+

WO2006117931A1 - Service system and operation method of server device in the system - Google Patents

Service system and operation method of server device in the system Download PDF

Info

Publication number
WO2006117931A1
WO2006117931A1 PCT/JP2006/304727 JP2006304727W WO2006117931A1 WO 2006117931 A1 WO2006117931 A1 WO 2006117931A1 JP 2006304727 W JP2006304727 W JP 2006304727W WO 2006117931 A1 WO2006117931 A1 WO 2006117931A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
electronic device
comparison
identification information
result
Prior art date
Application number
PCT/JP2006/304727
Other languages
French (fr)
Japanese (ja)
Inventor
Masafumi Kouzuki
Masaaki Tojo
Kohtaro Fukui
Original Assignee
Matsushita Electric Industrial Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Matsushita Electric Industrial Co., Ltd. filed Critical Matsushita Electric Industrial Co., Ltd.
Publication of WO2006117931A1 publication Critical patent/WO2006117931A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules

Definitions

  • the present invention is a service system for executing a predetermined process using a cookie and a password, the service system including an electronic device and a server device that provides the service to the electronic device, and Regarding the method.
  • the server apparatus can recognize the electronic device and can recognize that the electronic device is being used by a genuine user.
  • cookies and passwords are used as a mechanism for this purpose.
  • a cookie is an information file that is transmitted from a Web server and stored on the hard disk of a terminal where the Web browser operates and identifies an electronic device as the content recorded in the file.
  • Device ID is included, and the server device records that the cookie has already been sent to the electronic device identified by the device ID. It becomes possible to identify.
  • the password is used to prevent leakage of personal information, and generally a number string, code string, etc. known only to the user of the electronic device are used.
  • the server device can identify the electronic device and its user, and the same user can receive services provided by the server device using the same electronic device.
  • Patent Document 1 discloses a system and method for conducting electronic commerce while performing authentication using a cookie and a password.
  • Patent Document 1 Japanese Translation of Special Publication 2003-508838
  • an electronic device is used by a third party other than a genuine user to illegally try to access a server device, becomes faulty and cannot be repaired, or is disposed of. Or transfer to a new device (replacement).
  • the same user will receive a service from the server device using the same electronic device.
  • the power of electronic devices is the same.
  • the server device stores the cookie normally. Recognizes this as a genuine device.
  • a password is set, and personal information cannot be accessed unless a genuine password is inserted!
  • the server The device recognizes that access is not from a genuine user, and performs the following processing without providing services. As a result, the personal information is prevented from leaking. Then, for example, a method may be employed in which an electronic device is locked when an incorrect password is entered a certain number of times, and the electronic device can no longer be used unless unlocking measures are taken. When transferring to a new device, the user is the same, but the electronic device is changed. Therefore, since the new electronic device communicates with the server device for the first time, the electronic device acquires a new cookie.
  • the user since the association between the electronic device and the personal information is also disconnected, the user is recognized as a new user for the electronic device and a new password is issued. In other words, in this case, the service is provided as a completely new user that the user has previously used and the password is taken over.
  • the problem to be solved by the present invention is that, according to various patterns when the electronic device or its user is changed, these patterns are meticulously dealt with while responding to the user's needs.
  • the purpose is to provide a mechanism for the server device to (or not) provide appropriate services in each case based on appropriate judgment.
  • the inconvenience for the user that the user needs to be provided with a service as a completely new user is eliminated.
  • the present invention is a service system including an electronic device and a server device that provides a service to the electronic device, and the electronic device is identification information specific to the electronic device.
  • a device identification information holding unit that holds certain device identification information
  • a cookie holding unit that holds a cookie that is information indicating whether communication has been made with the server device in the past
  • password information sent to the server device To input a device identification information holding unit that holds certain device identification information, a cookie holding unit that holds a cookie that is information indicating whether communication has been made with the server device in the past, and password information sent to the server device.
  • a password information input unit, a control unit, and an electronic device communication unit for exchanging information with the server device.
  • the server device includes a server device communication unit for exchanging information with the electronic device, and an electronic device.
  • An information acquisition and registration unit that registers information sent from the electronic device card as electronic device information for each electronic device so that the service can be provided, and the electronic device receives the service.
  • a device identification information comparison unit that compares the device identification information sent when trying to do so with the device identification information stored in the information storage unit, and the electronic device Password information that compares the password information that is sent when an electronic device tries to receive a service with the password information that is stored in the information storage unit.
  • a service system having a comparison unit and a process execution unit that executes a predetermined process based on the result of each unit, and an operation method of a server device of the system.
  • the service system uses the device identification information, the cookie, and the password information unique to the electronic device, and these information and the server sent by the electronic device. Since it is determined to 'comparison these stored information etc.' registered in the device and execute a predetermined process based on the result, it depends on various patterns when the electronic device or its user changes. It is possible to provide a mechanism for responding to these patterns and providing (or not) providing appropriate services for each server by making appropriate decisions while responding to user needs. It becomes. In particular, when switching to a new device, it is possible to eliminate the inconvenience for the user that the user needs to be provided with a service as a completely new user.
  • FIG. 1 is a diagram illustrating an example of functional blocks of a service system according to a first embodiment.
  • FIG. 2 is a diagram showing an example of the concept of the service system of the first embodiment.
  • FIG. 3 is a diagram illustrating an example of a process execution procedure in the service system according to the first embodiment.
  • FIG. 4 is a diagram illustrating an example of a processing flow in the service system of the first embodiment.
  • FIG. 5 is a diagram illustrating an example of functional blocks of the service system according to the second embodiment.
  • FIG. 6 is a diagram showing an example of a processing flow in the service system of the second embodiment.
  • FIG. 7 is a diagram illustrating an example of functional blocks of the service system according to the third embodiment.
  • FIG. 8 is a diagram showing an example of a processing flow in the service system of the third embodiment.
  • FIG. 9 is a diagram illustrating an example of functional blocks of the service system according to the fourth embodiment.
  • FIG. 10 is a diagram illustrating an example of a processing flow in the service system of the fourth embodiment.
  • FIG. 11 is a diagram illustrating an example of functional blocks of the service system according to the fifth embodiment.
  • FIG. 12 is a diagram illustrating an example of a process flow in the service system of the fifth embodiment.
  • FIG. 13 is a diagram illustrating an example of functional blocks of the service system according to the sixth embodiment.
  • FIG. 14 is a diagram showing an example of a processing flow in the service system of the sixth embodiment.
  • FIG. 15 is a diagram illustrating an example of a process flow in the service system of the sixth embodiment.
  • Example 1 Mainly related to claim 1, claim 7, and the like.
  • Example 2 Mainly related to claim 2, claim 8, and the like.
  • Embodiment 3 Mainly relates to claim 3, claim 9, and the like.
  • Example 4 Mainly related to claim 4, claim 10, and the like.
  • Example 5 Mainly related to claim 5, claim 11, and the like.
  • Example 6 Mainly related to claim 6, claim 12, and the like.
  • the service system is a service system including an electronic device and a server device that provides the service to the electronic device, and executes a predetermined process using the device identification information, the cookie, and the password. Is to do.
  • FIG. 1 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment.
  • Each part which is a component of the invention is configured by hardware, software, or both hardware and software.
  • hardware configured such as CPU, memory, bus, interface, peripheral device, and software executable on these hardware are listed. be able to.
  • each part can be performed by processing, storing, outputting, etc., the data on the memory and the data input via the interface. Is realized. Functions of each part are realized by data processing, storage and output.
  • “service system” 0100 of the present embodiment includes “electronic device” 0110 and “server device” 0120.
  • the electronic device includes “device identification information holding unit” 0111, “cookie holding unit” 0112, “password information input unit” 0113, “control unit” 0114, and “electronic device communication unit” 0115. Have.
  • the "device identification information holding unit” is configured to hold device identification information that is identification information unique to an electronic device.
  • the “device identification information” may be, for example, the device manufacturing number of the Internet terminal device as long as it is identification information uniquely (as unique) for each device, or attached separately from the device manufacturing number. It may be done. In either case, the device identification information may be unique in the world, or only within the scope of the server constituting the network including the device. In addition, it is desirable that the device identification information has a structure that makes it difficult for the contents to be removed from the outside cover, that is, a structure that is held in a tamper-resistant area.
  • the "cookie holding unit” is configured to hold a cookie that is information indicating whether or not communication with the server device has been performed in the past.
  • a cookie is generally an information file that is sent from a Web server and is stored on the hard disk of a terminal where a Web browser operates and is used here in a limited sense.
  • the information is information that can be identified by the server device itself that transmitted the cookie.
  • the “password information input unit” is for inputting password information to be sent to the server device. Passwords are also used to prevent leakage of personal information. Therefore, it generally refers to a number sequence, code sequence, and the like known only to the user of the electronic device.
  • the server device is a genuine device that the electronic device has surely communicated with itself in the past, and the electronic device is Since it can be recognized that the device is used by a genuine user who is confirmed by a password, the electronic device can receive service from the server device as a genuine electronic device used by a genuine user. It becomes.
  • the "control unit” is configured to perform control.
  • the “control” here includes a wide range of processes necessary for an electronic device to receive provision of server device service. For example, the device identification information held in the device identification information holding unit is sent to the server device, the cookie is sent to the server device, and the password information input in the password information input unit is sent to the server device. Includes sending.
  • the “electronic device communication unit” is for exchanging information with the server device.
  • the electronic device communication unit is configured to enable communication with the server device. This makes it possible to send the above-mentioned device identification information and password information, and to send and receive cookies.
  • the electronic device it becomes possible for the electronic device to receive services provided by the server device.
  • the information related to the service that is the target of communication with the electronic device is information related to the service using personal information. Specifically, for example, it may be possible to communicate information related to online shopping services using automatic payment by credit card if automatic withdrawal from bank deposit courses. In this case, bank account numbers and credit card numbers correspond to personal information.
  • the “server device” includes “server device communication unit” 0121, “information acquisition registration unit” 0122, “device identification information comparison unit” 0123, “cookie determination unit” 0124, and “password An “information comparison unit” 0125 and a “process execution unit” 0126.
  • the “server device communication unit” is for exchanging information with an electronic device.
  • the server device communication unit is configured to enable communication with the electronic device. This makes it possible to receive the above-mentioned device identification information and password information, and to send and receive cookies.
  • the server device can provide services to electronic devices.
  • the service that the server device can communicate with is a service that uses personal information.
  • the examples given above in the description of the electronic device communication unit can be considered.
  • device identification information, cookies, and password information are stored. used.
  • the electronic device is authentic and subject to personal information.
  • Such a misuse can be prevented by configuring the server device to provide the service only when the identity of the client and the electronic device user can be confirmed.
  • the "information acquisition / registration unit” is configured to register information sent from the electronic device unit as electronic device information in units of electronic devices so that a service can be provided to the electronic device.
  • the information sent from the electronic device card and registered as electronic device information in units of electronic devices includes device identification information and password information. However, it is not essential that all the information is included. For example, password information may not be included.
  • the “electronic device” as used herein “information sent from the electronic device card” may be the same device as the electronic device to which the service is provided or a different device. . As an example of the latter, for example, when transferring devices, the old device power is also transferred to the new device using a special password (the details will be described later) transmitted from the old device. There is a case where the password information is sent from the old device to enable replacement.
  • the "device identification information comparison unit” is configured to compare the device identification information transmitted when the electronic device attempts to receive a service with the device identification information stored in the information acquisition registration unit. Has been. This comparison is a comparison of whether or not the device identification information transmitted from the electronic device card matches the device identification information stored in the information acquisition registration unit.
  • the term “match” here may include all matches as well as partial matches. For the latter, for example, when the device identification information is composed of a part used by the user, a part used by the manufacturer, a part specifying the CP and the service provided by the user, etc. It is possible to compare whether or not only the parts to be matched match
  • the "cookie determination unit” is configured to determine the power of obtaining an appropriate cookie from the electronic device when the electronic device is to receive a service. This determination may be made, for example, when the server device first communicates with the electronic device, the server device sends a cookie to the electronic device, and the server device transmits the cookie to the electronic device. ! / ⁇ ⁇ Assuming that you keep the history information, it is done by judging whether or not it is appropriate against the history information sent from the electronic device.
  • the "password information comparison unit" is configured to compare the password information transmitted when the electronic device attempts to receive a service with the password information stored in the information acquisition registration unit. . This comparison is a comparison of whether or not the password information sent to the electronic device and the password information stored in the information acquisition / registration unit match each other.
  • the "process execution unit” is configured to execute a predetermined process based on the results of the respective units.
  • “to execute a predetermined process” means to execute a process for providing a service to an electronic device or to an electronic device according to the result of the comparison in each section.
  • the process of registering the device with the device identification information that is determined to be inconsistent with the comparison result is executed.
  • the comparison result in the device identification information comparison unit is the same, the determination result in the cookie determination unit is appropriate, and the comparison result in the password information comparison unit matches. If the result is a comparison result, the process execution unit executes a process for providing a service to the electronic device.
  • FIG. 2 is a diagram illustrating a column f of the system configuration from the hardware viewpoint of the server device of the service system. This figure is connected to CPU0201, main memory 0202, memory 0203, communication interface 0204, and I / O0205 nose wire 0206.
  • the memory stores device identification information 0207 sent in advance from the electronic device cover, history information 0208 for sending cookies to the electronic device, and password information 0209 sent also for the electronic device power. These pieces of information may be stored in an external storage device such as an HDD.
  • the main memory also sends device identification information stored in the memory etc. and the power of the electronic device, and compares it with the device identification information acquired by the server device using the interface, IZO, and stored in the memory etc. Judgment of cookies based on the history information of sending cookies and password information stored in memory etc. and electronic device power
  • the server program is compared with the password information acquired by using the bag, and a control program is executed to execute processing according to the result.
  • This program is, for example, the processing list table 0211 based on each comparison / judgment result. For example, if the result is ⁇ , the processing based on Progmml is executed, and if the result is t ⁇ ⁇ , Program2 is executed. It is a program that gives instructions to perform processing according to a table that associates results with instructions based on the results. Specifically, for example, the comparison result that the comparison result of the device identification information matches the result of A, the determination result of the cookie judgment result is appropriate, and the comparison result of the password information comparison unit matches.
  • Progmml associated with this is the one that executes processing to provide services to electronic devices. Then, when an information request is sent from the electronic device together with device identification information and password information, and execution of the control program is requested, the CPU executes processing in accordance with the control program command developed in the main memory. . Immediately First, compare the device identification information sent from the electronic device card with the device identification information stored in the memory, etc., and make a quick decision based on the history information of the cookies sent to the memory. Electronic device power The transmitted password information is compared with the password information stored in the memory. Further, processing corresponding to this comparison is executed based on the comparison result. For example, when the comparison result is “A”, the process based on Program is executed and output.
  • the acquisition performed by the information registration acquisition unit is performed via the communication interface, and the registered information is stored in the memory. And so on.
  • the processing execution based on the results of the comparison / judgment and processing execution unit performed by the device identification information comparison unit, cookie determination unit, and password information comparison unit when providing the service after registration is performed using a memory or the like. Is done.
  • FIG. 3 is a diagram illustrating the service system of the present embodiment.
  • FIG. 4 is a conceptual diagram illustrating an example of a procedure for performing comparison and determining and executing a process using a specific example.
  • the electronic device A holds “XYZ001” as device identification information.
  • the server device B sends a screen for prompting the user to input the password information to the electronic device A.
  • Device A inputs the password information “7890” set by the user. Then, the electronic device A sends the above device identification information “XYZ001” and password information “7890” to the server device.
  • the server device ⁇ acquires and registers the device identification information “XYZ001” and the password information “7890”, which are also sent by the electronic device.
  • cookie “a” which is information indicating that the electronic device has communicated with server device B, is sent from server device ⁇ to electronic device ⁇ .
  • the server device retains history information “b” indicating that the cookie “a” has been transmitted to the electronic device A.
  • the transmission of a screen that prompts the user to enter password information from server device B to electronic device A is, for example, when server device B determines that the user of the device already has a password. It may be configured to perform only.
  • the processing following the input of the password information is naturally not performed, and another processing (for example, processing for disabling service provision) is performed.
  • another processing for example, processing for disabling service provision
  • the device identification information “XYZ001” and the password information “7890” are registered and stored in the server device B, and “b” that is the transmission history information of the cookie “a” is held. That's true.
  • the server device compares the device identification information, the cookie, and the password information sent based on the information registered as described above.
  • An example of how to execute the process will be described.
  • the user of the electronic device A wants to receive a service for providing information “C” from the server device using the electronic device A, as shown in FIG.
  • its own device identification information “XYZ001”, cookie “a”, and password “7890” are transmitted to server device B.
  • the server apparatus B compares the transmitted device identification information “XYZ 001” with the registered and accumulated device identification information “ ⁇ 001”. In this example, we get a comparison result that they match.
  • the server device ⁇ ⁇ determines whether the transmitted cookie “a” is appropriate in light of the transmission history information “b”. In this example, the judgment result that the clip “a” obtained from the electronic device A is appropriate is obtained. Further, the server apparatus B compares the transmitted password “7890” with the registered and stored password “7890”. In this example, we obtain a comparison result that they are the same. As a result, the server apparatus B provides the service by transmitting “C” information related to the request to the electronic device A.
  • the server identification information and password information used for comparison with the device identification information and password information transmitted from the electronic device are the same as those sent to the server device by the server device.
  • the example has been described with reference to acquisition, registration, and accumulation. However, other embodiments are possible.
  • device identification information and password information used for a powerful comparison are configured to be registered in advance.
  • the apparatus may be configured to acquire, register, and store such information. For example, such information is mailed to the user power of the electronic device server administrator, and the server device administrator directly inputs the information to the server device based on this information. May be configured to acquire and register information
  • FIG. 4 is a diagram illustrating an example of a processing flow in the service system of the present embodiment.
  • the service system converts the information sent from the electronic device car to the electronic device information so that the service can be provided to the electronic device.
  • Register as Information sent by electronic devices includes device identification information and password information. However, it is not essential that all the information is included. For example, no word information may be included. If password information is included, the information is input and sent to the electronic device based on input prompts to the server device or the electronic device.
  • the service system also transmits the device identification information to the server device when the electronic device is about to receive service.
  • the service system sends the cookie to the electronic device server device when the electronic device tries to receive service.
  • the service system sends the password information to the server device as well as the power of the electronic device when the electronic device is to receive a service.
  • the processing in the device identification information sending step, the cookie sending step, and the password information sending step may be in any order, not necessarily in this order. In addition, it is not essential that processing is performed in all steps, and some of these steps may be missing. For example, since the password information is not sent from the electronic device when the electronic device tries to receive the service, the password information sending step may be omitted.
  • the device identification information comparison step S0405 the service system includes the device identification information sent from the electronic device when the electronic device is about to receive the service, and the electronic device. The device identification information registered and accumulated in the information registration step is compared.
  • the service system determines whether the electronic device has acquired an appropriate cookie when the electronic device attempts to receive service. This determination is made, for example, by comparing the cookie sent out by the electronic device with the history information held in the server device.
  • the service system includes the password information sent when the electronic device is about to receive service, and the electronic device information registration step. Compare the password information registered in.
  • the processing in the device identification information comparison step, the cookie determination step, and the password information comparison step does not necessarily have to be in this order. In addition, it is not essential that processing is performed in all steps, and some of these steps may be missing. For example, since the password information is not sent from the electronic device when the electronic device tries to receive the service, the password information comparison step may be omitted.
  • the service system includes the device identification information comparison step, the cookie determination step, and the password
  • the result in the information comparison step is acquired, and the process defined by the result is executed.
