JP2002092739A - Management system for use information of store or the like by plural store point system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To improve the convenience of a point service and effectively utilize information obtained by the point service by allowing use of one point card in a plurality of stores in different lines of business and respective facilities or the like. SOLUTION: Terminal devices 40 installed in the stores and respective facilities and servers 10, 20, and 30 installed in a management center 1 are connected by a network such as the Internet. The terminal devices 40 transfer point information imparted to each user at the stores or facilities, user information, store/ facility information, and time information to the management center. The history data management server 10 stores the information as history information. The personal authentication data management server 20 acquires activity history of each user from the history information and performs personal authentication of each user. The store/facility use status management server 30 acquires store/ facility use status data from the activity history, performs desired processing on it, and provides it to the store/facility or the like.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

2. Description of the Related Art In recent years, a loyalty card which gives service points to a customer who has made a purchase of a predetermined amount or more and provides services such as discounting and cashback according to the accumulated value of points has been widely used. It is becoming. The present invention relates to a management system for use information of stores and the like using the above service points, and in particular, the present invention relates to management of use information of stores and the like using a plurality of store points system for stores and service facilities of a plurality of industries. It is about the system.

[0002]

2. Description of the Related Art Conventionally, various systems for managing the above points have been proposed. For example, JP
JP-A-3-14297 discloses a predetermined purchase price,
A POS terminal device that stores an added value of service point information given for each purchase amount, and subtracts a predetermined amount from the purchase amount when the added service point exceeds a predetermined point. Is disclosed. Japanese Patent Application Laid-Open No. Hei 10-171880 discloses that a server of a management station and POS terminals of retail stores scattered in a plurality of regions are connected by a public line to collect sales performance information at the retail stores and to connect to the Internet. There is disclosed a point management device which collects customer demand information via the Internet.

[0003]

The above-mentioned JP-A-63-14
The system disclosed in Japanese Patent Publication No. 297 tallies customer points and provides services based on the total value of the points, and does not fully utilize point information. On the other hand, the one disclosed in Japanese Patent Application Laid-Open No. 10-171880 does not merely provide a point service but also collects customer demand information and the like, but cannot collect customer behavior patterns and the like. It is not enough in information gathering. In particular, traditional service points are usually
One store, or a plurality of stores of the same affiliate, can collect customer information of the store or the industry to some extent, but it is not possible to collect customer information in a certain area etc. It was difficult.

[0004] In addition, the loyalty card used in the above-mentioned conventional system is usually issued for each store and for each of a plurality of stores in the same line, and when using a plurality of stores in different industries, a customer needs a plurality of cards. It was necessary to present each card at each store. For this reason, the number of cards possessed by the customer increases, and the management of the cards is complicated, and there is a risk that the cards may be lost. In addition, since points acquired at different stores or stores of different affiliates are not added up, the total value of the points does not easily increase, and for example, the acquired points may be wasted due to expiration of the period, etc. For customers who do not use stores or stores of the same affiliate, the point service was not very valuable.

[0005] Further, the conventional point service has been implemented in specific industries such as stores, gas stations, parking lots, etc., for example, including various public transportation facilities, sports facilities, art museums and other highly public facilities. None of them had multiple stores / facilities. In particular, in recent years, volunteer activities such as nursing care for the aged have been attracting attention, and a method has been proposed in which points are given as compensation for these volunteer activities, and the rewards are given back to service providers according to the points. However, at present, there is no point service system applicable to such volunteer activities.

On the other hand, in recent years, the issuance of a power of attorney, a seal certificate, the creation of a bankbook, the issuance of a credit card, the borrowing from a credit company, the proof of absence, and the like, the name and birth date of the person concerned Date, address,
There is an increasing demand for confirming that the nationality, etc., is as claimed by the individual (hereinafter referred to as personal authentication).
At present, these personal authentications are based on health insurance cards, driver's licenses, identification cards issued by public organizations, passports, etc., but not all people always have them, In the case of an insurance card, a photograph is not usually attached, so that it is not possible to perform reliable personal authentication. In addition, when confirming the identity of a certain person, there may be cases where the relatives of the person's parents, siblings, etc. are guaranteed the identity,
If these close relatives reside in remote locations, they cannot currently be guaranteed identity. In particular, when performing personal authentication for elderly people with Alzheimer's disease, persons with intellectual disabilities, etc., or performing procedures related to the property of these persons (for example, withdrawing bank deposits), these persons must be genuine individuals. In many cases, confirmation by a person (for example, a guardian or the like) who can clearly show his / her intention on behalf of the person is required. However, when these guardians and the like are at remote locations, the above-mentioned confirmation cannot be performed because personal authentication of the guardians and the like cannot be performed at present. There is a strong demand for a means for securely performing the above-described personal authentication without using a certificate or the like, but there is no means for responding to such a demand at present.

[0007] The present invention has been made in view of the above circumstances, and a first object of the present invention is to provide point services not limited to the same store and the same affiliated store, but to a plurality of stores and services of different industries in a predetermined area. Improve the convenience of point services by making multiple stores / facility points system for facilities, volunteer activities, etc., and making one point card usable at multiple stores, various facilities, etc. in different industries. It is. A second object of the present invention is to effectively utilize information acquired at the time of awarding points, to provide useful information to stores / facilities, and to provide services to customers or facility users, volunteer activists, and the like. It is to enrich. A third object of the present invention is to make it possible to perform personal authentication by using the information obtained at the time of the above-mentioned point giving, for example, even if you do not have a certificate such as a driver's license, and even if you have a remote location, Personal authentication can be performed even when the user is in the office. A fourth object of the present invention is to use the information acquired at the time of the above-mentioned point giving, for example, to obtain behavior patterns, purchasing trends, and the like of customers and facility users, and to contribute to sales strategies, facility maintenance, and the like. It is.

[0008]

