US20070299781A1 - System and apparatus for credit data transmission - Google Patents
System and apparatus for credit data transmission Download PDFInfo
- Publication number
- US20070299781A1 US20070299781A1 US11/818,693 US81869307A US2007299781A1 US 20070299781 A1 US20070299781 A1 US 20070299781A1 US 81869307 A US81869307 A US 81869307A US 2007299781 A1 US2007299781 A1 US 2007299781A1
- Authority
- US
- United States
- Prior art keywords
- transaction data
- credit transaction
- authorization
- point
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/20—Point-of-sale [POS] network systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3823—Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/03—Credit; Loans; Processing thereof
Definitions
- a system for transmitting credit transaction data such as credit card data, account number data, vendor number data, user identification data, password data, PIN number data, an authorization request, or other suitable data
- the system includes a remote hub system that is connected to a communications medium, such as the Internet.
- the remote hub system receives credit transaction data, such as an authorization request, a credit card number, and a transaction amount, from one or more point of sale systems, such as credit card authorization terminals.
- the remote hub system then encrypts the credit transaction data, and transmits the encrypted credit transaction data over the Internet to a gateway system.
- the gateway system decrypts the encrypted credit transaction data and transmits the credit transaction data to an authorization system.
- Gateway system 106 can be implemented in hardware, software, or a suitable combination of software and hardware, and can be one or more software systems operating on a general-purpose server platform. Gateway system 106 receives encrypted credit transaction data from remote hub system 102 over communications medium 112 and converts the encrypted credit transaction data into credit transaction data in a format suitable for transmission to authorization system 108 . Gateway system 106 can also transmit data to remote hub system 102 , such as data requesting the status of remote hub system 102 or point of sale system 104 , protocol modules for updating the credit transaction data format protocols used by remote hub system 102 , encryption modules for updating the encryption process used by remote hub system 102 , and other suitable data. Gateway system 106 can also interface with multiple authorization systems 108 , such that data received from remote hub system 102 can be routed to a suitable authorization system.
- Dynamic protocol translator 506 receives credit transaction data from a point of sale system 104 based upon one or more standard protocols for the point of sale systems.
- dynamic protocol translator 506 translates ISO 8583 or VISA-K protocol data into a data format suitable for encryption by encryption system 502 .
- Dynamic protocol translator 506 can also receive a protocol module and update the protocol by which it receives the credit transaction data.
- authorization data is transmitted to the point of sale system, such as by transmitting through a gateway system to a remote hub system, and then by using mapped authorization request and credit transaction data to identify the point of sale system to which the authorization data should be transmitted. If it is determined at 716 that authorization has been denied, a data message is transmitted to the point of sale system that instructs the operator that the credit transaction has been denied. Likewise, additional data such as theft warning data can be transmitted.
- method 700 allows authorization requests and credit transaction data to be transmitted over a communications medium in a manner that allows the data to be encrypted and the encryption mechanism to be changed.
- Method 700 allows multiple authorization systems and remote hub systems to be coupled through a single gateway system.
Abstract
A system for transmitting credit transaction data, such as an authorization request, is provided. The system includes a remote hub system that is connected to a communications medium, such as the Internet. The remote hub system receives credit transaction data, such as an authorization request, a credit card number, and a transaction amount, from one or more point of sale systems, such as credit card authorization terminals. The remote hub system then encrypts the credit transaction data, and transmits the encrypted credit transaction data over the Internet to a gateway system. The gateway system decrypts the encrypted credit transaction data and transmits the credit transaction data to an authorization system.
Description
- The present invention pertains to the field of payment data processing. More specifically, the invention relates to a system and apparatus for transmitting credit transaction data that allows the credit transaction data to be transmitted over a communications medium.
- Electronic payment systems are used to receive credit and other electronic payment data and to transfer an authorization request that includes the credit transaction data to an authorization system. The authorization system then verifies whether the form and amount of payment is valid, and an authorization code is generated for transmission to the point of sale that authorizes the transaction, denies the transaction, notifies the operator or potential criminal activity, or provides other suitable data. In this manner, fraudulent activities using electronic payment on credit cards can be minimized.
- Current authorization systems utilize the public switched telephone network for authorization. The point of sale terminal must establish a telephone connection with the authorization host, such as by a dial-up connection or by using a leased line with a permanent connection. Such connections through the public switched telephone network or through leased lines are expensive to maintain, and may experience communications failure.
- A second method by which point of sale terminals may be connected with an authorization host is through the Internet or other online communications media through a virtual private network device. The virtual private network device encodes data received from the point of sale terminals and then decodes the data at the authorization host. Such virtual private network devices cannot be remotely programmed, are typically made from hardware or otherwise not designed to be updated with new programming, and do not provide communications from the authorization system to the point of sale system, such as to determine the status of point of sale system. In addition, such virtual private network devices are not compatible with standard network architecture and must be installed outside of the network firewall. In addition, failure of the virtual private network device can result in communications failure.
- Thus, while credit transaction authorization is presently performed over communications media, such authorization either is at high cost, in that it requires connections to be made over the public switched telephone network, or in that it requires expensive virtual private network devices that are not compatible with existing networks and which must be changed out in the event of a security violation. In addition, the credit transaction data that can be transmitted is limited and cannot be readily modified in response to standards changes, technological changes, or for other reasons.
- In accordance with the present invention, a system and apparatus for transmitting credit transaction data are provided that overcome known problems with transmitting credit transaction data.
- In particular, a system and apparatus for transmitting credit transaction data are provided that allow credit transaction data to be transmitted over the Internet or other communications media, by allowing the encryption procedures used on the credit transaction data to be readily updated so as to protect system security.
- In accordance with an exemplary embodiment of the present invention, a system for transmitting credit transaction data, such as credit card data, account number data, vendor number data, user identification data, password data, PIN number data, an authorization request, or other suitable data, is provided. The system includes a remote hub system that is connected to a communications medium, such as the Internet. The remote hub system receives credit transaction data, such as an authorization request, a credit card number, and a transaction amount, from one or more point of sale systems, such as credit card authorization terminals. The remote hub system then encrypts the credit transaction data, and transmits the encrypted credit transaction data over the Internet to a gateway system. The gateway system decrypts the encrypted credit transaction data and transmits the credit transaction data to an authorization system.
- The present invention provides many important technical advantages. One important technical advantage of the present invention is a system and apparatus for transmitting credit transaction data that allows the encryption procedure to be readily modified. The present invention thus allows the Internet or other unsecured communications media to be used to transmit credit transaction data by allowing encryption procedures that are used to maintain the security of the credit transaction data to be readily updated.
- Those skilled in the art will further appreciate the advantages and superior features of the invention together with other important aspects thereof on reading the detailed description that follows in conjunction with the drawings.
-
FIG. 1 is a diagram of a system for providing online credit transaction data transmission in accordance with an exemplary embodiment of the present invention; -
FIG. 2 is a diagram of a system for transmitting credit transaction data from multiple point of sale terminals to multiple authorization systems in accordance with an exemplary embodiment of the present invention; -
FIG. 3 is a diagram of a system for transmitting credit transaction data over a communications medium in accordance with an exemplary embodiment of the present invention; -
FIG. 4 is a diagram of a system for transmitting credit transaction data in accordance with an exemplary embodiment of the present invention; -
FIG. 5 is a diagram of a system for providing remote hub access to a gateway system in accordance with an exemplary embodiment of the present invention; -
FIG. 6 is a diagram of a system for performing gateway system functions in accordance with an exemplary embodiment of the present invention; -
FIG. 7 is a diagram of a method for processing credit transaction data in accordance with an exemplary embodiment of the present invention; and -
FIG. 8 is a diagram of a method for processing remote management messages in accordance with an exemplary embodiment of the present invention. - In the description which follows, like parts are marked throughout the specification and drawings with the same reference numerals, respectively. The drawing figures may not be to scale and certain components can be shown in generalized or schematic form and identified by commercial designations in the interest of clarity and conciseness.
-
FIG. 1 is a diagram of asystem 100 for providing online credit transaction data transmission in accordance with an exemplary embodiment of the present invention.System 100 allows credit to be transferred over a public communications medium, such as the Internet, and allows the credit transaction data to be encrypted in a manner that allows the encryption mechanism to be modified or updated as needed. -
System 100 includesremote hub system 102.Remote hub system 102 can be implemented in hardware, software, or a suitable combination of hardware, and can be one or more software systems operating on a Single Board Computer (“SBC”) manufactured by EMAC, Inc. of Carbondale, Ill., an Ericsson eBox Model 101, or other suitable Open Services Gateway Initiative (OSGI) compliant appliances. As used herein, a software system can include one or more lines of code, objects, agents, subroutines, one or more lines of code operating in two or more different software programs, two or more separate software programs, or other suitable software architectures. In one exemplary embodiment, a software system can include one or more lines of code or other suitable software structures operating in a general purpose competing program, such as an operating system, and one or more lines of code or other suitable software structures operating in a specific purpose software application. -
Remote hub system 102 receives credit transaction data from point ofsale system 104 in accordance with a predetermined data transmission protocol, such as the ISO 8583 protocol, the VISA-K protocol, or other suitable protocols. The credit transaction data can also include Electronic Data Interchange (EDI) format data, credit card data, account number data, vendor number data, user identification data, password data, PIN number data, an authorization request, or other suitable data.Remote hub system 102 then encrypts the credit transaction data, and transmits the credit transaction data as an authorization request over acommunications medium 112 togateway system 106. Authorization data is then received atremote hub system 102 from an authorization system throughgateway system 106, and is transmitted to the point ofsale system 104 byremote hub system 102. -
Remote hub system 102 can also receive data fromgateway system 106 throughcommunications medium 112, such as data that can be used to control the operation ofremote hub system 102, requests for status, or other suitable data.Remote hub system 102 can use a data format that is amenable for transmission through local area network or wide area network firewalls, such as HyperText Transfer Protocol (“HTTP”) format data, extensible Markup Language (XML), or other format data, such thatremote hub system 102 can be installed at any point within a network without consideration for the location of that position in regards to the network firewall. - Point of
sale system 104 is coupled toremote hub system 102, and can be implemented in hardware, software, or a suitable combination of hardware and software, and can be one or more software systems operating on a point of sale terminal or device. As used herein, the term “couple” and its cognate terms, such as “couples” and “coupled,” can include a physical connection (such as a copper conductor), a virtual connection (such as through randomly assigned memory locations of a data memory device), a logical connection (such as through logical devices of a semiconducting circuit), a combination of such connections, or other suitable connections. In one exemplary embodiment, systems and components are coupled to other systems and components through intervening systems and components, such as through an operating system of a processor platform. - Point of
sale system 104 can receive credit transaction data from a magnetic stripe of a credit card, data entered by a user through a terminal, or other suitable forms of credit or electronic payment data, and can transmit the data toremote hub system 102 in a suitable format. Point ofsale system 104 also receives authorization data from an authorization system throughremote hub system 102, and uses the authorization data to determine whether to accept or reject a credit or electronic payment transaction. -
Gateway system 106 can be implemented in hardware, software, or a suitable combination of software and hardware, and can be one or more software systems operating on a general-purpose server platform.Gateway system 106 receives encrypted credit transaction data fromremote hub system 102 overcommunications medium 112 and converts the encrypted credit transaction data into credit transaction data in a format suitable for transmission toauthorization system 108.Gateway system 106 can also transmit data toremote hub system 102, such as data requesting the status ofremote hub system 102 or point ofsale system 104, protocol modules for updating the credit transaction data format protocols used byremote hub system 102, encryption modules for updating the encryption process used byremote hub system 102, and other suitable data.Gateway system 106 can also interface withmultiple authorization systems 108, such that data received fromremote hub system 102 can be routed to a suitable authorization system. -
Authorization system 108 can be implemented in hardware, software, or a suitable combination of hardware and software, and can be one or more software systems operating on a general-purpose server platform.Authorization system 108 receives credit transaction data fromgateway system 106 and performs an authorization analysis on the credit transaction data. In one exemplary embodiment,authorization system 108 checks a credit card number against a list of reported stolen credit card numbers, a list of credit card numbers that are over their credit limit, and a list of credit card numbers for which monitoring of the credit card has been initiated.Authorization system 108 then transmits suitable data togateway system 106, such as a code authorizing or denying the use of the credit card for the credit transaction. -
Transaction system 110 can be implemented in hardware, software, or a suitable combination of hardware and software, and can be one or more software systems operating on a general-purpose server platform.Transaction system 110 receives credit transaction data fromgateway system 106 and performs credit transaction processing. In one exemplary embodiment,transaction system 110 obtains historical data, account data, or other suitable data for a merchant pertaining to one or more credit transactions. -
Communications medium 112 is coupled toremote hub system 102 andgateway system 106 and allows communications to flow betweenremote hub system 102 andgateway system 106. In one exemplary embodiment,communications medium 112 is the Internet, but can also or alternatively include a local area network, a wide area network, a wireless network, the public switched telephone network, a suitable combination of such media, or other suitable communications media. In another exemplary embodiment,communications medium 112 is the Internet and also includes a connection through the public switched telephone network that can be used in the event that the Internet is unavailable. - In operation,
system 100 is used to transmit credit transaction data over an open, online communications medium, such as the Internet, a local area network, a wide area network, a wireless network, or other suitable communications media.System 100 allows credit transaction data received from a point of sale terminal to be encrypted before transmission over the open communications medium, and decrypted when the credit transaction data is received at a gateway. The encryption mechanism can be updated as needed in order to prevent unauthorized persons from decrypting or otherwise determining how to access the encrypted data. -
System 100 further allowsremote hub system 102 to interface with point-of-sale devices and other devices so as to recognize the device and set configuration parameters to allow the point-of-sale devices and other devices to communicate with the transaction systems, authorization systems, and other systems, so as to allow point of sale devices and other devices that were not previously able to communicate over the Internet, to receive and transmit data to these systems. Any non-HTTP-based communications protocol used by such devices, such as email, socket connections, File Transfer Protocol (FTP), any TCP/IP protocol that isn't inherently securable, and other protocols can be accommodated. -
