WO2001099071A3 - An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number - Google Patents

An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number Download PDF

Info

Publication number
WO2001099071A3
WO2001099071A3 PCT/US2001/019754 US0119754W WO0199071A3 WO 2001099071 A3 WO2001099071 A3 WO 2001099071A3 US 0119754 W US0119754 W US 0119754W WO 0199071 A3 WO0199071 A3 WO 0199071A3
Authority
WO
WIPO (PCT)
Prior art keywords
account number
pseudo
computer network
improved method
proxy account
Prior art date
Application number
PCT/US2001/019754
Other languages
French (fr)
Other versions
WO2001099071A2 (en
Inventor
Edward J Hogan
Carl M Campbell
Original Assignee
Mastercard International Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US09/809,367 external-priority patent/US9672515B2/en
Priority claimed from US09/833,049 external-priority patent/US7379919B2/en
Application filed by Mastercard International Inc filed Critical Mastercard International Inc
Priority to AU2001270012A priority Critical patent/AU2001270012B8/en
Priority to JP2002503838A priority patent/JP4903346B2/en
Priority to EP01948539A priority patent/EP1295267A2/en
Priority to AU7001201A priority patent/AU7001201A/en
Priority to CA002413882A priority patent/CA2413882A1/en
Publication of WO2001099071A2 publication Critical patent/WO2001099071A2/en
Publication of WO2001099071A3 publication Critical patent/WO2001099071A3/en
Priority to HK03106336.7A priority patent/HK1054608A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/14Payment architectures specially adapted for billing systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/24Credit schemes, i.e. "pay after"
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/403Solvency checks

Abstract

A method is provided for conducting an electronic transaction with a payment account number having a certain amount of available funds, using a payment network and a 'check site'. The method comprises the following steps: (a) generating a secret key associated with the payment account number; (b) using the secret key to generate a message authentication code ('MAC') specific to the transaction; (c) generating an authorization request message including the message authentication code; (d) forwarding the authorization request message over the payment network to the check site for verifying the authenticity of the MAC; (e) verifying the message authentication code by the check site using the secret key; (f) responding to the authorization request message over the payment network based on the available funds and the transaction amount.
PCT/US2001/019754 2000-06-22 2001-06-21 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number WO2001099071A2 (en)

Priority Applications (6)

Application Number Priority Date Filing Date Title
AU2001270012A AU2001270012B8 (en) 2000-06-22 2001-06-21 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number
JP2002503838A JP4903346B2 (en) 2000-06-22 2001-06-21 Improved method and system for processing secure payments across computer networks without pseudo or proxy account numbers
EP01948539A EP1295267A2 (en) 2000-06-22 2001-06-21 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number
AU7001201A AU7001201A (en) 2000-06-22 2001-06-21 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number
CA002413882A CA2413882A1 (en) 2000-06-22 2001-06-21 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number
HK03106336.7A HK1054608A1 (en) 2000-06-22 2003-09-05 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number

Applications Claiming Priority (8)

Application Number Priority Date Filing Date Title
US21332500P 2000-06-22 2000-06-22
US60/213,325 2000-06-22
US22516800P 2000-08-14 2000-08-14
US60/225,168 2000-08-14
US09/809,367 2001-03-15
US09/809,367 US9672515B2 (en) 2000-03-15 2001-03-15 Method and system for secure payments over a computer network
US09/833,049 2001-04-11
US09/833,049 US7379919B2 (en) 2000-04-11 2001-04-11 Method and system for conducting secure payments over a computer network

Publications (2)

Publication Number Publication Date
WO2001099071A2 WO2001099071A2 (en) 2001-12-27
WO2001099071A3 true WO2001099071A3 (en) 2002-05-30

Family

ID=27498926

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/019754 WO2001099071A2 (en) 2000-06-22 2001-06-21 An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number

Country Status (5)

Country Link
EP (1) EP1295267A2 (en)
JP (1) JP4903346B2 (en)
AU (2) AU7001201A (en)
CA (1) CA2413882A1 (en)
WO (1) WO2001099071A2 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6732270B1 (en) * 2000-10-23 2004-05-04 Motorola, Inc. Method to authenticate a network access server to an authentication server
JP2005507106A (en) 2001-10-17 2005-03-10 エヌ・ピー・エックス テクノロジース リミテッド Verification of person identifiers received online
KR101100385B1 (en) * 2004-03-22 2011-12-30 삼성전자주식회사 Method and apparatus for digital rights management by using certificate revocation list
DE102009024984A1 (en) * 2009-06-16 2010-12-23 Giesecke & Devrient Gmbh Method for executing electronic bank transaction through Internet, involves interrupting transaction when comparison is produced automatically such that inspection value is different from another inspection value
CA2876744A1 (en) * 2012-06-15 2013-12-19 Edatanetworks Inc. Systems and methods for incenting consumers

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5724424A (en) * 1993-12-16 1998-03-03 Open Market, Inc. Digital active advertising
EP1028401A2 (en) * 1999-02-12 2000-08-16 Citibank, N.A. Method and system for performing a bankcard transaction
WO2001069556A2 (en) * 2000-03-15 2001-09-20 Mastercard International Incorporated Method and system for secure payments over a computer network

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2168514A (en) * 1984-12-12 1986-06-18 Ibm Security module
JPH01243175A (en) * 1988-03-24 1989-09-27 Nippon Ginkou Method for confirming settlement for electronic settlement system
GB9416595D0 (en) * 1994-08-17 1994-10-12 British Telecomm User authentication in a communications network
JP3599493B2 (en) * 1996-09-10 2004-12-08 日本銀行 Electronic cash method and user device with separate issuing agency number registration type
CN1212101A (en) * 1996-10-23 1999-03-24 皇家菲利浦电子有限公司 Payment scheme for mobile communication service
JP3435682B2 (en) * 1997-08-15 2003-08-11 日本電信電話株式会社 Electronic cash deposit method, device thereof, and program recording medium
US6000832A (en) * 1997-09-24 1999-12-14 Microsoft Corporation Electronic online commerce card with customer generated transaction proxy number for online transactions
US5883810A (en) 1997-09-24 1999-03-16 Microsoft Corporation Electronic online commerce card with transactionproxy number for online transactions
US6102287A (en) * 1998-05-15 2000-08-15 International Business Machines Corporation Method and apparatus for providing product survey information in an electronic payment system
GB2338381A (en) * 1998-06-10 1999-12-15 Barclays Bank Plc Cryptographic authentication for internet using two servers

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5724424A (en) * 1993-12-16 1998-03-03 Open Market, Inc. Digital active advertising
EP1028401A2 (en) * 1999-02-12 2000-08-16 Citibank, N.A. Method and system for performing a bankcard transaction
WO2001069556A2 (en) * 2000-03-15 2001-09-20 Mastercard International Incorporated Method and system for secure payments over a computer network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
BRUCE SCHNEIER: "Applied Cryptography", 8 November 1999, JOHN WILEY & SONS, INC., NEW YORK, XP002188917, 238530 *

Also Published As

Publication number Publication date
JP4903346B2 (en) 2012-03-28
CA2413882A1 (en) 2001-12-27
AU7001201A (en) 2002-01-02
AU2001270012B8 (en) 2006-11-16
WO2001099071A2 (en) 2001-12-27
JP2003536181A (en) 2003-12-02
EP1295267A2 (en) 2003-03-26
AU2001270012B2 (en) 2006-09-28

Similar Documents

Publication Publication Date Title
Bellare et al. iKP-A Family of Secure Electronic Payment Protocols.
CA2816996C (en) Portable security transaction protocol
US7254561B1 (en) Method and device for performing electronic transactions
EP0880254A2 (en) Security system and method for financial institution server and client web browser
WO2002013444A3 (en) Trusted authentication digital signature (tads) system
CN1831865B (en) Electronic bank safety authorization system and method based on CPK
US20010039535A1 (en) Methods and systems for making secure electronic payments
CA2357792A1 (en) Method and device for performing secure transactions
CA2475216A1 (en) Method and system for providing third party authentification of authorization
WO2002005232A3 (en) Method and system for conducting secure electronic commerce transactions with authorization request data loop-back
WO2001069556A3 (en) Method and system for secure payments over a computer network
NO994428L (en) Procedure and system for secure online transaction processing
WO1999060750A3 (en) Preventing unauthorized use of service
WO2002075478A3 (en) Method for performing secure online payment transactions
WO2006039364A3 (en) System and method for electronic check verification over a network
IL128720A (en) Method for certification of over the phone transactions
FR2821225B1 (en) REMOTE ELECTRONIC PAYMENT SYSTEM
JPH118619A (en) Electronic certificate publication method and system therefor
WO2001078024A3 (en) An improved method and system for conducting secure payments over a computer network
WO2001099070A3 (en) An improved method and system for conducting secure payments over a computer network
CA2363220A1 (en) Simcard authorization: online credit card transaction approval, privacy, authentication and non-repudiation
EP1046976A3 (en) Method and apparatus for enabling a user to authenticate a system prior to providing any user-privileged information
WO2001099071A3 (en) An improved method and system for conducting secure payments over a computer network without a pseudo or proxy account number
EP1189184A3 (en) Authentication method, authentication system, payment system, user apparatus and recording medium containing program for conducting authentication
AU2002349348A1 (en) Identification of a user of a mobile terminal and generation of an action authorisation

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

WWE Wipo information: entry into national phase

Ref document number: 2413882

Country of ref document: CA

ENP Entry into the national phase

Ref country code: JP

Ref document number: 2002 503838

Kind code of ref document: A

Format of ref document f/p: F

WWE Wipo information: entry into national phase

Ref document number: 2001270012

Country of ref document: AU

WWE Wipo information: entry into national phase

Ref document number: 2001948539

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2003/00114

Country of ref document: ZA

Ref document number: 200300114

Country of ref document: ZA

WWP Wipo information: published in national office

Ref document number: 2001948539

Country of ref document: EP

WWW Wipo information: withdrawn in national office

Ref document number: 2001948539

Country of ref document: EP