Means for Solving the Problems The above-mentioned problems are solved in the present invention as follows. (1) A terminal device installed in a plurality of stores or various facilities including different industries in a predetermined area is connected to a host device via a network. The terminal device identifies, in a store or various facilities where the terminal device is installed, point information given to each user each time the user pays or performs an activity, and identifies each user. The user information, the store / facility information for identifying the store / various facilities, and the time information at which the points are given are transmitted to the higher-level device via the network. The higher-level device holds the point information, user information, store / facility information, and time information transmitted from the terminal device as history information. (2) When the terminal device or each user requests the total value of the points of each user via the network, the host device obtains the point total value of each store / facility obtained from the history information. Is transmitted to each user. (3) The upper device obtains the action history of each user based on the history information. (4) The higher-level device receives a personal authentication request from the terminal device or a user via a network.
A question for authenticating each user is generated from the action history and transmitted to the terminal device or each user, and the individual is authenticated based on the user's answer to the question. (5) The above-mentioned high-level equipment includes purchase / various facility use information recorded in a management system installed in each store / various facility;
The history information is matched to determine the action history of each user. (6) The higher-level device obtains an average behavior pattern and a purchase trend of a store or various facility users from the action history. (7) Communication with the higher-level device for transmitting / receiving information to / from a terminal device. An interface is provided, and the communication interface is provided with a buffer for holding information, a first switch provided between the host device and the buffer, and a second switch provided between the buffer and the network. Then, when transmitting information from the higher-level device to the terminal device, the communication interface closes the first switch, holds information sent from the management device in a buffer, and then opens the first switch. At the same time, the second switch is closed to transmit the information in the buffer to the terminal device via the network. When information is sent from the terminal device, the information is held in the buffer, and then the second switch is opened. When a request is received from a higher-level device, the first switch is closed to store the information in the buffer. The held information from the terminal device is transferred to the management device. (8) The communication interface holds communication history information between the terminal device and the higher-level device, and generates ID for authenticating the own device from the communication history, and ID transmission means transmitted from the terminal device. ID restoration means for restoring the communication history from the ID generated from the communication history and authenticating the terminal device of the connection destination by comparing the communication history with the communication history held by the own device is provided. Then, when transmitting information from the higher-level device to the terminal device, the ID generation means generates an ID for authenticating to the own device and transmits the ID to the terminal device. When the ID is transmitted from the terminal device, (9) The terminal device is provided with a communication interface for transmitting / receiving information to / from a higher-level device, and a buffer for holding information is provided in the communication interface; A first switch is provided between the terminal device and the buffer, and a second switch is provided between the buffer and the network. Then, when transmitting information from the terminal device to the host device, the communication interface closes the first switch, holds information sent from the terminal device in a buffer, and then opens the first switch. At the same time, the second switch is closed to transmit the information of the buffer to the host device via the network. Further, when information is sent from the host device, the information is held in the buffer, and then the second switch is opened. When a request is received from the terminal device, the first switch is closed to store the information in the buffer. The held information from the higher-level device is transferred to the terminal device. (10) ID generation means for holding communication history information between the terminal device and the higher-level device in the communication interface and generating an ID for authenticating the own device from the communication history; ID generated from the communication history
ID that authenticates the higher-level device of the connection destination by restoring the communication history from
Restoration means is provided. When transmitting information from the terminal device to the higher-level device, the ID generation means generates an ID for authenticating the terminal device and transmits the generated ID to the higher-level device.
When an ID is transmitted from a higher-level device, the ID recovery unit authenticates the higher-level device at the connection destination.

According to the present invention, as described above, point information given to each user at a plurality of stores or various facilities including different types of business in a predetermined area, and user information for identifying each user are stored. The store / facility information for identifying the store / various facilities and the time information at which the points were given are transmitted to the higher-level device via the network, and the information is stored in the higher-level device as history information. As a result, point information given to each user at a plurality of stores or various facilities including different industries can be managed in a unified manner. Point service can be received at a plurality of stores, various facilities, and the like, and the convenience of the point service can be improved. In addition, it is possible to target a plurality of stores / facilities including various public transportation facilities, sports facilities, art museums, and other highly public facilities. For example, points are given as compensation for volunteer activities, and services are provided in accordance with the points. It is also possible to realize a service of giving back to the user. Further, since the point information can be managed in a unified manner, the user can check the point total value possessed by each user via the network.

[0010] Since the history information includes time information, an action history of each user can be obtained based on the history information. Therefore, the history information obtained by the point service can be effectively used. In particular, by using the time information and the like included in the history information and matching the purchase / various facility usage information recorded in the management system installed at each store / various facility, a more detailed user behavior history is obtained. Can be requested. Further, a question can be set based on the above-mentioned action history, and personal authentication of the user can be performed from the answer. For this reason, even if you do not have a certificate such as a driver's license, or if you are in a remote place, personal authentication can be performed. Further, using the above-mentioned action history, an average action pattern, purchase trend, and the like of users of the store or various facilities can be obtained, which can contribute to a sales strategy, facility maintenance, and the like.

A quarantine communication interface for transmitting / receiving information to / from a counterpart device is provided in the host device and / or the terminal device. The communication interface has a buffer for holding information, and a buffer between the host device and the buffer. And a second switch provided between the buffer and the network, it is possible to prevent an unauthorized intrusion into a terminal device or a higher-level device from the outside, and to secure confidentiality. It is possible to prevent personal information with a high degree of leakage from leaking to the outside. In addition, the risk of being infected with a virus or the like can be prevented. Further, the communication interface holds communication history information with the partner device, ID generation means for generating an ID for authenticating the device from the communication history, and an ID generation unit that is transmitted from the partner device. Restore the communication history from the ID generated from the communication history,
By providing ID restoring means for authenticating the terminal device of the connection destination by checking the communication history held by the own device, even when using the Internet line, it is possible to reliably authenticate the device of the connection destination, Even if a password or the like is stolen, unauthorized entry into the system can be prevented.

[0012]

FIG. 1 is a diagram showing the overall configuration of a system according to an embodiment of the present invention. In FIG. 1, reference numeral 1 denotes a management center. The management center 1 includes a history data management server 10 for managing point history information, and personal authentication data management for performing personal authentication based on point history information and the like. A server 20 and a store / facility use status management server 30 are provided to provide the use status of stores and various facilities. Reference numeral 2 denotes a network, which uses the Internet in this example. Each of the servers 10, 20, and 30 of the management center 1 is connected to a terminal device 40 or a mobile phone 50 via the Internet line 2. In the following description, a case will be described in which information transmission between the management center and the terminal device is performed via the Internet line. However, the connection between the management center 1 and the terminal device 40 and the mobile phone 50 is not limited to the Internet line, and is not limited to the LA.
N or the like.

The terminal device 40 includes, for example, various stores (retail stores, grocery stores, supermarkets, large-scale stores such as department stores, etc.),
Various service facilities (amusement parks, cinemas, theaters, recreational / sports facilities such as athletic gyms, parking lots, travel agencies, etc.),
Installed at multiple stores or service facilities in different areas within the designated area, such as service activity bases such as nursing care facilities for the elderly and public institutions (art museums, libraries, transportation, etc.) Etc. will be described as one of the service facilities). When a user buys a product, pays for a service, or performs a volunteer activity in each of the above-mentioned various stores, service facilities, and the like, or performs a volunteer activity, points are given to each user according to the price and the activity. Further, when the user redeems the points by a discount, cashback, or the like, the points given to the user are reduced accordingly. The added or subtracted point information, the information for identifying each user, the information for identifying the store / service facility, and the time information at the time of adding or subtracting the points are provided on the Internet. The data is transmitted to the history data management server 10 of the management center 1 via the line 2. When the history data management server 10 receives this information, the information for identifying the user, the information for identifying the store / facility,
Point information and time information are stored in the point history data file 11 as point history information. In addition, the name of the user obtained when joining the point service, when giving points, or when returning points to the user,
User information such as an address and age are sent from the terminal device 40 and the like to the history data management server 10 and stored in the user data file 12. Further, the store / facility information such as the name, address, business type, and the like of the stores / service facilities participating in the point service of the present embodiment is stored in the store / facility data file 13. Also, the history data management server 1
0 calculates the total value of the point information for each user and each store / facility, and stores it in the point history data file 11. Then, in response to an inquiry from the terminal 40 or the mobile phone 50 or the like, the total value of the point information for each user and each store / facility is transmitted to the terminal 40 and the mobile phone 50.