  • the comparison result in the device identification information comparison step is the same as the comparison result
  • the determination result in the cookie determination step is the determination result is appropriate
  • the comparison result in the password information comparison step is the same. If the result is a comparison result, an encouraging result is obtained, and processing for providing a service to the electronic device is executed based on the result.
  • This process is, for example, a process list table based on the comparison result at each step in the server device of the service system.
  • the result is A
  • the process based on Programl is executed
  • the result is B
  • the result is a text that associates the result with the command based on it.
  • the process according to Progmml which is a process based on the result, is performed, so that Progmml accumulated in the accumulation memory is expanded in the execution memory. After that, the CPU will execute processing according to the program.
  • the service system of the present embodiment uses device identification information, cookies, and password information unique to the electronic device, and these information sent by the electronic device and the information registered and stored in the server device, etc. By comparing and determining and executing a predetermined process based on the result, it is possible to respond to these patterns according to various patterns when the electronic device or the user changes, and to meet the user's needs. It is possible to provide a mechanism for the server device to provide (or do not do!) The service according to each case by making an appropriate decision while supporting the above.
  • the service system of this embodiment indicates that the comparison result of the device identification information matches, the determination result of the cookie is appropriate, and the comparison result of the password information comparison unit does not match. If the result is a comparison result, processing for disabling the provision of services to the electronic device is executed. When the electronic device itself is genuine, unauthorized access by someone other than the genuine user is prevented. It is assumed that this can be handled.
  • FIG. 5 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment.
  • the “service system” 0500 of the present embodiment includes an “electronic device” 0510 and a “server device” 0520.
  • the electronic devices are “device identification information holding unit” 0511, “tack key holding unit” 0512, “password information input unit” 0513, “control unit” 0514, and “electronic device communication unit”. And have.
  • the “server device” includes “server device communication unit” 0521, “information acquisition registration unit” 0522, “device identification information comparison unit” 0523, “cookie determination unit” 052 4, and “password information comparison unit” ”0525 and“ processing execution unit ”0526.
  • the “process execution unit” of the “server device” includes a comparison result that the comparison result in the device identification information comparison unit matches, a determination result that the determination result in the cookie determination unit is appropriate, and password information If the comparison result in the comparison unit does not match, it is configured to execute a process for disabling the provision of service to the electronic device.
  • the process execution unit is configured to execute a process other than the above, which is determined by V based on the results of the respective units.
  • Such a configuration includes, for example, when an electronic device has been stolen, and a person other than the genuine user impersonates the genuine user of the electronic device and performs unauthorized access. Even if you want to receive information services (for example, shopping at a shopping site that has been registered in advance so that you can drop a bow from the user's bank account by entering a password! It is possible to prevent this. In other words, in this case, since the electronic device itself is authentic, when the unauthorized access person operates the electronic device to access the server device, the comparison result in the device identification information comparison unit of the server device matches. As a result, the result of the determination by the cookie determination unit is also determined to be appropriate.
  • the process execution unit is configured to execute a process for disabling service provision. Therefore, an unauthorized accessor impersonates a genuine user and relates to the personal information of the user. It is possible to prevent the situation of receiving service provision.
  • Processing for disabling service provision corresponds to, for example, processing for locking the function of a device so that subsequent electronic device operations cannot be performed.
  • a genuine user in order to release the lock, for example, only a genuine user can know the administrator of the server device separately. By requiring an application using information (such as a genuine nose word), it is guaranteed that unauthorized processing by an unauthorized accessor will be prevented.
  • locking and unlocking if incorrect password information is entered a certain number of times, the iZo function of the electronic device is partially stopped (for example, input using a keyboard or mouse is not possible) In order to cancel this, it is conceivable that a signal that only the genuine user and the administrator of the server device can know must be input to the electronic device.
  • FIG. 6 is a diagram illustrating an example of a processing flow in the service system of the present embodiment.
  • the service system performs a comparison result that the comparison result in the device identification information comparison step S0605 matches, the cookie determination step. Processing for disabling the provision of services to electronic devices when the judgment result in S0606 is appropriate and the comparison result in the above-mentioned Nosword information comparison step S0607 is negative. Execute. Note that the comparison result in the device identification information comparison step does not match, the comparison result in the cookie determination step is incorrect, or the comparison result in the password information comparison step matches. If so, in the predetermined process execution step S0609, the service system executes a process other than the above determined based on the result in each step.
  • the service system has a comparison result that the comparison result of the device identification information matches. If the result of the cookie judgment is appropriate and the result of the password information comparison is the same, the process for providing the service to the electronic device is executed. It is assumed to be used in the state of
  • FIG. 7 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment.
  • the “service system” 0700 of this embodiment includes an “electronic device” 0710 and a “server device” 0720.
  • the electronic devices are “device identification information holding unit” 0711, “tack key holding unit” 0712, “password information input unit” 0713, “control unit” 0714, and “electronic device communication unit” 0715 And have.
  • the “server device” includes “server device communication unit” 0721, “information acquisition registration unit” 0722, “device identification information comparison unit” 0723, “cookie judgment unit” 072 4, and “password information comparison unit” 0725 and “Processing Execution Unit” 0726.
  • the “process execution unit” of the “server device” includes a comparison result that the comparison result in the device identification information comparison unit matches, a determination result that the determination result in the cookie determination unit is appropriate, and a password information comparison unit.
  • the comparison result is that the comparison results match
  • the processing for providing the service to the electronic device is executed.
  • the comparison result in the device identification information comparison unit does not match, the determination result in the cookie determination unit is inappropriate, or the comparison result in the password information comparison unit does not match
  • the process execution unit may be configured to execute a process other than the above, which is determined based on the result of each unit.
  • Normal status in this service system means a genuine electronic device that is used by a genuine user of the server device using device identification information, cookies, and password information of the electronic device. This means a state where services are provided to the electronic device. Specific services provided include online shopping services using automatic payments by credit cards, distribution of movies and music, etc.
  • services such as communication services, pay broadcasting and pay cable broadcasting services, services for providing life information such as weather forecasts and shopping information, etc., for example, fault diagnosis of home appliances in the home Receives information, identifies the content of failure according to this and supports repairs), and services that properly control home appliances in the home (for example, information on the temperature setting of the cooler) Services that provide the necessary advice), services that provide educational programs (for example, services that provide English lessons), medical services (for example, services that provide necessary advice through home health examinations), electronic voting Services (for example, send candidates for popularity ranking voting of songs and accept answer voting -Bis), the electronic equipment of the program version-up service, electronic mail service, telephone service of video phone or the like, or provide services for the database, (e.g., services to be used by the ASP) can be considered like.
  • FIG. 8 is a diagram illustrating an example of a processing flow in the service system of the present embodiment.
  • the service system compares the comparison result in the device identification information comparison step S0805 with the cookie determination step S0806. If the result of the determination is that the determination result in step S0807 is correct and the comparison result in the password information comparison step S0807 matches, a process for providing a service to the electronic device is executed. If the comparison result in the device identification information comparison step does not match, the determination result in the cookie determination step is incorrect, or the comparison result in the password information comparison step does not match. In this case, in the predetermined process execution step S0809, the service system executes a process other than the above determined based on the result in each step.
  • the server device can also receive services.
  • the service system when the comparison result of the device identification information does not match and the determination result of the cookie is an inappropriate determination result, the information on the electronic device is transmitted to the server device. It is assumed that it will be possible to handle cases such as new purchases of electronic equipment. At that time, in order to distinguish from the processing in the embodiment that assumes the later-described transfer, for example, the presence / absence of nosword information is determined, and if no nosword information is present, processing that is effective is executed. .
  • FIG. 9 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment.
  • the “service system” 0900 of the present embodiment includes an “electronic device” 0910 and a “server device” 0920.
  • the electronic devices are “device identification information holding unit” 0911, “tack key holding unit” 0912, “password information input unit” 0913, “control unit” 0914, and “electronic device communication unit”. And have.
  • the “server device” includes “server device communication unit” 0921, “information acquisition registration unit” 0922, “device identification information comparison unit” 0923, “cookie determination unit” 092 4, and “password information comparison unit” 0925 and a “processing execution unit” 0926.
  • the "process execution unit" of the “server device” is a result of comparison with V that does not match the comparison result in the device identification information comparison unit, and a determination result that the determination result in the cookie determination unit is inappropriate. In some cases, it is configured to execute processing for registering electronic device information in the information acquisition and registration unit of the server device.
  • “Registration process” refers to a process for prompting an electronic device to register. Specifically, for example, a format for registration is input to the electronic device, and a user password is input to the format. This includes processing such as sending a message that prompts the server to send a reply.
  • the information acquisition / registration unit of the server device can acquire them and register them as electronic device information in units of electronic devices.
  • the server device sends a cookie to the electronic device.
  • the transmission history information related to the cookie is retained.
  • the server device can provide a service related to the above processing execution.
  • the provision of services after registration is completed is performed in accordance with the description in the other embodiments. If the comparison result at the device identification information comparison unit is the same as the comparison result, or the determination result at the cookie determination unit is a determination result as appropriate, the process execution unit returns the result at each unit. It is configured to execute processing other than the above determined based on the above.
  • the configuration to be used is based on the premise that all the device identification information registered once by the server device is kept without being deleted. For this reason, since the server device is a comparison result that the comparison result in the device identification information comparison unit does not match, the electronic device has never been registered in the server device, that is, completely new to the server device. Therefore, in this case, it is possible to execute a process for prompting registration, which is a process. In other words, in the context of social significance, the provision of powerful services when a user first accesses a service using personal information using a newly purchased electronic device. It is necessary to register the personal information necessary for the device and the device identification information, and it can be said that the processing in this example is a process for that purpose.
  • the comparison result in the device identification information comparison unit does not match, and even if the determination result in the cookie determination unit is inappropriate.
  • a process different from the process for registering the electronic device information in the information acquisition / registration unit of the server device may be performed. Therefore, in order to accurately distinguish between such cases, the server device of this embodiment is a comparison result that the comparison result in the device identification information comparison unit matches, or the determination result in the cookie determination unit is appropriate. It is desirable to have a means to determine the presence or absence of password information.
  • the process execution unit will not register the electronic device information for the server device information acquisition for the first time. Processing for registering in the recording unit is executed.
  • the result of the determination regarding the presence or absence of password information is that there is password information, and if the comparison result in the password information comparison unit matches, the password information that matches the comparison result is displayed.
  • the device identification information included in the included electronic device information is replaced with the device identification information for which the comparison result is deemed unmatched, and processing is performed for registration. If the judgment result is “password information exists”, and if the comparison result in the password information comparison unit does not match, the processing is different from the above. Moyo.
  • the determination of the presence / absence of password information in these cases is specifically, for example, when the comparison result regarding the device identification information does not match and the determination result regarding the cookie is a determination result that is inappropriate
  • the server device sends “new registration or transfer” to the electronic device. T ⁇ ⁇ No question information is obtained by obtaining an answer that selects “new registration”. Can be judged
  • FIG. 10 is a diagram showing an example of the flow of processing in the service system of the present embodiment.
  • the service system compares the result of the comparison in the device identification information comparison step S1005 with the result of the cookie determination.
  • the determination result in step S1006 is a determination result that is inappropriate
  • the processing for registering the information of the electronic device in the server device is executed.
  • the comparison result in the device identification information comparison step is the same as the comparison result or the determination result in the cookie determination step. If the result is a determination result that the result is appropriate, in a predetermined process execution step S 1008, the service system executes a process other than the above determined based on the result in each step.
  • the password information comparison is further performed. If the comparison result in the step matches the comparison result, a process different from the process for registering the electronic device information in the information acquisition / registration unit of the server device may be performed. In order to accurately distinguish between cases, the server device of the present embodiment determines that the comparison result in the device identification information comparison step does not match V and the determination result in the cookie determination step is inappropriate. If this is the case, it is desirable to perform processing in the step of determining whether or not there is password information.
  • the comparison result in the device identification information comparison step does not match and the determination result in the cookie determination step is an inappropriate result.
  • the processing for registering the electronic device information in the server device is executed.
  • the process further proceeds to the password information comparison step, where the comparison result matches.
  • the device identification information included in the electronic device information including the password information that matches the comparison result is the device identification information that the comparison result does not match!
  • the user of the electronic device can set a new password in a form prompted by the server device, and the server device can also receive the service.
  • the service system of the present embodiment is a comparison result that the comparison result of the device identification information does not match, the determination result of the cookie determination is inappropriate, and the comparison result of the password information match.
  • the device identification information included in the electronic device information that includes the password information that matches the comparison result is replaced with the device identification information that the comparison result does not match! It is assumed to respond to the case of electronic device transfer or failure.
  • the replacement here is to replace the device identification information of the old device (device before transfer) associated with the personal information with that of the new device (device after transfer).
  • FIG. 11 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment.
  • the “service system” 1100 of the present embodiment includes an “electronic device” 1110 and a “server device” 1120.
  • the electronic devices are “device identification information holding unit” 1111, “tack key holding unit” 1112, “password information input unit” 1113, “control unit” 1114, and “electronic device communication unit” 1115.
  • the “server device” includes a “server device communication unit” 1121, an “information acquisition registration unit” 1122, a “device identification information comparison unit” 1123, a “cookie determination unit” 112 4, and a “password information comparison unit”. 1125 and a “processing execution unit” 1126.
  • the "process execution unit" of the "server device” includes a comparison result that the comparison result in the device identification information comparison unit does not match, a determination result that the determination result in the cookie determination unit is inappropriate, and a pass If the comparison result in the device information comparison unit matches, the comparison result does not match the device identification information included in the electronic device information including the password information that matches the comparison result. It is configured to execute a process for registration by replacing the device identification information. In addition, the comparison result that the comparison result in the device identification information comparison unit matches, the determination result in the cookie determination unit is appropriate, or the password information When the comparison result is that the comparison results in the comparison unit do not match, the process execution unit is configured to execute a process other than the above determined based on the result in each unit.
  • the service system of this embodiment is configured to execute a process for realizing a transfer when the password sent from the new device matches the password used on the old device. The In other words, in this case, if the password information that was previously used is sent from the new device out of the information sent from the new device card, the comparison result in the server device will show that the device identification information is new.
  • the server device can recognize that the comparison result of the word information is a user who has already been registered and who has changed the device. Therefore, the server device can break the association between the device identification information of the old device and the password information and newly register the password information in association with the device identification information of the new device. Specifically, the device identification information registered in association with the password information (the device identification information of the old device) is replaced with the device identification information (the device identification information of the new device) sent this time. sign up. As a result, the user can use the password information that was used on the old device as it is on the new device to receive services, and a system that suits the user's convenience can be realized.
  • the service system configuration of the present embodiment is such that, for example, when an electronic device fails so that it cannot be repaired, the user continues to replace the old device (failed device) with a new device.
  • the password information can be used on the new device (the device after replacement) as it is, and the service can be provided.
  • FIG. 12 is a diagram showing an example of the processing flow in the service system of the present embodiment.
  • the service system executes processes other than those described above based on the results in the respective steps. [0117]
  • the remaining processing flow is the same as the processing flow in any one of the service systems according to the first to fourth embodiments, and thus the description thereof is omitted.
  • the service system executes the process when the comparison result in the device identification information comparison unit is the same and the determination result in the cookie determination unit is an inappropriate determination result.
  • the department performs processing to urge the transmission of information to be registered to the server device so that services can be provided to electronic devices. Is assumed.
  • FIG. 13 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment.
  • the “service system” 1300 of the present embodiment includes an “electronic device” 1310 and a “server device” 1320.
  • the electronic devices are “device identification information holding unit” 1311, “tack key holding unit” 1312, “password information input unit” 1313, “control unit” 1314, and “electronic device communication unit” 1315.
  • the “server device” includes a “server device communication unit” 1321, an “information acquisition / registration unit” 1322, a “device identification information comparison unit” 1323, a “cookie judgment unit” 132 4, and a “password information comparison unit”. 1325 and a “processing execution unit” 1326.
  • the "process execution unit" of the "server device” is a comparison result that the comparison result in the device identification information comparison unit matches, and a determination result in the cookie determination unit is a determination result that is inappropriate Is configured to execute processing for prompting transmission of information to be registered to the server device so that a service can be provided to the electronic device. If the comparison result of the device identification information comparison unit does not match, or the determination result of the cookie determination unit is correct, the process execution unit is Based on the results of It can be configured to execute other processes than those described above.
  • Such a configuration makes it possible to cope with a case where, for example, an electronic device is rented and the password information of the same electronic device is re-registered and reused every time the user changes.
  • a certain user uses an electronic device by rental, and his / her password information is registered in association with the device identification information of the electronic device.
  • the rental period ends when the user withdraws, etc., and the electronic device is returned to the owner (server device administrator, etc.).
  • the cookies remaining on the electronic device are deleted.
  • the password information associated with the device identification information is discarded.
  • the electronic device is then rented to a new user.
  • the processing execution unit of the server device prompts transmission of information to be registered to the server device so that the service can be provided to the electronic device. Users will be able to receive services using second-hand electronic devices.
  • FIG. 14 is a diagram showing an example of the flow of processing in the service system of the present embodiment.
  • the service system matches the comparison result in the device identification information comparison step S1405. If the comparison result and the determination result in the cookie determination step S 1406 are inappropriate, the information of information to be registered in the server device so that the service can be provided to the electronic device is obtained. Execute processing that prompts transmission. It should be noted that the comparison result in the device identification information comparison step does not match or the judgment result in the cookie judgment step is appropriate. If the result is the determination result, in the predetermined processing execution step S1408, the service system executes processing other than the above determined based on the result in each step.
  • FIG. 15 shows an example of predetermined processing execution contents according to the results in the device identification information comparison step, the cookie determination step, and the password information comparison step for reference. For example, if the comparison result in the device information comparison step S1505 is the same as the comparison result and the determination result in the cookie determination step S1506 is the appropriate determination result, the comparison result in the nosword information comparison step S1507 does not match. If the result is a comparison result with the password information comparison step, the process execution S 1508 is performed to disable the provision of service to the electronic device. Processing execution S1509 is performed to provide services to electronic devices.
  • the server is configured so that the service can be provided to the electronic device. Processing execution S1510 is performed to prompt transmission of information to be registered to the apparatus. On the other hand, if the comparison result in the device identification information comparison step does not match, if the determination result in the cookie determination step S 1511 is an inappropriate determination result, the If it is determined in step S1512 that there is no password information, a process for registering electronic device information in the server device is executed. S1513 is performed to determine whether there is password information.
  • processing execution S1515 is performed to replace the identification information with the device identification information that the comparison result does not match!
  • the user of the electronic device can use the used electronic device. It becomes possible to receive the provision of services using.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Computer And Data Communications (AREA)