FIG. 2 is a diagram ofsystem 200 for transmitting credit transaction data from multiple point of sale terminals to multiple authorization systems or transaction systems in accordance with an exemplary embodiment of the present invention.System 200 allows multiple authorization systems and transaction systems to connect to one or more remote hub systems through a public online communications medium or other suitable communications media. In the exemplary embodiment shown inFIG. 2 , two authorization systems only are shown, butsystem 200 can also be used with three or more authorization systems, one or more transaction systems, and a suitable combination of authorization systems and transaction systems. -
System 200 includesremote hub systems sale systems Gateway system 106 ofsystem 200 is coupled toauthorization systems FIG. 2 , point ofsale system 104 a can interface withauthorization system 108 a throughremote hub system 102 a andgateway system 106. Likewise, point ofsale system 104 b can interface withauthorization system 108 b throughremote hub system 102 b.Gateway system 106 can receive the encrypted credit transaction data fromremote hub system 102 a andremote hub system 102 b, and can decrypt the data and determine whether the encrypted data should be transmitted toauthorization system 108 a orauthorization system 108 b. In this manner, a single gateway system can be used to connect to two or more authorization systems for use by multiple remote hub systems and point of sale systems. -
FIG. 3 is a diagram of a system 300 for transmitting credit transaction data over a communications medium in accordance with an exemplary embodiment of the present invention. System 300 allows data from two or more point of sale systems to be transmitted to one or more authorization systems or transaction systems through a single remote hub system. In the exemplary embodiment shown inFIG. 3 , an authorization system only is shown, but system 300 can also be used with two or more authorization systems, one or more transaction systems, and a suitable combination of authorization systems and transaction systems. - System 300 includes
remote hub system 102, which is coupled to point ofsale systems communications medium 302. Communications medium 302 can be a local area network, a wide area network, individual hard-wired connections to each point of sale system, a wireless network, or other suitable communications media.Remote hub system 102 can transmit and receive data from each of point ofsale systems -
Remote hub system 102 can then transmit the data received from point ofsale systems gateway system 106 for subsequent transmission toauthorization system 108. Likewise, multiple authorization systems can be connected togateway system 106, such that point ofsale system 104 a can transmit credit transaction data to a first authorization system, point ofsale system 104 b can transmit credit transaction data to a second authorization system, and other suitable transmissions can be made. In this manner, a single remote hub system can couple a plurality of point of sale systems to one or more authorization systems through asingle communications medium 112. - Likewise,
remote hub system 102 can receive authorization data from one ormore authorization systems 108 through one ormore gateway systems 106, and can route the authorization data to the corresponding point ofsale system Remote hub system 102 includes routing functionality that allows the credit transaction data received from a point of sale terminal to be matched with the corresponding authorization data received from anauthorization system 108. In one exemplary embodiment,remote hub system 102 maps address data to each credit transaction data message that identifies the point ofsale systems authorization system 108 to the correct point ofsale system -
FIG. 4 is a diagram of a system 400 for transmitting credit transaction data in accordance with an exemplary embodiment of the present invention. System 400 allows two or more gateway systems to transmit credit transaction data from a point of sale system to an authorization system, and to transmit the corresponding authorization data to the point of sale system. In the exemplary embodiment shown inFIG. 4 , an authorization system only is shown, but system 400 can also be used with two or more authorization systems, one or more transaction systems, and a suitable combination of authorization systems and transaction systems. - System 400 includes
gateway systems communications medium 112. Likewise,gateway systems communications medium 402, which can be the public switched telephone network, a leased line, or other forms of communications.Gateway systems authorization system 108. - In operation, system 400 is used to transmit credit transaction data from point of
sale system 104 toremote hub system 102 and then toauthorization system 108 through either or both ofgateway systems 106 a andgateway system 106 b. Data transmitted fromremote hub system 102 over communications medium 112 can be received at either or both ofgateway system Gateway system 106 b can be disabled whilegateway system 106 a is in operation, or can also be configured to receive information and transmit information redundantly toauthorization system 108. In this manner, if either ofgateway systems authorization system 108 for authorization. -
FIG. 5 is a diagram of a system 500 for providing remote hub access to a gateway system in accordance with an exemplary embodiment of the present invention. System 500 includesremote hub system 102,encryption system 502,remote management interface 504,dynamic protocol translator 506,device router 508, and telephone backup system 510, each of which can be implemented in hardware, software, or a suitable combination of hardware and software, and which can be one or more software systems operating on a Java virtual machine, such as a Single Board Computer (“SBC”) manufactured by EMAC, Inc. of Carbondale, Ill. -
Encryption system 502 receives credit transaction data from a point of sale system and encrypts the credit transaction data for transmission over a suitable communications medium, such as the Internet.Encryption system 502 can receive credit transaction data in a first legacy protocol format from the point of sale system, and can extract the credit transaction data for transmission to agateway system 106.Encryption system 502 then uses an encryption algorithm or other suitable encryption procedures to encrypt the data in a manner that prevents the data from being intercepted by unauthorized third parties. The encrypted data is then transmitted over the communications medium to the gateway system.Encryption system 502 can also receive an encryption module and update the encryption procedure used to encrypt the credit transaction data. -
Remote management interface 504 can also receive data messages that have been transmitted fromgateway system 106 tosystem 200 over a suitable communications medium. This data can either be encrypted for decryption byencryption system 502, or can be transmitted in an unencrypted form.Remote management interface 504 then removes header data, format data, and other data from the data message and performs predetermined functions based upon the content of the data message. In one exemplary embodiment,remote management interface 504 can execute code stored within the data message, such as code that installs a dynamic protocol translator module indynamic protocol translator 506, code that installs an encryption module inencryption system 502, or suitable code. -
Dynamic protocol translator 506 receives credit transaction data from a point ofsale system 104 based upon one or more standard protocols for the point of sale systems. In one exemplary embodiment,dynamic protocol translator 506 translates ISO 8583 or VISA-K protocol data into a data format suitable for encryption byencryption system 502.Dynamic protocol translator 506 can also receive a protocol module and update the protocol by which it receives the credit transaction data. -
Device router 508 can receive and transmit data messages from one or more point of sale systems.Device router 508 is operable to receive credit transaction data from one or more point of sale systems and to transfer the data todynamic protocol translator 506 orencryption system 502 for subsequent transmission to an authorization server. Likewise,device router 508 can also receive data for one or more point ofsale systems 104 from other ordynamic protocol translator 506 orencryption system 502, and can route the encrypted data to the appropriate point of sale system. - Telephone backup system 510 can establish a connection with the gateway system over the public switched telephone network in the event that system 500 is otherwise unable to transmit and receive data messages from the gateway system over a preferred communications medium, such as the Internet. In one exemplary embodiment, telephone backup system 510 establishes a dial-up connection or uses a leased telephone line when no response is received to an authorization request after several attempts over the preferred communications medium.