The personal authentication data management server 20 generates personal authentication history data and personal authentication personal data from the point history data file 11, user data file 12, and store / facility data file 13 data. Are stored in the authentication history data file 21 and the authentication personal data file 22, respectively. At this time, if necessary, the point history data is compared with the contents of the POS / facility use data file 100 obtained from each store, facility, and the like using time information and the like, and details of shopping information of each user, facilities The details of the usage information are obtained and stored in the history data file 21 for personal authentication. The above POS
The / facility use data file 100 is, for example, data obtained by extracting necessary portions from POS data of each store, facility, and the like, and facility use data, and is collected as much as possible. If necessary, the contents of the user data file 12
Known data useful for personal authentication, such as an alumni list or a telephone directory, is added and stored in the personal data file for authentication 22. In addition, when using this system including a public institution, it is also possible to use public data such as data of a certified family register. The personal authentication management server 20
When there is a request for personal authentication from the terminal device 40 (or a mobile phone if possible), a question for authenticating the individual is generated based on the data and transmitted to the terminal device 40 and the like as described later. . Then, personal authentication is performed based on the answer. In addition, considering security,
It is desirable that the personal authentication management server 20 can be accessed only from a terminal installed at a predetermined place.

The store / facility use status management server 30 generates store / facility use status data from the data of the point history data file 11, user data file 12, and store / facility data file 13, and stores / stores / facility use status data. It is stored in the data file 31. At this time, if necessary, the point history data is compared with the contents of the POS / facility use data file 100 obtained from each store, facility, and the like using time information and the like, and details of shopping information of each user, facilities The details of the usage information are obtained and stored in the store / facility usage status data file 31. When a store / facility use status management server 30 receives a request for data on the store / facility use status, it generates data corresponding to the request.
As the data on the store / facility use status, for example,
This is marketing information such as age-specific purchase trend data or data useful for maintaining facilities and the like such as an age-specific behavior pattern map. These data may be transmitted to each terminal via the Internet line when the data amount is small.
And deliver it by mail or the like. Note that mailing is desirable to ensure security.

A specific configuration of the present embodiment, such as the point history management function, personal authentication function, store / facility use status data use function, and means for ensuring security, will be described below. (1) Point History Management Function FIG. 2 is a diagram showing an example of a functional configuration of the history data management server 10 according to the embodiment of the present invention. In the figure, reference numeral 10a denotes an input / output unit which checks a password and a terminal ID, encrypts transmission information, decrypts encrypted reception information, and the like (for checking a password, a terminal ID, and encryption, etc. See below). In addition, it is possible to browse the point data total value of each user in response to an inquiry from the user via a homepage or the like. A point data management unit 10b stores the point history data (point information, user code, store / facility code, time information) sent from each terminal in the point history data file 11a, and stores the point history data from the point history data. The point total value for each user and each store / facility is obtained and stored in the point total data file 11b. Further, when the terminal device 40 requests the transfer of the point total data of each user held by the history data management server 10 from the terminal device 40 as described later, the point data management unit 10b stores the point of the user of the store / facility. The total value is transferred to the terminal device 40. In addition,
Instead of requesting the transfer from the terminal device 40, the history data management server 10 may periodically transfer the point total value to the terminal device 40. In addition, in order to ensure security, the point total value may be sent to a store / facility where the terminal device 40 is installed by mail or the like.

Further, the point data management unit 10b
The above-mentioned history data is obtained by batch processing at regular intervals, etc.
The data is optimized by rearranging the data in an optimum order suitable for use, deleting unnecessary data, and the like. A registration unit 10c stores user attribute information (user name, address, age, etc.) and store / facility attribute information (store / facility name, location, business type, etc.) sent from each terminal. It is stored in the user data file 12 and the store / facility data file 13. Note that the system of the present invention is a system for a plurality of stores / facilities and the like, and the attribute information of the same user may be sent from a plurality of stores / facilities and the like. Are integrated and stored in the user data file 12. Further, when there is a discrepancy in the attribute information of the user from a plurality of stores / facilities, for example, the latest attribute information is selected, or attribute information considered to be correct by majority decision is selected and the user data file is selected. 12 is stored. If the attribute information considered to be correct cannot be selected, the conflicting attribute information may be given priority and held as it is.

FIG. 3 is a diagram showing an example of a functional configuration of the terminal device 40. The terminal device 40 can be realized by, for example, a normal personal computer or the like. A keyboard, a display device, a printer, a card reader for reading / writing a point card, and the like are connected via an input / output interface. The function is realized by a program or the like stored in the storage device. In FIG. 3, reference numeral 40a denotes an input / output unit, which checks a password, an ID of a host device, encrypts transmission information, decrypts encrypted reception information, and the like. 4
Reference numeral 0b denotes a point data management unit, which adds and subtracts points to and from the point total value of the point total data file 41 when giving points to the user or when redeeming the user's points by discounting or cashing back. The history information such as the added or subtracted points, the user code, and the time information is temporarily stored. Then, the point information, the user code, the store / facility code,
Point history information such as time information is transferred to the history data management server 10 via the Internet line periodically or as needed in a lump. Further, it reads out the point information of the point card possessed by the user and writes the updated point information. The point card possessed by the user may record points for each store / facility, or may record the total value of points. Further, points may not be recorded on the point card, and only the user code may be recorded. Here, a case where a point card is used will be described. However, in the present invention, since the point total value of each user is collectively managed by the history data management server 10, the point card is not essential. ,
If the user has a driver's license, a credit card, or the like that can identify the person, points can be given and points can be redeemed. Even when using a point card, it is not always necessary to record points on the point card.

Here, the point information of each user stored in the point total data file 41 of the terminal device 40 is points in the store / facility, and the points given or subtracted in other stores are the same as those described above. It is not immediately reflected in the point total data file 41. Therefore, as described above, it is necessary to transfer the total value of the point data of each user from the history data management server 10 to the terminal device 40 regularly or as needed, and update the contents of the point total data file 41 of the terminal device 40. There is.
In order to avoid such a problem, the terminal device 40 may not be provided with the point total data file 41, and may access the history data management server 10 via the Internet line every time points are added or subtracted. Good. However, in this case, since it is necessary to frequently connect to the history data management server 10 via the Internet line, there arises a problem that communication costs increase. In addition, from the terminal device 40, the history data management server 1
It is also possible to access the homepage No. 0 and display the point total value of the user on the terminal 40.

The attribute information (name, address, age, etc. of the user) obtained when the user joins the point service or at the time of cashback, and the attribute information of the store / facility ( Store / facility name, location, business type, etc.) are sent from the terminal device 40 to the history data management server 10, and these data are stored in the user data file 12, store / facility data of the history data management server 10 as described above. Registered in file 13.