Abstract

There is provided a mechanism for making an appropriate judgment by a server device so as to provide a service appropriate for each of the cases based on various patterns when an electronic device or a user is exchanged. A service system includes an electronic device and a server device. The service system includes: means for the server device to register information sent from the electronic device in electronic device unit as electronic device information; means for comparing a device identifier sent by the electronic device when receiving a service to a device identifier accumulated in the system; means for judging whether an appropriate cookie has been acquired from the electronic device when the electronic device intends to receive a service; means for comparing password information sent by the electronic device when it intends to receive a service to password information accumulated in the system; and means for executing a predetermined processing according to these results. An operation method of the server device in the system is also provided.

Description

明 細 書  Specification
サービスシステム及び同システムのサーバ装置の動作方法  Service system and operation method of server device of the system
技術分野  Technical field
[0001] 本発明は、クッキー及びパスワードを利用して定められた処理を実行するためのサ 一ビスシステムであって電子機器と電子機器にサービスを提供するサーバ装置とか らなるサービスシステムと、その方法に関する。  [0001] The present invention is a service system for executing a predetermined process using a cookie and a password, the service system including an electronic device and a server device that provides the service to the electronic device, and Regarding the method.
背景技術  Background art
[0002] 現在、電子機器と当該電子機器にサービスを提供するサーバ装置とからなるサー ビスシステムが広く普及し、生活情報の提供、オンラインショッピングによる商品の販 売など様々な種類のサービスが提供されて!ヽる。  [0002] Currently, a service system including an electronic device and a server device that provides the service to the electronic device is widely spread, and various types of services are provided, such as providing life information and selling products through online shopping. Talk!
[0003] 力かるサービスの提供に際しては、サーバ装置がその電子機器を認識でき、かつ その電子機器が真正なユーザによって使用されていることを認識できることが必要と なる。このための仕組みとして、一般にクッキーとパスワードが利用されている。  [0003] In providing a powerful service, it is necessary that the server apparatus can recognize the electronic device and can recognize that the electronic device is being used by a genuine user. Generally, cookies and passwords are used as a mechanism for this purpose.
[0004] クッキーは、一般に、 Webサーバから送信され、 Webブラウザが動作して 、る端末 のハードディスク上に保存される情報ファイルをいうが、当該ファイル内に記録される 内容として例えば電子機器を識別するための機器 IDが含まれ、また、サーバ装置側 にも当該機器 ID等で識別される電子機器にクッキーを送付済みであることが記録さ れるので、力かる仕組みによりサーバ装置が電子機器を識別することが可能となる。 また、パスワードは、個人情報の漏洩を防止するために用いられるもので、一般に当 該電子機器のユーザのみが知っている番号列、符号列等が用いられる。これにより サーバ装置は、電子機器及びそのユーザを識別可能となり、同一のユーザが同一の 電子機器を用いてサーバ装置力ものサービスの提供を受けることが可能となる。  [0004] Generally, a cookie is an information file that is transmitted from a Web server and stored on the hard disk of a terminal where the Web browser operates and identifies an electronic device as the content recorded in the file. Device ID is included, and the server device records that the cookie has already been sent to the electronic device identified by the device ID. It becomes possible to identify. The password is used to prevent leakage of personal information, and generally a number string, code string, etc. known only to the user of the electronic device are used. As a result, the server device can identify the electronic device and its user, and the same user can receive services provided by the server device using the same electronic device.
[0005] 力かる技術については、例えば、特許文献 1においては、クッキー及びパスワードを 利用した認証を行いつつ電子商取引を行うためのシステムおよび方法が開示されて いる。  [0005] For example, Patent Document 1 discloses a system and method for conducting electronic commerce while performing authentication using a cookie and a password.
特許文献 1:特表 2003 - 508838号公報  Patent Document 1: Japanese Translation of Special Publication 2003-508838
発明の開示 発明が解決しょうとする課題 Disclosure of the invention Problems to be solved by the invention
[0006] ところで、電子機器は、真正のユーザ以外の第三者力これを使用して不正にサー バ装置にアクセスしょうとしたり、故障して修理不能な状態になったり、廃棄処分にさ れたり、新たな機器への乗換え(買換え)が行われたりする場合がある。この場合は、 同一のユーザが同一の電子機器を用いてサーバ装置からのサービスの提供を受け るという形態に変容をきたすこととなる。例えば、第三者による不正なアクセスの場合 は、電子機器は同一である力 そのユーザが異なることになる。この場合にその不正 アクセス者がその電子機器を使ってサーバ装置力 個人情報に関わるサービスを受 けようとすると、当該電子機器がクッキーを正常に保存しているので、サーバ装置は 当該電子機器自体はこれを真正な機器として認識する。しかし、ユーザに関しては、 ノ スワードが設定され、真正なノ スワードを挿入しない限り個人情報にアクセスでき な 、ようになって!/、るので、不正アクセス者が誤ったパスワードを入力してもサーバ装 置は真正なユーザからのアクセスではな 、と認識し、サービスの提供を行わな 、よう な処理をする。これにより、個人情報が漏洩するのを防ぐ仕組みになっている。そして 、例えば、誤ったパスワードを一定回数入力すると当該電子機器がロックされ、以後 ロック解除の措置をとらない限り当該電子機器を使用できなくなるという方法が採られ ることもある。また、新たな機器への乗換えの場合は、ユーザは同一だが、電子機器 が替わることになる。そこで、当然その新しい電子機器は初めてサーバ装置と通信を 行うことになるので、当該電子機器は新たにクッキーを取得することになる。そして、 電子機器と個人情報の関連付けも切断されることから、当該ユーザは当該電子機器 につ 、ての新たなユーザとして認識され、新たなパスワードが発行されることとなる。 つまり、この場合にはそのユーザが以前に使用して 、たパスワードは引き継がれるこ となぐ全く新たなユーザとしてサービスの提供を受けることとなる。  [0006] By the way, an electronic device is used by a third party other than a genuine user to illegally try to access a server device, becomes faulty and cannot be repaired, or is disposed of. Or transfer to a new device (replacement). In this case, the same user will receive a service from the server device using the same electronic device. For example, in the case of unauthorized access by a third party, the power of electronic devices is the same. In this case, if the unauthorized accessor attempts to receive a service related to personal information using the electronic device, the server device stores the cookie normally. Recognizes this as a genuine device. However, for the user, a password is set, and personal information cannot be accessed unless a genuine password is inserted! /, So even if an unauthorized person enters an incorrect password, the server The device recognizes that access is not from a genuine user, and performs the following processing without providing services. As a result, the personal information is prevented from leaking. Then, for example, a method may be employed in which an electronic device is locked when an incorrect password is entered a certain number of times, and the electronic device can no longer be used unless unlocking measures are taken. When transferring to a new device, the user is the same, but the electronic device is changed. Therefore, since the new electronic device communicates with the server device for the first time, the electronic device acquires a new cookie. Then, since the association between the electronic device and the personal information is also disconnected, the user is recognized as a new user for the electronic device and a new password is issued. In other words, in this case, the service is provided as a completely new user that the user has previously used and the password is taken over.
[0007] このように電子機器又はそのユーザが替わる場合には様々なパターンがある力 現 状では、これらのパターンにきめ細力べ対応し、ユーザのニーズに対応しつつサーバ 装置が適切な判断によりそれぞれの場合にふさわしいサービスの提供を行う(あるい は行わない)ための仕組みが確立されていない。特に、新たな機器への乗換えの場 合に、ユーザは同一であるにもかかわらず、ユーザが以前に使用していたノ スワード は引き継がれることなぐ全く新たなユーザとしてサービスの提供を受ける必要がある のは、ユーザにとって不便である。 [0007] In this way, when the electronic device or its user is changed, there are various patterns, and the server apparatus responds carefully to these patterns, and the server device makes an appropriate decision. Therefore, a mechanism for providing (or not) providing services suitable for each case has not been established. In particular, when transferring to a new device, the user is using the same It is inconvenient for the user to need to be provided with a service as a completely new user without being taken over.
[0008] そこで、本発明が解決すべき課題は、電子機器又はそのユーザが替わる場合の様 々なパターンに応じて、これらのパターンにきめ細力べ対応し、ユーザのニーズに対 応しつつサーバ装置が適切な判断によりそれぞれの場合にふさわしいサービスの提 供を行う(あるいは行わない)ための仕組みを提供することにある。特に、新たな機器 への乗換えの場合に、ユーザが全く新たなユーザとしてサービスの提供を受ける必 要があるというユーザにとっての不便を解消する点にある。  [0008] Therefore, the problem to be solved by the present invention is that, according to various patterns when the electronic device or its user is changed, these patterns are meticulously dealt with while responding to the user's needs. The purpose is to provide a mechanism for the server device to (or not) provide appropriate services in each case based on appropriate judgment. In particular, in the case of switching to a new device, the inconvenience for the user that the user needs to be provided with a service as a completely new user is eliminated.
課題を解決するための手段  Means for solving the problem
[0009] 以上の課題を解決するため、本発明は、電子機器と、前記電子機器にサービスを 提供するサーバ装置とからなるサービスシステムであって、電子機器は、電子機器固 有の識別情報である機器識別情報を保持する機器識別情報保持部と、サーバ装置 と過去に通信したことがあるかを示す情報であるクッキーを保持するクッキー保持部と 、サーバ装置に送出するパスワード情報を入力するためのパスワード情報入力部と、 制御部と、サーバ装置と情報交換をするための電子機器通信部とを有し、サーバ装 置は、電子機器と情報交換するためのサーバ装置通信部と、電子機器に対してサー ビスを提供可能となるように電子機器カゝら送られる情報を電子機器単位で電子機器 情報として登録する情報取得登録部と、電子機器がサービスを受けようとする際に送 出する機器識別情報と、情報蓄積部に蓄積されている機器識別情報とを比較する機 器識別情報比較部と、電子機器がサービスを受けようとする際に、電子機器カゝら適正 なクッキーを取得した力判断するクッキー判断部と、電子機器がサービスを受けようと する際に送出するパスワード情報と、情報蓄積部に蓄積されているパスワード情報と を比較するパスワード情報比較部と、前記各部での結果に基づ 、て定められた処理 を実行する処理実行部とを有するサービスシステム及び同システムのサーバ装置の 動作方法を提供する。 In order to solve the above problems, the present invention is a service system including an electronic device and a server device that provides a service to the electronic device, and the electronic device is identification information specific to the electronic device. To input a device identification information holding unit that holds certain device identification information, a cookie holding unit that holds a cookie that is information indicating whether communication has been made with the server device in the past, and password information sent to the server device. A password information input unit, a control unit, and an electronic device communication unit for exchanging information with the server device. The server device includes a server device communication unit for exchanging information with the electronic device, and an electronic device. An information acquisition and registration unit that registers information sent from the electronic device card as electronic device information for each electronic device so that the service can be provided, and the electronic device receives the service. A device identification information comparison unit that compares the device identification information sent when trying to do so with the device identification information stored in the information storage unit, and the electronic device Password information that compares the password information that is sent when an electronic device tries to receive a service with the password information that is stored in the information storage unit. Provided is a service system having a comparison unit and a process execution unit that executes a predetermined process based on the result of each unit, and an operation method of a server device of the system.
発明の効果  The invention's effect
[0010] 本発明に係るサービスシステムは、上述のように、電子機器固有の機器識別情報、 クッキー及びパスワード情報を利用し、電子機器力 送られるこれらの情報とサーバ 装置に登録'保存されているこれらの情報等を比較'判断し、その結果に基づいて所 定の処理を実行するものであるので、電子機器又はそのユーザが替わる場合の様々 なパターンに応じて、これらのパターンにきめ細力べ対応し、ユーザのニーズに対応 しつつサーバ装置が適切な判断によりそれぞれの場合にふさわしいサービスの提供 を行う(あるいは行わない)ための仕組みを提供することが可能となる。特に、新たな 機器への乗換えの場合に、ユーザが全く新たなユーザとしてサービスの提供を受け る必要があるというユーザにとっての不便を解消することも可能となる。 [0010] As described above, the service system according to the present invention uses the device identification information, the cookie, and the password information unique to the electronic device, and these information and the server sent by the electronic device. Since it is determined to 'comparison these stored information etc.' registered in the device and execute a predetermined process based on the result, it depends on various patterns when the electronic device or its user changes. It is possible to provide a mechanism for responding to these patterns and providing (or not) providing appropriate services for each server by making appropriate decisions while responding to user needs. It becomes. In particular, when switching to a new device, it is possible to eliminate the inconvenience for the user that the user needs to be provided with a service as a completely new user.
図面の簡単な説明  Brief Description of Drawings
[0011] [図 1]実施例 1のサービスシステムの機能ブロックの一例を示す図  FIG. 1 is a diagram illustrating an example of functional blocks of a service system according to a first embodiment.
[図 2]実施例 1のサービスシステムの概念の一例を示す図  FIG. 2 is a diagram showing an example of the concept of the service system of the first embodiment.
[図 3]実施例 1のサービスシステムにおける処理実行要領の一例を示す図  FIG. 3 is a diagram illustrating an example of a process execution procedure in the service system according to the first embodiment.
[図 4]実施例 1のサービスシステムにおける処理の流れの一例を示す図  FIG. 4 is a diagram illustrating an example of a processing flow in the service system of the first embodiment.
[図 5]実施例 2のサービスシステムの機能ブロックの一例を示す図  FIG. 5 is a diagram illustrating an example of functional blocks of the service system according to the second embodiment.
[図 6]実施例 2のサービスシステムにおける処理の流れの一例を示す図  FIG. 6 is a diagram showing an example of a processing flow in the service system of the second embodiment.
[図 7]実施例 3のサービスシステムの機能ブロックの一例を示す図  FIG. 7 is a diagram illustrating an example of functional blocks of the service system according to the third embodiment.
[図 8]実施例 3のサービスシステムにおける処理の流れの一例を示す図  FIG. 8 is a diagram showing an example of a processing flow in the service system of the third embodiment.
[図 9]実施例 4のサービスシステムの機能ブロックの一例を示す図  FIG. 9 is a diagram illustrating an example of functional blocks of the service system according to the fourth embodiment.
[図 10]実施例 4のサービスシステムにおける処理の流れの一例を示す図  FIG. 10 is a diagram illustrating an example of a processing flow in the service system of the fourth embodiment.
[図 11]実施例 5のサービスシステムの機能ブロックの一例を示す図  FIG. 11 is a diagram illustrating an example of functional blocks of the service system according to the fifth embodiment.
[図 12]実施例 5のサービスシステムにおける処理の流れの一例を示す図  FIG. 12 is a diagram illustrating an example of a process flow in the service system of the fifth embodiment.
[図 13]実施例 6のサービスシステムの機能ブロックの一例を示す図  FIG. 13 is a diagram illustrating an example of functional blocks of the service system according to the sixth embodiment.
[図 14]実施例 6のサービスシステムにおける処理の流れの一例を示す図  FIG. 14 is a diagram showing an example of a processing flow in the service system of the sixth embodiment.
[図 15]実施例 6のサービスシステムにおける処理の流れの一例を示す図  FIG. 15 is a diagram illustrating an example of a process flow in the service system of the sixth embodiment.
符号の説明  Explanation of symbols
[0012] 0100 サービスシステム [0012] 0100 Service system
0110 電子機器  0110 Electronic equipment
0111 機器識別情報保持部  0111 Device identification information holding unit
0112 クッキー保持部 0113 ノ スワード情報入力部 0112 Cookie holder 0113 Nossword information input section
0114 制御部  0114 Control unit
0115 電子機器通信部  0115 Electronic equipment communication
0120 サーバ装置  0120 Server device
0121 サーバ装置通信部  0121 Server communication unit
0122 情報取得登録部  0122 Information acquisition and registration unit
0123 機器識別情報比較部  0123 Device identification information comparison unit
0124 クッキー判断部  0124 Cookie Judgment Department
0125 パスワード情報比較部  0125 Password information comparison part
0126 処理実行部  0126 Process execution unit
発明を実施するための最良の形態  BEST MODE FOR CARRYING OUT THE INVENTION
[0013] 以下に、本発明の実施例を説明する。実施例と特許請求の範囲の請求項の相互 の関係は以下のとおりである。  Hereinafter, examples of the present invention will be described. The relationship between the embodiment and the claims of the claims is as follows.
[0014] 実施例 1:主に請求項 1、請求項 7などに関する。 [0014] Example 1: Mainly related to claim 1, claim 7, and the like.
[0015] 実施例 2 :主に請求項 2、請求項 8などに関する。 [0015] Example 2: Mainly related to claim 2, claim 8, and the like.
[0016] 実施例 3:主に請求項 3、請求項 9などに関する。 [0016] Embodiment 3: Mainly relates to claim 3, claim 9, and the like.
[0017] 実施例 4 :主に請求項 4、請求項 10などに関する。 [0017] Example 4: Mainly related to claim 4, claim 10, and the like.
[0018] 実施例 5 :主に請求項 5、請求項 11などに関する。 Example 5: Mainly related to claim 5, claim 11, and the like.
[0019] 実施例 6:主に請求項 6、請求項 12などに関する。 [0019] Example 6: Mainly related to claim 6, claim 12, and the like.
[0020] なお、本発明はこれら実施例に何ら限定されるものではなぐその要旨を逸脱しな い範囲において、種々なる態様で実施しうる。  [0020] It should be noted that the present invention is not limited to these examples and can be carried out in various modes without departing from the gist thereof.
実施例 1  Example 1
[0021] <概要 > [0021] <Overview>
[0022] 本実施例のサービスシステムは、電子機器と電子機器にサービスを提供するサー バ装置とからなるサービスシステムであって、機器識別情報、クッキー及びパスワード を利用して定められた処理を実行するためのものである。  [0022] The service system according to the present embodiment is a service system including an electronic device and a server device that provides the service to the electronic device, and executes a predetermined process using the device identification information, the cookie, and the password. Is to do.
[0023] く構成〉  [0023] Configuration>
[0024] 図 1は、本実施例のサービスシステムの機能ブロックの一例を示す図である。本件 発明の構成要素である各部は、ハードウェア、ソフトウェア、ハードウェアとソフトウェア の両者、のいずれかによつて構成される。たとえば、これらを実現する一例として、コ ンピュータを利用する場合には、 CPU,メモリ、バス、インターフェイス、周辺機器など 力 構成されるハードウェアと、これらのハードウェア上にて実行可能なソフトウェアを 挙げることができる。 FIG. 1 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment. This case Each part which is a component of the invention is configured by hardware, software, or both hardware and software. For example, as an example for realizing these, when using a computer, hardware configured such as CPU, memory, bus, interface, peripheral device, and software executable on these hardware are listed. be able to.
[0025] 具体的には、メモリ上に展開されたプログラムを順次実行することで、メモリ上のデ ータや、インターフェイスを介して入力されるデータの加工、蓄積、出力などにより各 部の機能が実現される。データの加工、蓄積、出力などにより各部の機能が実現され る。  [0025] Specifically, by executing the program expanded on the memory sequentially, the functions of each part can be performed by processing, storing, outputting, etc., the data on the memory and the data input via the interface. Is realized. Functions of each part are realized by data processing, storage and output.
[0026] 同図において、本実施例の「サービスシステム」 0100は、「電子機器」 0110と、「サ ーバ装置」 0120とからなる。このうち、電子機器は、「機器識別情報保持部」 0111と 、「クッキー保持部」 0112と、「パスワード情報入力部」 0113と、「制御部」 0114と、「 電子機器通信部」 0115とを有する。  In the same figure, “service system” 0100 of the present embodiment includes “electronic device” 0110 and “server device” 0120. Among these, the electronic device includes “device identification information holding unit” 0111, “cookie holding unit” 0112, “password information input unit” 0113, “control unit” 0114, and “electronic device communication unit” 0115. Have.
[0027] 「機器識別情報保持部」は、電子機器固有の識別情報である機器識別情報を保持 するように構成されている。「機器識別情報」は、機器ごとに独自に(唯一のものとして )付される識別情報であれば、例えばインターネット端末装置の機器製造番号であつ てもよいし、あるいは機器製造番号とは別に付されるものであってもよい。そしていず れの場合においても、機器識別情報は世界で唯一のものであっても、当該機器を含 むネットワークを構成するサーバの範囲内でのみ唯一のものであってもよい。また、 機器識別情報は、外部カゝら中身の覼かれにくい構造、即ち、耐タンパ領域に保持さ れる構造になって 、ることが望ま U、。  [0027] The "device identification information holding unit" is configured to hold device identification information that is identification information unique to an electronic device. The “device identification information” may be, for example, the device manufacturing number of the Internet terminal device as long as it is identification information uniquely (as unique) for each device, or attached separately from the device manufacturing number. It may be done. In either case, the device identification information may be unique in the world, or only within the scope of the server constituting the network including the device. In addition, it is desirable that the device identification information has a structure that makes it difficult for the contents to be removed from the outside cover, that is, a structure that is held in a tamper-resistant area.
[0028] 「クッキー保持部」は、サーバ装置と過去に通信したことがあるかを示す情報である クッキーを保持するように構成されている。クッキーは、一般に、 Webサーノくから送信 され、 Webブラウザが動作して 、る端末のハードディスク上に保存される情報フアイ ルをいうが、ここでは力かる意味に限定して用いている。また、当該情報は、クッキー を送信したサーバ装置自身が識別可能な情報である。  [0028] The "cookie holding unit" is configured to hold a cookie that is information indicating whether or not communication with the server device has been performed in the past. A cookie is generally an information file that is sent from a Web server and is stored on the hard disk of a terminal where a Web browser operates and is used here in a limited sense. In addition, the information is information that can be identified by the server device itself that transmitted the cookie.
[0029] 「パスワード情報入力部」は、サーバ装置に送出するパスワード情報を入力するた めのものである。また、パスワードは、個人情報の漏洩を防止するために用いられるも ので、一般に当該電子機器のユーザのみが知っている番号列、符号列等をいう。 The “password information input unit” is for inputting password information to be sent to the server device. Passwords are also used to prevent leakage of personal information. Therefore, it generally refers to a number sequence, code sequence, and the like known only to the user of the electronic device.
[0030] 以上のようなクッキー保持部およびパスワード情報入力部の構成により、サーバ装 置が当該電子機器が確かに過去に自身と通信したことがある真正の機器であり、か つその電子機器がパスワードによって確認される真正なユーザによって使用されて いるものであることを認識できるので、当該電子機器は、真正なユーザが使用する真 正な電子機器としてサーバ装置力もサービスの提供を受けることが可能となる。  [0030] With the configuration of the cookie holding unit and the password information input unit as described above, the server device is a genuine device that the electronic device has surely communicated with itself in the past, and the electronic device is Since it can be recognized that the device is used by a genuine user who is confirmed by a password, the electronic device can receive service from the server device as a genuine electronic device used by a genuine user. It becomes.