- In operation, system 500 is used to control the operation of an apparatus for encrypting data received from a credit entry device or point of sale system, where credit transaction data is transmitted over a communications medium such as the Internet, such as in the form of an authorization request to a gateway system to an authorization system. System 500 also allows encrypted or unencrypted data messages to be received from the gateway system over the communications medium and to be handled appropriately, such as by updating
encryption system 502 with an encryption module, updatingdynamic protocol translator 506 with a protocol module, or by other suitable procedures. - System 500 allows credit transaction data to be received from one or more point of sale systems. The credit transaction data is then processed by
dynamic protocol translator 506 to extract the credit transaction data. The credit transaction data is then encrypted by anencryption system 502 and is then transmitted to a gateway system. Likewise, system 500 allows data messages to be received from agateway system 106 by aremote management interface 504, such as status requests, encryption modules, protocol modules, or other suitable data. -
FIG. 6 is a diagram ofsystem 600 for performing gateway system functions in accordance with an exemplary embodiment of the present invention.System 600 includesgateway system 106,translator 602,authorization host interface 604,hub manager 606,gateway interface 608,telephone backup system 610, and transaction host interface 612, each of which can be implemented in hardware, software, or a suitable combination of hardware and software, of which can be one or more software systems operating on a general purpose server platform. -
Translator 602 receives encrypted data messages that include credit transaction data, and decrypts the encrypted data.Translator 602 can also receive encryption modules, such that the encryption system can be updated as required to maintain system security.Translator 602 can receive authorization data from an authorization system, and can encrypt the authorization data for subsequent transmission to the remote hub system. -
Authorization host interface 604 receives credit transaction data fromtranslator 602 and transmits the credit transaction data to an authorization system. If multiple authorization systems are used,authorization host interface 604 can also determine the appropriate authorization host to transmit the credit transaction data to, such as by using data from a credit card type identifier field, an authorization host identifier field, or other suitable procedures.Authorization host interface 604 can also convert the credit transaction data into a format for use by the authorization system. The authorization response from the authorization host can also be received byauthorization host interface 604, and can be transmitted totranslator 602, directly to the remote hub system, or to other suitable systems or components. -
Hub manager 606 transmits status requests, encryption module updates, protocol module updates, or other suitable data to remote hub systems, and can analyze status data received in response to the status request from the remote hub systems. In one exemplary embodiment,hub manager 606 periodically transmits status requests and encryption modules to remote hub systems, in order to maintain system reliability and system security.Hub manager 606 can transmit status requests and encryption modules in response to operator requests or as otherwise required. -
Gateway interface 608 allowssystem 600 to interface with other gateway systems, such as to allow data about the status of remote hub systems, encryption systems or other data to be coordinated or synchronized betweensystems 600. In one exemplary embodiment,gateway interface 608 is used to coordinate the encryption module updates and status requests such that conflicting encryption module updates are not made.Gateway interface 608 also allows credit transaction data received at a first gateway to be transmitted to a second gateway in the event the public online communications medium becomes disabled or interrupted. -
Telephone backup system 610 can establish a connection with the remote hub systems over the public switched telephone network in the event thatsystem 600 is otherwise unable to transmit and receive data messages from the remote hub systems over a preferred communications medium, such as the Internet. In one exemplary embodiment,telephone backup system 610 establishes a dial-up connection or uses a leased telephone line when no response is received to a message after several attempts over the preferred communications medium. - Transaction host interface 612 receives credit transaction data from
translator 602 and transmits the credit transaction data to a transaction system. If multiple transaction systems are used, transaction host interface 612 can also determine the appropriate transaction host to transmit the credit transaction data to, such as by using data from a credit card type identifier field, a transaction host identifier field, or other suitable procedures. Transaction host interface 612 can also convert the credit transaction data into a format for use by the transaction system. Any response from the transaction host can also be received by transaction host interface 612, and can be transmitted totranslator 602, directly to the remote hub system, or to other suitable systems or components. - In operation,
system 600 allows encrypted credit transaction data to be received and translated for use by authorization systems.System 600 also allows remote hub systems and point of sale systems to be monitored for problems, and allows protocol updates to be transmitted for use by remote hub systems. -
FIG. 7 is a diagram of amethod 700 for processing credit transaction data in accordance with an exemplary embodiment of the present invention.Method 700 can be used in conjunction with a remote hub system or other suitable systems. -
Method 700 begins at 702 where credit transaction data is received. The credit transaction data can include a credit card number, amount, and other suitable credit transaction data, and can be received in accordance with the ISO 8583 protocol, the VISA-K protocol, or other suitable protocols. If the credit transaction data is received from one of two or more point of sale systems or other devices, then the credit transaction data can be mapped to allow authorization data that is sent in response to an authorization request to be matched with the corresponding point of sale system. The method then proceeds to 704. - At 704, the credit transaction data is assembled into an authorization request and encrypted, such as by using an updateable encryption module of an encryption system. The method then proceeds to 706, where the encrypted authorization request and credit transaction data is transmitted over a suitable communications medium, such as the Internet, a local area network, a wide area network, a wireless network, or other suitable communications media. The encrypted authorization request and credit transaction data can be transmitted in packets, in HTTP format, or by other suitable procedures. The method then proceeds to 708.
- At 708, the encrypted authorization request and credit transaction data is received and the method proceeds to 710 where the authorization request and credit transaction data is decrypted. In one exemplary embodiment, the encrypted authorization request and credit transaction data is received at a gateway system and a decryption method is used that is coordinated with the encryption method used at a remote hub system. The method then proceeds to 712.
- At 712, an authorization host for the authorization request and credit transaction data is determined. For example, an authorization request and credit transaction data may be received for one or more credit card issuing organizations, such as a Visa card, a MasterCard, an American Express card, or other suitable credit cards. Each of these credit card issuing organizations may have its own authorization host, or a single authorization host can be used that performs authorization services in lieu of the issuing card organization. After the authorization host is determined at 712, the method proceeds to 714 where the authorization request and the credit transaction data is transmitted to the authorization host for authorization. The method then proceeds to 716.
- At 716, it is determined whether authorization has been granted. If authorization has been granted, the method proceeds to 718 where credit authorization data is transmitted to the point of sale system, such as by transmitting through a gateway system to a remote hub system, and then by using mapped authorization request and credit transaction data to identify the point of sale system to which the authorization data should be transmitted. If it is determined at 716 that authorization has been denied, a data message is transmitted to the point of sale system that instructs the operator that the credit transaction has been denied. Likewise, additional data such as theft warning data can be transmitted.
- An operation,
method 700 allows authorization requests and credit transaction data to be transmitted over a communications medium in a manner that allows the data to be encrypted and the encryption mechanism to be changed.Method 700 allows multiple authorization systems and remote hub systems to be coupled through a single gateway system. -
FIG. 8 is a diagram of amethod 800 for processing remote management messages in accordance with an exemplary embodiment of the present invention.Method 800 begins at 802 where a remote management message is received, such as at a remote hub system. The method then proceeds to 806 where it is determined whether a status request has been received. If a status request has been received at 804 the method proceeds to 806 where status data is obtained and transmitted. In one exemplary embodiment, the status data can include status data for a remote hub system and one or more point of sale systems coupled to the remote hub system, such as operability state data, encryption module data, protocol module data, terminal setup data, historical data such as the number of authorization requests for which a telephone backup system was used, and other suitable data. The method then proceeds to 808. Likewise, if it is determined at 804 that a status request has not been received, the method proceeds directly to 808. - At 808, it is determined whether a protocol update has been received. If no protocol update has been received, the method proceeds to 812, otherwise the method proceeds to 810 where the protocol module is stored in a suitable dynamic protocol translator system, such as one that is used to control the transmission of credit transaction data to and from a point of sale system. The method then proceeds to 812.
- At 812, it is determined whether an encryption module update has been received. The encryption module update can be used to modify an encryption system so as to maintain system security. If it is determined that an encryption module update has been received at 812 the method proceeds to 814 where the encryption module update is stored in a suitable encryption system. Otherwise, the method proceeds to 813 and terminates.
- In operation,
method 800 allows remote hub management messages to be transmitted from a gateway system to a remote hub system to facilitate the transmission of encrypted credit transaction data over a communications medium, such as the Internet.Method 800 allows status data to be requested from the remote hub system and any point of sale systems used in conjunction with the remote hub system, allows protocol modules to be transmitted for use by the remote hub system, allows encryption data to be transmitted so that the encryption process can be modified as required, and allows other suitable management data to be received and processed by the remote hub. - Although preferred and exemplary embodiments of a system and apparatus for credit transaction data transmission have been described in detail herein, those skilled in the art will also recognize that various substitutions and modifications can be made to the systems and methods without departing from the scope and spirit of the appended claims.
Claims (19)
1-21. (canceled)
22. An apparatus for transmitting credit transaction data over a communications medium comprising:
a protocol translator for receiving the credit transaction data from two or more point of sale systems according to two or more different transmission protocols, each transmission protocol associated with a different credit authorization system, and forming a credit transaction data message; and
means for receiving the credit transaction data message from the protocol translator and encrypting the credit transaction data message.
23. The apparatus of claim 22 further comprising a device router for transmitting authorization data received in response to the credit transaction data message to one of the two or more point of sale systems.
24. The apparatus of claim 22 further comprising a management system interface for storing a protocol module to the protocol translator.
25. The apparatus of claim 22 further comprising a management system interface for storing an encryption module to an encryption system.