FIG. 4A shows the history data management server 10.
FIG. 4 is a diagram illustrating an example of point total data held by the terminal device 40. As shown in the figure, the terminal device 40 of each store / facility holds, for each store / facility, a point total value of a user who has used each store / facility, and the history data management server 10 stores all the stores. Holds the point total value of each user in. Then, for example, when the user accesses the homepage of the history data management server 10 by using a mobile phone or a personal computer to enter the user's user code (or password) in order to check the points owned by the user, the history data management is performed. The server 10 totals the points for each store / facility using the points of each user or for each type of points and presents the points to the user. FIG.
5 shows an example of the point total value displayed on the screen of a mobile phone or the like. As shown in the drawing, points of the user are displayed on a screen of a mobile phone or the like for each type of meal, clothes, parking lot, volunteer activity, and the like. At that time, as shown in the figure, commercials of stores and the like, messages to users, and the like may be displayed.

FIG. 4B shows an example of history information sent from the terminal device 40 to the history data management server 10. The history data sent to the history data management server 10 is, for example, a text file, and the history data is, as shown in the figure, the code of each store / facility, the code of the user, the point increase / decrease value, and the point increase / decrease. It is time information at the time of doing. The history data management server 10 stores and retains the history data in the point history data file 11, and calculates the point total value of each user at that time from the history data. Since the history data is also used as recovery data in the event of a system failure, it is desirable that the history of terminal operations be directly reflected in the data. For example, as shown in FIG. 4B, after the point of the user code 10011 is incremented by +2, it is found that +2 is an error of +1. It is desirable to leave it on.

FIG. 6A shows an example of store / facility data stored in the store / facility data file 13 of the history data management server 10. The store / facility data file 13 stores data such as a store / facility code, a store / facility name, a code representing the type of store / facility, the location of the store / facility, and a point conversion rate, as shown in FIG. Is done. The point conversion rate is set in consideration of the fact that the price for giving points differs depending on each store / facility. In the example of FIG.
1 point will be given for every purchase of 00 yen product.
△ In the store, 1 point is given for purchasing a 600 yen product. As mentioned above, the point conversion rate is
If the points are different depending on the facility, when cashing back the points, the same points may have different cashback amounts depending on the store / facility. For example, at the time of cashback, the points are converted into the amount based on the point conversion rate. Various countermeasures such as cashback can be taken.

FIG. 6B shows the history data management server 10.
FIG. 4 is a diagram showing an example of user data stored in a user data file 12 of FIG. As shown in the figure, the user data file 12 stores attribute data of each user such as name, age, date of birth, and gender. As described above, these attribute information are data acquired when joining the point service, redeeming points to the user, etc., and it is not always possible to acquire attribute data for all items, The system of the present invention is intended for a plurality of stores, facilities, and the like, and can acquire user attribute data from a variety of fields. It is possible to acquire a small variety of attribute data.

Next, with reference to FIG. 7, the point updating process in the terminal device and the history data management server will be described. (i) In a store / facility where the terminal device 40 is installed,
When the user performs a procedure for joining the point service and inputs attribute information such as the user's name and address from the terminal device 40, the information is sent to the history data management server 10 via the Internet line. In addition, the user attribute information and the like are registered in the user data file 12, and the user code and the like are returned from the history data management server 10. The terminal device 40 stores the user code and the like in the point total data file 41 of the terminal device, and issues a point card in which the user code and the like are recorded. (ii) The user does shopping at a store / facility, etc.
When the point card is presented, the card reader of the terminal device 40 reads the user code of the point card,
The contents of the point total data file 41 in the terminal device 40 are searched to check whether the user code has been registered. (iii) When the user has used the store / facility, etc., since the data of the user is stored in the point total data file 41 in the terminal device 40, Attribute information of the user on a display device,
The point total value is displayed. The store / facility operator inputs points given to the user from the keyboard of the terminal device 40 or the like. As a result, the point total data of the terminal device 40 is updated, and the given points,
History information such as a user code and time information is temporarily stored in the terminal device 40. In addition, the points of the point card are updated. If the user has never used the store / facility or the like, the data of the user is not stored in the point total data file 41 in the terminal device 40. An inquiry is made to the history data management server 10 via the Internet line. (iv) The history data management server 10 searches the point total value of the user code, and if the user code is registered, returns the point total value of the user to the terminal device 40 via the Internet line. I do. Since the point total value sent from the history data management server 10 is displayed on the display device of the terminal device 40, the shop / facility operator inputs points to be given to the user from the keyboard or the like of the terminal device 40. . Thereby, the user code and the point total value of the user are registered in the point total data file 41 of the terminal device 40, and the history information such as the assigned points, the user code, and the time information is temporarily stored in the terminal device 40. Is maintained. In addition, the points of the point card are updated. (v) The terminal device 40 collectively transfers the history information to the history data management server 10 via the Internet line. When the history data management server 10 receives the history information, as described above, the point history data file 11
To be stored. (vi) Periodically or as needed at night or the like, the point total data of each user in the store / facility is transferred from the history data management server 10 to the terminal device 40, and the terminal device 40 installed in each store / facility Is updated.

Next, the point display processing will be described with reference to FIG. (i) History data management server 1 from mobile phone, PC, etc.
Launch a website dedicated to the display of point totals of 0. (ii) When the above-mentioned dedicated website is displayed on a mobile phone or personal computer, enter the user code from the mobile phone or personal computer. (iii) The history data management server 10 retrieves the point total value of the user code and transmits it to a mobile phone or a personal computer via the Internet line. At that time, if necessary, a commercial, a message to the user, and the like are transmitted together with the point total value. As a result, the point total data of the user is displayed as shown in FIG. In addition, if the terminal device 40 installed in the store / facility is used, the point total data held in the terminal device 40 can be viewed. However, the point total data stored in the terminal device 40 does not always match the point total value data stored in the history data management server 10 as described above. In the above description, the user code is input and the point total value is displayed. However, if it is necessary to keep the data confidential, a password may be input together with the user code.

The above system handles highly confidential data relating to privacy, such as user attribute information such as a user's name, address, date of birth, and age. Since data is transmitted and received via the Internet line, it is necessary to pay sufficient attention to ensuring security. In this embodiment, security is ensured as follows. (a) Password A password is set for each store / facility, and unless the password is entered, the system of this embodiment cannot be started. Further, a password for accessing the history data management server 10 from the terminal device 40 is separately provided,
Unless the password is entered, access to the history data management server is disabled.

(B) Authentication of Connection Destination by ID If the password is stolen, it can easily enter the system if the password is stolen, and sufficient security cannot be ensured. Therefore, the connection destination is authenticated by the ID, and when the ID is different, the connection is blocked. For example, a terminal ID is determined for each terminal device installed in each store / facility, and access from terminals other than the terminal having the predetermined terminal ID is prevented. If the terminal device and the higher-level device are connected via a dedicated public line without using the Internet, the terminal device is specified by the telephone number of the terminal device, etc. Terminal device 40 and history data management server 1
If the password is stolen when connecting to 0, it is possible to access the history data management server from any personal computer if the password is stolen. Therefore, in this embodiment, a terminal device that can access the history data management server is specified as described below, and security is ensured. (i) The communication history (time information and the like) is stored on the transmission side and the reception side, and the communication history is used as an ID to confirm the connection destination device. When connecting for the first time, since there is no communication history,
For example, temporary history information and a terminal number are delivered by mail or the like from a management center to a store / facility where the terminal device is installed. The terminal device accesses the server on the center side from the terminal device using the temporary history information and the own terminal number. The server on the center side checks whether the provisional history information and the terminal number match the provisional history information delivered earlier, and returns a response to the terminal device if they match. At this time, the transmission time is stored in the communication history. Upon receiving the response from the center, the terminal device stores the reception time and the like as a communication history. (ii) Thereafter, when transmitting and receiving between the terminal device and the center side, the terminal device and the partner device are confirmed using, for example, the latest history information among the communication histories stored in the center device. The history information used as the ID is transmitted every time,
It is desirable to update to a new one and try to maintain freshness. Note that a plurality of pieces of history information are stored on both the terminal device and the center side, and information indicating which piece of history information is to be selected from among the plurality of pieces of history information when sending the piece of history information (ID is referred to as history selection information). ) Is sent to the other party together with the history information, and the other party selects a specific piece of history information from the plurality of pieces of history information stored by the above-mentioned history selection information, and sends the sent ID and the replacement history information. By comparison, the other party may be authenticated. With such a two-layer structure, security can be further improved.

FIG. 9 is a diagram for explaining the authentication operation of the connection destination based on the communication history. In the figure, reference numeral 40 denotes a terminal device, and the terminal device 40 is provided with a history information storage / new ID issuing unit 40c. The history information storage / new ID issuing unit 4
A plurality of pieces of history information are stored in 0c, and specific history information is selected from the history information and sent to the center-side history data management server as a terminal ID. Also, the used history information is discarded, and new history information is stored in the history information storage /
It is added to the new ID issuing unit 40c. History information storage /
The new ID issuing unit 40c can be provided in, for example, the input / output unit 40a of the terminal device 40 described above. Since the history information stored in the history information storage / new ID issuing unit 40c is used as a terminal ID, it is desirable that data rewriting and data reading should not be performed. It is desirable to make the hardware / software robust so that rewriting / reading is disabled or that rewriting / reading is performed immediately. Reference numeral 10 denotes a history data management server, and the history data management server 10 is provided with a history information storage / ID restoration unit 10d. The history information storage / ID restoration unit 10d stores the same plurality of history information as the history information stored in the history information storage / new ID issuing unit 40c, and selects a specific history information from the history information. Then, it authenticates whether the terminal ID is valid. The history information storage / ID restoration unit 10d can be provided in, for example, the input / output unit 10a of the history data management server 10 described above. Like the history information storage / new ID issuing unit 40c, the history information storage / ID restoration unit 10d is also hardened in terms of hardware / software, and cannot be rewritten / read out. It is desirable to be able to understand. In FIG. 9, when the terminal device 40 accesses the history data management server 10, the terminal device 40 uses the history information storage / new ID issuing unit 40.
c, select any history information from among the history information stored in c, and select the selected history information and history selection information for selecting the history information (for example, what number data of a predetermined random number table to use. ) And its own terminal number as a terminal ID, via the Internet line, via the history data management server 10.
To send to. For example, as shown in FIG. 9, when the third history information is selected from the history information and the number 3 is present in the second column of the random number table, the third history information (year / month / day / second / minute ), 2 indicating that the history selection information is the second number in the random number table, and the terminal number of the history data management server 10
To send to. Also, the history information storage / new ID issuing unit 40c
Of the history information stored in the communication history, the used history information is discarded, and the current communication history is added as new history information.
When the history data management server 10 receives the above information,
3 is read out with reference to the second column of the random number table, and 3 out of the history information stored in the history information storage / ID restoration unit 10d.
Read the history information of the th. Then, the history information is compared with the history information transmitted from the terminal device 40, and if the two match, the access is authenticated as a legitimate terminal device. Also,
Of the history information stored in the history information storage / ID restoration unit 10d, the used history information is discarded, and the current communication history is added as new history information. By performing the above operation each time a communication session is started between the terminal and the history data management server, unauthorized access can be prevented and security can be ensured. In the above description, a case has been described in which the terminal device 40 is provided with a history information storage / new ID issuing unit and the history data management server 10 is provided with a history information storage / ID restoration unit. If a storage / ID restoration unit is provided, and a history information storage / new ID issuance unit is provided in the history data management server 10 and the ID of the communication partner is authenticated in both directions, security can be further improved.

(C) Encryption The information transmitted from the terminal device 40 to the history data management server 10 and the information transmitted from the history data management server 10 to the terminal device are encrypted with a predetermined key. That is, the input / output unit 10a of the history data management server 10 is provided with an encryption / decryption unit, and the input / output unit of the terminal device 40 is similarly provided with an encryption / decryption unit.
And sends it to the history data management server 10,
The decryption is performed by the history data management server 10. Similarly, the information to be transmitted is encrypted in the history data management server 10, sent to the terminal device 10, and decrypted in the terminal device 40. Thereby, privacy-related data such as the above-mentioned user information can be concealed. As the encryption key, for example, the communication history described above may be used, and the key may be constantly updated. Further, the encryption key may be embedded in the information to be transmitted. (d) Others In the system of the present embodiment, the information transmitted from the terminal device 40 to the history data management server 10 and the information transmitted from the data management server 10 to the terminal device in the history are text data in principle, Binary data is rarely sent. Therefore, the input / output unit 10a of the history data management server 10 and the input / output unit 40a of the terminal device 40 are provided with a mechanism for receiving only text data and blocking binary data. Thereby, the risk of being infected by a virus or the like can be reduced. Furthermore, to improve security,
A quarantine communication interface may be provided at the input / output terminals of the terminal device and the history data management server as described later.

(2) Personal Authentication Function FIG. 10 is a diagram showing an example of a functional configuration of the personal authentication server 20 according to the embodiment of the present invention. In the figure, an input / output unit 20a performs the above-described password and terminal ID check, encrypts transmission information, decrypts encrypted reception information, and the like. Since the personal authentication server 20 handles highly confidential information such as personal information, it is necessary to strictly protect against unauthorized intrusion from the outside. Therefore, the password check and the terminal ID in the input / output unit 20a are performed.
Checks and the like need to be performed more strictly than the history data management server 10. It is also desirable to limit the terminals that can access the personal authentication server 20 so that they can be accessed only from terminals installed at specific locations. If you can identify the caller by phone number, etc.
Although a mobile phone or the like can be used as a terminal, it is not preferable to use a mobile phone as a terminal because there is a risk of theft. Further, although FIG. 1 shows a case where the terminal device 40 and the personal authentication server 20 are connected via the Internet, the personal authentication server 20 and the terminal device may be connected via a dedicated public line. It is also desirable to provide a quarantine communication interface to be described later to prevent intrusion from the outside.