[0031] 「制御部」は、制御を行うように構成されている。ここでいう「制御」には、電子機器が サーバ装置力 サービスの提供を受けるために必要な処理が広く含まれる。例えば、 機器識別情報保持部で保持されている機器識別情報をサーバ装置に対し送付する こと、クッキーをサーバ装置に対し送付すること、パスワード情報入力部で入力された ノ スワード情報をサーバ装置に対し送付することが含まれる。  [0031] The "control unit" is configured to perform control. The “control” here includes a wide range of processes necessary for an electronic device to receive provision of server device service. For example, the device identification information held in the device identification information holding unit is sent to the server device, the cookie is sent to the server device, and the password information input in the password information input unit is sent to the server device. Includes sending.
[0032] 「電子機器通信部」は、サーバ装置と情報交換をするためのものである。具体的に は、電子機器通信部は、サーバ装置との間で通信を可能にするように構成されてい る。これにより、上述の機器識別情報やパスワード情報の送信、クッキーの送受信が 可能となる。また、電子機器がサーバ装置力もサービスの提供を受けることも可能と なる。ここで電子機器が通信可能とする対象であるサービスに係る情報は、個人情報 を使用したサービスに係る情報である。具体的には、例えば、銀行預金講座からの 自動引き落としゃクレジットカードによる自動決済などを利用したオンラインショッピン グサービスに係る情報を通信可能対象とすることが考えられる。この場合、銀行預金 口座番号やクレジットカード番号が個人情報に該当する。また、力かる決済方法を利 用した映画、音楽等の配信サービス、有料放送や有料有線放送の放送サービス、天 気予報やショッピング情報などの生活情報の提供サービスに係る情報などを通信可 能対象とすることも考えられる。あるいは、これらのコンテンツの提供にカゝかる個人情 報を使用した課金サービスに係る情報のみを通信可能対象とすることも考えられる。 そして、これらの個人情報を使用したサービスにおいて個人情報が他人に悪用され 、なりすましによる不正な振替等が行われることを防止するため、機器識別情報、タツ キー、パスワード情報が使用される。即ち、これらの情報を電子機器'サーバ装置間 で送受信を行い、サーバ装置がこれらの情報を比較'判断した結果に基づいて、電 子機器が真正であるとともに、個人情報に力かる主体と電子機器のユーザである主 体との同一性が確認できた場合に限りサーバ装置力ものサービスの提供を受けるこ とができるように構成することで、かかる悪用が防止される。 The “electronic device communication unit” is for exchanging information with the server device. Specifically, the electronic device communication unit is configured to enable communication with the server device. This makes it possible to send the above-mentioned device identification information and password information, and to send and receive cookies. In addition, it becomes possible for the electronic device to receive services provided by the server device. Here, the information related to the service that is the target of communication with the electronic device is information related to the service using personal information. Specifically, for example, it may be possible to communicate information related to online shopping services using automatic payment by credit card if automatic withdrawal from bank deposit courses. In this case, bank account numbers and credit card numbers correspond to personal information. It is also possible to communicate movies, music and other distribution services that make use of powerful payment methods, paid broadcasting services and paid cable broadcasting services, and information related to lifestyle information provision services such as weather forecasts and shopping information. It can also be considered. Alternatively, only information related to a billing service using personal information that can be used to provide these contents may be considered as a communicable target. In order to prevent personal information from being misused by others in the service using such personal information and improper transfer by impersonation, etc., device identification information, tukey key, and password information are used. In other words, these pieces of information are transmitted and received between the electronic device and the server device, and the server device compares the information and determines the power based on the result. It is configured so that the services provided by the server device can be provided only when the identity of the main device that is dedicated to personal information and the main device that is the user of the electronic device can be confirmed while the child device is authentic. This prevents such misuse.
[0033] 次に、「サーバ装置」は、「サーバ装置通信部」 0121と、「情報取得登録部」 0122と 、「機器識別情報比較部」 0123と、「クッキー判断部」 0124と、「パスワード情報比較 部」 0125と、「処理実行部」 0126とを有する。  Next, the “server device” includes “server device communication unit” 0121, “information acquisition registration unit” 0122, “device identification information comparison unit” 0123, “cookie determination unit” 0124, and “password An “information comparison unit” 0125 and a “process execution unit” 0126.
[0034] 「サーバ装置通信部」は、電子機器と情報交換するためのものである。具体的には 、サーバ装置通信部は、電子機器との間で通信を可能にするようにように構成されて いる。これにより、上述の機器識別情報やパスワード情報の受信、クッキーの送受信 が可能となる。また、サーバ装置が電子機器に対しサービスの提供を行うことも可能 となる。ここでサーバ装置が通信可能とする対象であるサービスは、個人情報を使用 したサービスである。具体的には、上で電子機器通信部について説明した中で挙げ たような例が考えられる。そして、上述のように、これらの個人情報を使用したサービ スにおいて個人情報が他人に悪用され、なりすましによる不正な振替等が行われるこ とを防止するため、機器識別情報、クッキー、パスワード情報が使用される。即ち、こ れらの情報を電子機器'サーバ装置間で送受信を行い、サーバ装置がこれらの情報 を比較'判断した結果に基づいて、電子機器が真正であるとともに、個人情報にかか る主体と電子機器のユーザである主体との同一性が確認できた場合に限りサーバ装 置がサービスの提供を行うように構成することで、かかる悪用が防止される。  The “server device communication unit” is for exchanging information with an electronic device. Specifically, the server device communication unit is configured to enable communication with the electronic device. This makes it possible to receive the above-mentioned device identification information and password information, and to send and receive cookies. In addition, the server device can provide services to electronic devices. Here, the service that the server device can communicate with is a service that uses personal information. Specifically, the examples given above in the description of the electronic device communication unit can be considered. As described above, in order to prevent personal information from being misused by others in a service that uses such personal information and unauthorized transfers due to impersonation, etc., device identification information, cookies, and password information are stored. used. In other words, based on the result of the server device transmitting / receiving these pieces of information between the electronic devices and comparing the information with the server device, the electronic device is authentic and subject to personal information. Such a misuse can be prevented by configuring the server device to provide the service only when the identity of the client and the electronic device user can be confirmed.
[0035] 「情報取得登録部」は、電子機器に対してサービスを提供可能となるように電子機 器カゝら送られる情報を電子機器単位で電子機器情報として登録するように構成され ている。ここで、電子機器カゝら送られ電子機器単位で電子機器情報として登録される 情報には、機器識別情報及びパスワード情報が含まれる。しかし、これらすベての情 報が含まれることは必須ではなぐ例えば、パスワード情報が含まれていなくてもよい 。また、ここで「電子機器カゝら送られる情報」というときの「電子機器」は、サービスの提 供対象である電子機器と同じ機器であっても、これとは異なる機器であってもよい。後 者の例としては、例えば、機器の乗換えの場合に、旧機器から送信される特殊パスヮ ード (その具体的な内容については後述する)を利用して旧機器力も新機器への乗 換えを可能にするため、旧機器から当該パスワード情報が送信されるような場合が挙 げられる。 [0035] The "information acquisition / registration unit" is configured to register information sent from the electronic device unit as electronic device information in units of electronic devices so that a service can be provided to the electronic device. . Here, the information sent from the electronic device card and registered as electronic device information in units of electronic devices includes device identification information and password information. However, it is not essential that all the information is included. For example, password information may not be included. In addition, the “electronic device” as used herein “information sent from the electronic device card” may be the same device as the electronic device to which the service is provided or a different device. . As an example of the latter, for example, when transferring devices, the old device power is also transferred to the new device using a special password (the details will be described later) transmitted from the old device. There is a case where the password information is sent from the old device to enable replacement.
[0036] 「機器識別情報比較部」は、電子機器がサービスを受けようとする際に送出する機 器識別情報と、情報取得登録部に蓄積されている機器識別情報とを比較するように 構成されている。この比較は、電子機器カゝら送出された機器識別情報と情報取得登 録部に蓄積されている機器識別情報が一致するか否かの比較である。なお、ここで いう「一致」には、全部一致のほか一部一致も含まれ得る。後者については、例えば 、機器識別情報がユーザが使用する部分、製造メーカが使用する部分、 CPやその 提供するサービスを特定する部分などから構成される場合に、機器識別情報比較部 力 ユーザが使用する部分のみが一致する力否かを比較する場合などが考えられる  [0036] The "device identification information comparison unit" is configured to compare the device identification information transmitted when the electronic device attempts to receive a service with the device identification information stored in the information acquisition registration unit. Has been. This comparison is a comparison of whether or not the device identification information transmitted from the electronic device card matches the device identification information stored in the information acquisition registration unit. Note that the term “match” here may include all matches as well as partial matches. For the latter, for example, when the device identification information is composed of a part used by the user, a part used by the manufacturer, a part specifying the CP and the service provided by the user, etc. It is possible to compare whether or not only the parts to be matched match
[0037] 「クッキー判断部」は、電子機器がサービスを受けようとする際に、電子機器から適 正なクッキーを取得した力判断するように構成されている。この判断は、例えば、予め 、サーバ装置が当該電子機器と最初に通信を行う際に、サーバ装置から当該電子機 器にクッキーを送付するとともに、サーバ装置が当該クッキーを当該電子機器に送信 したと!/ヽぅ履歴情報を保持して ヽることを前提として、電子機器から送付されたクッキ 一を当該履歴情報に照らして適正力どうか判断することにより行われる。 [0037] The "cookie determination unit" is configured to determine the power of obtaining an appropriate cookie from the electronic device when the electronic device is to receive a service. This determination may be made, for example, when the server device first communicates with the electronic device, the server device sends a cookie to the electronic device, and the server device transmits the cookie to the electronic device. ! / ヽ ぅ Assuming that you keep the history information, it is done by judging whether or not it is appropriate against the history information sent from the electronic device.
[0038] 「パスワード情報比較部」は、電子機器がサービスを受けようとする際に送出するパ スワード情報と、情報取得登録部に蓄積されているパスワード情報とを比較するよう に構成されている。この比較は、電子機器力も送出されたパスワード情報と情報取得 登録部に蓄積されて 、るパスワード情報が一致する力否かの比較である。  [0038] The "password information comparison unit" is configured to compare the password information transmitted when the electronic device attempts to receive a service with the password information stored in the information acquisition registration unit. . This comparison is a comparison of whether or not the password information sent to the electronic device and the password information stored in the information acquisition / registration unit match each other.
[0039] 「処理実行部」は、前記各部での結果に基づ!、て定められた処理を実行するように 構成されている。「定められた処理を実行する」とは、具体的には、前記各部での比 較 '判断の結果に応じて、電子機器にサービスの提供を行うための処理を実行したり 、電子機器に対してサービスを提供不可とするための処理を実行したり、電子機器の 情報を登録するための処理を実行したり、比較結果が一致するパスワード情報を含 む電子機器情報に含まれる機器識別情報を比較結果が一致しないとされた機器識 別情報と置き換えて登録するための処理を実行したりと 、つたことを 、う。一例を示せ ば、機器識別情報比較部での比較結果が一致するとの比較結果であり、クッキー判 断部での判断結果が適正との判断結果であり、パスワード情報比較部での比較結果 がー致するとの比較結果である場合に、処理実行部は、当該電子機器に対しサービ スの提供を行うための処理を実行する。 [0039] The "process execution unit" is configured to execute a predetermined process based on the results of the respective units. Specifically, “to execute a predetermined process” means to execute a process for providing a service to an electronic device or to an electronic device according to the result of the comparison in each section. Device identification information included in electronic device information including password information that matches the comparison result, or performs processing for disabling service provision, performs processing for registering electronic device information The process of registering the device with the device identification information that is determined to be inconsistent with the comparison result is executed. Give an example For example, the comparison result in the device identification information comparison unit is the same, the determination result in the cookie determination unit is appropriate, and the comparison result in the password information comparison unit matches. If the result is a comparison result, the process execution unit executes a process for providing a service to the electronic device.
[0040] 次に、力かる処理実行を可能にするためのサービスシステムのシステム構成につい て説明する。  [0040] Next, a system configuration of a service system for enabling powerful processing execution will be described.
[0041] 図 2は、サービスシステムのサーバ装置のハードウェア的観点からみたシステム構 成の一 f列を示す図である。同図【こお!/、て、 CPU0201,メインメモリ 0202、メモリ 020 3、通信インターフェイス 0204、 I/O0205ノ ス線 0206に接続されている。メモリに は予め電子機器カゝら送出された機器識別情報 0207、電子機器に対するクッキー送 付の履歴情報 0208及び電子機器力も送出されたパスワード情報 0209が格納され ている。なお、これらの情報は HDD等の外部記憶装置に格納されていてもよい。ま た、メインメモリには、メモリ等に格納されている機器識別情報と電子機器力も送出さ れインターフェイス、 IZOを利用してサーバ装置が取得した機器識別情報との比較、 メモリ等に格納されているクッキー送付の履歴情報に照らしたクッキーの判断及びメ モリ等に格納されているパスワード情報と電子機器力 送出されインターフェイス、 I [0041] FIG. 2 is a diagram illustrating a column f of the system configuration from the hardware viewpoint of the server device of the service system. This figure is connected to CPU0201, main memory 0202, memory 0203, communication interface 0204, and I / O0205 nose wire 0206. The memory stores device identification information 0207 sent in advance from the electronic device cover, history information 0208 for sending cookies to the electronic device, and password information 0209 sent also for the electronic device power. These pieces of information may be stored in an external storage device such as an HDD. The main memory also sends device identification information stored in the memory etc. and the power of the electronic device, and compares it with the device identification information acquired by the server device using the interface, IZO, and stored in the memory etc. Judgment of cookies based on the history information of sending cookies and password information stored in memory etc. and electronic device power
ΖΟを利用してサーバ装置が取得したパスワード情報との比較を行い、その結果に 応じた処理を実行するための制御プログラムが展開される。このプログラムは、例え ば、各比較 ·判断結果に基づく処理一覧テーブル 0211であって、例えば Αという結 果の場合は Progmmlに基づく処理を実行し、 t ヽぅ結果の場合は Program2を実 行するといつた形で、結果とそれに基づく指令を対応付けたテーブルに従って処理 を行えとの指令を行うプログラムである。具体的には、例えば、 Aという結果は機器識 別情報の比較結果が一致するとの比較結果、クッキーの判断結果が適正との判断結 果、パスワード情報比較部での比較結果が一致するとの比較結果であり、これと対応 付けられた Progmmlは、電子機器に対してサービスを提供するための処理を実行 するものであるといったごときである。そして、電子機器から機器識別情報、パスヮー ド情報とともに情報要求が送出され、制御プログラムの実行が要求されると、 CPUに よってメインメモリに展開された制御プログラムの指令に従った処理が実行される。即 ち、まず電子機器カゝら送出された機器識別情報とメモリ等に格納されている機器識 別情報の比較、メモリ等に格納されて 、るクッキー送付の履歴情報に照らしたクッキ 一の判断及び電子機器力 送出されたパスワード情報とメモリ等に格納されているパ スワード情報の比較が行される。さらに、当該比較'判断結果に基づいてこれに対応 する処理が実行される。例えば、比較'判断結果が Aという結果である場合に、 Progr amiに基づく処理が実行され、出力される。 The server program is compared with the password information acquired by using the bag, and a control program is executed to execute processing according to the result. This program is, for example, the processing list table 0211 based on each comparison / judgment result. For example, if the result is Α, the processing based on Progmml is executed, and if the result is t ヽ ぅ, Program2 is executed. It is a program that gives instructions to perform processing according to a table that associates results with instructions based on the results. Specifically, for example, the comparison result that the comparison result of the device identification information matches the result of A, the determination result of the cookie judgment result is appropriate, and the comparison result of the password information comparison unit matches. As a result, Progmml associated with this is the one that executes processing to provide services to electronic devices. Then, when an information request is sent from the electronic device together with device identification information and password information, and execution of the control program is requested, the CPU executes processing in accordance with the control program command developed in the main memory. . Immediately First, compare the device identification information sent from the electronic device card with the device identification information stored in the memory, etc., and make a quick decision based on the history information of the cookies sent to the memory. Electronic device power The transmitted password information is compared with the password information stored in the memory. Further, processing corresponding to this comparison is executed based on the comparison result. For example, when the comparison result is “A”, the process based on Program is executed and output.
[0042] 以上に説明したところから明らかなように、本例のサーバ装置のシステム構成にお いては、情報登録取得部が行う取得は通信インターフェイスを介して行われ、登録さ れた情報はメモリ等に格納される。また、登録後のサービスの提供に際して機器識別 情報比較部、クッキー判断部、パスワード情報比較部が行う比較 ·判断及び処理実 行部が行うその結果に基づく処理実行は、メモリ等を利用して CPUにより行われる。  As is apparent from the above description, in the system configuration of the server device of this example, the acquisition performed by the information registration acquisition unit is performed via the communication interface, and the registered information is stored in the memory. And so on. In addition, the processing execution based on the results of the comparison / judgment and processing execution unit performed by the device identification information comparison unit, cookie determination unit, and password information comparison unit when providing the service after registration is performed using a memory or the like. Is done.
[0043] 図 3は、本実施例のサービスシステムにおいて、(1)サーバ装置が電子機器に対し てサービスを提供可能となるように電子機器カゝら送られる情報を電子機器単位で電 子機器情報として登録する要領と、(2)電子機器がサービスを受けようとする際に電 子機器から送出される機器識別情報、クッキー及びパスワード情報をサーバ装置が 上記により登録された情報等に基づいて比較 '判断し、処理実行を行う要領の一例 を、具体例を用いて説明した概念図である。  [0043] FIG. 3 is a diagram illustrating the service system of the present embodiment. (1) Information sent from the electronic device card so that the server device can provide services to the electronic device. (2) The device identification information, cookies, and password information sent from the electronic device when the electronic device attempts to receive services, and the server device based on the information registered by the above FIG. 4 is a conceptual diagram illustrating an example of a procedure for performing comparison and determining and executing a process using a specific example.
[0044] まず、サーバ装置が電子機器に対してサービスを提供可能となるように電子機器か ら送られる情報を電子機器単位で電子機器情報として登録する要領の一例につい て説明する。同図の例において、電子機器 Aは機器識別情報として「XYZ001」を保 持する。また、ユーザが最初に電子機器 Αを使用してサーバ装置 Βと通信を行う際に は、サーバ装置 Bから電子機器 Aに対し、ノ スワード情報の入力を促す画面等が送 信され、当該電子機器 Aは、ユーザが設定したパスワード情報「7890」を入力する。 そして、電子機器 Aは、以上の機器識別情報「XYZ001」、パスワード情報「7890」 をサーバ装置 Βに送出する。これを受けて、サーバ装置 Βは、電子機器 Α力も送出さ れた機器識別情報「XYZ001」とパスワード情報「7890」を取得して、登録する。また 、かかる登録に伴い、サーバ装置 Βから電子機器 Αに対し、当該電子機器がサーバ 装置 Bと通信したことがあることを示す情報であるクッキー「a」が送付され、電子機器 Aがこれを保持する。一方、サーバ装置は、当該クッキー「a」を電子機器 Aに送信し たという履歴情報「b」を保持する。なお、上の例と異なり、サーバ装置 Bから電子機器 Aに対するパスワード情報の入力を促す画面等の送信は、例えば当該機器のユー ザが既にパスワードを有する者であるとサーバ装置 Bが判断した場合に限って行うよ うに構成されていてもよい。この場合には、当然パスワード情報の入力以下の処理は なされず、別の処理 (例えばサービス提供不可とするための処理)がなされるように構 成される。以上の結果、サーバ装置 Bには、機器識別情報「XYZ001」とパスワード 情報「7890」が登録され、蓄積されるとともに、クッキー「a」の送信履歴情報である「b 」が保持されて ヽること〖こなる。 First, an example of a procedure for registering information sent from an electronic device as electronic device information for each electronic device so that the server apparatus can provide a service to the electronic device will be described. In the example shown in the figure, the electronic device A holds “XYZ001” as device identification information. In addition, when the user first communicates with the server device 電子 using the electronic device に 対 し, the server device B sends a screen for prompting the user to input the password information to the electronic device A. Device A inputs the password information “7890” set by the user. Then, the electronic device A sends the above device identification information “XYZ001” and password information “7890” to the server device. In response to this, the server device 取得 acquires and registers the device identification information “XYZ001” and the password information “7890”, which are also sent by the electronic device. As a result of this registration, cookie “a”, which is information indicating that the electronic device has communicated with server device B, is sent from server device Β to electronic device 、. A holds this. On the other hand, the server device retains history information “b” indicating that the cookie “a” has been transmitted to the electronic device A. Unlike the above example, the transmission of a screen that prompts the user to enter password information from server device B to electronic device A is, for example, when server device B determines that the user of the device already has a password. It may be configured to perform only. In this case, the processing following the input of the password information is naturally not performed, and another processing (for example, processing for disabling service provision) is performed. As a result, the device identification information “XYZ001” and the password information “7890” are registered and stored in the server device B, and “b” that is the transmission history information of the cookie “a” is held. That's true.
[0045] 次に、電子機器がサービスを受けようとする際に電子機器カゝら送出される機器識別 情報、クッキー及びパスワード情報をサーバ装置が上記により登録された情報等に 基づいて比較'判断し、処理実行を行う要領の一例について説明する。電子機器 A のユーザが、当該電子機器 Aを使用してサーバ装置から「C」という情報の提供のサ 一ビスを受けたい場合、同図に示すように、当該電子機器 Aは、「C」情報に係る情報 要求とともに、自身の機器識別情報「XYZ001」、クッキー「a」、パスワード「7890」を サーバ装置 Bに送信する。すると、サーバ装置 Bは、送信された機器識別情報「XYZ 001」と、登録、蓄積された機器識別情報「ΧΥΖ001」とを比較する。本例では両者が 一致するとの比較結果を得る。また、サーバ装置 Βは、送信されたクッキー「a」を送信 履歴情報「b」に照らして適正力どうか判断する。本例では電子機器 Aから取得したク ツキ一「a」が適正であるとの判断結果を得る。さらに、サーバ装置 Bは、送信されたパ スワード「7890」と、登録、蓄積されたパスワード「7890」とを比較する。本例では両 者が一致するとの比較結果を得る。これらの結果、サーバ装置 Bは、要求に係る「C」 情報を電子機器 Aに送信することでサービスの提供を行う。  [0045] Next, when the electronic device tries to receive service, the server device compares the device identification information, the cookie, and the password information sent based on the information registered as described above. An example of how to execute the process will be described. When the user of the electronic device A wants to receive a service for providing information “C” from the server device using the electronic device A, as shown in FIG. Along with the information request related to the information, its own device identification information “XYZ001”, cookie “a”, and password “7890” are transmitted to server device B. Then, the server apparatus B compares the transmitted device identification information “XYZ 001” with the registered and accumulated device identification information “ΧΥΖ001”. In this example, we get a comparison result that they match. In addition, the server device 照 ら determines whether the transmitted cookie “a” is appropriate in light of the transmission history information “b”. In this example, the judgment result that the clip “a” obtained from the electronic device A is appropriate is obtained. Further, the server apparatus B compares the transmitted password “7890” with the registered and stored password “7890”. In this example, we obtain a comparison result that they are the same. As a result, the server apparatus B provides the service by transmitting “C” information related to the request to the electronic device A.