26. The system of claim 22 further comprising:
a gateway system receiving and decrypting the encrypted credit transaction data message;
a first authorization system interface coupled to the gateway system;
a second authorization system interface coupled to the gateway system; and
wherein the gateway system transmits the credit transaction data message to the first or second authorization system based upon the credit transaction data message.
27. The system of claim 22 wherein the point-of-sale systems include one or more pre-existing point of sale systems that are configured to communicate using a public switched telephone network telephone line.
29. The system of claim 28 further comprising a telephone backup system coupled to one of the two or more of the point of sale systems, wherein one of the two or more point of sale systems uses the telephone backup system when a network communications medium is unavailable.
30. A method for transmitting credit transaction data over a communications medium comprising:
receiving credit transaction data from two or more point of sale devices;
determining a point-of-sale device data transmission protocol to use to assemble the credit transaction data into an authorization request;
transmitting the authorization request over the communications medium;
determining which of two or more authorization systems is an appropriate authorization system to provide the authorization request to; and
transmitting the authorization request to the appropriate authorization system.
31. The method of claim 30 wherein receiving the credit transaction data from the point of sale device comprises receiving the credit transaction data in accordance with one or more of an ISO 8583 protocol or a Visa-K protocol.
32. The method of claim 30 further comprising encrypting the credit transaction data using an encryption module received from a hub manager.
33. The method of claim 30 wherein transmitting the authorization request over the communications medium comprises transmitting encrypted data in an HTTP format.
34. An apparatus for transmitting credit transaction data over a communications medium comprising:
means for receiving the credit transaction data from two or more point of sale systems according to two or more different transmission protocols, each transmission protocol associated with a different credit authorization system, and forming a credit transaction data message; and
an encryption system receiving the credit transaction data message and encrypting the credit transaction data message.
35. The apparatus of claim 34 further comprising a device router for transmitting authorization data received in response to the credit transaction data message to one of the two or more point of sale systems.
36. The apparatus of claim 34 further comprising a management system interface for storing a protocol module to a protocol translator.
37. The apparatus of claim 34 further comprising a management system interface for storing an encryption module to the encryption system.
38. The apparatus of claim 34 further comprising:
a gateway system receiving and decrypting the encrypted credit transaction data message;
a first authorization system interface coupled to the gateway system;
a second authorization system interface coupled to the gateway system; and
wherein the gateway system transmits the credit transaction data message to the first or second authorization system based upon the credit transaction data message.
39. The apparatus of claim 34 wherein the point-of-sale systems include one or more pre-existing point of sale systems that are configured to communicate using a public switched telephone network telephone line.
40. The apparatus of claim 34 further comprising a telephone backup system coupled to one of the two or more of the point of sale systems, wherein one of the two or more point of sale systems uses the telephone backup system when a network communications medium is unavailable.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/818,693 US20070299781A1 (en) | 2000-09-07 | 2007-06-15 | System and apparatus for credit data transmission |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US09/656,815 US7233920B1 (en) | 2000-09-07 | 2000-09-07 | System and apparatus for credit transaction data transmission |
US11/818,693 US20070299781A1 (en) | 2000-09-07 | 2007-06-15 | System and apparatus for credit data transmission |
Related Parent Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US09/656,815 Continuation US7233920B1 (en) | 2000-09-07 | 2000-09-07 | System and apparatus for credit transaction data transmission |
Publications (1)
Publication Number | Publication Date |
---|---|
US20070299781A1 true US20070299781A1 (en) | 2007-12-27 |
Family
ID=38157164
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US09/656,815 Expired - Lifetime US7233920B1 (en) | 2000-09-07 | 2000-09-07 | System and apparatus for credit transaction data transmission |
US11/818,693 Abandoned US20070299781A1 (en) | 2000-09-07 | 2007-06-15 | System and apparatus for credit data transmission |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US09/656,815 Expired - Lifetime US7233920B1 (en) | 2000-09-07 | 2000-09-07 | System and apparatus for credit transaction data transmission |
Country Status (1)
Country | Link |
---|---|
US (2) | US7233920B1 (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20090202081A1 (en) * | 2008-02-08 | 2009-08-13 | Ayman Hammad | Key delivery system and method |
US9270447B2 (en) | 2011-11-03 | 2016-02-23 | Arvind Gidwani | Demand based encryption and key generation and distribution systems and methods |
US10147089B2 (en) | 2012-01-05 | 2018-12-04 | Visa International Service Association | Data protection with translation |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7627521B1 (en) * | 2002-01-15 | 2009-12-01 | Jpmorgan Chase Bank, N.A. | System and method for processing mircotransactions |
US7219149B2 (en) * | 2003-06-12 | 2007-05-15 | Dw Holdings, Inc. | Versatile terminal adapter and network for transaction processing |
US20070210909A1 (en) * | 2006-03-09 | 2007-09-13 | Honeywell International Inc. | Intrusion detection in an IP connected security system |
GB0904877D0 (en) * | 2009-03-20 | 2009-05-06 | Global Refund Holdings Ab | Interface module, system and method |
US10242368B1 (en) * | 2011-10-17 | 2019-03-26 | Capital One Services, Llc | System and method for providing software-based contactless payment |
US10949815B2 (en) | 2011-12-13 | 2021-03-16 | Visa International Service Association | Integrated mobile trusted service manager |
SG11201403251PA (en) | 2011-12-13 | 2014-08-28 | Visa Int Service Ass | Integrated mobile trusted service manager |
US10373168B2 (en) * | 2015-01-12 | 2019-08-06 | Mastercard International Incorporated | Method and system for retry processing of controlled payment transactions |
US10657534B2 (en) * | 2017-05-15 | 2020-05-19 | Bank Of America Corporation | Information security using velocity attack detection |
Citations (68)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US3786439A (en) * | 1972-12-26 | 1974-01-15 | Ibm | Error detection systems |
US4755940A (en) * | 1983-09-17 | 1988-07-05 | International Business Machines Corporation | Transaction security system |
US4799156A (en) * | 1986-10-01 | 1989-01-17 | Strategic Processing Corporation | Interactive market management system |
US4843220A (en) * | 1987-03-13 | 1989-06-27 | American Magnetics Corporation | Automatic data capture for multiple form point of sale slip packs |
US5222018A (en) * | 1985-07-18 | 1993-06-22 | Pitney Bowes Inc. | System for centralized processing of accounting and payment functions |
US5448047A (en) * | 1992-10-30 | 1995-09-05 | Microbilt Corporation | Card validation method using multiple cord data regions |
US5450317A (en) * | 1993-11-24 | 1995-09-12 | U S West Advanced Technologies, Inc. | Method and system for optimized logistics planning |
US5490251A (en) * | 1991-08-09 | 1996-02-06 | First Data Resources Inc. | Method and apparatus for transmitting data over a signalling channel in a digital telecommunications network |
