing terminal includes an IC card communication unit that communicates with the IC card, A center communication unit that communicates with the center system, and a user interface that provides the user with an interface for performing target processing by biometric authentication. The center system includes a communication unit that communicates with the IC card via the processing terminal, and a request from the processing terminal. And a database for recording information related to the IC card and processing history, and reading the biometric information of the user by the biometric information sensor of the processing terminal. The registration number generated by the registration number generation function of the IC card is recorded on the IC card and transmitted to the center system via the processing terminal, and is registered in the database. By recording, biometric information is registered in the IC card using the processing terminal. .

  Among the inventions disclosed in the present application, effects obtained by typical ones will be briefly described as follows.

  According to a typical embodiment of the present invention, when biometric information is registered in an IC card, identification at a window or the like is not required, and the user can easily register biometric information in the IC card. By making this possible, convenience can be greatly improved.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. Note that components having the same function are denoted by the same reference symbols throughout the drawings for describing the embodiment, and the repetitive description thereof will be omitted.

<Overview>
In a biometric information registration system according to an embodiment of the present invention described below, a bank ATM or a credit payment terminal uses a financial card such as a cash card or a credit card as an object of processing performed by biometric authentication. The settlement transaction processing is taken as an example. Note that the processing performed by biometric authentication is not limited to these settlement transaction processing, and may be processing such as entry / exit management using an employee ID card or ID card, network access management, and the like.

  A biometric information registration system according to an embodiment of the present invention includes a payment terminal, a payment center, and an IC card. The payment terminal is a processing terminal that presents a screen for performing payment transaction processing using identity verification by biometric authentication to the user, receives input from the user, and performs payment transaction processing by biometric authentication. The payment terminal includes a PIN input unit, a biometric information sensor, an IC card communication unit for communicating with an IC card, a center communication unit for communicating with a payment center, and a user interface unit.

  The settlement center is a center system that includes a database that holds information about IC cards held by users, a history of settlement transactions, and the like, and performs settlement processing in response to a settlement transaction processing request from a settlement terminal. And so on. In addition, the IC card is used to perform identity verification and settlement transaction processing, and performs a target process by biometric authentication in cooperation with an authentication function by PIN, one or more biometric authentication applications, and a biometric authentication application. A payment application which is a processing application including

  The payment application in the IC card has “biometric authentication application management information”. “Biometric authentication application management information” includes, for each biometric authentication application, “biometric authentication information” that is information indicating whether or not biometric authentication is valid. It has “registration information” that is information indicating the status of registration.

  The biometric authentication application in the IC card generates a “registration number” when biometric information is registered. This “registration number” is passed to the payment application in the IC card and recorded in “biometric authentication application management information” in a form included in the “registration information”. Further, the “registration number” is transmitted to the settlement center and recorded in the settlement center database. At this timing, the user (card holder) is not notified of the “registration number”.

  This “registration number” is used for unlocking when the biometric authentication application is locked due to biometric authentication failure or the like, and for identifying the person when re-registering biometric information. For example, when you receive an application for unlocking or re-registering biometric information from the cardholder, the “registration number” registered in the payment center database will be held by existing means such as e-mail or postcard. The person in charge. The cardholder inputs the “registration number” using the PIN input unit of the payment terminal, and the payment application in the IC card matches the “registration number” recorded in the “biometric authentication application management information”. By confirming, identity verification can be performed.

  As described above, when biometric information is registered in the IC card, identification at the window or the like is not required, and the user can easily register biometric information in the IC card.

<Embodiment>
Hereinafter, a biometric registration system according to an embodiment of the present invention will be described with reference to FIGS.

  FIG. 1 is a block diagram illustrating a configuration example of a biometric registration system according to the present embodiment. The biometric authentication registration system includes an IC card 100, a payment terminal 200, and a payment center 300. Payment terminal 200 is connected to payment center 300 via network 400.

  As described above, the present embodiment assumes a system that performs settlement transaction processing by a financial institution as an example, the IC card 100 is a financial card such as a bank cash card or a credit card, and the settlement terminal 200 is a bank Although an ATM, a credit payment terminal, etc. are assumed, it is not restricted to these.

  As the IC card 100, for example, an employee card or an ID card can be used, and the IC card 100 can be applied to a system that performs processing such as entry / exit and network-based access management. The payment terminal 200 may be a portable terminal such as a mobile phone or a PDA as long as it can communicate with the IC card 100 and the payment center 300 and can read biological information. good.

  Below, the internal configuration of the IC card 100 will be described first. The IC card 100 includes a communication unit 110, an arithmetic processing unit 120, and a memory 130. The communication unit 110 is used for the IC card 100 to communicate with the outside. The arithmetic processing unit 120 controls the entire IC card 100. When a command is received from the outside via the communication unit 110, processing corresponding to the command is performed based on the program stored in the memory 130, and the response is transmitted to the outside via the communication unit 110.

  The memory 130 has a function of storing programs and data held by the IC card 100 and is a semiconductor memory such as a ROM (Read Only Memory), an EEPROM (Electrical Erasable Programmable Read Only Memory), or a RAM (Random Access Memory). Consists of. The configuration of programs and data stored in the memory 130 will be described later.

  Next, the internal configuration of the payment terminal 200 will be described. The payment terminal 200 includes an arithmetic processing unit 210, a user interface unit 220, a PIN input unit 230, a biological information sensor 240, an IC card communication unit 250, a memory 260, and a center communication unit 270. .

  The arithmetic processing unit 210 controls the entire payment terminal 200, and performs a payment transaction process using the IC card 100 based on the payment processing program 261 stored in the memory 260. The user interface unit 220 has a function of providing a user with an interface for performing target processing by biometric authentication, and presents visual information such as images and characters or audio information to the user of the payment terminal 200. And an input function that allows the user of the payment terminal 200 to input necessary information. As an output function, for example, a display such as a cathode ray tube or a liquid crystal can be used. As an input function, for example, a keyboard, a touch panel, or the like can be used.

  The PIN input unit 230 has a function for a user to input a PIN, and a small numeric keypad dedicated to numeric input can be used. It is also possible to use the input function of the user interface unit 220. The biometric information sensor 240 has a function of reading biometric information, and includes, for example, a device that can read finger veins and palm veins. Alternatively, it may be a device having a function of reading other biological information.