[0046] なお、上述の例では、電子機器から送信された機器識別情報及びパスワード情報 との比較に用いる機器識別情報及びパスワード情報は、電子機器力もサーバ装置に 対し送付されたものをサーバ装置が取得、登録、蓄積するものである例で説明した。 しかし、これ以外の実施例もあり得る。即ち、力かる比較に用いる機器識別情報及び パスワード情報は予め登録されるように構成されて 、れば、これ以外の方法でサーバ 装置がこれらの情報を取得して登録、蓄積するように構成されていてもよい。例えば、 これらの情報が電子機器のユーザ力 サーバ装置の管理者に対して郵送され、これ に基づいてサーバ装置の管理者がサーバ装置にこれらの情報を直接入力すること などにより、サーバ装置がこれらの情報を取得、登録するように構成されていてもよい In the above example, the server identification information and password information used for comparison with the device identification information and password information transmitted from the electronic device are the same as those sent to the server device by the server device. The example has been described with reference to acquisition, registration, and accumulation. However, other embodiments are possible. In other words, device identification information and password information used for a powerful comparison are configured to be registered in advance. The apparatus may be configured to acquire, register, and store such information. For example, such information is mailed to the user power of the electronic device server administrator, and the server device administrator directly inputs the information to the server device based on this information. May be configured to acquire and register information
[0047] <処理の流れ > [0047] <Process flow>
[0048] 図 4は、本実施例のサービスシステムにおける処理の流れの一例を示す図である。  FIG. 4 is a diagram illustrating an example of a processing flow in the service system of the present embodiment.
[0049] まず、電子機器情報登録ステップ S0401にお ヽて、サービスシステムは、電子機器 に対してサービスを提供可能となるように電子機器カゝら送られる情報を電子機器単 位で電子機器情報として登録する。電子機器力 送られる情報としては、機器識別 情報及びパスワード情報が含まれる。しかし、これらすベての情報が含まれることは 必須ではなぐ例えば、ノ スワード情報が含まれていなくてもよい。また、パスワード情 報が含まれる場合には、当該情報はサーバ装置力 電子機器に対する入力促しな どに基づ 、て電子機器にぉ 、入力して送付される。 [0049] First, in the electronic device information registration step S0401, the service system converts the information sent from the electronic device car to the electronic device information so that the service can be provided to the electronic device. Register as Information sent by electronic devices includes device identification information and password information. However, it is not essential that all the information is included. For example, no word information may be included. If password information is included, the information is input and sent to the electronic device based on input prompts to the server device or the electronic device.
[0050] 次に、機器識別情報送出ステップ S0402にお 、て、サービスシステムは、電子機 器がサービスを受けようとする際に機器識別情報を電子機器力もサーバ装置に送出 する。 [0050] Next, in the device identification information transmission step S0402, the service system also transmits the device identification information to the server device when the electronic device is about to receive service.
[0051] 次に、クッキー送出ステップ S0403において、サービスシステムは、電子機器がサ 一ビスを受けようとする際にクッキーを電子機器力 サーバ装置に送出する。  [0051] Next, in the cookie sending step S0403, the service system sends the cookie to the electronic device server device when the electronic device tries to receive service.
[0052] 次に、パスワード情報送出ステップ S0404において、サービスシステムは、電子機 器がサービスを受けようとする際にパスワード情報を電子機器力もサーバ装置に送出 する。  [0052] Next, in the password information sending step S0404, the service system sends the password information to the server device as well as the power of the electronic device when the electronic device is to receive a service.
[0053] なお、機器識別情報送出ステップ、クッキー送出ステップ、パスワード情報送出ステ ップにおける処理は必ずしもこの順序でなくてもよぐ任意の順序でよい。また、すべ てのステップにおける処理がなされることは必須ではなぐこのうちの一部のステップ を欠いていてもよい。例えば、電子機器がサービスを受けようとする際に電子機器か らパスワード情報が送付されな 、ためパスワード情報送出ステップを欠くと 、つたもの でもよい。 [0054] 次に、機器識別情報比較ステップ S0405にお 、て、サービスシステムは、電子機 器がサービスを受けようとする際に電子機器カゝら送出された機器識別情報と、前記電 子機器情報登録ステップにて登録され、蓄積された機器識別情報とを比較する。 [0053] The processing in the device identification information sending step, the cookie sending step, and the password information sending step may be in any order, not necessarily in this order. In addition, it is not essential that processing is performed in all steps, and some of these steps may be missing. For example, since the password information is not sent from the electronic device when the electronic device tries to receive the service, the password information sending step may be omitted. [0054] Next, in the device identification information comparison step S0405, the service system includes the device identification information sent from the electronic device when the electronic device is about to receive the service, and the electronic device. The device identification information registered and accumulated in the information registration step is compared.
[0055] 次に、クッキー判断ステップ S0406において、サービスシステムは、電子機器がサ 一ビスを受けようとする際に電子機器力も適正なクッキーを取得した力判断する。当 該判断は、例えば、電子機器力 送出されたクッキーをサーバ装置に保持されてい る履歴情報と照合して行われる。  [0055] Next, in the cookie determination step S0406, the service system determines whether the electronic device has acquired an appropriate cookie when the electronic device attempts to receive service. This determination is made, for example, by comparing the cookie sent out by the electronic device with the history information held in the server device.
[0056] 次に、パスワード情報比較ステップ S0407にお!/、て、サービスシステムは、電子機 器がサービスを受けようとする際に電子機器力 送出されたパスワード情報と、前記 電子機器情報登録ステップにて登録されたパスワード情報とを比較する。  [0056] Next, in the password information comparison step S0407, the service system includes the password information sent when the electronic device is about to receive service, and the electronic device information registration step. Compare the password information registered in.
[0057] なお、機器識別情報比較ステップ、クッキー判断ステップ、パスワード情報比較ステ ップにおける処理は必ずしもこの順序でなくてもよぐ任意の順序でよい。また、すべ てのステップにおける処理がなされることは必須ではなぐこのうちの一部のステップ を欠いていてもよい。例えば、電子機器がサービスを受けようとする際に電子機器か らパスワード情報が送付されな 、ためパスワード情報比較ステップを欠くと 、つたもの でもよい。  Note that the processing in the device identification information comparison step, the cookie determination step, and the password information comparison step does not necessarily have to be in this order. In addition, it is not essential that processing is performed in all steps, and some of these steps may be missing. For example, since the password information is not sent from the electronic device when the electronic device tries to receive the service, the password information comparison step may be omitted.
[0058] さらに、前記各ステップでの結果の取得及び当該結果に基づく定められた処理を 実行する処理実行ステップ S0408において、サービスシステムは、前記機器識別情 報比較ステップ、前記クッキー判断ステップ及び前記パスワード情報比較ステップに おける結果を取得するとともに当該結果に基づ 、て定められた処理を実行する。例 えば、前記機器識別情報比較ステップにおける比較結果が一致するとの比較結果で あり、前記クッキー判断ステップにおける判断結果が適正との判断結果であり、かつ 前記パスワード情報比較ステップにおける比較結果が一致するとの比較結果である 場合に、力かる結果を取得し、当該結果に基づいて電子機器に対してサービスを提 供するための処理を実行する。この処理は、例えば、サービスシステムのサーバ装置 において前記各ステップにおける比較'判断結果に基づく処理一覧テーブルであつ て、例えば Aという結果の場合は Programlに基づく処理を実行し、 Bという結果の場 合は Program2を実行すると 、つた形で、結果とそれに基づく指令を対応付けたテ 一ブルに従って行われる。具体的には、例えば、前記各ステップにおいて Aという結 果が得られた場合、これに基づく処理である Progmmlに従った処理を行うため、蓄 積メモリに蓄積された Progmmlが実行メモリに展開された後、 CPUが当該 Progra mlに従った処理を実行することになる。 [0058] Further, in process execution step S0408 for executing the acquisition of the result in each of the steps and the process defined based on the result, the service system includes the device identification information comparison step, the cookie determination step, and the password The result in the information comparison step is acquired, and the process defined by the result is executed. For example, the comparison result in the device identification information comparison step is the same as the comparison result, the determination result in the cookie determination step is the determination result is appropriate, and the comparison result in the password information comparison step is the same. If the result is a comparison result, an encouraging result is obtained, and processing for providing a service to the electronic device is executed based on the result. This process is, for example, a process list table based on the comparison result at each step in the server device of the service system. For example, if the result is A, the process based on Programl is executed, and if the result is B, When Program2 is executed, the result is a text that associates the result with the command based on it. Done according to one bull Specifically, for example, when a result of A is obtained in each step, the process according to Progmml, which is a process based on the result, is performed, so that Progmml accumulated in the accumulation memory is expanded in the execution memory. After that, the CPU will execute processing according to the program.
[0059] <効果 > [0059] <Effect>
[0060] 本実施例のサービスシステムにより、電子機器固有の機器識別情報、クッキー及び ノ スワード情報を利用し、電子機器力 送られるこれらの情報とサーバ装置に登録' 保存されているこれらの情報等を比較'判断し、その結果に基づいて所定の処理を 実行することで、電子機器又はそのユーザが替わる場合の様々なパターンに応じて 、これらのパターンにきめ細力べ対応し、ユーザのニーズに対応しつつサーバ装置が 適切な判断によりそれぞれの場合にふさわし 、サービスの提供を行う(ある 、は行わ な!、)ための仕組みを提供することが可能となる。  [0060] The service system of the present embodiment uses device identification information, cookies, and password information unique to the electronic device, and these information sent by the electronic device and the information registered and stored in the server device, etc. By comparing and determining and executing a predetermined process based on the result, it is possible to respond to these patterns according to various patterns when the electronic device or the user changes, and to meet the user's needs. It is possible to provide a mechanism for the server device to provide (or do not do!) The service according to each case by making an appropriate decision while supporting the above.
実施例 2  Example 2
[0061] <概要 > [0061] <Overview>
[0062] 本実施例のサービスステムは、機器識別情報の比較結果が一致するとの比較結果 、クッキーの判断結果が適正との判断結果、パスワード情報比較部での比較結果が 一致しな 、との比較結果である場合には、電子機器に対してサービスを提供不可と するための処理を実行するものであり、電子機器自体は真正である場合に、真正な ユーザ以外の他人による不正アクセスへの対応を可能にすることを想定したものであ る。  [0062] The service system of this embodiment indicates that the comparison result of the device identification information matches, the determination result of the cookie is appropriate, and the comparison result of the password information comparison unit does not match. If the result is a comparison result, processing for disabling the provision of services to the electronic device is executed. When the electronic device itself is genuine, unauthorized access by someone other than the genuine user is prevented. It is assumed that this can be handled.
[0063] <構成 >  [0063] <Configuration>
[0064] 図 5は、本実施例のサービスシステムの機能ブロックの一例を示す図である。同図 において、本実施例の「サービスシステム」 0500は、「電子機器」 0510と、「サーバ装 置」 0520とからなる。このうち、電子機器は、「機器識別情報保持部」 0511と、「タツ キー保持部」 0512と、「パスワード情報入力部」 0513と、「制御部」 0514と、「電子機 器通信部」 0515とを有する。また、「サーバ装置」は、「サーバ装置通信部」 0521と、 「情報取得登録部」 0522と、「機器識別情報比較部」 0523と、「クッキー判断部」 052 4と、「パスワード情報比較部」 0525と、「処理実行部」 0526とを有する。 [0065] 「サーバ装置」の「処理実行部」は、機器識別情報比較部での比較結果が一致する との比較結果、クッキー判断部での判断結果が適正との判断結果、かつ、パスワード 情報比較部での比較結果が一致しな 、との比較結果である場合には、電子機器に 対してサービスを提供不可とするための処理を実行するように構成されて 、る。なお 、機器識別情報比較部での比較結果が一致しないとの比較結果、クッキー判断部で の判断結果が不適正との判断結果、又は、パスワード情報比較部での比較結果が 一致するとの比較結果である場合には、処理実行部は、前記各部での結果に基づ V、て定められた上記以外の処理を実行するように構成されて 、る。 FIG. 5 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment. In the figure, the “service system” 0500 of the present embodiment includes an “electronic device” 0510 and a “server device” 0520. Among them, the electronic devices are “device identification information holding unit” 0511, “tack key holding unit” 0512, “password information input unit” 0513, “control unit” 0514, and “electronic device communication unit”. And have. The “server device” includes “server device communication unit” 0521, “information acquisition registration unit” 0522, “device identification information comparison unit” 0523, “cookie determination unit” 052 4, and “password information comparison unit” ”0525 and“ processing execution unit ”0526. The “process execution unit” of the “server device” includes a comparison result that the comparison result in the device identification information comparison unit matches, a determination result that the determination result in the cookie determination unit is appropriate, and password information If the comparison result in the comparison unit does not match, it is configured to execute a process for disabling the provision of service to the electronic device. The comparison result that the comparison result in the device identification information comparison unit does not match, the determination result that the determination result in the cookie determination unit is inappropriate, or the comparison result that the comparison result in the password information comparison unit matches In such a case, the process execution unit is configured to execute a process other than the above, which is determined by V based on the results of the respective units.
[0066] その余の構成は実施例 1のサービスシステムの構成と同じであるので、説明を省略 する。  Since the remaining configuration is the same as that of the service system of the first embodiment, the description thereof is omitted.
[0067] かかる構成は、例えば、電子機器が盗難にあった場合なども含め、真正のユーザ 以外の者が当該電子機器の真正なユーザになりすまして不正にアクセスを行うことに より当該ユーザの個人情報に係るサービスの提供 (例えば、パスワードを入力するこ とにより当該ユーザの銀行口座からの弓 Iき落としが可能なように予め登録されて!、る ショッピングサイトでの買い物)を受けようとしてもこれを阻止することを可能にする。即 ち、この場合、電子機器自体は真正なものであるから、不正なアクセス者が当該電子 機器を操作してサーバ装置にアクセスした場合、サーバ装置の機器識別情報比較 部での比較結果は一致するとの比較結果となり、クッキー判断部での判断結果も適 正との判断結果となる。しかし、パスワードについては、不正なアクセス者が真正なュ 一ザのパスワードを別途入手しない限り、真正なパスワードを入力することができない ので、サーバ装置のパスワード情報比較部での比較結果は一致しな!、と!/、う比較結 果となる。この場合に、処理実行部はサービス提供を不可とするための処理を実行 するように構成されて 、るので、これにより不正なアクセス者が真正なユーザになりす まして当該ユーザの個人情報に係るサービスの提供を受けるという事態を防止するこ とがでさる。  [0067] Such a configuration includes, for example, when an electronic device has been stolen, and a person other than the genuine user impersonates the genuine user of the electronic device and performs unauthorized access. Even if you want to receive information services (for example, shopping at a shopping site that has been registered in advance so that you can drop a bow from the user's bank account by entering a password! It is possible to prevent this. In other words, in this case, since the electronic device itself is authentic, when the unauthorized access person operates the electronic device to access the server device, the comparison result in the device identification information comparison unit of the server device matches. As a result, the result of the determination by the cookie determination unit is also determined to be appropriate. However, since the password cannot be entered unless an unauthorized accessor obtains a genuine user password separately, the comparison results in the password information comparison unit of the server device do not match. !, And! /, Are the comparison results. In this case, the process execution unit is configured to execute a process for disabling service provision. Therefore, an unauthorized accessor impersonates a genuine user and relates to the personal information of the user. It is possible to prevent the situation of receiving service provision.
[0068] 「サービスを提供不可とするための処理」としては、例えば、以後の電子機器操作が できないように機器の機能をロックする処理等が該当する。この場合、ロックを解除す るためには、例えば、別途サーバ装置の管理者に対し真正なユーザだけが知り得る 情報 (真正なノ スワードなど)を用いて申請することを必要とすることで、不正なァクセ ス者による不正な処理を防止することが担保される。ロック及びその解除の一例を述 ベれば、不正なパスワード情報が一定回数入力されると、電子機器の iZo機能が部 分的に停止され (例えば、キーボード、マウスを用いた入力ができなくなるなど)、これ を解除するためには、真正なユーザとサーバ装置の管理者のみが知り得る信号を当 該電子機器に入力しなければならないといったものが考えられる。 [0068] "Processing for disabling service provision" corresponds to, for example, processing for locking the function of a device so that subsequent electronic device operations cannot be performed. In this case, in order to release the lock, for example, only a genuine user can know the administrator of the server device separately. By requiring an application using information (such as a genuine nose word), it is guaranteed that unauthorized processing by an unauthorized accessor will be prevented. As an example of locking and unlocking, if incorrect password information is entered a certain number of times, the iZo function of the electronic device is partially stopped (for example, input using a keyboard or mouse is not possible) In order to cancel this, it is conceivable that a signal that only the genuine user and the administrator of the server device can know must be input to the electronic device.
[0069] <処理の流れ >  [0069] <Process flow>
[0070] 図 6は、本実施例のサービスシステムにおける処理の流れの一例を示す図である。  FIG. 6 is a diagram illustrating an example of a processing flow in the service system of the present embodiment.
[0071] 電子機器に対してサービスを提供不可とするための処理実行ステップ S0608にお いて、サービスシステムは、前記機器識別情報比較ステップ S0605における比較結 果が一致するとの比較結果、前記クッキー判断ステップ S0606における判断結果が 適正との判断結果、かつ前記ノ スワード情報比較ステップ S0607における比較結果 がー致しな 、との比較結果である場合に、電子機器に対してサービスを提供不可と するための処理を実行する。なお、機器識別情報比較ステップにおける比較結果が 一致しな 、との比較結果、クッキー判断ステップにおける判断結果が不適正との判 断結果、又はパスワード情報比較ステップにおける比較結果が一致するとの比較結 果である場合には、所定の処理実行ステップ S0609において、サービスシステムは、 前記各ステップにおける結果に基づいて定められた上記以外の処理を実行する。  [0071] In the process execution step S0608 for disabling the provision of a service to an electronic device, the service system performs a comparison result that the comparison result in the device identification information comparison step S0605 matches, the cookie determination step. Processing for disabling the provision of services to electronic devices when the judgment result in S0606 is appropriate and the comparison result in the above-mentioned Nosword information comparison step S0607 is negative. Execute. Note that the comparison result in the device identification information comparison step does not match, the comparison result in the cookie determination step is incorrect, or the comparison result in the password information comparison step matches. If so, in the predetermined process execution step S0609, the service system executes a process other than the above determined based on the result in each step.
[0072] その余の処理の流れは、実施例 1のサービスシステムにおける処理の流れと同じで あるから、説明を省略する。  Since the remaining processing flow is the same as the processing flow in the service system of the first embodiment, a description thereof will be omitted.
[0073] <効果 >  [0073] <Effect>
[0074] 本実施例のサービスシステムにより、例えば、電子機器が盗難にあった際などに真 正なユーザ以外の他人による不正アクセスがなされた場合に、当該他人が真正なュ 一ザになりすまして当該真正なユーザの個人情報に係るサービスの提供を受けようと してもこれを阻止することが可能となる。  [0074] With the service system of this embodiment, for example, when an unauthorized access is made by someone other than the authentic user when the electronic device is stolen, the other person impersonates the authentic user. Even if an attempt is made to receive a service related to the personal information of the genuine user, this can be prevented.
実施例 3  Example 3
[0075] <概要 > [0075] <Overview>
[0076] 本実施例のサービスステムは、機器識別情報の比較結果が一致するとの比較結果 、クッキーの判断結果が適正との判断結果、パスワード情報の比較結果が一致すると の比較結果である場合には、電子機器に対してサービスを提供するための処理を実 行するものであり、通常の状態での使用を想定したものである。 [0076] The service system according to the present embodiment has a comparison result that the comparison result of the device identification information matches. If the result of the cookie judgment is appropriate and the result of the password information comparison is the same, the process for providing the service to the electronic device is executed. It is assumed to be used in the state of
[0077] <構成 > [0077] <Configuration>
[0078] 図 7は、本実施例のサービスシステムの機能ブロックの一例を示す図である。同図 において、本実施例の「サービスシステム」 0700は、「電子機器」 0710と、「サーバ装 置」 0720とからなる。このうち、電子機器は、「機器識別情報保持部」 0711と、「タツ キー保持部」 0712と、「パスワード情報入力部」 0713と、「制御部」 0714と、「電子機 器通信部」 0715とを有する。また、「サーバ装置」は、「サーバ装置通信部」 0721と、 「情報取得登録部」 0722と、「機器識別情報比較部」 0723と、「クッキー判断部」 072 4と、「パスワード情報比較部」 0725と、「処理実行部」 0726とを有する。  FIG. 7 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment. In this figure, the “service system” 0700 of this embodiment includes an “electronic device” 0710 and a “server device” 0720. Among them, the electronic devices are “device identification information holding unit” 0711, “tack key holding unit” 0712, “password information input unit” 0713, “control unit” 0714, and “electronic device communication unit” 0715 And have. The “server device” includes “server device communication unit” 0721, “information acquisition registration unit” 0722, “device identification information comparison unit” 0723, “cookie judgment unit” 072 4, and “password information comparison unit” 0725 and “Processing Execution Unit” 0726.