US5490060A (en) * | 1988-02-29 | 1996-02-06 | Information Resources, Inc. | Passive data collection system for market research data |
US5500890A (en) * | 1993-08-19 | 1996-03-19 | Exxon Research And Engineering Company | Point-of-sale system using multi-threaded transactions and interleaved file transfer |
US5621670A (en) * | 1991-08-01 | 1997-04-15 | Fujitsu Limited | Communication service simulator and a communication service specification verifying method |
US5678010A (en) * | 1995-06-07 | 1997-10-14 | Compuserve Incorporated | Automated routing of messages over a network |
US5734823A (en) * | 1991-11-04 | 1998-03-31 | Microtome, Inc. | Systems and apparatus for electronic communication and storage of information |
US5742845A (en) * | 1995-06-22 | 1998-04-21 | Datascape, Inc. | System for extending present open network communication protocols to communicate with non-standard I/O devices directly coupled to an open network |
US5754772A (en) * | 1996-03-26 | 1998-05-19 | Unisys Corporation | Transaction service independent HTTP server-to-transaction gateway |
US5757917A (en) * | 1995-11-01 | 1998-05-26 | First Virtual Holdings Incorporated | Computerized payment system for purchasing goods and services on the internet |
US5765143A (en) * | 1995-02-28 | 1998-06-09 | Triad Systems Corporation | Method and system for inventory management |
US5774883A (en) * | 1995-05-25 | 1998-06-30 | Andersen; Lloyd R. | Method for selecting a seller's most profitable financing program |
US5778173A (en) * | 1996-06-12 | 1998-07-07 | At&T Corp. | Mechanism for enabling secure electronic transactions on the open internet |
US5781632A (en) * | 1995-02-08 | 1998-07-14 | Odom; Gregory Glen | Method and apparatus for secured transmission of confidential data over an unsecured network |
US5812997A (en) * | 1995-10-26 | 1998-09-22 | International Business Machines Incorporated | Method and apparatus for deriving an association rule between data |
US5812668A (en) * | 1996-06-17 | 1998-09-22 | Verifone, Inc. | System, method and article of manufacture for verifying the operation of a remote transaction clearance system utilizing a multichannel, extensible, flexible architecture |
US5832456A (en) * | 1996-01-18 | 1998-11-03 | Strategic Weather Services | System and method for weather adapted, business performance forecasting |
US5845267A (en) * | 1996-09-06 | 1998-12-01 | At&T Corp | System and method for billing for transactions conducted over the internet from within an intranet |
US5848161A (en) * | 1996-05-16 | 1998-12-08 | Luneau; Greg | Method for providing secured commerical transactions via a networked communications system |
US5854746A (en) * | 1990-04-28 | 1998-12-29 | Kanebo, Ltd. | Flexible production and material resource planning system using sales information directly acquired from POS terminals |
US5909492A (en) * | 1994-10-24 | 1999-06-01 | Open Market, Incorporated | Network sales system |
US5917913A (en) * | 1996-12-04 | 1999-06-29 | Wang; Ynjiun Paul | Portable electronic authorization devices and methods therefor |
US5931917A (en) * | 1996-09-26 | 1999-08-03 | Verifone, Inc. | System, method and article of manufacture for a gateway system architecture with system administration information accessible from a browser |
US5956700A (en) * | 1994-06-03 | 1999-09-21 | Midwest Payment Systems | System and method for paying bills and other obligations including selective payor and payee controls |
US5963924A (en) * | 1996-04-26 | 1999-10-05 | Verifone, Inc. | System, method and article of manufacture for the use of payment instrument holders and payment instruments in network electronic commerce |
US5978918A (en) * | 1997-01-17 | 1999-11-02 | Secure.Net Corporation | Security process for public networks |
US5983208A (en) * | 1996-06-17 | 1999-11-09 | Verifone, Inc. | System, method and article of manufacture for handling transaction results in a gateway payment architecture utilizing a multichannel, extensible, flexible architecture |
US5987140A (en) * | 1996-04-26 | 1999-11-16 | Verifone, Inc. | System, method and article of manufacture for secure network electronic payment and credit collection |
US6003008A (en) * | 1998-03-20 | 1999-12-14 | Skyteller L.L.C. | Point of sale device |
US6005939A (en) * | 1996-12-06 | 1999-12-21 | International Business Machines Corporation | Method and apparatus for storing an internet user's identity and access rights to world wide web resources |
US6032127A (en) * | 1995-04-24 | 2000-02-29 | Intermec Ip Corp. | Intelligent shopping cart |
US6064988A (en) * | 1987-08-17 | 2000-05-16 | Thomas; Harold K. | Data processing system including transaction authorization device |
US6122743A (en) * | 1998-03-31 | 2000-09-19 | Siemens Information And Communication Networks, Inc. | System for providing enhanced security for transactions transmitted through a distributed network |
US6157927A (en) * | 1998-04-22 | 2000-12-05 | Unisys Corporation | Methods and apparatus for enabling a component in a first transaction processing environment to access a resource in another environment that is under the control of an Xatmi complaint transaction manager |
US6160874A (en) * | 1997-10-21 | 2000-12-12 | Mci Communications Corporation | Validation gateway |
US6178409B1 (en) * | 1996-06-17 | 2001-01-23 | Verifone, Inc. | System, method and article of manufacture for multiple-entry point virtual point of sale architecture |
US20010001877A1 (en) * | 1998-05-21 | 2001-05-24 | Jennifer French | System and method for authentication of network users with preprocessing |
US6324525B1 (en) * | 1996-06-17 | 2001-11-27 | Hewlett-Packard Company | Settlement of aggregated electronic transactions over a network |
US6332133B1 (en) * | 1996-11-14 | 2001-12-18 | Matsushita Electric Industrial Co., Ltd. | Personal electronic settlement system, its terminal, and management apparatus |
US6332193B1 (en) * | 1999-01-18 | 2001-12-18 | Sensar, Inc. | Method and apparatus for securely transmitting and authenticating biometric data over a network |
US6334116B1 (en) * | 1998-02-02 | 2001-12-25 | Checkfree Corporation | Technique for centrally tracking transactions in an electronic billing system |
US6360211B1 (en) * | 1995-12-08 | 2002-03-19 | Mellon Bank, N.A. | System and method for electronically processing invoice information |
US20020059114A1 (en) * | 1998-11-29 | 2002-05-16 | Michael P. Cockrill | Electronic commerce using a transaction network |
US6411940B1 (en) * | 1995-07-07 | 2002-06-25 | Netcraft Corporation | Internet billing method |
US6460020B1 (en) * | 1996-12-30 | 2002-10-01 | De Technologies, Inc. | Universal shopping center for international operation |
US20020166090A1 (en) * | 1999-09-03 | 2002-11-07 | Matsushita Electric Industrial Co., Ltd. | Error correction device |
US20020191020A1 (en) * | 2001-06-18 | 2002-12-19 | International Business Machines Corporation | Method and apparatus for removing confindential information from a history |
US20020198798A1 (en) * | 2001-04-03 | 2002-12-26 | Bottomline Technologies, Inc. | Modular business transactions platform |
US20030046237A1 (en) * | 2000-05-09 | 2003-03-06 | James Uberti | Method and system for enabling the issuance of biometrically secured online credit or other online payment transactions without tokens |
US20030055754A1 (en) * | 2000-11-30 | 2003-03-20 | Govone Solutions, Lp | Method, system and computer program product for facilitating a tax transaction |
US20030061171A1 (en) * | 2000-05-15 | 2003-03-27 | Kevin Gilbert | System for and method of effecting an electronic transaction |
US6546441B1 (en) * | 1993-01-26 | 2003-04-08 | Logic Controls, Inc. | Point-of-sale system |
US6601040B1 (en) * | 1998-07-20 | 2003-07-29 | Usa Technologies, Inc. | Electronic commerce terminal for wirelessly communicating to a plurality of communication devices |
US6640214B1 (en) * | 1999-01-16 | 2003-10-28 | Symbol Technologies, Inc. | Portable electronic terminal and data processing system |
US20040073668A1 (en) * | 2002-10-10 | 2004-04-15 | Shivaram Bhat | Policy delegation for access control |