  The IC card communication unit 250 is used for the payment terminal 200 to communicate with the communication unit 110 of the IC card 100 for controlling the IC card 100. This communication is, for example, communication based on contact communication defined in ISO / IEC 7816, which is an international standard, or communication based on non-contact communication defined in ISO / IEC 14443, but based on other standards. Communication to be performed may be used.

  The memory 260 has a function of storing various programs such as a payment processing program 261 and a biological information registration processing program 262 used by the payment terminal 200, and related data such as a biological AID list 263, and is configured by a hard disk, a semiconductor memory, or the like. Is done. Here, the payment processing program 261 is a program for performing payment transaction processing in the payment terminal 200.

  The biometric information registration processing program 262 is a program for performing a process of newly registering or reregistering biometric information with respect to the IC card 100 from the payment terminal 200. These programs may be realized as separate programs or may be realized as one program. The biometric AID list 263 is data indicating the types of biometric information that can be read by the payment terminal 200.

  The center communication unit 270 is used for data communication with the settlement center 300, and has a function of connecting to a public line network such as a telephone line or the Internet, or a dedicated line network.

  Next, the contents of the settlement center 300 and the database 340 held by the settlement center 300 will be described. The settlement center 300 includes a settlement processing function 310 that centrally performs settlement transaction processing based on a settlement transaction processing request from each settlement terminal 200, and a settlement history inquiry function 320 that queries each user's settlement transaction history. The communication unit 330 used for data communication with the payment terminal 200 and the database 340 are included.

  The database 340 includes a card number 341, biometric authentication application management information 342, and a payment history 343. The card number 341 is a unique card number of the IC card 100 held by the user, and is information for specifying the IC card 100. The biometric authentication application management information 342 holds biometric authentication application management information 142 of the IC card 100 identified by the card number 341. This will be described later.

  The settlement history 343 stores a history of performing settlement transaction processing using the IC card 100 specified by the card number 341. The contents of the payment history 343 can be referred to by the payment history inquiry function 320. By adding a registration number 1424 in biometric authentication application management information 342, which will be described later, to each payment history data in the payment history 343 and storing it, the unauthorized use is started when the IC card 100 is illegally used. Time, place, transaction history, etc. can be detected.

  Next, the configuration of programs and data stored in the memory 130 of the IC card 100 will be described. The memory 130 stores a payment application 140, a biometric authentication application 150, an operating system 160, and a shared buffer 170.

  The payment application 140 is an IC card application program used to execute a payment transaction process using the IC card 100. The biometric authentication application 150 is an IC card application program used to execute a biometric authentication process using the IC card 100.

  The operating system 160 is a system program that provides basic functions necessary to execute the payment application 140 and the biometric authentication application 150. The operating system 160 selects an IC card application designated from the outside, and the arithmetic processing unit 120 Has the function to execute. Further, it has a firewall function for protecting programs and data managed by each IC card application from other IC card applications, and each IC card application can be executed safely. Specific examples of the operating system 160 include MULTOS (registered trademark) and Java (registered trademark) Card, which are IC card operating systems, but are not limited to these, and other operating systems may be used. .

  The shared buffer 170 is a buffer for storing a command received via the communication unit 110 and a corresponding response. The shared buffer 170 is also used for storing data transmitted and received between the payment application 140 and the biometric authentication application 150.

  Here, the payment application 140 has a function of performing identity verification by PIN verification, but does not have a function of performing identity verification by biometric authentication. For this reason, when the payment application 140 performs identity verification by biometric authentication, the biometric authentication process is delegated to the biometric authentication application 150 via the shared buffer 170.

  Next, the configuration of data managed by the payment application 140 will be described. The data managed by the payment application 140 includes a payment AID 141, biometric authentication application management information 142, a remaining PIN verification number 143, a registered PIN 144, and a personal identification result 145.

  The payment AID 141 is an application identifier (AID: Application IDentifier) assigned to the payment application 140. Here, the AID is an identifier used to uniquely identify the IC card application and to be used by the operating system 160 to select the application. Note that the AID numbering method for internationally distributed IC card applications is defined by the international standard ISO / IEC7816-5.

  The biometric authentication application management information 142 is data for managing the status of biometric authentication and the status of biometric information registration for each biometric authentication application that can be executed from the payment application 140, and whether biometric authentication is valid or not. “Biometric authentication information” that is information indicating a situation and “registration information” that is information indicating a registration status of biometric information when biometric authentication is valid. The data configuration of the biometric authentication application management information 142 will be described later.

  The remaining PIN verification count 143 is data that holds the remaining number of trials of the PIN verification processing executed by the payment application 140. A predetermined positive integer value is set as the initial value for the remaining PIN verification count 143, and the value is decreased every time the identity verification by PIN verification fails. When the value of the remaining PIN verification count 143 becomes “0”, the payment application 140 cannot execute the PIN verification. In this embodiment, the payment application 140 manages whether or not to perform PIN verification using the PIN verification remaining count 143. However, the number of PIN verification failures is not the remaining number of PIN verification attempts. It may be possible to manage whether or not the PIN verification can be performed by holding it.

  The registered PIN 144 is the PIN of the user of the IC card 100, and this value is collated with the PIN value input by the user from the PIN input unit 230 of the payment terminal 200 at the time of identity verification by PIN collation. The identity verification result 145 is data that holds a result of identity verification by PIN verification in the payment application 140.

  FIG. 2 is a diagram illustrating a data configuration example of the biometric authentication application management information 142. In FIG. 2, biometric authentication application management information 142 includes biometric AID 1421, valid flag 1422, remaining biometric authentication count 1423, registration number 1424, registration number verification remaining count 1425, registration year, for each biometric authentication application supported by payment application 140. The table holds a date 1426, a registration location 1427, and a limit amount 1428.

  Here, the biometric AID 1421 is an identifier that is used for uniquely identifying the corresponding IC card application and for the operating system 160 to select the application.

  The valid flag 1422 is a flag indicating a loading state of the biometric authentication application corresponding to the settlement application 140, a biometric information registration state, and a biometric authentication application availability state. For example, when the valid flag 1422 is “0”, it indicates that the biometric authentication application is not loaded on the IC card 100, and when it is “1”, the biometric authentication application is loaded on the IC card 100. In addition, the biometric information is registered and can be used normally.