Reference numeral 20b denotes a data registration unit which stores the contents of the user data file 12 by the data registration unit 20b.
Register additional known data such as alumni directory, telephone directory, etc. that are useful for personal authentication. Also, as mentioned above, when using this system, including public institutions, etc.,
Public data such as data of a family register may be additionally registered. In addition, it is possible to additionally register various types of available data such as various types of information on employees and data on social insurance available from companies. Further, image data such as a photograph and a fingerprint may be registered. 2
Reference numeral 0c denotes a personal authentication data management unit, which is the point history data file 11, the user data file 12 in which data is additionally registered, and the store / facility data file 13.
, The personal authentication history data and the personal authentication personal data are generated and stored in the authentication history data file 21 and the authentication personal data file 22, respectively.
At that time, as described above, the point history data and the POS / facility use data file 1 obtained from each store, facility, etc.
00 is compared using the time information or the like to obtain details of shopping information and facility use information of each user, and store them in the personal authentication history data file 21. These processes are desirably performed by night batch processing or the like. Reference numeral 20d denotes an individual authentication unit, which receives the authentication history data file 21 when a personal authentication request is received from the terminal device.
A question for authenticating an individual is generated based on the contents of the authentication personal data file 22 and transmitted to a terminal device or the like. Then, personal authentication is performed based on the answer.

FIG. 11A shows an example of personal data for authentication. As shown in FIG. 11, personal information such as name, age, date of birth, gender, and address of each user is stored. .
In this example, in addition to the items of the user data, data such as family register information such as a permanent address and an insurance card number are added. FIG. 11B is a diagram showing an example of personal authentication history data. As shown in FIG. 11B, the content and time of the action of each user are stored. In this example, by comparing the point history data with the contents of the POS / facility use data file 100 as described above, detailed information such as the contents of shopping is added. Next, FIG.
2 describes the personal authentication of the present embodiment. (i) The user code or the like of the person to be authenticated is input from the terminal device 40, and a request for personal authentication of the user is made to the personal authentication server 20. (ii) The personal authentication server 20 stores the authentication history data file 2
1 to check whether or not the history data of the user is stored, and search the authentication personal data file 22 to check whether the personal data is stored. If the authentication history data and the authentication personal data are not stored to such an extent that the personal authentication can be performed, a response is sent to the terminal indicating that the personal authentication cannot be performed. (iii) When the authentication history data and the authentication personal data are stored to such an extent that the personal authentication can be performed, the question item is selected from the authentication history data and the authentication personal data using a random number or the like. A question is created from the question item and sent to the terminal device 40. The question is displayed on the display device of the terminal device 40. Examples of this question are "Is your birth date ** year ** month ** date?", "Did you shop at ** store yesterday at around 10:00?" It is desirable to be able to answer yes or no. Alternatively, a plurality of options may be displayed on the screen of the terminal device, and a person to be personally authenticated may select one of the options, and may respond with a number. (iv) The personal authentication server 20 repeats the above-described questions as many times as necessary, and from the answer sent from the terminal device 40,
Calculate the correct answer rate. Then, personal authentication is performed based on the correct answer rate, and the authentication result is sent to the terminal device 40. From the viewpoint of ensuring reliability and ensuring security, it is desirable to disconnect the communication session and confirm the terminal ID for each one of the above questions and responses thereto.

By using the above-mentioned personal authentication function, it is possible to have a close relative or the like who lives in a remote place assure the identity by telephone or the like as described above. That is, the above-mentioned questions are made by telephone or the like to the person who resides in the remote place, personal authentication of the person living in the remote place is performed based on the correct answer rate, and the person is certainly a close relative of the person whose identity is to be guaranteed. If the person is assured of the identity assurance, and the person is assured of the identity assurance, the identity of the assurance individual can be surely confirmed. Further, for example, the same can be confirmed in the case of withdrawing bank deposits of the above-mentioned elderly people with Alzheimer's disease and persons with intellectual disabilities.
That is, the personal authentication of the guardian of the elderly and the intellectually disabled is performed by telephone or the like, and after confirming that the person is indeed the guardian of the elderly or the mentally disabled, the telephone is used to It is possible to confirm whether the processing for withdrawing the deposit may be performed.

(3) Store / Facility Use Status Data Use Function FIG. 13 is a diagram showing an example of a functional configuration of the store / facility use status management server 30 according to the embodiment of the present invention. In FIG.
Numeral 0a denotes an input / output unit, which includes the password and the terminal ID described above.
Check, encryption of transmission information, decryption of encrypted reception information, and the like. The store / facility use status management server 30 does not handle highly confidential information as much as the personal authentication server, but handles privacy-related data such as user data. Need to defend. Therefore, the password check, the terminal ID check, and the like in the input / output unit 20a need to be performed strictly as in the case of the history data management server 10.

A store / facility use data management unit 30b generates store / facility use data from the point history data file 11, the user data file 12, and the store / facility data file 13, and stores / stores the data.
The data is stored in the facility use status data file 31. that time,
If necessary, the point history data is compared with the contents of the POS / facility use data file 100 obtained from each store, facility, and the like using time information and the like, and the details of each user's shopping information and the facility use information are compared. After getting the details,
The data is stored in the facility use status data file 31. The above processing is performed as a batch processing at night or the like. Reference numeral 30c denotes a usage status data output unit, which is connected to the terminal /
When there is a request for data related to the facility use status, data corresponding to the request is generated from the data stored in the store / facility use status data file 31, map data, and the like.

FIG. 14 is a diagram showing an example of data stored in the store / facility use status data file 31. As shown in FIG. As shown in the figure, the store / facility use status data file 31 records attribute information such as age, gender, occupation, and the like of each user, and an action history of the user. For details of the action record, see the POS / facility use data file 10
0 can be obtained. Using the above data, for example, the following data can be generated. (i) Age-based action map Create an age- and gender-based action map in a specific area. This is the store / facility use status data file 3
The user's action history stored in 1 can be created by finding age and gender, plotting it on a map, and extracting a representative action pattern. By creating such a map, it can be used as basic data for facility maintenance in a specific area, and can also be used as data when considering store locations. (ii) Age-specific purchase trend data Purchased items are extracted from the user's action history stored in the store / facility use status data file 31, and are aggregated, for example, by age and gender. As a result, it is possible to grasp what kind of product and what age group purchases in a specific area, and use it as a material when considering a sales strategy. In addition, various analyzes can be performed using the data stored in the store / facility use status data file 31, and various data can be created according to requests. As described above, these data may be transmitted to each terminal via the Internet line, or may be stored in a CDROM or the like and distributed by mail or the like. ,
Mailing is preferred.

(4) Quarantine Communication Interface The history data management server, personal authentication server, and store / facility use status management server of this embodiment handles highly confidential information such as personal information as described above. It is necessary to strictly protect against unauthorized intrusion from the outside.
Therefore, in addition to the measures described in (1) (a) to (d) above, such as the password, terminal ID, and encryption, a quarantine communication interface described below is provided between the terminal device and the server on the center side. With the provision, the security can be further improved. The quarantine communication interface can be provided in, for example, the above-described terminal device and the input / output unit of each server. FIG. 15 is a diagram showing a configuration example of the quarantine communication interface. Although FIG. 1 shows a communication interface installed in the terminal device, a similar communication interface is provided in each server of the management center.

In FIG. 15, reference numeral 60 denotes a quarantine communication interface. The communication interface 60 includes buffers 61a and 61b for temporarily storing information to be transmitted and received.
An encryption / decryption unit 62 for encrypting a signal to be transmitted based on the encryption table and decrypting a received signal is provided. In addition to issuing the terminal ID, the ID sent from the partner
An ID issuing / restoring unit 63 for restoring the data, a data checking unit 64 for determining whether the transmitted data is text data as described above, and a virus checking unit 65. The history information storage / new ID issuing unit and the history information storage / ID restoration unit described above are provided in the ID issue / restoration unit 63. Further, the check result of the ID issuing / restoring unit 63, the check result of the data check unit 64,
A control unit 66 controls the switches SW1 and SW2 according to the check result of the virus check unit 65 and the like.
The communication interface holds an encryption table and history information as an ID, so that the communication interface is independent of the terminal device and rewrites data from outside similarly to the above-described history information storage / new ID issuing unit. It is desirable to make the hardware and software robust so that data cannot be read, and to make it impossible to rewrite / read or to immediately recognize that rewriting / reading has been performed.

The communication interface 60 transmits and receives data as follows. (i) When transmitting data from the terminal device to the server on the center side, the control unit 65 opens the switch SW2 to disconnect the communication interface 60 from the Internet line, closes the switch SW1, and buffers the transmission information transmitted from the terminal device. 61a. Next, the switch SW1 is opened to disconnect the communication interface 60 from the terminal device. (ii) The history information storage / ID restoration unit generates a signal corresponding to the terminal ID from the history information held as described above. The transmission information stored in the buffer 61a is encrypted by the encryption / decryption unit 62 and stored in the buffer 61b. (iii) The control unit 66 generates a signal corresponding to the terminal ID in the history information storage / ID restoration unit, and stores the signal in the buffer 61b.
When the encrypted transmission information is stored in the switch SW
Close 2. Thus, the terminal ID is transmitted to the server on the center side, and then the transmission information held in the buffer 61b is transmitted. (iv) In response to the response from the center, the history information storage / ID restoration unit authenticates whether the transmitted ID is valid, and notifies the control unit 66 if the ID is not valid. I do. The transmitted reception information is held in the buffer 61b. (v) The encryption / decryption unit 62 decrypts the received information held in the buffer 61b. The decoded reception information is held in the buffer 61a. The data check unit 64 checks whether the received information held in the buffer 61a is text data, and notifies the control unit 66 if the received information is not text data. The virus check unit 65 checks whether the received information contains a virus, and notifies the control unit 66 if the received information contains a virus. (vi) If the transmitted ID is valid, the received information is text data, and no virus is included, the control unit 66 opens the switch SW2. And
When a data transfer request is received from the terminal device, the switch SW
1 is closed, and the reception information held in the buffer 61a is sent to the terminal device. Next, the switch SW1 is opened and the switch SW2 is closed. As described above, the communication interface according to the present embodiment includes the switches SW1 and SW2, and opens the switch SW2 and sets the switch SW1 during data transmission.
Is closed to temporarily store transmission information in a buffer, and then the switch SW1 is opened, the switch SW2 is closed to transmit data, and when data is received, the switch SW1 is opened and the switch SW2 is closed to transmit data from outside. After taking the data and temporarily storing it in a buffer, performing a virus check, etc., the switch SW1 is opened, the switch SW2 is closed, and the data held in the buffer is taken into the terminal device. It is not connected, and data is temporarily stored in a buffer, the ID of the connection destination is checked, a virus check is performed, etc., and then the data is imported to the terminal device. Intrusion can be prevented.

[0041]

As described above, the following effects can be obtained in the present invention. (1) Point information given to each user at a plurality of stores or various facilities including different industries in a predetermined area, user information for identifying each user, and the stores / various facilities are identified. Store / facility information and the time information to which the points have been given are transmitted to the higher-level device via the network, and the information is stored in the higher-level device as history information. Point information given to each user can be centrally managed at multiple stores or various facilities, including users. If a user possesses one card, multiple stores of different industries,
The point service can be received at various facilities and the like, and the convenience of the point service can be improved. (2) It is possible to target a plurality of stores / facilities, including various public transportation facilities, sports facilities, art museums, and other facilities with a high public system. For example, points are given as compensation for volunteer activities, and in accordance with the points. Services such as giving back to ministers can also be realized. Further, since the point information can be managed in a unified manner, the user can check the point total value possessed by each user via the network. (2) Since the history information includes time information, the action history of each user can be obtained based on the history information. Therefore, the history information obtained by the point service can be effectively used. In particular, the time information and the like can be used to match the history information with purchase / various facility use information recorded in a POS system or the like installed in each store / various facility, thereby providing more detailed information. The user's action history can be obtained. (3) Personal authentication of the user can be performed based on the action history. For this reason, even if you do not have a certificate such as a driver's license, or if you are in a remote place, personal authentication can be performed. (4) Since the detailed behavior history of the user can be obtained from the history information, the average behavior pattern, purchasing trend, etc. of the store or various facility users can be obtained, which contributes to the sales strategy, facility maintenance, and the like. be able to. (5) The host device and / or the terminal device are provided with a communication interface for transmitting / receiving information to / from the partner device, and the communication interface is provided with a buffer for holding information and a buffer between the host device and the buffer. By providing the provided first switch and the second switch provided between the buffer and the network, it is possible to prevent an unauthorized intrusion of the terminal device or the host device from the outside from the outside, and the confidentiality is high. It is possible to prevent personal information and the like from leaking outside. In addition, the risk of being infected with a virus or the like can be prevented. (6) ID generation means for holding, in the higher-level device and / or the terminal device, communication history information with the counterpart device and generating an ID for authenticating the device from the communication history; An ID for restoring the communication history from the ID generated from the communication history sent thereto and authenticating the terminal device of the connection destination by collating with the communication history held by the own device.
By providing the restoring means, even when the Internet line is used, it is possible to reliably authenticate the connected device, and to prevent unauthorized entry into the system even if, for example, a password is stolen. . Further, if information to be transmitted to the partner device is encrypted using the communication history information as a key and transmitted to the partner device, it is possible to prevent leakage of highly confidential personal information and the like to the outside.

[Brief description of the drawings]

FIG. 1 is a diagram showing an overall configuration of a system according to an embodiment of the present invention.

FIG. 2 is a diagram illustrating an example of a functional configuration of a history data management server.

FIG. 3 is a diagram illustrating an example of a functional configuration of a terminal device.

FIG. 4 is a diagram showing an example of point total data and history data.

FIG. 5 is a diagram showing an example of a point total value displayed on a screen of a mobile phone or the like.

FIG. 6 is a diagram showing an example of store / facility data.

FIG. 7 is a diagram illustrating a point update process.

FIG. 8 is a diagram illustrating a point display process.

FIG. 9 is a diagram illustrating an authentication operation of a connection destination.

FIG. 10 is a diagram illustrating an example of a functional configuration of a personal authentication data management server.

FIG. 11 is a diagram showing an example of personal data for authentication and history data for personal authentication.

FIG. 12 is a diagram illustrating personal authentication by the personal authentication data management server.

FIG. 13 is a diagram illustrating an example of a functional configuration of a store / facility use status management server.

FIG. 14 is a diagram showing an example of store / facility use status data.

FIG. 15 is a diagram illustrating a configuration example of a communication interface for quarantine.

[Explanation of symbols]

 Reference Signs List 1 management center 2 network (internet line) 10 history data management server 11 point history data file 12 user data file 13 store / facility data file 20 personal authentication data management server 21 authentication history data file 22 authentication personal data file 30 Store / facility use management server 31 Store / facility use data file 40 Terminal device 50 Mobile phone 60 Quarantine communication interface 100 POS / facility use data file

 ────────────────────────────────────────────────── ─── Continued on the front page (72) Inventor Takahiro Nakano 2-1-5 Mitsugoya, Nagaoka City, Niigata Prefecture Sunrise 201 (72) Inventor Kazuya Horie 724-9 Ogori, Shimoda Village, Minami Kambara-gun, Niigata Prefecture ( 72) Inventor Kenya Maiwa 2-6-35 Miyauchi, Nagaoka City, Niigata Prefecture Sejouru Miyauchi C-210 3E042 CC01 CD04 EA01 5B049 AA01 BB11 CC00 CC36 FF07 GG01 GG04 GG09

Claims (14)

[Claims] 1. A terminal device installed in a plurality of stores or various facilities including different types of business in a predetermined area, and a host device connected to the terminal device via a network. In a store or various facilities where the terminal device is installed, each time each user pays or performs an activity, point information given to each user, and user information for identifying each user And transmitting the store / facility information for identifying the store / various facilities and the time information at which the points are given to the higher-level device via the network, and the higher-level device is transmitted from the terminal device. A management system for use information of a store or the like, wherein the point information, user information, store / facility information, and time information are stored as history information. 2. The management system for use information of a store or the like according to claim 1, wherein the higher-level device obtains an action history of each user based on the history information. 3. The apparatus according to claim 1, wherein the host device generates a question for authenticating each user from the action history when the terminal device or a user requests a personal authentication via the network, and 3. The management system according to claim 2, wherein the information is transmitted to an apparatus or each user, and the individual is authenticated based on the user's answer to the question. 4. A management device for use information of a store or the like connected via a network to a plurality of stores or terminals installed in various facilities including different types of business in a predetermined area, wherein the management device includes: Point information transmitted from the terminal device and given to each user each time the user pays or performs activities at the store or various facilities where the terminal device is installed, and identifies each user User information for identifying the store / facility / facility, and time information at which the points were given via the network, and transmitted from the terminal device. Point information, user information, store / facility information, and time information are stored as history information, and the activity history of each user is obtained based on the history information. News of the management device. 5. The management device, when a total value of points of each user is requested from the terminal device or each user via the network, a point for each store / facility obtained from the history information. 5. The management device according to claim 4, wherein the total value is transmitted to each user. 6. The management apparatus according to claim 1, wherein the history information is matched with purchase / various facility use information recorded in a management system installed at each store / various facility to obtain an action history of each user. The management device for use information of a store or the like according to claim 4 or claim 5. 7. The management device according to claim 5, wherein the management device obtains an average behavior pattern and a purchase trend of a store or various facility users from the behavior history.
Management device for usage information of stores, etc. 8. The management apparatus generates a question for authenticating each individual from the action history when the terminal device or a user requests a personal authentication via the network, 8. The apparatus according to claim 6, wherein the information is transmitted to each user, and the individual is authenticated based on the user's answer to the question. 9. A recording medium recording a program for managing usage information of a store or the like sent from a plurality of stores including different types of business in a predetermined area or terminal devices installed in various facilities via a network. Wherein the program is transmitted from the terminal device and is provided to each user at each time the user pays or performs an activity at a store or various facilities where the terminal device is installed. Information, user information for identifying each user, store / facility information for identifying the store / various facilities, and time information at which the points were given,
The point information, user information, store / facility information, and time information received through the network and transmitted from the terminal device are held as history information, and the action history of each user is stored based on the history information. A recording medium on which a program for managing usage information of a store or the like characterized by being sought is recorded. 10. The program generates a question for authenticating each user from the action history when a request for personal authentication is made from the terminal device or a user via the network. 10. The recording medium according to claim 9, wherein the program is transmitted to each user and authenticates an individual based on the user's answer to the question. 11. A store where the terminal device is installed, which is connected to terminal devices installed in a plurality of stores or various facilities including a different business type in a predetermined area via a network and is transmitted from the terminal device. Point information given to each user each time the user pays or performs an activity at the facility, user information for identifying each user, and for identifying the above-mentioned stores / various facilities Store / facility information and the time information to which the point was given are received via the network, and the point information, user information, store /
A management device for use information of a store or the like, which stores facility information and time information as history information, wherein the management device includes a communication interface for transmitting and receiving information to and from a terminal device. Is a buffer that holds the information,
A first switch provided between the management device and the buffer, and a second switch provided between the buffer and the network.
When transmitting information from the management device to the terminal device, the communication interface closes the first switch to hold information sent from the management device in a buffer, and then stores the information in the first When the switch is opened and the second switch is closed, the information in the buffer is transmitted to the terminal device via the network. When information is sent from the terminal device, the information is held in the buffer, and Opening the switch, and when receiving a request from the management device, closing the first switch to transfer the information from the terminal device held in the buffer to the management device. Information management device. 12. The communication interface according to claim 1, wherein the communication interface holds communication history information between the terminal device and the management device, and generates an ID for authenticating the device from the communication history. In addition, the communication history is restored from the ID generated from the communication history, and the terminal authenticates the connection destination terminal by comparing the communication history with the communication history held by the own device.
When the information is transmitted from the management device to the terminal device, an ID for authenticating the device is generated by the ID generation device and transmitted to the terminal device, and the ID is transmitted from the terminal device. 12. The management apparatus according to claim 11, wherein the terminal device of the connection destination is authenticated by the ID restoring unit when the information is received. 13. A terminal device installed in a plurality of stores or various facilities including different industries in a predetermined area and connected to a higher-level device via a network, wherein the terminal device is installed in the terminal device. Point or point information given to each user each time the user pays or performs an activity at a store or various facilities, user information for identifying each user, A communication interface for transmitting the store / facility information for identifying the facility and the time information given the points to the higher-level device via the network, and receiving information transmitted from the higher-level device; The communication interface includes a buffer for holding information,
A first switch provided between the terminal device and the buffer, and a second switch connected between the buffer and the network.
When transmitting information from the terminal device to a higher-level device, the communication interface closes the first switch to hold information sent from the terminal device in a buffer, and then stores the information in the first Is opened and the second switch is closed to transmit the information in the buffer to the higher-level device via the network. When information is sent from the higher-level device, the information is held in the buffer, and And opening the first switch, and upon receiving a request from the terminal device, closing the first switch and transferring the information held in the buffer from the higher-level device to the terminal device. 14. The communication interface according to claim 1, wherein the communication interface holds communication history information between the terminal device and the management device, and generates an ID for authenticating the own device from the communication history; ID restoration means for restoring the communication history from the ID generated from the communication history and authenticating the higher-level device of the connection destination by comparing the communication history with the communication history held by the own terminal device. When transmitting information to the terminal, the ID generating means generates an ID for authenticating the terminal device and transmits the generated ID to the higher-level device. When the ID is transmitted from the higher-level device, the ID is restored by the ID restoring means. 14. The management device for use information of a store or the like according to claim 13, wherein the host device is authenticated.