US20040078328A1 (en) * | 2002-02-07 | 2004-04-22 | Talbert Vincent W. | Method and system for completing a transaction between a customer and a merchant |
US20040172309A1 (en) * | 2002-11-15 | 2004-09-02 | Selwanes Ragui N. | Method, system and storage medium for facilitating multi-party transactions |
US6938022B1 (en) * | 1999-06-12 | 2005-08-30 | Tara C. Singhal | Method and apparatus for facilitating an anonymous information system and anonymous service transactions |
US6938019B1 (en) * | 2000-08-29 | 2005-08-30 | Uzo Chijioke Chukwuemeka | Method and apparatus for making secure electronic payments |
US6990470B2 (en) * | 2000-04-11 | 2006-01-24 | Mastercard International Incorporated | Method and system for conducting secure payments over a computer network |
US7096363B2 (en) * | 2000-08-31 | 2006-08-22 | Sony Corporation | Person identification certificate link system, information processing apparatus, information processing method, and program providing medium |
US7571142B1 (en) * | 1998-03-25 | 2009-08-04 | Orbis Patents Limited | Credit card system and method |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0858201A3 (en) * | 1997-02-06 | 1999-01-13 | Sun Microsystems, Inc. | Method and apparatus for allowing secure transactions through a firewall |
US5910988A (en) * | 1997-08-27 | 1999-06-08 | Csp Holdings, Inc. | Remote image capture with centralized processing and storage |
JP2000293577A (en) * | 1999-04-07 | 2000-10-20 | Orient Corp | Credit card, information processor, information processing method, and recording medium recording information processing software |
-
2000
- 2000-09-07 US US09/656,815 patent/US7233920B1/en not_active Expired - Lifetime
-
2007
- 2007-06-15 US US11/818,693 patent/US20070299781A1/en not_active Abandoned
Patent Citations (69)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US3786439A (en) * | 1972-12-26 | 1974-01-15 | Ibm | Error detection systems |
US4755940A (en) * | 1983-09-17 | 1988-07-05 | International Business Machines Corporation | Transaction security system |
US5222018A (en) * | 1985-07-18 | 1993-06-22 | Pitney Bowes Inc. | System for centralized processing of accounting and payment functions |
US4799156A (en) * | 1986-10-01 | 1989-01-17 | Strategic Processing Corporation | Interactive market management system |
US4843220A (en) * | 1987-03-13 | 1989-06-27 | American Magnetics Corporation | Automatic data capture for multiple form point of sale slip packs |
US6064988A (en) * | 1987-08-17 | 2000-05-16 | Thomas; Harold K. | Data processing system including transaction authorization device |
US5490060A (en) * | 1988-02-29 | 1996-02-06 | Information Resources, Inc. | Passive data collection system for market research data |
US5854746A (en) * | 1990-04-28 | 1998-12-29 | Kanebo, Ltd. | Flexible production and material resource planning system using sales information directly acquired from POS terminals |
US5621670A (en) * | 1991-08-01 | 1997-04-15 | Fujitsu Limited | Communication service simulator and a communication service specification verifying method |
US5490251A (en) * | 1991-08-09 | 1996-02-06 | First Data Resources Inc. | Method and apparatus for transmitting data over a signalling channel in a digital telecommunications network |
US5734823A (en) * | 1991-11-04 | 1998-03-31 | Microtome, Inc. | Systems and apparatus for electronic communication and storage of information |
US5448047A (en) * | 1992-10-30 | 1995-09-05 | Microbilt Corporation | Card validation method using multiple cord data regions |
US6546441B1 (en) * | 1993-01-26 | 2003-04-08 | Logic Controls, Inc. | Point-of-sale system |
US5500890A (en) * | 1993-08-19 | 1996-03-19 | Exxon Research And Engineering Company | Point-of-sale system using multi-threaded transactions and interleaved file transfer |
US5450317A (en) * | 1993-11-24 | 1995-09-12 | U S West Advanced Technologies, Inc. | Method and system for optimized logistics planning |
US5956700A (en) * | 1994-06-03 | 1999-09-21 | Midwest Payment Systems | System and method for paying bills and other obligations including selective payor and payee controls |
US5909492A (en) * | 1994-10-24 | 1999-06-01 | Open Market, Incorporated | Network sales system |
US5781632A (en) * | 1995-02-08 | 1998-07-14 | Odom; Gregory Glen | Method and apparatus for secured transmission of confidential data over an unsecured network |
US5765143A (en) * | 1995-02-28 | 1998-06-09 | Triad Systems Corporation | Method and system for inventory management |
US6032127A (en) * | 1995-04-24 | 2000-02-29 | Intermec Ip Corp. | Intelligent shopping cart |
US5774883A (en) * | 1995-05-25 | 1998-06-30 | Andersen; Lloyd R. | Method for selecting a seller's most profitable financing program |
US5678010A (en) * | 1995-06-07 | 1997-10-14 | Compuserve Incorporated | Automated routing of messages over a network |
US5742845A (en) * | 1995-06-22 | 1998-04-21 | Datascape, Inc. | System for extending present open network communication protocols to communicate with non-standard I/O devices directly coupled to an open network |
US6411940B1 (en) * | 1995-07-07 | 2002-06-25 | Netcraft Corporation | Internet billing method |
US5812997A (en) * | 1995-10-26 | 1998-09-22 | International Business Machines Incorporated | Method and apparatus for deriving an association rule between data |
US5757917A (en) * | 1995-11-01 | 1998-05-26 | First Virtual Holdings Incorporated | Computerized payment system for purchasing goods and services on the internet |
US6360211B1 (en) * | 1995-12-08 | 2002-03-19 | Mellon Bank, N.A. | System and method for electronically processing invoice information |
US5832456A (en) * | 1996-01-18 | 1998-11-03 | Strategic Weather Services | System and method for weather adapted, business performance forecasting |
US5754772A (en) * | 1996-03-26 | 1998-05-19 | Unisys Corporation | Transaction service independent HTTP server-to-transaction gateway |
US5987140A (en) * | 1996-04-26 | 1999-11-16 | Verifone, Inc. | System, method and article of manufacture for secure network electronic payment and credit collection |
US5963924A (en) * | 1996-04-26 | 1999-10-05 | Verifone, Inc. | System, method and article of manufacture for the use of payment instrument holders and payment instruments in network electronic commerce |
US5848161A (en) * | 1996-05-16 | 1998-12-08 | Luneau; Greg | Method for providing secured commerical transactions via a networked communications system |
US5778173A (en) * | 1996-06-12 | 1998-07-07 | At&T Corp. | Mechanism for enabling secure electronic transactions on the open internet |
US5983208A (en) * | 1996-06-17 | 1999-11-09 | Verifone, Inc. | System, method and article of manufacture for handling transaction results in a gateway payment architecture utilizing a multichannel, extensible, flexible architecture |
US6178409B1 (en) * | 1996-06-17 | 2001-01-23 | Verifone, Inc. | System, method and article of manufacture for multiple-entry point virtual point of sale architecture |
US5812668A (en) * | 1996-06-17 | 1998-09-22 | Verifone, Inc. | System, method and article of manufacture for verifying the operation of a remote transaction clearance system utilizing a multichannel, extensible, flexible architecture |
US6324525B1 (en) * | 1996-06-17 | 2001-11-27 | Hewlett-Packard Company | Settlement of aggregated electronic transactions over a network |
US6163772A (en) * | 1996-06-17 | 2000-12-19 | Hewlett-Packard Company | Virtual point of sale processing using gateway-initiated messages |
US5845267A (en) * | 1996-09-06 | 1998-12-01 | At&T Corp | System and method for billing for transactions conducted over the internet from within an intranet |
US5931917A (en) * | 1996-09-26 | 1999-08-03 | Verifone, Inc. | System, method and article of manufacture for a gateway system architecture with system administration information accessible from a browser |
US6332133B1 (en) * | 1996-11-14 | 2001-12-18 | Matsushita Electric Industrial Co., Ltd. | Personal electronic settlement system, its terminal, and management apparatus |
