WO2002071177A3 - Method and system for substantially secure electronic transactions - Google Patents

Method and system for substantially secure electronic transactions Download PDF

Info

Publication number
WO2002071177A3
WO2002071177A3 PCT/SG2001/000024 SG0100024W WO02071177A3 WO 2002071177 A3 WO2002071177 A3 WO 2002071177A3 SG 0100024 W SG0100024 W SG 0100024W WO 02071177 A3 WO02071177 A3 WO 02071177A3
Authority
WO
WIPO (PCT)
Prior art keywords
credit
customer
account
electronic device
subset
Prior art date
Application number
PCT/SG2001/000024
Other languages
French (fr)
Other versions
WO2002071177A2 (en
Inventor
Song Chim Jeffrey Chia
Ying Yip Chan
Ohn Chee Wong
Boom Leong Yap
Original Assignee
Moneyhive Com Pte Ltd
Song Chim Jeffrey Chia
Ying Yip Chan
Ohn Chee Wong
Boom Leong Yap
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Moneyhive Com Pte Ltd, Song Chim Jeffrey Chia, Ying Yip Chan, Ohn Chee Wong, Boom Leong Yap filed Critical Moneyhive Com Pte Ltd
Priority to PCT/SG2001/000024 priority Critical patent/WO2002071177A2/en
Priority to AU2001237888A priority patent/AU2001237888A1/en
Publication of WO2002071177A2 publication Critical patent/WO2002071177A2/en
Publication of WO2002071177A3 publication Critical patent/WO2002071177A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/83Protecting input, output or interconnection devices input devices, e.g. keyboards, mice or controllers thereof
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/36User authentication by graphic or iconic representation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/12Card verification
    • G07F7/122Online card verification

Abstract

A method and system of performing substantially secure transactions in the context of a remote commercial transaction via electronic communication, such as over the Internet. When in the following description reference is made to credit cards, it must be understood that this is intended to cover any kind of credit card, debit card, credit or debit account, savings or checking account, smart card or the like. The customer is prompted to enter his account name and PIN by using a data entry mean such as a graphical keyboard at an electronic device. Values of the graphical keys are randomly generated and delivered as a definition file from another electronic device along a secure channel to the customer's first electronic device. The corresponding data in the definition file, instead of the actual authentication data, are communicated over the network when the customer enters the authentication information. Once authenticated, the customer enters only a subset of the credit card account number to which the order is to be charged. Only this subset is transmitted over the network to the second device. Another subset of the credit cart account number is pre-stored with a trusted party, such as the merchant, a bank, credit card company, certificate authority, payment service provider or like. The two subsets are combined and transmitted to existing payment clearing networks for processing.
PCT/SG2001/000024 2001-03-03 2001-03-03 Method and system for substantially secure electronic transactions WO2002071177A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/SG2001/000024 WO2002071177A2 (en) 2001-03-03 2001-03-03 Method and system for substantially secure electronic transactions
AU2001237888A AU2001237888A1 (en) 2001-03-03 2001-03-03 Method and system for substantially secure electronic transactions

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/SG2001/000024 WO2002071177A2 (en) 2001-03-03 2001-03-03 Method and system for substantially secure electronic transactions

Publications (2)

Publication Number Publication Date
WO2002071177A2 WO2002071177A2 (en) 2002-09-12
WO2002071177A3 true WO2002071177A3 (en) 2005-03-10

Family

ID=20428906

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/SG2001/000024 WO2002071177A2 (en) 2001-03-03 2001-03-03 Method and system for substantially secure electronic transactions

Country Status (2)