[0079] 「サーバ装置」の「処理実行部」は、機器識別情報比較部での比較結果が一致する との比較結果、クッキー判断部での判断結果が適正との判断結果、パスワード情報 比較部での比較結果が一致するとの比較結果である場合には、電子機器に対して サービスを提供するための処理を実行するように構成されている。なお、機器識別情 報比較部での比較結果が一致しな 、との比較結果、クッキー判断部での判断結果 が不適正との判断結果、又は、パスワード情報比較部での比較結果が一致しないと の比較結果である場合には、処理実行部は、前記各部での結果に基づいて定めら れた上記以外の処理を実行するように構成されて ヽる。  The “process execution unit” of the “server device” includes a comparison result that the comparison result in the device identification information comparison unit matches, a determination result that the determination result in the cookie determination unit is appropriate, and a password information comparison unit. In the case where the comparison result is that the comparison results match, the processing for providing the service to the electronic device is executed. The comparison result in the device identification information comparison unit does not match, the determination result in the cookie determination unit is inappropriate, or the comparison result in the password information comparison unit does not match If the result is a comparison result between and, the process execution unit may be configured to execute a process other than the above, which is determined based on the result of each unit.
[0080] その余の構成は実施例 1又は 2のサービスシステムの構成と同じであるので、説明 を省略する。  [0080] The rest of the configuration is the same as the configuration of the service system of the first or second embodiment, and a description thereof will be omitted.
[0081] かかる構成は、例えば、電子機器のユーザが通常の状態でサーバ装置からのサー ビスの提供を受けることを可能にする。本サービスシステムにおける「通常の状態」と は、電子機器の機器識別情報と、クッキーと、ノ スワード情報とを利用して、サーバ装 置が真正なユーザによって使用される真正な電子機器であることを認識して、当該電 子機器に対しサービスの提供を行う状態を意味する。具体的なサービスの提供として は、実施例 1の説明中で挙げた銀行預金講座力もの自動引き落としゃクレジットカー ドによる自動決済などを利用したオンラインショッピングサービスや映画、音楽等の配 信サービス、有料放送や有料有線放送の放送サービス、天気予報やショッピング情 報などの生活情報の提供サービスなどのほか、例えば、家庭内における家電機器の 故障診断 (例えば、家電機器の不具合の状況に関する情報を受信して、これに応じ た故障内容の特定や修理のサポートを行うサービス)、家庭内における家電機器の 適切な制御を行うサービス (例えば、クーラーの設定温度状況に関する情報を受信し て、必要なアドバイスを提供するサービス)、教育プログラムの提供を行うサービス (例 えば英会話のレッスンを提供するサービス)、医療サービス (例えば、在宅健康診断 を行って必要なアドバイスを提供するサービス)、電子投票サービス (例えば、楽曲の 人気ランキング投票用の候補を送信して、回答投票を受け付けるサービス)、電子機 器のプログラムのバージョンアップサービス、電子メールサービス、テレビ電話等の電 話サービス、あるいはデータベースの提供サービス(例えば、 ASPを利用させるサー ビス)などが考えられる。 Such a configuration enables, for example, a user of an electronic device to receive a service provided from a server device in a normal state. “Normal status” in this service system means a genuine electronic device that is used by a genuine user of the server device using device identification information, cookies, and password information of the electronic device. This means a state where services are provided to the electronic device. Specific services provided include online shopping services using automatic payments by credit cards, distribution of movies and music, etc. In addition to services such as communication services, pay broadcasting and pay cable broadcasting services, services for providing life information such as weather forecasts and shopping information, etc., for example, fault diagnosis of home appliances in the home Receives information, identifies the content of failure according to this and supports repairs), and services that properly control home appliances in the home (for example, information on the temperature setting of the cooler) Services that provide the necessary advice), services that provide educational programs (for example, services that provide English lessons), medical services (for example, services that provide necessary advice through home health examinations), electronic voting Services (for example, send candidates for popularity ranking voting of songs and accept answer voting -Bis), the electronic equipment of the program version-up service, electronic mail service, telephone service of video phone or the like, or provide services for the database, (e.g., services to be used by the ASP) can be considered like.
[0082] <処理の流れ > [0082] <Process flow>
[0083] 図 8は、本実施例のサービスシステムにおける処理の流れの一例を示す図である。  FIG. 8 is a diagram illustrating an example of a processing flow in the service system of the present embodiment.
[0084] 電子機器に対してサービスを提供するための処理実行ステップ S0808にお 、て、 サービスシステムは、前記機器識別情報比較ステップ S0805における比較結果が一 致するとの比較結果、前記クッキー判断ステップ S0806における判断結果が適正と の判断結果、かつ前記パスワード情報比較ステップ S0807における比較結果が一 致するとの比較結果である場合に、電子機器に対してサービスを提供するための処 理を実行する。なお、機器識別情報比較ステップにおける比較結果が一致しないと の比較結果、クッキー判断ステップにおける判断結果が不適正との判断結果、又は パスワード情報比較ステップにおける比較結果が一致しないとの比較結果である場 合には、所定の処理実行ステップ S0809において、サービスシステムは、前記各ス テツプにおける結果に基づいて定められた上記以外の処理を実行する。  [0084] In the process execution step S0808 for providing a service to the electronic device, the service system compares the comparison result in the device identification information comparison step S0805 with the cookie determination step S0806. If the result of the determination is that the determination result in step S0807 is correct and the comparison result in the password information comparison step S0807 matches, a process for providing a service to the electronic device is executed. If the comparison result in the device identification information comparison step does not match, the determination result in the cookie determination step is incorrect, or the comparison result in the password information comparison step does not match. In this case, in the predetermined process execution step S0809, the service system executes a process other than the above determined based on the result in each step.
[0085] その余の処理の流れは、実施例 1又は 2のサービスシステムにおける処理の流れと 同じであるから、説明を省略する。  Since the remaining processing flow is the same as the processing flow in the service system of the first or second embodiment, description thereof is omitted.
[0086] <効果 >  [0086] <Effect>
[0087] 本実施例のサービスシステムにより、電子機器のユーザが通常の状態、即ち、タツ キーと、パスワード情報とを利用して、サーバ装置力もサービスの提供を受けることが 可能となる。 [0087] With the service system of the present embodiment, the user of the electronic device is in a normal state, Using the key and password information, the server device can also receive services.
実施例 4  Example 4
[0088] <概要 > [0088] <Overview>
[0089] 本実施例のサービスステムは、機器識別情報の比較結果が一致しないとの比較結 果、クッキーの判断結果が不適正との判断結果である場合には、電子機器の情報を サーバ装置に登録するための処理を実行するものであり、電子機器の新規購入等の 場合への対応を可能にすることを想定したものである。その際、後述の乗換えを想定 した実施例における処理と区別するため、例えば、ノ スワード情報の有無についての 判断を行って、ノ スワード情報がな 、場合に力かる処理が実行されるものである。  [0089] The service system according to the present embodiment, when the comparison result of the device identification information does not match and the determination result of the cookie is an inappropriate determination result, the information on the electronic device is transmitted to the server device. It is assumed that it will be possible to handle cases such as new purchases of electronic equipment. At that time, in order to distinguish from the processing in the embodiment that assumes the later-described transfer, for example, the presence / absence of nosword information is determined, and if no nosword information is present, processing that is effective is executed. .
[0090] く構成〉 [0090] <Configuration>
[0091] 図 9は、本実施例のサービスシステムの機能ブロックの一例を示す図である。同図 において、本実施例の「サービスシステム」 0900は、「電子機器」 0910と、「サーバ装 置」 0920とからなる。このうち、電子機器は、「機器識別情報保持部」 0911と、「タツ キー保持部」 0912と、「パスワード情報入力部」 0913と、「制御部」 0914と、「電子機 器通信部」 0915とを有する。また、「サーバ装置」は、「サーバ装置通信部」 0921と、 「情報取得登録部」 0922と、「機器識別情報比較部」 0923と、「クッキー判断部」 092 4と、「パスワード情報比較部」 0925と、「処理実行部」 0926とを有する。  FIG. 9 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment. In this figure, the “service system” 0900 of the present embodiment includes an “electronic device” 0910 and a “server device” 0920. Among them, the electronic devices are “device identification information holding unit” 0911, “tack key holding unit” 0912, “password information input unit” 0913, “control unit” 0914, and “electronic device communication unit”. And have. The “server device” includes “server device communication unit” 0921, “information acquisition registration unit” 0922, “device identification information comparison unit” 0923, “cookie determination unit” 092 4, and “password information comparison unit” 0925 and a “processing execution unit” 0926.
[0092] 「サーバ装置」の「処理実行部」は、機器識別情報比較部での比較結果が一致しな V、との比較結果、クッキー判断部での判断結果が不適正との判断結果である場合に は、電子機器の情報をサーバ装置の情報取得登録部に登録するための処理を実行 するように構成されている。「登録するための処理」とは、電子機器に対し登録を促す 処理をいい、具体的には、例えば、電子機器に対し登録のためのフォーマットを、当 該フォーマットにユーザのパスワードを入力し、サーバ装置に対し返信するよう促すメ ッセージとともに送付するなどの処理が該当する。これにより、電子機器からパスヮー ド情報が機器識別情報とともに返信されると、サーバ装置の情報取得登録部がこれ らを取得し、電子機器単位で電子機器情報として登録することが可能となる。また、 登録が完了すると、サーバ装置は電子機器に対してクッキーを送付するとともに、当 該クッキーに係る送付履歴情報を保持する。これにより、その後電子機器からサービ スの提供に係る情報要求があった場合に、サーバ装置が上記の処理実行にかかる サービスを提供することが可能となる。そして、登録が完了した後のサービスの提供 は、他の実施例で記載したところに従い行われる。なお、機器識別情報比較部での 比較結果が一致するとの比較結果であり、又はクッキー判断部での判断結果が適正 との判断結果である場合には、処理実行部は、前記各部での結果に基づいて定めら れた上記以外の処理を実行するように構成されて ヽる。 [0092] The "process execution unit" of the "server device" is a result of comparison with V that does not match the comparison result in the device identification information comparison unit, and a determination result that the determination result in the cookie determination unit is inappropriate. In some cases, it is configured to execute processing for registering electronic device information in the information acquisition and registration unit of the server device. “Registration process” refers to a process for prompting an electronic device to register. Specifically, for example, a format for registration is input to the electronic device, and a user password is input to the format. This includes processing such as sending a message that prompts the server to send a reply. As a result, when the password information is returned together with the device identification information from the electronic device, the information acquisition / registration unit of the server device can acquire them and register them as electronic device information in units of electronic devices. When the registration is completed, the server device sends a cookie to the electronic device. The transmission history information related to the cookie is retained. As a result, when there is an information request for providing a service from an electronic device thereafter, the server device can provide a service related to the above processing execution. The provision of services after registration is completed is performed in accordance with the description in the other embodiments. If the comparison result at the device identification information comparison unit is the same as the comparison result, or the determination result at the cookie determination unit is a determination result as appropriate, the process execution unit returns the result at each unit. It is configured to execute processing other than the above determined based on the above.
[0093] 力かる構成は、サーバ装置が一度登録した機器識別情報はその後も消去せずに すべて保持し続けていることを前提としている。このため、サーバ装置は、機器識別 情報比較部での比較結果が一致しないとの比較結果であるということから、その電子 機器がかってサーバ装置に登録されたことがない、即ちサーバ装置にとって全く新 規の電子機器であることを知ることができ、この場合にふさわ 、処理である登録を 促すための処理を実行することが可能となる。このことを社会生活上の意義に照らし て換言すれば、ユーザが新規に購入した電子機器を用いて個人情報を使用したサ 一ビスを受けようとして初めてアクセスしてきた場合に、力かるサービスの提供に必要 な個人情報と機器識別情報との関連付けた登録が必要になるところ、本例の処理は そのためのプロセスであるということが言える。  [0093] The configuration to be used is based on the premise that all the device identification information registered once by the server device is kept without being deleted. For this reason, since the server device is a comparison result that the comparison result in the device identification information comparison unit does not match, the electronic device has never been registered in the server device, that is, completely new to the server device. Therefore, in this case, it is possible to execute a process for prompting registration, which is a process. In other words, in the context of social significance, the provision of powerful services when a user first accesses a service using personal information using a newly purchased electronic device. It is necessary to register the personal information necessary for the device and the device identification information, and it can be said that the processing in this example is a process for that purpose.
[0094] さらに、後述のように、機器識別情報比較部での比較結果が一致しないとの比較結 果であり、クッキー判断部での判断結果が不適正との判断結果であっても、さらにパ スワード情報比較部での比較結果に基づ 、て、電子機器の情報をサーバ装置の情 報取得登録部に登録するための処理とは別の処理がなされてもよい。そこで、かかる 場合の区別を的確になし得るよう、本実施例のサーバ装置は、機器識別情報比較部 での比較結果が一致するとの比較結果であり、又はクッキー判断部での判断結果が 適正との判断結果である場合に、パスワード情報の有無を判断する手段を有して!/ヽ ることが望ましい。この場合には、機器識別情報比較部での比較結果が一致すると の比較結果であり、又はクッキー判断部での判断結果が適正との判断結果である場 合、さらに当該手段が行うパスワード情報の有無に関する判断結果が「パスワード情 報なし」の場合に初めて処理実行部は電子機器の情報をサーバ装置の情報取得登 録部に登録するための処理を実行することとなる。このほか、パスワード情報の有無 に関する判断結果が「パスワード情報あり」という結果であり、さらにパスワード情報比 較部での比較結果が一致するとの比較結果のときは、比較結果が一致するパスヮー ド情報を含む電子機器情報に含まれる機器識別情報を、比較結果が一致しな ヽとさ れた機器識別情報と置き換えて登録するための処理を実行するように構成され、また 、 ノ スワード情報の有無に関する判断結果が「パスワード情報あり」という結果であり、 さらにパスワード情報比較部での比較結果が一致しないとの比較結果のときは、以 上とは別の処理がなされるように構成されて 、てもよ 、。 [0094] Further, as will be described later, the comparison result in the device identification information comparison unit does not match, and even if the determination result in the cookie determination unit is inappropriate, Based on the comparison result in the password information comparison unit, a process different from the process for registering the electronic device information in the information acquisition / registration unit of the server device may be performed. Therefore, in order to accurately distinguish between such cases, the server device of this embodiment is a comparison result that the comparison result in the device identification information comparison unit matches, or the determination result in the cookie determination unit is appropriate. It is desirable to have a means to determine the presence or absence of password information. In this case, if the comparison result of the device identification information comparison unit is the same, or if the determination result of the cookie determination unit is appropriate, the password information performed by the means is further determined. When the judgment result regarding presence / absence is “no password information”, the process execution unit will not register the electronic device information for the server device information acquisition for the first time. Processing for registering in the recording unit is executed. In addition, if the result of the determination regarding the presence or absence of password information is that there is password information, and if the comparison result in the password information comparison unit matches, the password information that matches the comparison result is displayed. The device identification information included in the included electronic device information is replaced with the device identification information for which the comparison result is deemed unmatched, and processing is performed for registration. If the judgment result is “password information exists”, and if the comparison result in the password information comparison unit does not match, the processing is different from the above. Moyo.
[0095] これらの場合におけるパスワード情報の有無の判断は、具体的には、例えば機器 識別情報に関する比較結果が一致しないとの比較結果、かつクッキーに関する判断 結果が不適正との判断結果である場合に、サーバ装置から電子機器に対して、「新 規登録か乗換えか」 t ヽぅ質問を送信し、これに対し「新規登録」を選択した回答を得 ることによってノ スワード情報がないということが判断できるといったものが考えられる  [0095] The determination of the presence / absence of password information in these cases is specifically, for example, when the comparison result regarding the device identification information does not match and the determination result regarding the cookie is a determination result that is inappropriate In addition, the server device sends “new registration or transfer” to the electronic device. T ヽ ぅ No question information is obtained by obtaining an answer that selects “new registration”. Can be judged
[0096] その余の構成は実施例 1から 3のいずれか一のサービスシステムの構成と同じであ るので、説明を省略する。 Since the remaining configuration is the same as that of any one of the service systems according to the first to third embodiments, the description thereof is omitted.
[0097] かかる構成は、例えば、電子機器のユーザが新規に電子機器を購入する場合に、 未だ設定されていないパスワードを設定して、新たにその電子機器を使用してサー バ装置からのサービスの提供を受けることを可能にする。 [0097] For example, when a user of an electronic device newly purchases an electronic device, such a configuration sets a password that has not been set, and newly uses the electronic device to provide a service from the server device. It is possible to receive the provision of.
[0098] <処理の流れ > [0098] <Process flow>
[0099] 図 10は、本実施例のサービスシステムにおける処理の流れの一例を示す図である  FIG. 10 is a diagram showing an example of the flow of processing in the service system of the present embodiment.
[0100] 電子機器の情報をサーバ装置に登録するための処理実行ステップ S1007におい て、サービスシステムは、前記機器識別情報比較ステップ S 1005における比較結果 がー致しないとの比較結果、かつ前記クッキー判断ステップ S1006における判断結 果が不適正との判断結果である場合に、電子機器の情報をサーバ装置に登録する ための処理を実行するように構成されている。なお、機器識別情報比較ステップにお ける比較結果が一致するとの比較結果、又はクッキー判断ステップにおける判断結 果が適正との判断結果である場合には、所定の処理実行ステップ S 1008において、 サービスシステムは、前記各ステップにおける結果に基づ 、て定められた上記以外 の処理を実行する。 [0100] In the processing execution step S1007 for registering electronic device information in the server device, the service system compares the result of the comparison in the device identification information comparison step S1005 with the result of the cookie determination. When the determination result in step S1006 is a determination result that is inappropriate, the processing for registering the information of the electronic device in the server device is executed. It should be noted that the comparison result in the device identification information comparison step is the same as the comparison result or the determination result in the cookie determination step. If the result is a determination result that the result is appropriate, in a predetermined process execution step S 1008, the service system executes a process other than the above determined based on the result in each step.
[0101] また、上述のように、機器識別情報比較ステップにおける比較結果が一致しないと の比較結果、かつクッキー判断ステップでの判断結果が不適正との判断結果であつ ても、さらにパスワード情報比較ステップでの比較結果が一致するとの比較結果であ る場合には、電子機器の情報をサーバ装置の情報取得登録部に登録するための処 理とは別の処理がなされてもよいので、力かる場合の区別を的確になし得るよう、本 実施例のサーバ装置は、機器識別情報比較ステップにおける比較結果が一致しな V、との比較結果、かつクッキー判断ステップでの判断結果が不適正との判断結果で ある場合に、さらにパスワード情報がある力否かの判断ステップにおける処理をする ことが望ましい。具体的には、機器識別情報比較ステップにおける比較結果が一致 しな 、との比較結果、かつクッキー判断ステップでの判断結果が不適正との判断結 果である場合に、(1)次に電子機器に対しパスワード情報の有無を判断するステップ における処理がなされ、判断結果力 ^パスワード情報なし」の場合には、電子機器の 情報をサーバ装置に登録するための処理を実行する、(2)次に電子機器に対しパス ワード情報の有無を判断するステップにおける処理がなされ、判断結果が「パスヮー ド情報あり」の場合には、さらにパスワード情報比較ステップに進み、そこでの比較結 果が一致するとの比較結果のときは、比較結果が一致するパスワード情報を含む電 子機器情報に含まれる機器識別情報を、比較結果が一致しな!、とされた機器識別 情報と置き換えて登録するための処理を実行する、(3)次に電子機器に対しパスヮ ード情報の有無を判断するステップにおける処理がなされ、判断結果が「パスワード 情報あり」の場合には、さらにパスワード情報比較ステップに進み、そこでの比較結果 がー致しないとの比較結果のときは、以上とは別の処理がなされるといった三通りの パターンが考えられる。  [0101] Further, as described above, even if the comparison result in the device identification information comparison step does not match, and the determination result in the cookie determination step is inappropriate, the password information comparison is further performed. If the comparison result in the step matches the comparison result, a process different from the process for registering the electronic device information in the information acquisition / registration unit of the server device may be performed. In order to accurately distinguish between cases, the server device of the present embodiment determines that the comparison result in the device identification information comparison step does not match V and the determination result in the cookie determination step is inappropriate. If this is the case, it is desirable to perform processing in the step of determining whether or not there is password information. Specifically, if the comparison result in the device identification information comparison step does not match and the determination result in the cookie determination step is an inappropriate result, (1) In the case where the process in the step of determining whether or not there is password information for the device is performed and the determination result is “no password information”, the processing for registering the electronic device information in the server device is executed. (2) Next If the electronic device is processed in the step of determining whether or not there is password information, and if the determination result is “with password information”, the process further proceeds to the password information comparison step, where the comparison result matches. In the case of the comparison result, the device identification information included in the electronic device information including the password information that matches the comparison result is the device identification information that the comparison result does not match! (3) Next, in the step of determining whether or not there is password information for the electronic device, and when the determination result is “with password information”, Proceed to the password information comparison step, and if the comparison result does not match, there are three possible patterns: a process different from the above.
[0102] その余の処理の流れは、実施例 1から 3のいずれか一のサービスシステムにおける 処理の流れと同じであるから、説明を省略する。  [0102] The remaining process flow is the same as the process flow in any one of the service systems according to the first to third embodiments, and thus the description thereof is omitted.
[0103] <効果 > [0104] 本実施例のサービスシステムにより、電子機器のユーザは、サーバ装置から促され る形で新たにパスワードを設定して、サーバ装置力もサービスの提供を受けることが 可能となる。 [0103] <Effect> [0104] With the service system of this embodiment, the user of the electronic device can set a new password in a form prompted by the server device, and the server device can also receive the service.
実施例 5  Example 5
[0105] <概要 >  [0105] <Overview>
[0106] 本実施例のサービスステムは、機器識別情報の比較結果が一致しないとの比較結 果、クッキーの判断結果が不適正との判断結果、パスワード情報の比較結果が一致 するとの比較結果である場合には、比較結果が一致するパスワード情報を含む電子 機器情報に含まれる機器識別情報を、比較結果が一致しな!、とされた機器識別情 報と置き換えて登録するための処理を実行するものであり、電子機器の乗換え又は 故障の場合への対応を想定したものである。ここでの置換えは、個人情報と関連付 けられて!/、た旧機器 (乗換え前の機器)の機器識別情報から、新機器 (乗換え後の機 器)のそれに置き換えることである。  [0106] The service system of the present embodiment is a comparison result that the comparison result of the device identification information does not match, the determination result of the cookie determination is inappropriate, and the comparison result of the password information match. In some cases, the device identification information included in the electronic device information that includes the password information that matches the comparison result is replaced with the device identification information that the comparison result does not match! It is assumed to respond to the case of electronic device transfer or failure. The replacement here is to replace the device identification information of the old device (device before transfer) associated with the personal information with that of the new device (device after transfer).
[0107] <構成 >  [0107] <Configuration>
[0108] 図 11は、本実施例のサービスシステムの機能ブロックの一例を示す図である。同図 において、本実施例の「サービスシステム」 1100は、「電子機器」 1110と、「サーバ装 置」 1120とからなる。このうち、電子機器は、「機器識別情報保持部」 1111と、「タツ キー保持部」 1112と、「パスワード情報入力部」 1113と、「制御部」 1114と、「電子機 器通信部」 1115とを有する。また、「サーバ装置」は、「サーバ装置通信部」 1121と、 「情報取得登録部」 1122と、「機器識別情報比較部」 1123と、「クッキー判断部」 112 4と、「パスワード情報比較部」 1125と、「処理実行部」 1126とを有する。  FIG. 11 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment. In the figure, the “service system” 1100 of the present embodiment includes an “electronic device” 1110 and a “server device” 1120. Among them, the electronic devices are “device identification information holding unit” 1111, “tack key holding unit” 1112, “password information input unit” 1113, “control unit” 1114, and “electronic device communication unit” 1115. And have. The “server device” includes a “server device communication unit” 1121, an “information acquisition registration unit” 1122, a “device identification information comparison unit” 1123, a “cookie determination unit” 112 4, and a “password information comparison unit”. 1125 and a “processing execution unit” 1126.
[0109] 「サーバ装置」の「処理実行部」は、機器識別情報比較部での比較結果が一致しな いとの比較結果、クッキー判断部での判断結果が不適正との判断結果、かつパスヮ ード情報比較部での比較結果が一致するとの比較結果である場合には、比較結果 がー致するパスワード情報を含む電子機器情報に含まれる機器識別情報を、比較 結果が一致しないとされた機器識別情報と置き換えて登録するための処理を実行す るように構成されている。なお、機器識別情報比較部での比較結果が一致するとの 比較結果、クッキー判断部での判断結果が適正との判断結果、又はパスワード情報 比較部での比較結果が一致しないとの比較結果である場合には、処理実行部は、前 記各部での結果に基づいて定められた上記以外の処理を実行するように構成されて いる。 [0109] The "process execution unit" of the "server device" includes a comparison result that the comparison result in the device identification information comparison unit does not match, a determination result that the determination result in the cookie determination unit is inappropriate, and a pass If the comparison result in the device information comparison unit matches, the comparison result does not match the device identification information included in the electronic device information including the password information that matches the comparison result. It is configured to execute a process for registration by replacing the device identification information. In addition, the comparison result that the comparison result in the device identification information comparison unit matches, the determination result in the cookie determination unit is appropriate, or the password information When the comparison result is that the comparison results in the comparison unit do not match, the process execution unit is configured to execute a process other than the above determined based on the result in each unit.
[0110] その余の構成は実施例 1から 4のいずれか一のサービスシステムの構成と同じであ るので、説明を省略する。  [0110] The rest of the configuration is the same as that of any one of the service systems according to the first to fourth embodiments, and a description thereof will be omitted.
[0111] かかる構成は、例えば、電子機器のユーザが旧い電子機器カゝら新しい電子機器に 乗り換える(買い換える)場合に、新機器についての登録を全く新規に行う場合に比 ベ簡易に行うことを可能にする。具体的には、当該ユーザは旧機器を使用してサー ビスの提供を受けていたときにパスワード情報を有していたわけであるが、新機器に 乗り換える時に、引き続き同じパスワード情報を使用できる方が便利である。そこで、 本実施例のサービスシステムにおいては、新機器カゝら送られてくるパスワードが旧機 器で使っていたパスワードと一致する場合に乗換えを実現するための処理を実行す るように構成される。即ち、この場合、新機器カゝら送られてくる情報のうち、新機器から 従来使っていたパスワード情報が送付されてきた場合、サーバ装置での比較 '判断 結果は、機器識別情報は新たな機器であるから登録済みの旧機器の機器識別情報 とは一致せず、当該新機器は過去にサーバ装置と通信をしたことがないので、クッキ 一の判断結果も不適正となるが、パスワード情報のみは旧機器のパスワード情報とし て登録済みのものが送られてくるので、比較結果は一致する。そこで、サーバ装置は 、 ノ スワード情報の比較結果力 このユーザは既に登録済みのユーザであって機器 を乗り換えた者であることを認識することができる。そこで、サーバ装置は旧機器の機 器識別情報とパスワード情報の関連付けを断ち切り、新たにそのノ スワード情報を新 機器の機器識別情報と関連付ける形で登録することが可能となる。具体的には、当 該パスワード情報と関連付けられて登録されて ヽる機器識別情報(旧機器の機器識 別情報)を今回送付されてきた機器識別情報 (新機器の機器識別情報)に置き換え て登録する。これにより、ユーザは旧機器で使っていたパスワード情報をそのまま新 機器でも使用してサービスの提供を受けることが可能となり、ユーザの便宜に適うシ ステムの実現が可能となる。  [0111] For example, when the user of an electronic device changes (replaces) an old electronic device user to a new electronic device, the configuration is simpler than when a new device is newly registered. enable. Specifically, the user had password information when the service was provided using the old device, but the person who can continue to use the same password information when switching to the new device. Convenient. Therefore, the service system of this embodiment is configured to execute a process for realizing a transfer when the password sent from the new device matches the password used on the old device. The In other words, in this case, if the password information that was previously used is sent from the new device out of the information sent from the new device card, the comparison result in the server device will show that the device identification information is new. Since it is a device, it does not match the device identification information of the registered old device, and the new device has never communicated with the server device in the past. Only the registered password information for the old device is sent, so the comparison results match. Therefore, the server device can recognize that the comparison result of the word information is a user who has already been registered and who has changed the device. Therefore, the server device can break the association between the device identification information of the old device and the password information and newly register the password information in association with the device identification information of the new device. Specifically, the device identification information registered in association with the password information (the device identification information of the old device) is replaced with the device identification information (the device identification information of the new device) sent this time. sign up. As a result, the user can use the password information that was used on the old device as it is on the new device to receive services, and a system that suits the user's convenience can be realized.
[0112] なお、本実施例のサービスシステムにおいては、パスワードのみが一致すれば旧機 器力 新機器への乗換えが実現されることから、当該パスワードの漏洩や偶然の一 致などによる他者による不正アクセスの危険を厳に回避することが必要である。この ため、例えば、専ら力かる乗換えのために使用される特殊パスワードが設けられ、こ れにより旧機器の機器識別情報と特殊パスワードの関連付けを行った上で、新機器 の機器識別情報と一緒に当該特殊パスワードを送付することなどにより、新機器から アクセスして!/、る者が間違!/、なく旧機器のユーザであることが確認できるようにするこ とが望ましい。また、その際の特殊パスワードは、偶然の一致の可能性を極小化する ため、通常のパスワードより長 、 (数字や記号の数が多 、;)ものであることが望まし 、。 [0112] In the service system of this embodiment, if only the passwords match, the old machine Since it is possible to transfer to a new device, it is necessary to strictly avoid the risk of unauthorized access by others due to leakage of the password or coincidence. For this reason, for example, a special password that is used exclusively for transfer is provided, and after this, the device identification information of the old device and the special password are associated with each other, together with the device identification information of the new device. The person who accesses from the new device by sending the special password is wrong! It is desirable to be able to confirm that the user is an old device. Also, the special password at that time should be longer (more numbers and symbols) than ordinary passwords in order to minimize the chance of accidental matching.
[0113] また、本実施例のサービスステムの構成は、例えば、電子機器が修理不能に故障 した場合にこれを新たな機器と交換する場合にも、ユーザが引き続き旧機器 (故障し た機器)で使って!/、たパスワード情報をそのまま新機器 (交換後の機器)での使用し てサービスの提供を受けることも可能にする。 [0113] In addition, the service system configuration of the present embodiment is such that, for example, when an electronic device fails so that it cannot be repaired, the user continues to replace the old device (failed device) with a new device. The password information can be used on the new device (the device after replacement) as it is, and the service can be provided.
[0114] <処理の流れ > [0114] <Process flow>
[0115] 図 12は、本実施例のサービスシステムにおける処理の流れの一例を示す図である  FIG. 12 is a diagram showing an example of the processing flow in the service system of the present embodiment.
[0116] 比較結果が一致するパスワード情報を含む電子機器情報に含まれる機器識別情 報を、比較結果が一致しな 、とされた機器識別情報と置き換えて登録するための処 理実行ステップ S 1208において、サービスシステムは、前記機器識別情報比較ステ ップ S 1205における比較結果が一致しないとの比較結果、前記クッキー判断ステツ プ S 1206における判断結果が不適正との判断結果、かつ前記パスワード情報比較 ステップ S1207における比較結果が一致するとの比較結果である場合には、比較結 果が一致するパスワード情報を含む電子機器情報に含まれる機器識別情報を、比 較結果が一致しないとされた機器識別情報と置き換えて登録するための処理を実行 する。なお、機器識別情報比較ステップにおける比較結果が一致するとの比較結果 、クッキー判断ステップにおける判断結果が適正との判断結果、又はパスワード情報 比較ステップにおける比較結果が一致しないとの比較結果である場合には、所定の 処理実行ステップ S 1209において、サービスシステムは、前記各ステップにおける結 果に基づいて定められた上記以外の処理を実行する。 [0117] その余の処理の流れは、実施例 1から 4のいずれか一のサービスシステムにおける 処理の流れと同じであるから、説明を省略する。 [0116] Processing execution step S 1208 for registering the device identification information included in the electronic device information including the password information with the matching comparison result by replacing the device identification information with the comparison result not matching. In the service system, the comparison result that the comparison result in the device identification information comparison step S 1205 does not match, the determination result that the determination result in the cookie determination step S 1206 is inappropriate, and the password information comparison If the comparison result in step S1207 indicates that the comparison results match, the device identification information included in the electronic device information including the password information that matches the comparison result is replaced with the device identification information that the comparison result does not match. Execute the process for registering with the replacement. If the comparison result is that the comparison results in the device identification information comparison step match, the determination result in the cookie determination step is appropriate, or the comparison result in the password information comparison step does not match In the predetermined process execution step S 1209, the service system executes processes other than those described above based on the results in the respective steps. [0117] The remaining processing flow is the same as the processing flow in any one of the service systems according to the first to fourth embodiments, and thus the description thereof is omitted.
[0118] <効果> [0118] <Effect>
[0119] 本実施例のサービスシステムにより、電子機器のユーザは、電子機器の乗換えや 故障の場合に、旧機器で使っていたパスワード情報をそのまま新機器でも使用して サービスの提供を受けることが可能となり、ユーザの便宜に適うシステムの実現が可 能となる。  [0119] With the service system of this embodiment, in the event of a transfer or failure of an electronic device, a user of the electronic device can receive the service using the password information used on the old device as it is on the new device. This makes it possible to implement a system that is convenient for the user.
実施例 6  Example 6
[0120] <概要 >  [0120] <Overview>
[0121] 本実施例のサービスステムは、機器識別情報比較部での比較結果が一致するとの 比較結果、クッキー判断部での判断結果が不適正との判断結果である場合には、処 理実行部は、電子機器に対してサービスを提供可能となるようにサーバ装置へ登録 すべき情報の送信を促す処理を実行するものであり、他人の電子機器の中古品を利 用する場合への対応を想定したものである。  [0121] The service system according to the present embodiment executes the process when the comparison result in the device identification information comparison unit is the same and the determination result in the cookie determination unit is an inappropriate determination result. The department performs processing to urge the transmission of information to be registered to the server device so that services can be provided to electronic devices. Is assumed.
[0122] <構成 >  [0122] <Configuration>
[0123] 図 13は、本実施例のサービスシステムの機能ブロックの一例を示す図である。同図 において、本実施例の「サービスシステム」 1300は、「電子機器」 1310と、「サーバ装 置」 1320とからなる。このうち、電子機器は、「機器識別情報保持部」 1311と、「タツ キー保持部」 1312と、「パスワード情報入力部」 1313と、「制御部」 1314と、「電子機 器通信部」 1315とを有する。また、「サーバ装置」は、「サーバ装置通信部」 1321と、 「情報取得登録部」 1322と、「機器識別情報比較部」 1323と、「クッキー判断部」 132 4と、「パスワード情報比較部」 1325と、「処理実行部」 1326とを有する。  FIG. 13 is a diagram illustrating an example of functional blocks of the service system according to the present embodiment. In this figure, the “service system” 1300 of the present embodiment includes an “electronic device” 1310 and a “server device” 1320. Among them, the electronic devices are “device identification information holding unit” 1311, “tack key holding unit” 1312, “password information input unit” 1313, “control unit” 1314, and “electronic device communication unit” 1315. And have. The “server device” includes a “server device communication unit” 1321, an “information acquisition / registration unit” 1322, a “device identification information comparison unit” 1323, a “cookie judgment unit” 132 4, and a “password information comparison unit”. 1325 and a “processing execution unit” 1326.
[0124] 「サーバ装置」の「処理実行部」は、機器識別情報比較部での比較結果が一致する との比較結果、かつクッキー判断部での判断結果が不適正との判断結果である場合 には、電子機器に対してサービスを提供可能となるようにサーバ装置へ登録すべき 情報の送信を促す処理を実行するように構成されている。なお、機器識別情報比較 部での比較結果が一致しな 、との比較結果、又はクッキー判断部での判断結果が適 正との判断結果である場合には、処理実行部は、前記各部での結果に基づいて定 められた上記以外の処理を実行するように構成されて ヽる。 [0124] The "process execution unit" of the "server device" is a comparison result that the comparison result in the device identification information comparison unit matches, and a determination result in the cookie determination unit is a determination result that is inappropriate Is configured to execute processing for prompting transmission of information to be registered to the server device so that a service can be provided to the electronic device. If the comparison result of the device identification information comparison unit does not match, or the determination result of the cookie determination unit is correct, the process execution unit is Based on the results of It can be configured to execute other processes than those described above.
[0125] その余の構成は実施例 1から 5のいずれか一のサービスシステムの構成と同じであ るので、説明を省略する。  [0125] The rest of the configuration is the same as the configuration of any one of the service systems according to the first to fifth embodiments, and a description thereof will be omitted.
[0126] かかる構成は、例えば、電子機器がレンタルされ、ユーザが代わるたびに同じ電子 機器のパスワード情報を登録し直して使い回すといった場合への対応を可能にする 。具体的には、例えば、あるユーザが電子機器をレンタルにより使用し、自身のパス ワード情報が当該電子機器の機器識別情報と関連付けられて登録されていたとする 。その後当該ユーザが退会するなどによりレンタル期間が終了し、当該電子機器が 所有者 (サーバ装置の管理者など)に一旦返還される。そして、当該電子機器に残つ ているクッキーは削除される。また、サーバ装置においては、当該機器識別情報と関 連付けられていたパスワード情報が廃棄される。その後、当該電子機器は新たなュ 一ザにレンタルされる。そこで、新たなユーザが当該電子機器力もアクセスした場合、 機器識別情報は従来力 使用されていた同じ機器のものであるから、比較結果は一 致する。しかし、クッキーは削除済みであるから、その判断結果は不適正となる。また 、ノ スワードは未設定であるから送られてこない。そこで、上述のような比較'判断結 果の場合に、サーバ装置の処理実行部が電子機器に対してサービスを提供可能と なるようにサーバ装置へ登録すべき情報の送信を促すことで、新ユーザが中古品で ある当該電子機器を使用してサービスの提供を受けることが可能となる。  [0126] Such a configuration makes it possible to cope with a case where, for example, an electronic device is rented and the password information of the same electronic device is re-registered and reused every time the user changes. Specifically, for example, it is assumed that a certain user uses an electronic device by rental, and his / her password information is registered in association with the device identification information of the electronic device. After that, the rental period ends when the user withdraws, etc., and the electronic device is returned to the owner (server device administrator, etc.). The cookies remaining on the electronic device are deleted. In the server device, the password information associated with the device identification information is discarded. The electronic device is then rented to a new user. Therefore, when a new user also accesses the power of the electronic device, since the device identification information is that of the same device that has been used in the past, the comparison results match. However, since the cookie has been deleted, the determination result is inappropriate. Also, no word is sent because it is not set. Therefore, in the case of the comparison result as described above, the processing execution unit of the server device prompts transmission of information to be registered to the server device so that the service can be provided to the electronic device. Users will be able to receive services using second-hand electronic devices.
[0127] <処理の流れ >  [0127] <Process flow>
[0128] 図 14は、本実施例のサービスシステムにおける処理の流れの一例を示す図である  FIG. 14 is a diagram showing an example of the flow of processing in the service system of the present embodiment.
[0129] 電子機器に対してサービスを提供可能となるようにサーバ装置へ登録すべき情報 の送信を促す処理実行ステップ S1407において、サービスシステムは、前記機器識 別情報比較ステップ S1405における比較結果が一致するとの比較結果、かつ前記 クッキー判断ステップ S 1406における判断結果が不適正との判断結果である場合に は、電子機器に対してサービスを提供可能となるようにサーバ装置へ登録すべき情 報の送信を促す処理を実行する。なお、機器識別情報比較ステップにおける比較結 果がー致しな 、との比較結果、又はクッキー判断ステップにおける判断結果が適正と の判断結果である場合には、所定の処理実行ステップ S 1408において、サービスシ ステムは、前記各ステップにおける結果に基づいて定められた上記以外の処理を実 行する。 [0129] In the process execution step S1407 that prompts transmission of information to be registered to the server device so that the service can be provided to the electronic device, the service system matches the comparison result in the device identification information comparison step S1405. If the comparison result and the determination result in the cookie determination step S 1406 are inappropriate, the information of information to be registered in the server device so that the service can be provided to the electronic device is obtained. Execute processing that prompts transmission. It should be noted that the comparison result in the device identification information comparison step does not match or the judgment result in the cookie judgment step is appropriate. If the result is the determination result, in the predetermined processing execution step S1408, the service system executes processing other than the above determined based on the result in each step.
[0130] その余の処理の流れは、実施例 1から 5のいずれか一のサービスシステムにおける 処理の流れと同じであるから、説明を省略する。  [0130] The remaining process flow is the same as the process flow in the service system according to any one of the first to fifth embodiments, and thus the description thereof is omitted.
[0131] 図 15は、参考までに、機器識別情報比較ステップ、クッキー判断ステップ、パスヮ ード情報比較ステップにおける結果に応じた所定の処理実行内容の一例を示したも のである。例えば、機器情報比較ステップ S1505における比較結果が一致するとの 比較結果、クッキー判断ステップ S 1506における判断結果が適正との判断結果であ る場合において、ノ スワード情報比較ステップ S1507における比較結果が一致しな いとの比較結果である場合は電子機器に対してサービスを提供不可とするための処 理実行 S 1508がなされ、力かる場合において、パスワード情報比較ステップにおける 比較結果が一致するとの比較結果である場合は電子機器に対してサービスを提供 するための処理実行 S1509がなされる。また、機器情報比較ステップにおける比較 結果が一致するとの比較結果、クッキー判断ステップにおける判断結果が不適正と の判断結果である場合には、電子機器に対してサービスを提供可能となるようにサー バ装置へ登録すべき情報の送信を促す処理実行 S1510がなされる。一方、機器識 別情報比較ステップにおける比較結果が一致しな 、との比較結果である場合にぉ ヽ て、クッキー判断ステップ S 1511における判断結果が不適正との判断結果である場 合、ノ スワード情報があるか否かの判断ステップ S1512においてパスワード情報が ないと判断された場合には、電子機器の情報をサーバ装置に登録するための処理 実行 S1513がなされ、パスワード情報があるか否かの判断ステップにおいてパスヮ ード情報があると判断された場合には、さらにパスワード情報比較ステップ S1514に おいて一致すると判断された場合に、比較結果が一致するパスワード情報を含む電 子機器情報に含まれる機器識別情報を、比較結果が一致しな!、とされた機器識別 情報と置き換えて登録するための処理実行 S 1515がなされる。  FIG. 15 shows an example of predetermined processing execution contents according to the results in the device identification information comparison step, the cookie determination step, and the password information comparison step for reference. For example, if the comparison result in the device information comparison step S1505 is the same as the comparison result and the determination result in the cookie determination step S1506 is the appropriate determination result, the comparison result in the nosword information comparison step S1507 does not match. If the result is a comparison result with the password information comparison step, the process execution S 1508 is performed to disable the provision of service to the electronic device. Processing execution S1509 is performed to provide services to electronic devices. In addition, if the comparison result in the device information comparison step is the same as the comparison result and the determination result in the cookie determination step is an inappropriate determination result, the server is configured so that the service can be provided to the electronic device. Processing execution S1510 is performed to prompt transmission of information to be registered to the apparatus. On the other hand, if the comparison result in the device identification information comparison step does not match, if the determination result in the cookie determination step S 1511 is an inappropriate determination result, the If it is determined in step S1512 that there is no password information, a process for registering electronic device information in the server device is executed. S1513 is performed to determine whether there is password information. If it is determined in the step that there is password information, and if it is further determined in password information comparison step S1514, the device included in the electronic device information including the password information with the matching result matches. Processing execution S1515 is performed to replace the identification information with the device identification information that the comparison result does not match!
[0132] <効果>  [0132] <Effect>
[0133] 本実施例のサービスシステムにより、電子機器のユーザは、中古品である電子機器 を使用してサービスの提供を受けることが可能となる。 [0133] With the service system of this embodiment, the user of the electronic device can use the used electronic device. It becomes possible to receive the provision of services using.

Claims

請求の範囲 The scope of the claims
[1] 電子機器と、前記電子機器にサービスを提供するサーバ装置と、からなるサービス システムであって、  [1] A service system comprising an electronic device and a server device that provides a service to the electronic device,
電子機器は、  Electronic equipment
電子機器固有の識別情報である機器識別情報を保持する機器識別情報保持部 と、  A device identification information holding unit for holding device identification information which is identification information unique to an electronic device;
サーバ装置と過去に通信したことがあるかを示す情報であるクッキーを保持するク ツキ一保持部と、  A clock holding unit for holding a cookie which is information indicating whether or not communication with the server device has been performed in the past;
サーバ装置に送出するパスワード情報を入力するためのパスワード情報入力部と 制御部と、  A password information input unit and a control unit for inputting password information to be sent to the server device;
サーバ装置と情報交換をするための電子機器通信部と、  An electronic device communication unit for exchanging information with the server device;
を有し、  Have
サーバ装置は、  Server device
電子機器と情報交換するためのサーバ装置通信部と、  A server device communication unit for exchanging information with an electronic device;
電子機器に対してサービスを提供可能となるように電子機器カゝら送られる情報を 電子機器単位で電子機器情報として登録する情報取得登録部と、  An information acquisition and registration unit for registering information sent from the electronic device as electronic device information for each electronic device so that the service can be provided to the electronic device;
電子機器がサービスを受けようとする際に送出する機器識別情報と、情報取得登 録部に蓄積されている機器識別情報とを比較する機器識別情報比較部と、  A device identification information comparison unit that compares device identification information transmitted when an electronic device attempts to receive a service with device identification information stored in the information acquisition registration unit;
電子機器がサービスを受けようとする際に、電子機器力も適正なクッキーを取得し たカゝ判断するクッキー判断部と、  When an electronic device tries to receive a service, the electronic device strength also determines whether the appropriate cookie was acquired,
電子機器がサービスを受けようとする際に送出するパスワード情報と、情報取得 登録部に蓄積されているパスワード情報とを比較するパスワード情報比較部と、 前記各部での結果に基づいて定められた処理を実行する処理実行部と、 を有するサービスシステム。  A password information comparison unit that compares password information transmitted when an electronic device is about to receive a service and password information stored in the information acquisition and registration unit; and a process determined based on the results of the respective units. A service execution unit for executing
[2] 前記処理実行部は、  [2] The process execution unit includes:
前記機器識別情報比較部での比較結果が一致するとの比較結果であり、 前記クッキー判断部での判断結果が適正との判断結果であり、 前記パスワード情報比較部での比較結果が一致しないとの比較結果である場合に は、 It is a comparison result that the comparison result in the device identification information comparison unit matches, the determination result in the cookie determination unit is a determination result that is appropriate, If the comparison result in the password information comparison unit does not match,
前記電子機器に対してサービスを提供不可とするための処理を実行する請求項 1 に記載のサービスシステム。  The service system according to claim 1, wherein a process for disabling service from the electronic device is executed.
[3] 前記処理実行部は、  [3] The process execution unit includes:
前記機器識別情報比較部での比較結果が一致するとの比較結果であり、 前記クッキー判断部での判断結果が適正との判断結果であり、  It is a comparison result that the comparison result in the device identification information comparison unit matches, the determination result in the cookie determination unit is a determination result that is appropriate,
前記パスワード情報比較部での比較結果が一致するとの比較結果である場合には 前記電子機器に対してサービスを提供するための処理を実行する請求項 1又は 2 に記載のサービスシステム。  3. The service system according to claim 1, wherein when the comparison result in the password information comparison unit is a match result, a process for providing a service to the electronic device is executed.
[4] 前記処理実行部は、  [4] The process execution unit includes:
前記機器識別情報比較部での比較結果が一致しないとの比較結果であり、 前記クッキー判断部での判断結果が不適正との判断結果である場合には 前記電子機器の情報を情報取得登録部に登録するための処理を実行する請求項 1から 3のいずれか一に記載のサービスシステム。  If the comparison result in the device identification information comparison unit does not match, and if the determination result in the cookie determination unit is an inappropriate determination result, the information on the electronic device is an information acquisition registration unit The service system according to any one of claims 1 to 3, wherein a process for registering with the service is executed.
[5] 前記処理実行部は、  [5] The process execution unit includes:
前記機器識別情報比較部での比較結果が一致しないとの比較結果であり、 前記クッキー判断部での判断結果が不適正との判断結果であり、  It is a comparison result that the comparison result in the device identification information comparison unit does not match, the determination result in the cookie determination unit is a determination result that is inappropriate,
前記パスワード情報比較部での比較結果が一致するとの比較結果である場合には 比較結果が一致するパスワード情報を含む電子機器情報に含まれる機器識別情 報を、前記比較結果が一致しな 、とされた機器識別情報と置き換えて登録するため の処理を実行する請求項 1から 4のいずれか一に記載のサービスシステム。  If the comparison result in the password information comparison unit is the same, the device identification information included in the electronic device information including the password information with the same comparison result is the same as the comparison result. 5. The service system according to any one of claims 1 to 4, wherein a process for registering the registered device identification information is performed.
[6] 前記処理実行部は、 [6] The process execution unit includes:
前記機器識別情報比較部での比較結果が一致するとの比較結果であり、 前記クッキー判断部での判断結果が不適正との判断結果である場合には、 前記電子機器に対してサービスを提供可能となるように情報取得登録部へ登録す べき情報の送信を促す処理を実行する請求項 1から 5のいずれか一に記載のサービ スシステム。 If the comparison result in the device identification information comparison unit is the same, and if the determination result in the cookie determination unit is inappropriate, the service can be provided to the electronic device. Register with the Information Acquisition and Registration Department so that The service system according to any one of claims 1 to 5, wherein a process for prompting transmission of information to be executed is executed.
[7] サーバ装置と、 [7] a server device;
機器固有の識別情報である機器識別情報、サーバ装置と過去に通信したことがあ るかを示す情報であるクッキー、パスワード情報、のいずれか一又は二以上をサーバ 装置に送信する機能を有し、サーバ装置カゝらサービスの提供を受ける電子機器と、 力 なるサービスシステムのサーバ装置の動作方法であって、  It has a function to transmit to the server device one or more of device identification information that is device-specific identification information, cookie that is information indicating whether communication with the server device has occurred in the past, or password information. A method of operating the server device of the powerful service system, the electronic device receiving the service provided by the server device,
電子機器カゝら送出された機器識別情報と、予め登録されて!ヽる機器識別情報とを 比較する機器識別情報比較ステップと、  A device identification information comparison step for comparing the device identification information sent from the electronic device cover with the device identification information registered in advance;
電子機器力 適正なクッキーを取得した力判断するクッキー判断ステップと、 電子機器力も送出されたパスワード情報と、予め登録されたパスワード情報とを比 較するパスワード情報比較ステップと、  Electronic device strength Cookie judgment step to judge the power to acquire the proper cookie, Password information comparison step to compare the password information sent also electronic device strength with the password information registered in advance,
の!、ずれか一又は二以上のステップを有し、  Has one or more steps,
さらに、前記一又は二以上のステップにより得られた結果の組み合わせに基づいて 定められた処理を実行する処理実行ステップと、  Furthermore, a process execution step for executing a process determined based on a combination of results obtained by the one or more steps,
を有するサービスシステムのサーバ装置の動作方法。  The operation method of the server apparatus of the service system which has.
[8] 前記処理実行ステップにおける処理は、前記機器識別情報比較ステップにおける 比較結果が一致するとの比較結果であり、前記クッキー判断ステップにおける判断結 果が適正との判断結果であり、かつ前記パスワード情報比較ステップにおける比較 結果が一致しな 、との比較結果である場合には、前記電子機器に対してサービスを 提供不可とするための処理である請求項 7に記載のサービスシステムのサーバ装置 の動作方法。 [8] The process in the process execution step is a comparison result that the comparison result in the device identification information comparison step matches, the determination result in the cookie determination step is a determination result that is appropriate, and the password information 8. The operation of the server device of the service system according to claim 7, wherein when the comparison result in the comparison step is a comparison result that does not match, the process is a process for disabling service provision to the electronic device. Method.
[9] 前記処理実行ステップにおける処理は、前記機器識別情報比較ステップにおける 比較結果が一致するとの比較結果であり、前記クッキー判断ステップにおける判断結 果が適正との判断結果であり、かつ前記パスワード情報比較ステップにおける比較 結果が一致するとの比較結果である場合には、前記電子機器に対してサービスを提 供するための処理である請求項 7又は 8に記載のサービスシステムのサーバ装置の 動作方法。 [9] The process in the process execution step is a comparison result that the comparison result in the device identification information comparison step matches, the determination result in the cookie determination step is a determination result that is appropriate, and the password information 9. The operation method of the server device of the service system according to claim 7 or 8, which is a process for providing a service to the electronic device when the comparison result in the comparison step is a match result.
[10] 前記処理実行ステップにおける処理は、前記機器識別情報比較ステップにおける 比較結果が一致しな 、との比較結果であり、前記クッキー判断ステップにおける判断 結果が不適正との判断結果である場合には、前記電子機器の情報をサーバ装置に 登録するための処理である請求項 7から 9のいずれか一に記載のサービスシステムの サーバ装置の動作方法。 [10] The process in the process execution step is a comparison result that the comparison result in the device identification information comparison step does not match, and the determination result in the cookie determination step is a determination result that is inappropriate. The operation method of the server device of the service system according to any one of claims 7 to 9, which is a process for registering information of the electronic device in the server device.
[11] 前記処理実行ステップにおける処理は、前記機器識別情報比較ステップにおける 比較結果が一致しな 、との比較結果であり、前記クッキー判断ステップにおける判断 結果が不適正との判断結果であり、前記パスワード情報比較ステップにおける比較 結果が一致するとの比較結果である場合には、比較結果が一致するパスワード情報 を含む電子機器情報に含まれる機器識別情報を、前記比較結果が一致しな ヽとされ た機器識別情報と置き換えて登録するための処理である請求項 7から 10のいずれか 一に記載のサービスシステムのサーバ装置の動作方法。  [11] The process in the process execution step is a comparison result that the comparison result in the device identification information comparison step does not match, and the determination result in the cookie determination step is a determination result that is inappropriate. If the comparison result in the password information comparison step indicates that the comparison results are the same, the device identification information included in the electronic device information including the password information that has the same comparison result is considered not to match the comparison result. The operation method of the server device of the service system according to any one of claims 7 to 10, wherein the operation method is a process for registration by replacing with device identification information.
[12] 前記処理実行ステップにおける処理は、前記機器識別情報比較ステップにおける 比較結果が一致するとの比較結果であり、前記クッキー判断ステップにおける判断結 果が不適正との判断結果である場合には、前記電子機器に対してサービスを提供可 能となるようにサーバ装置へ登録すべき情報の送信を促す処理である請求項 7から 1 1のいずれか一に記載のサービスシステムのサーバ装置の動作方法。  [12] The process in the process execution step is a comparison result that the comparison result in the device identification information comparison step matches, and if the determination result in the cookie determination step is a determination result that is inappropriate, The method of operating a server device in a service system according to claim 7, which is a process of prompting transmission of information to be registered to the server device so that a service can be provided to the electronic device. .
PCT/JP2006/304727 2005-04-26 2006-03-10 Service system and operation method of server device in the system WO2006117931A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2005-128706 2005-04-26
JP2005128706A JP2006309355A (en) 2005-04-26 2005-04-26 Service system and operation method of server device of the system

Publications (1)

Publication Number Publication Date
WO2006117931A1 true WO2006117931A1 (en) 2006-11-09

Family

ID=37307736

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2006/304727 WO2006117931A1 (en) 2005-04-26 2006-03-10 Service system and operation method of server device in the system

Country Status (2)

Country Link
JP (1) JP2006309355A (en)
WO (1) WO2006117931A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6989906B1 (en) 2021-04-22 2022-01-12 株式会社プロット Password management system, password management device, password management method, password management program and recording medium

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4835566B2 (en) * 2007-09-28 2011-12-14 ダイキン工業株式会社 Device management system, device setting device, device management device, device management method, and device management program
JP5523208B2 (en) 2010-06-07 2014-06-18 キヤノン株式会社 Server apparatus, control method thereof, and program
KR101803305B1 (en) * 2011-12-15 2018-01-10 삼성전자주식회사 Dispaly apparatus and method for operating application
JP7008457B2 (en) * 2017-10-02 2022-01-25 シャープ株式会社 Electrical equipment with remote controller

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000078280A (en) * 1998-09-02 2000-03-14 Toyota Motor Corp Terminal device authentication device
JP2002123777A (en) * 2000-10-16 2002-04-26 Dainippon Printing Co Ltd Access managing method and server device
JP2003323409A (en) * 2002-05-07 2003-11-14 Seiko Epson Corp Single sign-on system, its program and its method
JP2004258847A (en) * 2003-02-25 2004-09-16 Tech Res & Dev Inst Of Japan Def Agency Terminal monitoring and control device, terminal monitoring and control method and terminal monitoring and control program

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000078280A (en) * 1998-09-02 2000-03-14 Toyota Motor Corp Terminal device authentication device
JP2002123777A (en) * 2000-10-16 2002-04-26 Dainippon Printing Co Ltd Access managing method and server device
JP2003323409A (en) * 2002-05-07 2003-11-14 Seiko Epson Corp Single sign-on system, its program and its method
JP2004258847A (en) * 2003-02-25 2004-09-16 Tech Res & Dev Inst Of Japan Def Agency Terminal monitoring and control device, terminal monitoring and control method and terminal monitoring and control program

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6989906B1 (en) 2021-04-22 2022-01-12 株式会社プロット Password management system, password management device, password management method, password management program and recording medium
JP2022166964A (en) * 2021-04-22 2022-11-04 株式会社プロット Password management system, password management device, password management method, password management program and recording medium

Also Published As

Publication number Publication date
JP2006309355A (en) 2006-11-09

Similar Documents

Publication Publication Date Title
CN105072133B (en) Login method and device for application program
TWI524287B (en) Purchasing of individual features of a software product
US7386103B1 (en) Method and system for providing prompt navigation in interactive voice response (IVR) system
US20090165107A1 (en) Identification managment system for electronic device authentication
US20170186117A1 (en) License management apparatus, license management method, and license authentication program
JP2006107468A (en) License transfer system, user terminal, and license information issuing server
JPH11507451A (en) System for detecting unauthorized account access
EP1486851A1 (en) Authentication system, authentication server, authentication method, authentication program, terminal, authentication request method, authentication request program, and storage medium
WO2011077512A1 (en) User authentication method, user authentication system, and portable communications terminal
JP2004512583A (en) Transaction verification
JP2004500649A (en) How to use software products provided via a network
CN105593869A (en) Authentication system, method, and program
US9514288B2 (en) Information processing device, information processing method, program and storage medium
CN103119975A (en) User account recovery
US20150235039A1 (en) Information processing device, information processing method, program and storage medium
WO2006117931A1 (en) Service system and operation method of server device in the system
JPH10214297A (en) Membership service system and method using internet
EP1302880B1 (en) Electronic commerce information processing system and method
AU2017285865A1 (en) Mobile authentication method and system therefor
WO2006137189A1 (en) Client server system and service method using the system
CN100535937C (en) Method and system for user authentication in a digital communication system
US20090178127A1 (en) Authentication system, authentication server, authenticating method, authenticating program, terminal, authentication requesting method, authentication requesting program, and storage medium
JP2002334227A (en) Paid service providing method, paid service providing system, content server, paid service providing program, and recording medium
JP2024051139A (en) Authentication System
JP2005301927A (en) Utilization management system of application software

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

NENP Non-entry into the national phase

Ref country code: RU

122 Ep: pct application non-entry in european phase

Ref document number: 06728895

Country of ref document: EP

Kind code of ref document: A1

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载