  When the validity flag 1422 is “2”, the biometric authentication application is loaded on the IC card 100 and the biometric information is registered, but the biometric authentication is locked and is temporarily unavailable. In the case of “3”, the biometric authentication application is loaded on the IC card 100 but the biometric information is not registered. The value of the valid flag 1422 is set to “1” when the biometric information is registered in the IC card 100. However, even after the biometric authentication is performed after the biometric information is registered, the valid flag 1422 is set to be valid. Good.

  The remaining biometric authentication count 1423 holds the remaining number of trials when the payment application 140 performs biometric authentication processing. This value is set when the biometric authentication application 150 is loaded onto the IC card 100, but the value may be updated after loading. When the remaining biometric authentication count 1423 is “0”, the payment application 140 sets the validity flag 1422 to “2” to lock the biometric authentication and disable it temporarily. In this embodiment, the payment application 140 manages whether or not biometric authentication can be performed using the remaining biometric authentication count 1423. However, the number of biometric authentication failures is not the number of remaining biometric authentication attempts. It may be possible to manage whether or not biometric authentication can be performed by holding it.

  The registration number 1424 is used to confirm the user of the IC card 100 in addition to the PIN. Normally, this number is not notified to the user, but when a biometric authentication error occurs, the user is notified by some means such as e-mail or postcard, and the value is input from the payment terminal 200 by the user and collated with an IC card. To verify your identity. The value of the registration number 1424 is set by a registration number generation function 153 of the biometric application 120 described later.

  The registration number verification remaining count 1425 is used when releasing the state where the valid flag 1422 is “2” and the biometric authentication is locked and temporarily unavailable, or when re-registering by overwriting the registered biometric information. In addition, the remaining number of trials when the registration number 1424 is collated is held. This value is set when the biometric authentication application 150 is loaded onto the IC card 100, but the value may be updated after loading. In this embodiment, the payment application 140 manages whether or not the registration number verification can be executed using the registration number verification remaining count 1425. However, the registration number verification is not the remaining number of registration number verification trials. It may be possible to manage whether or not registration number verification can be performed by holding the number of times of failure.

  The registration date 1426 holds the date when biometric information is registered in the IC card 100. The registered location 1427 holds information on a location where biometric information is registered in the IC card 100. These pieces of information are managed only when biometric information is registered in the IC card, that is, when the valid flag 1422 is “1” or “2”. The limit amount 1428 holds the maximum amount of settlement amount when biometric authentication is used when performing a settlement transaction. This value is set when the biometric authentication application 150 is loaded onto the IC card 100, but the value may be updated after loading.

  Here, “biometric authentication information” that is information indicating whether or not the above-described biometric authentication is valid corresponds to the biometric AID 1421, the valid flag 1422, and the remaining biometric authentication count 1423. In addition, the biometric AID 1421 and the registration number 1424 correspond to “registration information” that is information indicating the registration status of biometric information when biometric authentication is valid. The “biometric authentication information” is transmitted to the payment terminal 200 and used by the payment terminal 200. The “registration information” is transmitted to the payment center 300 via the payment terminal 200 and used in the payment center 300.

  The limit amount 1428 is included in the “biometric authentication information” and used in the payment terminal 200, or the registration number verification remaining count 1425, the registration date 1426, and the registration location 1427 are included in the “registration information” in the payment center 300. It may be used. In the present embodiment, these pieces of information including “biometric authentication information” and “registration information” are combined into a table as biometric authentication application management information 142, and the entire biometric authentication application management information 142 is transmitted to the payment terminal 200. Further, the information is transmitted to the payment center 300 via the payment terminal 200.

  Next, the configuration and function of data managed by the biometric authentication application 150 will be described. Data managed by the biometric authentication application 150 includes a biometric AID 151 and biometric information registration data 152. In addition, the biometric authentication application 150 has a registration number generation function 153 as its function.

  The biometric AID 151 is an application identifier assigned to the biometric authentication application 150, and is used for the operating system 160 to select the IC card application by uniquely identifying the IC card application in the same manner as the payment AID 141 described above. The biometric information registration data 152 is biometric information registered by the holder of the IC card 100. As the type of the biometric information registration data 152, a palm vein pattern, a finger vein pattern, or the like can be used, but is not limited thereto, and other biometric information can be handled.

  The registration number generation function 153 is a function that generates a registration number having a predetermined number of digits when the holder of the IC card 100 registers biometric information. In the registration number generation function 153, a random number may be generated as a registration number so as not to overlap, or a registered time or the like may be set. The registration number generated here is the registration number 1424 of the biometric authentication application management information 142 described above.

  Next, the configuration and function of data managed by the operating system 160 will be described. Data managed by the operating system 160 includes an application management table 161. The operating system 160 has an external communication function 162, an application addition / deletion function 163, an application execution function 164, and an inter-application communication function 165 as its functions.

  The application management table 161 is a table used by the operating system 160 to manage the IC card application. FIG. 3 is a diagram showing a data configuration example of the application management table 161. In FIG. 3, an application management table 161 is a table that holds an AID 1611, an application reference address 1612, an application size 1613, a selection flag 1614, and a calling order 1615 for each registered IC card application.

  Here, the AID 1611 is an identifier that uniquely identifies the corresponding IC card application and is used by the operating system 160 to select the application. In the case of the payment application 140, the value is the payment AID 141, and in the case of the biometric authentication application 150, the value is the biometric AID 151. The application reference address 1612 is the head address of the area where the corresponding IC card application is stored in the memory 130. In the example of FIG. 3, only one address is set for each IC card application. However, for example, a plurality of addresses may be set, such as a start address of the code portion and a start address of the data portion of the application. .

  The application size 1613 is the size of the corresponding IC card application. In the example of FIG. 3, only one size is set for each IC card application, but a plurality of sizes may be set, for example, the size of the code portion and the size of the data portion of the application.

  The selection flag 1614 indicates whether or not the corresponding IC card application is currently selected. In the example of FIG. 3, the value is “1” when the corresponding IC card application is selected, and “0” when the corresponding IC card application is not selected. However, other notation methods may be used. The calling order 1615 indicates the order in which the corresponding IC card applications are called by the inter-application communication function 165 described later. In the example of FIG. 3, the order of calling is represented by numbers, but other notations may be used.