Country Link
AU (1) AU2001237888A1 (en)
WO (1) WO2002071177A2 (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB0302263D0 (en) * 2003-01-31 2003-03-05 Roke Manor Research Secure network browsing
NO20050051D0 (en) * 2005-01-05 2005-01-05 Lumex As Authentication information method and system fed into computer systems
US20060206919A1 (en) * 2005-03-10 2006-09-14 Axalto Sa System and method of secure login on insecure systems
CN1741074B (en) * 2005-10-08 2011-03-16 胡阳 Method for preventing bank credit cards from unauthorized use
US8095977B2 (en) 2007-01-19 2012-01-10 Microsoft Corporation Secure PIN transmission
WO2008148609A1 (en) * 2007-06-08 2008-12-11 International Business Machines Corporation Language independent login method and system
CN101316424A (en) 2008-07-08 2008-12-03 阿里巴巴集团控股有限公司 Information transmission method, system and device
CN102045173A (en) * 2009-10-12 2011-05-04 华为终端有限公司 Authentication method, device and system of user equipment
GB201212878D0 (en) 2012-07-20 2012-09-05 Pike Justin Authentication method and system
DE102014201846A1 (en) * 2014-02-03 2015-08-06 Commocial Gmbh Method for the secure transmission of characters
GB201520741D0 (en) 2015-05-27 2016-01-06 Mypinpad Ltd And Licentia Group Ltd Authentication methods and systems

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1996018139A1 (en) * 1994-12-08 1996-06-13 Philips Electronics N.V. Security code input
GB2313460A (en) * 1996-05-21 1997-11-26 Bosch Gmbh Robert Graphical password entry
US5790785A (en) * 1995-12-11 1998-08-04 Customer Communications Group, Inc. World Wide Web registration information processing system
CA2214190A1 (en) * 1997-10-15 1999-04-15 Michael Ernest Blom Improved security data entry alphanumeric keypad
WO2000048076A1 (en) * 1999-02-12 2000-08-17 Arcot Systems, Inc. Method and apparatus for secure entry of access codes in a computer environment

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1996018139A1 (en) * 1994-12-08 1996-06-13 Philips Electronics N.V. Security code input
US5790785A (en) * 1995-12-11 1998-08-04 Customer Communications Group, Inc. World Wide Web registration information processing system
GB2313460A (en) * 1996-05-21 1997-11-26 Bosch Gmbh Robert Graphical password entry
CA2214190A1 (en) * 1997-10-15 1999-04-15 Michael Ernest Blom Improved security data entry alphanumeric keypad
WO2000048076A1 (en) * 1999-02-12 2000-08-17 Arcot Systems, Inc. Method and apparatus for secure entry of access codes in a computer environment

Also Published As

Publication number Publication date
AU2001237888A1 (en) 2002-09-19
WO2002071177A2 (en) 2002-09-12

Similar Documents

Publication Publication Date Title
US7330836B2 (en) Method and system for secure authenticated payment on a computer network
US7254561B1 (en) Method and device for performing electronic transactions
EP2156397B1 (en) Secure payment card transactions
US20070170247A1 (en) Payment card authentication system and method
US20070143230A1 (en) Transaction verification system
US20040030901A1 (en) Linking public key of device to information during manufacture
CN101675616A (en) methods and systems for delivering sponsored out-of-band passwords
SG161290A1 (en) Network commercial transactions
CA2686280A1 (en) Method and system for payment authorization and card presentation using pre-issued identities
CN103198405A (en) Intelligent payment method and system based on camera scanning verification
US20040054624A1 (en) Procedure for the completion of an electronic payment
WO2002071177A3 (en) Method and system for substantially secure electronic transactions
WO2001078024A3 (en) An improved method and system for conducting secure payments over a computer network
CA2363220A1 (en) Simcard authorization: online credit card transaction approval, privacy, authentication and non-repudiation
KR20000012607A (en) certification system using radio communication device
WO2003001736A1 (en) Method for authenticating settlement terminal and settlement method using the same
US20100017333A1 (en) Methods and systems for conducting electronic commerce
US7320072B1 (en) Method and token for authenticating a control point
KR100458526B1 (en) System and Method for the wire·wireless complex electronic payment
EP1615183A1 (en) Internet payment verification method and system
CN111937023A (en) Security authentication system and method
KR101596434B1 (en) Method for authenticating electronic financial transaction using payment informaion seperation
CN106529941A (en) PBOC micro payment security promotion method
US20210272116A1 (en) Secure e-commerce protocol
EP3690782A1 (en) Secure and confidential payment

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP