Apparatus and method for granting access to network-based services based upon existing bank account information
First Claim
1. A network transaction system in which a customer'"'"'s terminal station is connected to a first bank system via an open network and the first bank system is connected to a second bank system via an inter-network, the customer having an existing bank account in the second bank system and attempting to newly open a bank account in the first bank system, the network transaction system comprising:
- customer processing means disposed at the terminal station and coupled to the open network, said customer processing means for applying for a new bank account by supplying via the open network the first bank system with existing account information descriptive of the existing bank account owned by the customer in the second bank system;
first bank processing means disposed at the first bank system and coupled to the open network and inter-networks, said first bank processing means for requesting via the inter-networks the second bank system to make a confirmation of the existing bank account while forwarding the existing account information received from the customer processing means to the second bank system over the inter-network, and for opening the applied new bank account based on a confirmation response message received via the inter-network from the second bank system describing a result of the confirmation of the existing bank account, wherein the first bank processing means authenticates the customer based on the confirmation; and
second bank processing means disposed at the second bank system and coupled to the inter-network, said second bank processing means for confirming validity of the existing bank account upon request from said first bank processing means, and for returning the confirmation response message to said first bank processing means to report the result of the confirmation of the existing bank account, wherein said customer processing means comprises;
(a1) customer key generation means for generating a customer secret key and a customer public key, (a2) customer encryption means for assembling an account application message to be sent to said first bank processing means by;
encrypting account application information necessary for opening the new bank account by using the customer secret key and further by using a first bank public key, encrypting the customer public key and a second bank identification code by using the first bank public key, encrypting the existing account information by using the customer secret key and further by using a second bank public key, and combining the encrypted account application information, the encrypted customer public key, the encrypted second bank identification code, and the encrypted existing account information, and (a3) customer decryption means for obtaining new account acknowledgment information by decrypting an application response message received from said first bank processing means by using the customer secret key and further by using the first bank public key.
1 Assignment
0 Petitions
Accused Products
Abstract
A network transaction system applicable to cyberspace banking services using an open network, which allows customers to authenticate themselves through a simplified procedure. A customer'"'"'s terminal station and a plurality of bank systems are interconnected via networks, and it is assumed that the customer wishes to newly open a bank account in a bank system among them, or a target bank system, and that the customer has an existing bank account in a different bank system, or an cooperative bank system. Using his/her terminal station, the customer applies for a new bank account by supplying the target bank system with a ciphertext message containing existing account information descriptive of the customer'"'"'s bank account in the cooperative bank system. The target bank system requests the cooperative bank system to confirm the customer'"'"'s existing bank account, while forwarding thereto a part of the ciphertext message containing the existing account information. The cooperative bank system decrypts the received message and confirms the validity of the account that the customer claims to own. It then returns a response message to the target bank system to report the result of the account confirmation. The target bank system decides whether to accept or to reject the application for a new account based on the response message from the cooperative bank system.
-
Citations
6 Claims
-
1. A network transaction system in which a customer'"'"'s terminal station is connected to a first bank system via an open network and the first bank system is connected to a second bank system via an inter-network, the customer having an existing bank account in the second bank system and attempting to newly open a bank account in the first bank system, the network transaction system comprising:
-
customer processing means disposed at the terminal station and coupled to the open network, said customer processing means for applying for a new bank account by supplying via the open network the first bank system with existing account information descriptive of the existing bank account owned by the customer in the second bank system;
first bank processing means disposed at the first bank system and coupled to the open network and inter-networks, said first bank processing means for requesting via the inter-networks the second bank system to make a confirmation of the existing bank account while forwarding the existing account information received from the customer processing means to the second bank system over the inter-network, and for opening the applied new bank account based on a confirmation response message received via the inter-network from the second bank system describing a result of the confirmation of the existing bank account, wherein the first bank processing means authenticates the customer based on the confirmation; and
second bank processing means disposed at the second bank system and coupled to the inter-network, said second bank processing means for confirming validity of the existing bank account upon request from said first bank processing means, and for returning the confirmation response message to said first bank processing means to report the result of the confirmation of the existing bank account, wherein said customer processing means comprises;
(a1) customer key generation means for generating a customer secret key and a customer public key, (a2) customer encryption means for assembling an account application message to be sent to said first bank processing means by;
encrypting account application information necessary for opening the new bank account by using the customer secret key and further by using a first bank public key, encrypting the customer public key and a second bank identification code by using the first bank public key, encrypting the existing account information by using the customer secret key and further by using a second bank public key, and combining the encrypted account application information, the encrypted customer public key, the encrypted second bank identification code, and the encrypted existing account information, and (a3) customer decryption means for obtaining new account acknowledgment information by decrypting an application response message received from said first bank processing means by using the customer secret key and further by using the first bank public key. - View Dependent Claims (2, 3)
-
-
4. A user authentication method for cyberspace banking services of an open network, which banking services are provided by a plurality of banks interconnected via an inter-bank network, the plurality of banks including a first bank and a second bank, a customer having an existing bank account in the second bank and newly issuing an account application for a bank account in the first bank, the user authentication method comprising:
-
(a) being supplied by the customer via the open network with first information which is obtained by encrypting account application information necessary for opening a new bank account by using a customer secret key and further by a first bank public key;
(b) being supplied by the customer via the open network with second information which is obtained by encrypting a customer public key and a second bank identification code by using the first bank public key;
(c) being supplied by the customer via the open network with third information which is obtained by encrypting existing account information by using the customer secret key and further by using a second bank public key, wherein the existing account information is descriptive of the existing bank account owned by the customer in the second bank;
(d) decrypting the second information by using the first bank secret key to obtain the customer public key and the second bank identification code;
(e) decrypting the first information by using the first bank secret key and further by using the decrypted customer public key to obtain the account application information;
(f) encrypting the second bank identification code, the customer public key, and confirmation request information by using the second bank public key to obtain fourth information;
(g) sending via the inter-bank network the third information and the fourth information to the second bank, thereby requesting via the inter-bank network the second bank to authenticate the customer based on the existing account information contained in the third information;
(h) receiving via the inter-bank network a response from the second bank that reports the result of the authentication; and
(i) deciding whether to accept or to reject the account application from the customer.
-
-
5. A user authentication method for cyberspace banking services of an open network, which are provided by a bank where customer has an existing bank account, the user authentication method comprising:
-
(a) being supplied by the customer via the open network with first information which is produced by encrypting account application information and existing account information by using a customer secret key and further by a bank public key, wherein the account application information is information necessary for opening a new bank account and the existing account information is descriptive of the existing bank account owned by the customer in the bank;
(b) being supplied by the customer via the open network with second information which is produced by encrypting a customer public key by using the bank public key;
(c) decrypting the second information by using the bank secret key, thereby obtaining the customer public key;
(d) decrypting the first information by using the bank secret key and further by using the customer public key obtained in the step (c), thereby extracting the account application information and the existing account information;
(e) authenticating by an account information verification unit of the bank the customer'"'"'s identity, based on the existing account information extracted in the step (d); and
(f) deciding by an account opening decision unit of the bank whether to accept or to reject the account application from the customer, based on the result of the authentication performed in the step (e).
-
-
6. A user authentication method for cyberspace banking services of an open network, which are provided by a bank where customer has an existing bank account, the user authentication method comprising:
-
(a) being supplied by the customer via the open network with first information which is produced by encrypting service request information and existing account information by using a customer secret key and further by a bank public key, wherein the service request information specifies service contents pertaining to the existing bank account and the existing account information is descriptive of the existing bank account owned by the customer in the bank;
(b) being supplied by the customer via the open network with second information which is produced by encrypting a customer public key by using the bank public key;
(c) decrypting the second information by using the bank secret key to obtain the customer public key;
(d) decrypting the first information by using the bank secret key and further by using the customer public key obtained in the step (c) so as to extract the service request information and the existing account information;
(e) authenticating by an account information verification unit of the bank the customer'"'"'s identity, based on the existing account information extracted in the step (d); and
(f) deciding by an account opening decision unit of the bank whether to provide or not the service contents to the customer, based on the result of the authentication performed in the step (e).
-
Specification