  The external communication function 162 is a function for controlling the communication unit 110 to receive a command from the outside of the IC card 100 and to transmit a corresponding response. The application addition / deletion function 163 is registered in the application management table 161 and a function for downloading an IC card application from the outside of the IC card 100 and registering the downloaded IC card application in the application management table 161 to be executable. This function deletes an IC card application.

  The application execution function 164 selects any IC card application registered in the application management table 161 by a command from the outside of the IC card 100, and then selects the command when receiving the command from the outside of the IC card 100. This is a function for executing the IC card application and performing processing corresponding to the command.

  Here, the IC card application is a program created based on a dedicated instruction set specification independent of the hardware of the IC card, and the application execution function 164 is created based on such a dedicated instruction set specification. The interpreter (or virtual machine) process that reads and executes the program is executed.

  The application execution function 164 also has a firewall function for protecting the IC card application program and data from unauthorized access by other IC card applications registered outside the IC card 100 and inside the IC card 100. Have. Specific examples of the application execution function 164 include an execution function of a program possessed by MULTOS (registered trademark) and Java (registered trademark) Card, which are IC card operating systems.

  The inter-application communication function 165 allows an IC card application currently being executed to send a message to another IC card application that is designated, and receive a processing result corresponding to the message from the other IC card application. It is a function to make.

  Specifically, when the currently executing IC card application A stores a message in the shared buffer 170 and specifies the AID of the IC card application B and calls the inter-application communication function 165, the inter-application communication function 165 Then, after the IC card application A is suspended, the IC card application B designated by the AID is made executable. The IC card application B performs processing corresponding to the message, stores the processing result in the shared buffer 170, and ends the processing.

  Thereafter, the inter-application communication function 165 returns the IC card application A to an executable state. Then, the IC card application A acquires the processing result corresponding to the message from the shared buffer 170. As described above, since the processing result corresponding to the message is stored in the shared buffer 170, it is shared among the IC card applications. However, the processing corresponding to the message is executed inside the IC card application. The content can be hidden from other IC card applications.

  This inter-application communication function 165 is used when the payment application 140 requests the biometric authentication application 150 to perform biometric authentication processing, as will be described later. Specific examples of the inter-application communication function 165 include a delegation function possessed by MULTOS (registered trademark), which is an IC card operating system, or a SIO (Shareable Interface Object) function possessed by Java (registered trademark) Card. Etc.

  Next, the content of the biometric information registration process performed between the IC card 100, the payment terminal 200, and the payment center 300 will be described. FIG. 4 is a sequence diagram illustrating an example of the flow of biometric information registration processing.

  [Step S401] The payment terminal 200 receives a biometric information registration process by the user, and transmits a payment AID 141, which is an AID of the payment application 140, to the IC card 100 in order to select the payment application 140 inside the IC card 100. The biometric authentication application management information 142 is received from the payment application 140.

  [Step S <b> 402] The payment application 140 is selected by the application execution function 164 of the operating system 160 and transmits the biometric authentication application management information 142 held by the payment application 140 to the payment terminal 200.

  [Step S403] The payment terminal 200 extracts the biometric authentication application 150 information that matches the biometric AID list 263 and the biometric authentication application management information 142 acquired from the payment application 140, and lists them in the user interface unit 220. indicate. Here, the biometric AID list 263 is a list of types of biometric information that can be read by the payment terminal 200, that is, a list of biometric authentication applications 150 corresponding to the payment terminal 200. The user selects the biometric application 150 for registering biometric information from the list of biometric authentication applications 150 displayed on the user interface unit 220.

  [Step S <b> 404] The payment terminal 200 displays on the user interface unit 220 that PIN verification is performed for identity verification, receives the PIN input by the user to the PIN input unit 230, and transmits the PIN to the payment application 140.

  [Step S405] The settlement application 140 collates the PIN acquired from the settlement terminal 200 with the registered PIN 144 held by the IC card 100, stores the confirmation result in the personal identification result 145, and transmits the result to the settlement terminal 200.

  [Step S406] The payment terminal 200 acquires the biological information of the user using the biological information sensor 240. Thereafter, in order to perform biometric information registration processing, the acquired biometric information, the date of the day, and the location information of the settlement terminal 200 are transmitted to the settlement application 140.

  [Step S <b> 407] The settlement application 140 transmits the acquired biometric information to the biometric authentication application 150 and delegates biometric authentication registration to the biometric authentication application 150. This delegation process is performed via the inter-application communication function 165 of the operating system 160.

  [Step S <b> 408] The biometric authentication application 150 registers the biometric information received from the payment application 140 in the biometric information registration data 152. The registration number generation function 153 generates a registration number and transmits the generated registration number to the payment application 140.

  [Step S409] The payment application 140 stores the valid flag 1422, the registration number 1424, the registration date 1426, and the registration location 1427 in the biometric authentication application management information 142, and the biometric authentication application management information 142 is stored in the payment terminal 200. Send.

  [Step S410] The payment terminal 200 transmits the biometric authentication application management information 142 acquired from the payment application 140 to the payment center 300.

  [Step S411] The payment center 300 records the biometric authentication application management information 142 received from the payment terminal 200 in the biometric authentication application management information 342 of the database 340 and notifies the user that the biometric information has been registered, Notify by means such as e-mail.

  In the biometric information registration processing sequence shown in FIG. 4, every time the biometric information registration data 152 is updated in the IC card 100, the validity flag 1422, the registration number 1424, the registration date 1426, and the registration of the biometric authentication application management information 142 are registered. By updating the location 1427 and transmitting the biometric authentication application management information 142 including the registration number 1424 to the payment center 300 via the payment terminal 200 and holding it, a credit card company or other company having no branch / window is issued. Even in the IC card 100, the user himself / herself can register the biometric information with the payment terminal 200 by performing identity verification by PIN verification at a place other than the window.

  Next, a biometric information registration acceptance process performed by the payment terminal 200 will be described. This process is performed in steps S401 and S403 in the case of the sequence shown in FIG. FIG. 5 is a flowchart showing a flow of a biometric information registration acceptance process performed by the payment terminal 200.

  [Step S501] The payment terminal 200 receives selection of an application for payment from the user, and transmits the payment AID to the IC card 100.

  [Step S502] The payment terminal 200 acquires the biometric authentication application management information 142 stored in the IC card 100 from the IC card 100, and reads the validity flag 1422 therein.

  [Step S503] The payment terminal 200 matches the biometric authentication application management information 142 acquired from the IC card 100 with the biometric AID list 263 held by the payment terminal 200, and the value of the valid flag 1422 loads the biometric authentication application 150. Information on the biometric authentication application 150 that has been completed is extracted, and the process advances to step S505. At this time, if there is no value in which the value of the valid flag 1422 is already loaded, or if biometric authentication application management information 1422 cannot be acquired from the IC card 100, the biometric authentication application management acquired from the IC card 100 is obtained. If the information 1422 is empty, and there is no biometric authentication method that can be executed by the payment terminal 200, the process proceeds to step S504.

  [Step S504] The payment terminal 200 presents to the user that the IC card 100 does not support biometric information registration at the payment terminal 200 using the user interface unit 220, and ends the biometric information registration process. .

  [Step S <b> 505] The settlement terminal 200 presents a list of biometric authentication applications 150 effective for the user using the user interface unit 220.

  [Step S <b> 506] The payment terminal 200 receives a selection of the biometric authentication application 150 from the user using the user interface unit 220. If the user does not select the biometric application 150 within a predetermined time, the process proceeds to step S507. If the user selects the biometric authentication application 150, the process proceeds to step S508.

  [Step S507] The settlement terminal 200 presents to the user that the biometric information registration has failed using the user interface unit 220, and ends the biometric information registration process.

  [Step S508] In the biometric authentication application management information 142 acquired from the IC card 100, when the valid flag 1422 of the biometric authentication application 150 selected by the user is “1”, the biometric information has been registered and is in a normal state. The process proceeds to step S509. If the valid flag 1422 is other than “1”, the process proceeds to step S512.

  [Step S509] The settlement terminal 200 presents a guide for confirming re-registration of biometric information to the user using the user interface unit 220.

  [Step S <b> 510] The payment terminal 200 receives confirmation of re-registration of biometric information from the user using the user interface unit 220. If confirmation of re-registration of biometric information is not received within a predetermined time, the process proceeds to step S511. If confirmation of re-registration of biometric information is accepted, the process proceeds to step S515.

  [Step S511] The payment terminal 200 uses the user interface unit 220 to notify the user that the biometric information registration process has been stopped, and ends the biometric information registration process.

  [Step S512] In the biometric authentication application management information 142 acquired from the IC card 100, the valid flag 1422 of the biometric authentication application 150 selected by the user is “2” and the biometric information has been registered and is temporarily unavailable. If so, the process proceeds to step S515. If the valid flag 1422 is other than “2”, the process proceeds to step S513.

  [Step S513] In the biometric authentication application management information 142 acquired from the IC card 100, if the validity flag 1422 of the biometric authentication application 150 selected by the user is “3” and the biometric information is not registered, the process proceeds to step S517. move on. If the valid flag 1422 is other than “3”, the process proceeds to step S514.

  [Step S514] The settlement terminal 200 presents to the user that the biometric information registration process cannot be performed using the user interface unit 220, and ends the biometric information registration process.

  [Step S515] The payment terminal 200 presents the user with a guide for checking the registration number 1424 using the user interface unit 220. And the input of the registration number from a user is received using the PIN input part 230. FIG.

  [Step S516] The registration number input by the user is compared with the registration number 1424. If the verification of the registration number 1424 is successful, the process proceeds to step S517. If the verification fails, the process proceeds to step S507.

  [Step S517] Since the acceptance process of biometric information registration has been successful, the payment terminal 200 performs biometric information registration processing.

  In the biometric information registration acceptance processing flow shown in FIG. 5, the payment terminal 200 appropriately extracts the biometric authentication application 150 that performs biometric information registration based on the biometric authentication application management information 142 acquired from the IC card 100. Can do. Thereby, although the IC card 100 and the payment terminal 200 do not support biometric authentication, it is possible to prevent a malfunction such as presenting a user with guidance for registering biometric information.

  Also, in steps S515 and S516, by performing identity verification using the registration number 1424 communicated to the cardholder by mail postcard, e-mail, etc., identity verification by means other than PIN verification performed at the payment terminal 200 can be performed. Therefore, security can be ensured.

  Next, the biometric information registration process performed by the payment terminal 200 will be described. This process is a process performed in steps S404, S406, and S410 in the case of the sequence shown in FIG. FIG. 6 is a flowchart showing a flow of biometric information registration processing performed by the payment terminal 200.

  [Step S <b> 601] The payment terminal 200 presents the user with guidance for performing identity verification by PIN verification using the user interface unit 220. Then, the PIN input unit 230 is used to allow the user to input the PIN and perform PIN verification. The PIN verification may be offline PIN verification performed inside the IC card 100 or online PIN verification performed at the settlement center 300.

  [Step S602] If the identity verification by PIN verification is successful, the process proceeds to step S604. If the identity verification fails, the process proceeds to step S603.

  [Step S603] The payment terminal 200 presents to the user that the biometric information registration has failed due to the failure of the PIN verification using the user interface unit 220, and ends the biometric information registration process.

  [Step S604] The payment terminal 200 presents the user with guidance for registering biometric information using the user interface unit 220. The biometric information of the user is acquired using the biometric information sensor 240, and the biometric information is registered by transmitting the acquired biometric information to the IC card 100.

  [Step S605] If the payment terminal 200 has successfully obtained the biometric authentication application management information 142 from the IC card 100 as a result of registration of the biometric information in the IC card 100, the payment terminal 200 proceeds to step S607. If the biometric authentication application management information 142 cannot be acquired normally, the process proceeds to step S606.

  [Step S606] The payment terminal 200 uses the user interface unit 220 to inform the user that biometric information registration has failed because biometric information acquisition has failed, and ends the biometric information registration process.

  [Step S <b> 607] The payment terminal 200 transmits the biometric authentication application management information 142 acquired from the IC card 100 to the payment center 300.

  [Step S608] The payment terminal 200 presents to the user that the registration of the biometric information is completed using the user interface unit 220, and ends the biometric information registration process.

  Next, biometric information registration processing performed by the payment application 140 inside the IC card 100 will be described. This process is a process performed in steps S402, S405, S407, S408, and S409 in the case of the sequence shown in FIG. FIG. 7 is a flowchart showing a flow of biometric information registration processing performed by the payment application 140 inside the IC card 100.

  [Step S <b> 701] When the payment application 140 receives the payment AID 141 from the payment terminal 200, the payment application 140 transmits biometric authentication application management information 142 held by the payment application 140 to the payment terminal 200.

  [Step S702] Upon receiving the PIN verification request from the payment terminal 200, the payment application 140 checks the remaining PIN verification count 143. If the remaining PIN verification count 143 is “0”, the process proceeds to step S703. If it is not “0”, the process proceeds to step S704.

  [Step S <b> 703] The settlement application 140 sets the identity verification result to “failure” and transmits it to the settlement terminal 200 because the remaining PIN verification count 143 is “0” and PIN verification cannot be performed.

  [Step S704] As a PIN verification process, the payment application 140 checks whether the PIN received from the payment terminal 200 matches the registered PIN 144 held by the payment application 140.

  [Step S705] If the identity verification by the PIN verification process performed in step S704 is successful, the payment application 140 proceeds to step S707. If the identity verification fails, the process proceeds to step S706.

  [Step S706] Since the PIN verification has failed, the payment application 140 subtracts the PIN verification remaining count 143 by a predetermined value and returns to Step S702.

  [Step S707] Since the PIN verification process is successful, the payment application 140 returns the remaining PIN verification count 143 to the initial setting value. For example, if the PIN verification remaining count 143 is initially set to “5”, the initial setting value is “5”. Alternatively, the initial setting value may be set to “0”, and the PIN check remaining count 143 may be added by a predetermined value when the PIN check fails.

  [Step S <b> 708] The payment application 140 sets the identity verification result 120 to “success” and transmits it to the payment terminal 200.

  [Step S709] The settlement application 140 delegates the biometric information registration process to the biometric authentication application 150 by transmitting the biometric information received from the settlement terminal 200 to the biometric authentication application 150 via the shared buffer 170. The biometric authentication application 150 registers the biometric information in the biometric information registration data 152 and generates a registration number by the registration number generation function 153. The biometric authentication application 150 transmits the generated registration number to the payment application 140.

  [Step S710] If the registration number received from the biometric application 150 in step S709 is normal, the payment application 140 proceeds to step S712. If not normal, the process proceeds to step S711.

  [Step S711] Since the registration of the biometric information has failed, the payment application 140 does not set the registration number 1424, the registration date 1426, and the registration location 1427 of the biometric authentication application management information 142, and the biometric authentication application management information. 142 is transmitted to the payment terminal 200.

  [Step S712] Since the biometric information has been successfully registered, the payment application 140 sets the valid flag 1422 of the biometric authentication application management information 142 to “1” and sets the biometric information to the normal state. Further, the registration number acquired from the biometric authentication application 150 and the registration date and registration location information acquired from the payment terminal 200 are respectively registered as the registration number 1424, the registration date 1426, and the registration location of the biometric authentication application management information 142. 1427, and biometric authentication application management information 142 is transmitted to the payment terminal 200.

  Next, the contents of the biometric authentication performed between the IC card 100, the payment terminal 200, and the payment center 300 and the processing at the time of the biometric authentication error will be described. FIG. 8 is a sequence diagram illustrating an example of a flow of processing when an error occurs in biometric authentication and biometric authentication.

  [Step S801] The payment terminal 200 receives payment transaction processing by the user, and transmits the payment AID 141, which is the AID of the payment application 140, to the IC card 100 in order to select the payment application 140 inside the IC card 100. The biometric authentication application management information 142 is received from the application 140.

  [Step S802] The payment application 140 transmits the biometric authentication application management information 142 selected by the application execution function 164 of the operating system 160 and held by the payment application 140 to the payment terminal 200.

  [Step S <b> 803] The payment terminal 200 extracts biometric authentication application 150 information that matches the biometric AID list 263 and the biometric application management information 142 acquired from the payment application 140, and lists them in the user interface unit 220. indicate. The user selects the biometric authentication application 150 that performs biometric authentication from the list of biometric authentication applications 150 displayed on the user interface unit 220. The payment terminal 200 acquires the user's biological information using the biological information sensor 240 and transmits the acquired biological information to the payment application 140.

  [Step S804] The settlement application 140 transmits the acquired biometric information to the biometric authentication application 150, and delegates biometric authentication processing to the biometric authentication application 150. This delegation process is performed via the inter-application communication function 165 of the operating system 160.

  [Step S <b> 805] The biometric authentication application 150 performs biometric authentication based on the acquired biometric information, and transmits an identification result to the payment application 140. If the identity verification result is “success”, the settlement transaction processing is performed. If the identity verification result is “failure”, the process proceeds to step S806.

  [Step S806] The payment application 140 sets the validity flag 1422 of the biometric authentication application management information 142 to “2” and sets the biometric authentication application management information 142 to the payment terminal 200. Send to.

  [Step S807] The payment terminal 200 receives the biometric authentication application management information 142 from the payment application 140, and transmits the received biometric authentication application management information 142 to the payment center 300.

  [Step S808] The payment center 300 acquires the biometric authentication application management information 142 from the payment terminal 200, updates the biometric authentication application management information 342 in the database 340, and sends a registration number 1424 to the user by postal mail, e-mail, or the like. Notify by means of The means for notifying the registration number is not limited to these.

  In the biometric authentication process sequence shown in FIG. 8, the biometric authentication is performed by updating the valid flag 1422 of the biometric authentication application management information 142 and the biometric information registration data 152 every time the biometric authentication process fails in the IC card 100. If it fails, the payment using the biometric authentication of the IC card 100 can be temporarily disabled.

  Next, biometric authentication processing performed by the payment application 140 inside the IC card 100 will be described. This process is a process performed in steps S804, S805, and S806 in the case of the sequence shown in FIG. FIG. 9 is a flowchart showing the flow of biometric authentication processing performed by the payment application 140.

  [Step S901] Upon receiving the biometric authentication request from the payment terminal 200, the payment application 140 confirms the remaining biometric authentication count 1423 of the biometric authentication application management information 142, and if the remaining biometric authentication count 1423 is “0”, the step S902 is performed. Proceed to If it is not “0”, the process proceeds to step S903.

  [Step S902] The settlement application 140 sets the identity verification result 145 to “failure”. In addition, the validity flag 1422 of the biometric authentication application management information 142 is set to “2” and the biometric information has been registered but is temporarily disabled, and the biometric authentication application management information 142 is transmitted to the payment terminal 200.

  [Step S903] The payment application 140 receives the biometric information from the payment terminal 200, and transmits the received biometric information to the biometric authentication application 150 so that the biometric authentication application 150 performs biometric authentication. Thereafter, the biometric authentication result is acquired from the biometric authentication application 150.

  [Step S904] If the result of the biometric authentication performed in step S903 is successful, the payment application 140 proceeds to step S906. If the result of the biometric authentication is unsuccessful, the process proceeds to step S905.

  [Step S905] Since the biometric authentication has failed, the payment application 140 subtracts the remaining biometric authentication count 1423 by a predetermined value and returns to step S901.

  [Step S906] Since the biometric authentication is successful, the payment application 140 returns the remaining biometric authentication count 1423 to the initial set value. For example, when the remaining biometric authentication count 1423 is initially set to “5”, the initial setting value is “5”. Alternatively, the initial setting value may be set to “0”, and the biometric authentication remaining count 1423 may be added by a predetermined value when biometric authentication fails.

  [Step S907] The payment application 140 sets the identity verification result 120 to “success” and transmits it to the payment terminal 200.

  Next, a biometric authentication process performed by the payment terminal 200 will be described. This process is a process performed in steps S803 and S807 in the case of the sequence shown in FIG. FIG. 10 is a flowchart showing the flow of biometric authentication processing performed by the payment terminal 200.

  [Step S <b> 1001] The payment terminal 200 presents a user with biometric authentication guidance using the user interface unit 220. Then, the biometric information of the user is acquired using the biometric information sensor 240. The payment terminal 200 transmits the biometric information acquired for performing biometric authentication to the payment application 140, and acquires the identity verification result 145 from the IC card 100 as a result of biometric authentication.

  [Step S1002] If the identity verification result 145 acquired from the IC card 100 is “successful”, the payment terminal 200 proceeds to step S1004. If the identity verification result 145 is “failure”, the process advances to step S1003.

  [Step S1003] The payment terminal 200 transmits the biometric authentication application management information 142 received from the payment application 140 to the payment center 300, and notifies the payment center 300 that the biometric authentication process has failed.

  [Step S1004] The payment terminal 200 performs a payment transaction process.

  Next, the process at the time of the biometric authentication error performed by the settlement center 300 will be described. This process is the process performed in step S808 in the case of the sequence shown in FIG. FIG. 11 is a flowchart showing a flow of processing performed by the settlement center 300 when a biometric authentication error occurs.

  [Step S <b> 1101] The payment center 300 receives the biometric authentication application management information 142 from the payment terminal 200.

  [Step S1102] The settlement center 300 updates the biometric authentication application management information 342 in the database 340. The registration number 1424 of the biometric authentication application management information 342 is notified to the card holder by means such as a postal mail or an e-mail, and the value is input through the settlement terminal 200 and verified by the IC card 100 for verification. . The means for notifying the registration number is not limited to these.

  Next, the contents of the biometric authentication cancellation processing in the temporarily unavailable state performed between the IC card 100, the payment terminal 200, and the payment center 300 will be described. FIG. 12 is a sequence diagram illustrating an example of a flow of a biometric authentication cancellation process in a temporarily unavailable state.

  [Step S1201] The payment terminal 200 receives the payment transaction processing by the user, and transmits the payment AID 141, which is the AID of the payment application 140, to the IC card 100 in order to select the payment application 140 inside the IC card 100. The biometric authentication application management information 142 is received from the application 140.

  [Step S1202] The payment application 140 transmits the biometric authentication application management information 142 selected by the application execution function 164 of the operating system 160 and held by the payment application 140 to the payment terminal 200.

  [Step S1203] The payment terminal 200 extracts the biometric authentication application 150 information that matches the biometric AID list 263 and the biometric authentication application management information 142 acquired from the payment application 140, and lists them in the user interface unit 220. indicate. The user selects the biometric authentication application 150 that performs biometric authentication from the list of biometric authentication applications 150 displayed on the user interface unit 220. Further, settlement terminal 200 presents a request for input of a registration number to the user using user interface unit 220, acquires the registration number from PIN input unit 230, and transmits the acquired registration number to IC card 100. .

  [Step S1204] The settlement application 140 collates the received registration number with the registration number 1424 recorded in the biometric authentication application management information 142. If the collation is successful, the validity flag 1422 of the biometric authentication application management information 142 is set to “1”, the biometric information is registered and the normal state is set, and the biometric authentication application management information 142 is transmitted to the payment terminal 200. If the verification fails, the biometric authentication application management information 142 is transmitted to the payment terminal 200 without being updated.

  [Step S1205] The payment terminal 200 loads the biometric authentication application management information 142 received, the validity flag 1422 corresponding to the biometric application 150 selected in step S1203 is “1” loaded, biometric information registered, and normal If it is, the biometric authentication application management information 142 is transmitted to the settlement center 300, and the process proceeds to the biometric authentication process.

  [Step S1206] The payment center 300 acquires the biometric authentication application management information 142 from the payment terminal 200, updates the biometric authentication application management information 342 in the database 340, and indicates that the temporary use disable state of biometric authentication has been canceled. Notify the user by means such as postal mail or e-mail.

  In the sequence of the biometric authentication cancellation process in the temporary unavailable state shown in FIG. 12, the biometric authentication process of the IC card 100 is validated by changing the value of the valid flag 1422 when the registration number verification is successful. Can do.

  As described above, according to the biometric authentication registration system of the present embodiment, the “registration number” is used for identity verification without performing identity verification at a window or the like as in the past. Thus, the user himself / herself can register biometric information using the payment terminal 200. Further, the settlement center 300 adds a “registration number” to the transaction history and records it, thereby distinguishing between the transaction before registration of the biometric information on the IC card and the transaction after registration of the biometric information. Is possible. Thereby, it becomes possible to detect an illegal transaction when the IC card 100 is illegally obtained and biometric information is registered.

  As mentioned above, the invention made by the present inventor has been specifically described based on the embodiment. However, the present invention is not limited to the embodiment, and various modifications can be made without departing from the scope of the invention. Needless to say.

  The present invention can be used in a processing system that registers biometric information in an IC card and performs identity verification by biometric authentication.

It is a block diagram which shows the structural example of the biometrics registration system in one embodiment of this invention. It is the figure which showed the structural example of the data of biometrics application management information in one embodiment of this invention. It is the figure which showed the structural example of the data of the application management table in one embodiment of this invention. It is a sequence diagram which shows the example of the flow of the biometric information registration process in one embodiment of this invention. It is a flowchart which shows the flow of the reception process of the biometric information registration which payment terminal performs in one embodiment of this invention. It is a flowchart which shows the flow of the biometric information registration process which a payment terminal performs in one embodiment of this invention. It is a flowchart which shows the flow of the biometric information registration process which the payment application inside IC card performs in one embodiment of this invention. It is a sequence diagram which shows the example of the flow of a process at the time of the biometrics authentication and biometrics authentication error in one embodiment of this invention. It is a flowchart which shows the flow of the biometrics authentication processing which a payment application performs in one embodiment of this invention. It is a flowchart which shows the flow of the biometrics authentication process which a payment terminal performs in one embodiment of this invention. It is a flowchart which shows the flow of a process at the time of the biometrics authentication error which a payment center performs in one embodiment of this invention. It is a sequence diagram which shows the example of the flow of the cancellation | release process of the biometrics authentication of the temporarily unavailable state in one embodiment of this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 100 ... IC card, 110 ... Communication part, 120 ... Arithmetic processing part, 130 ... Memory, 140 ... Settlement application, 141 ... Settlement AID, 142 ... Biometric authentication application management information, 143 ... PIN collation remaining number, 144 ... Registration PIN, 145 ... Identification result 150 ... Biometric authentication application 151 ... Biometric AID 152 ... Biometric information registration data 153 ... Registration number generation function 160 ... Operating system 161 ... Application management table 162 ... External communication function 163 ... Application addition / deletion function, 164 ... application execution function, 165 ... inter-application communication function, 170 ... shared buffer,
DESCRIPTION OF SYMBOLS 200 ... Payment terminal, 210 ... Arithmetic processing part, 220 ... User interface part, 230 ... PIN input part, 240 ... Biometric information sensor, 250 ... IC card communication part, 260 ... Memory, 261 ... Payment processing program, 262 ... Biometric information Registration processing program, 263, biometric AID list, 270, center communication unit,
300 ... Payment center 310 ... Payment processing function 320 ... Payment history inquiry function 330 ... Communication unit 340 ... Database 341 ... Card number 342 ... Biometric authentication application management information 343 ... Payment history
400 ... Network,
1421 ... Biometric AID, 1422 ... Valid flag, 1423 ... Biometric authentication remaining count, 1424 ... Registration number, 1425 ... Registration number verification remaining count, 1426 ... Registration date, 1427 ... Registration location, 1428 ... Limit,
1611 ... AID, 1612 ... Application reference address, 1613 ... Application size, 1614 ... Selection flag, 1615 ... Calling order.

Claims (7)

A biometric information registration system comprising an IC card, a processing terminal, and a center system,
The IC card generates a registration number when biometric information is registered, a communication unit that communicates with the center system via the processing terminal, a function that performs biometric authentication corresponding to the type of biometric information, and Having at least one biometric authentication application having a registration number generation function and a processing application having a function of performing processing of a target by biometric authentication in cooperation with the biometric authentication application;
The processing terminal includes an IC card communication unit that communicates with the IC card, a center communication unit that communicates with the center system, and a user interface unit that provides a user with an interface for performing target processing by biometric authentication And a biological information sensor that reads the biological information of the user,
The center system includes a communication unit that communicates with the IC card via the processing terminal, a function that performs target processing in response to a request from the processing terminal, information on the IC card, and a history of processing. A database to record,
The biometric information of the user is read by the biometric information sensor of the processing terminal, the read biometric information is transmitted to the IC card and registered, and the registration number generated by the registration number generating function of the IC card is set to the IC The biometric information is registered in the IC card using the processing terminal by being recorded on a card, transmitted to the center system via the processing terminal, and recorded in the database. Information registration system. The biometric information registration system according to claim 1,
The processing terminal includes a PIN input unit that receives a PIN input from a user,
The processing application of the IC card has a function of holding the user's PIN and performing identity verification by PIN verification,
When registering biometric information in the IC card, the PIN input unit of the processing terminal accepts a PIN input from a user, transmits the input PIN to the processing application of the IC card, and the processing application A biometric information registration system that performs collation with a PIN that is held and registers biometric information in the IC card only when the collation is successful. In the biometric information registration system according to claim 1 or 2,
When canceling this function when the biometric authentication function is temporarily disabled in the IC card, or when re-registering biometric information in the IC card,
The PIN input unit of the processing terminal receives an input of a registration number corresponding to the corresponding biometric information from a user, transmits the input registration number to the processing application of the IC card, and the processing application allows the IC The registration number recorded on the card is collated, and only when the collation is successful, the temporary use of the biometric authentication function in the IC card is canceled or the biometric information is re-registered. Biometric information registration system. In the biometric information registration system according to any one of claims 1 to 3,
The center system records a processing history in the database by adding a registration number corresponding to the corresponding biometric information and recording it. A communication unit that communicates with the center system via a processing terminal, a function that performs biometric authentication corresponding to the type of biometric information, and a registration number generation function that generates a registration number when biometric information is registered And at least one biometric authentication application, and a processing application having a function of performing processing of a target by biometric authentication in cooperation with the biometric authentication application,
An IC card used in the biometric information registration system according to any one of claims 1 to 4. An IC card communication unit that communicates with the IC card, a center communication unit that communicates with the center system, a user interface unit that provides a user with an interface for performing target processing by biometric authentication, and a PIN from the user And a biometric information sensor that reads biometric information of the user,
The processing terminal used in the biometric information registration system of any one of Claims 1-4. A communication unit that communicates with an IC card via a processing terminal; a function that performs a target process in response to a request from the processing terminal; and a database that records information about the IC card and a history of processing. ,
A center system used in the biometric information registration system according to any one of claims 1 to 4.

Images