US5917913A (en) * | 1996-12-04 | 1999-06-29 | Wang; Ynjiun Paul | Portable electronic authorization devices and methods therefor |
US6005939A (en) * | 1996-12-06 | 1999-12-21 | International Business Machines Corporation | Method and apparatus for storing an internet user's identity and access rights to world wide web resources |
US6460020B1 (en) * | 1996-12-30 | 2002-10-01 | De Technologies, Inc. | Universal shopping center for international operation |
US5978918A (en) * | 1997-01-17 | 1999-11-02 | Secure.Net Corporation | Security process for public networks |
US6160874A (en) * | 1997-10-21 | 2000-12-12 | Mci Communications Corporation | Validation gateway |
US6334116B1 (en) * | 1998-02-02 | 2001-12-25 | Checkfree Corporation | Technique for centrally tracking transactions in an electronic billing system |
US6003008A (en) * | 1998-03-20 | 1999-12-14 | Skyteller L.L.C. | Point of sale device |
US7571142B1 (en) * | 1998-03-25 | 2009-08-04 | Orbis Patents Limited | Credit card system and method |
US6122743A (en) * | 1998-03-31 | 2000-09-19 | Siemens Information And Communication Networks, Inc. | System for providing enhanced security for transactions transmitted through a distributed network |
US6157927A (en) * | 1998-04-22 | 2000-12-05 | Unisys Corporation | Methods and apparatus for enabling a component in a first transaction processing environment to access a resource in another environment that is under the control of an Xatmi complaint transaction manager |
US20010001877A1 (en) * | 1998-05-21 | 2001-05-24 | Jennifer French | System and method for authentication of network users with preprocessing |
US6601040B1 (en) * | 1998-07-20 | 2003-07-29 | Usa Technologies, Inc. | Electronic commerce terminal for wirelessly communicating to a plurality of communication devices |
US20020059114A1 (en) * | 1998-11-29 | 2002-05-16 | Michael P. Cockrill | Electronic commerce using a transaction network |
US6640214B1 (en) * | 1999-01-16 | 2003-10-28 | Symbol Technologies, Inc. | Portable electronic terminal and data processing system |
US6332193B1 (en) * | 1999-01-18 | 2001-12-18 | Sensar, Inc. | Method and apparatus for securely transmitting and authenticating biometric data over a network |
US6938022B1 (en) * | 1999-06-12 | 2005-08-30 | Tara C. Singhal | Method and apparatus for facilitating an anonymous information system and anonymous service transactions |
US20020166090A1 (en) * | 1999-09-03 | 2002-11-07 | Matsushita Electric Industrial Co., Ltd. | Error correction device |
US6990470B2 (en) * | 2000-04-11 | 2006-01-24 | Mastercard International Incorporated | Method and system for conducting secure payments over a computer network |
US20030046237A1 (en) * | 2000-05-09 | 2003-03-06 | James Uberti | Method and system for enabling the issuance of biometrically secured online credit or other online payment transactions without tokens |
US20030061171A1 (en) * | 2000-05-15 | 2003-03-27 | Kevin Gilbert | System for and method of effecting an electronic transaction |
US6938019B1 (en) * | 2000-08-29 | 2005-08-30 | Uzo Chijioke Chukwuemeka | Method and apparatus for making secure electronic payments |
US7096363B2 (en) * | 2000-08-31 | 2006-08-22 | Sony Corporation | Person identification certificate link system, information processing apparatus, information processing method, and program providing medium |
US20030055754A1 (en) * | 2000-11-30 | 2003-03-20 | Govone Solutions, Lp | Method, system and computer program product for facilitating a tax transaction |
US20020198798A1 (en) * | 2001-04-03 | 2002-12-26 | Bottomline Technologies, Inc. | Modular business transactions platform |
US20020191020A1 (en) * | 2001-06-18 | 2002-12-19 | International Business Machines Corporation | Method and apparatus for removing confindential information from a history |
US20040078328A1 (en) * | 2002-02-07 | 2004-04-22 | Talbert Vincent W. | Method and system for completing a transaction between a customer and a merchant |
US20040073668A1 (en) * | 2002-10-10 | 2004-04-15 | Shivaram Bhat | Policy delegation for access control |
US20040172309A1 (en) * | 2002-11-15 | 2004-09-02 | Selwanes Ragui N. | Method, system and storage medium for facilitating multi-party transactions |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20090202081A1 (en) * | 2008-02-08 | 2009-08-13 | Ayman Hammad | Key delivery system and method |
US9270447B2 (en) | 2011-11-03 | 2016-02-23 | Arvind Gidwani | Demand based encryption and key generation and distribution systems and methods |
US10147089B2 (en) | 2012-01-05 | 2018-12-04 | Visa International Service Association | Data protection with translation |
US11276058B2 (en) | 2012-01-05 | 2022-03-15 | Visa International Service Association | Data protection with translation |
Also Published As
Publication number | Publication date |
---|---|
US7233920B1 (en) | 2007-06-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20070299781A1 (en) | System and apparatus for credit data transmission | |
US9794371B2 (en) | Method and system for remote activation and management of personal security devices | |
US6694436B1 (en) | Terminal and system for performing secure electronic transactions | |
US8190899B1 (en) | System and method for establishing a remote connection over a network with a personal security device connected to a local client without using a local APDU interface or local cryptography | |
US8904178B2 (en) | System and method for secure remote access | |
EP1551149B1 (en) | Universal secure messaging for remote security tokens | |
US8588415B2 (en) | Method for securing a telecommunications terminal which is connected to a terminal user identification module | |
US20100088766A1 (en) | Method and system for detecting, blocking and circumventing man-in-the-middle attacks executed via proxy servers | |
EP2481230B1 (en) | Authentication method, payment authorisation method and corresponding electronic equipments | |
CN101816140A (en) | Token-based management system for PKI personalization process | |
JPH0787455B2 (en) | Bootstrap channel protection device for communication network and method for preventing illegal communication | |
US20210073772A1 (en) | System and method for secure detokenization | |
US20220385655A1 (en) | Communication control system and communication control device | |
GB2354102A (en) | System for communicating over a public network | |
CN111131416A (en) | Business service providing method and device, storage medium and electronic device | |
US9185110B2 (en) | Device and method for secure access to a remote server | |
EP3185502A1 (en) | Secure payment system | |
KR20190004250A (en) | Method for Providing Non-Faced Transaction by using Appointed Terminal | |
JP2006121440A (en) | Medical system, medical data management method and communications program for medical data management | |
CN114726907A (en) | Access method, system, equipment and storage medium of mobile terminal product | |
KR100837301B1 (en) | System and method for providing cash advance service in mobile station payment portal service | |
JP2006115417A (en) | Electronic commercial transaction system, electronic commercial transaction method, and communication program for electronic commercial transaction | |
KR20100103745A (en) | System and method for connecting security channel between ic chip and server and recording medium | |
KR20170124504A (en) | Method for Providing Non-Faced Transaction by using Appointed Terminal | |
KR20140111630A (en) | Method for End-To-End Exchanging Data between IC Chip and Server |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: PAYMENTECH, LLC, TEXAS Free format text: MERGER;ASSIGNOR:PAYMENTECH, L.P.;REEL/FRAME:026051/0519 Effective date: 20070625 |
|
STCV | Information on status: appeal procedure |
Free format text: ON APPEAL -- AWAITING DECISION BY THE BOARD OF APPEALS |
|
STCV | Information on status: appeal procedure |
Free format text: BOARD OF APPEALS DECISION RENDERED |
|
STCV | Information on status: appeal procedure |
Free format text: BOARD OF APPEALS DECISION RENDERED |
|
STCB | Information on status: application discontinuation |
Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION |