WO2002042972A1 - A credit card payment method for electronic commerce - Google Patents

A credit card payment method for electronic commerce Download PDF

Info

Publication number
WO2002042972A1
WO2002042972A1 PCT/KR2001/002045 KR0102045W WO0242972A1 WO 2002042972 A1 WO2002042972 A1 WO 2002042972A1 KR 0102045 W KR0102045 W KR 0102045W WO 0242972 A1 WO0242972 A1 WO 0242972A1
Authority
WO
WIPO (PCT)
Prior art keywords
credit card
authentication code
electronic commerce
user
server
Prior art date
Application number
PCT/KR2001/002045
Other languages
French (fr)
Inventor
Kee Oh Park
Original Assignee
Kee Oh Park
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Kee Oh Park filed Critical Kee Oh Park
Priority to AU2002218563A priority Critical patent/AU2002218563A1/en
Publication of WO2002042972A1 publication Critical patent/WO2002042972A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/24Credit schemes, i.e. "pay after"
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes

Definitions

  • the present invention relates generally to payment methods for electronic commerce on the Internet, and more particularly to a edit card payment method for electronic commerce on the Internet, which can prevent the leakage of personal information such as the secret number of a credit card by allowing a user to pay using a disposable authentication code assigned by a credit card company without using a secret number of a credit card, when the user pays for a commodity purchased on the Internet by the credit card.
  • electronic commerce on the Internet is broadly popularized, because it is convenient in that it allows a user to purchase commodities without temporal and spatial restrictions and by comparing similar commodities through a plurality of electronic commerce Web sites, and each electronic commerce Web site has a search engine to allow a user to easily find a required commodity.
  • a credit card payment method is generally used as a method of paying for commodities in electronic commerce.
  • the user inputs a logical address of an electronic commerce site to a Uniform Resources Locator (URL) input field arranged on a Web browser of a user terminal so : as to access the electronic commerce site in order to purchase a commodity through the Internet.
  • URL Uniform Resources Locator
  • the logical address is typically inputted in them "http://www.ABC.co.kr/”.
  • URL input field on the Web browser of the user terminal is a communication protocol used to transfer hypertext documents treated in the world wide web to another place.
  • the http requests information of an electronic commerce server having the logical address of
  • the electronic commerce server which receives the information request searches a database (DB) operated by the electronic commerce server for information requested by the user
  • the electronic commerce server extracts an electronic commerce window from the DB operated by the electronic commerce server and transmits it to the * Web browser of the user terminal.
  • the electronic commerce server stores the received information in the DB and transmits payment request information to a credit card company server, to which the user subscribes, on the basis of the information inputted to the credit card information input field by the user.
  • the credit card company server sends payment approval information to the electronic commerce server with reference to the transmitted payment request information.
  • the electronic commerce server stores the received payment approval information in the DB, and an operator of the electronic commerce server delivers the commodity to the user who desires the electronic commerce.
  • electronic commerce and payment method thereof carried out between a seller and a purchaser on the Internet are generally used.
  • the conventional method of carrying out electronic commerce and payment between a seller and a purchaser on the Internet is problematic in that it results in financial loss to the user due to the leakage of credit card information of the user on the Internet, thereby causing the user to avoid credit card payment.
  • the conventional method of paying only using ID and password without the user's inputting a credit card number, by strategic affiliation between a credit card company and an operator of the electronic commerce, is problematic in that the user can limitedly purchase commodities at only electronic commerce sites contracted to the credit card company.
  • an object of the present invention is to provide a credit card payment method, which can allow a user to safely perform electronic commerce without the leakage of his credit card information by assigning a disposable authentication code to the user whenever the user purchases a commodity on the Internet and enabling the user to pay using the assigned disposable authentication code.
  • Another object of the present invention is to provide a credit card payment method, in which each disposable authentication code required to purchase a commodity is produced as random numbers constructed to have the same system as the credit card number set according to each credit card company, such that the electronic commerce server recognizes the authentication code as a credit card number of the credit card company, thereby allowing the user to purchase commodities at all electronic commerce sites.
  • the present invention provides a credit card payment method for electronic commerce using an Internet system comprised of a Web information DB to store various pieces of form information to be transmitted to a user terminal or a mobile communication terminal, a member information DB to store personal information and credit card information of a user, an authentication code assigning program information DB to store an authentication code assigning program used to receive an authentication code required in payment, an authentication server to operate the Web information DB, the member information DB and the authentication code assigning program information DB, a credit card member information DB to store personal information and credit card information of a user who subscribes to a credit card company as a member, an electronic commerce information DB to store information of a commodity purchased by the user, a random number generation program to generate an authentication code, a credit card company server to operate the credit card member information DB, the electronic commerce information DB and the random number generation program, an electronic commerce server to operate a commodity information DB storing information of various commodities, and a mobile communication terminal connected to the authentication sever,
  • Fig. 1 is a schematic block diagram of a system for performing a credit card payment method according to a preferred embodiment of the present invention
  • Fig. 2 is a flowchart showing the step of paying by receiving an authentication code when a user purchases a commodity using a user terminal on the Internet
  • Fig. 3 is a view showing an authentication code assigning window required to request an authentication code for payment and to receive an approval of the authentication code, when the user purchases a commodity.
  • the electronic commerce payment method of the present invention requires a system in which a credit card company server, an authentication company server, an electronic commerce server and a user terminal each having an Internet communication means are connected to the Internet or a mobile communication network.
  • the system comprises a Web information DB 3 to store various form information (Web page) for a mobile communication terminal such as an authentication code request window, a member registration window, an authentication code assigning program download window and an authentication code assigning window, a member information DB 5 to store user information including user identification (ID), a password, a credit card number and a credit card secret number, an authentication code assigning program information DB 7 to store an authentication code assigning program of receiving an authentication code used in user's payment in electronic commerce, and an authentication server 1 of an authentication company to operate the Web information DB 3, the member information DB 5 and the authentication code assigning program information DB 7; a credit card member information DB 1 1 to store information including a name, a credit card member number and a credit card secret number of a user who subscribes to a credit card company as a member, an electronic commerce information DB 13 to store information of a commodity purchased by the user, a random number generation program 9 a to generate an authentication code required in user's payment, and a credit card company server 9
  • the Web information DB 3 installed in the authentication server 1 includes an authentication code assigning download
  • the authentication code assigning program 21a stored in the user terminal 21 is executed, such that data for requesting the assignment of the authentication code must be transmitted to the
  • the random number generation program 9a installed in the credit card company server 9 is a program used to generate the disposable credit card number (authentication code) of a member having a credit card when an authentication request is inputted from the authentication server 1.
  • the electronic commerce information DB 13 includes commodity list information per category purchased by the user, authentication code information, resident registration number information and credit card number information of an electronic commerce user and commodity price information.
  • Fig. 2 is a flowchart of a credit card payment method according to a preferred embodiment of this invention and shows the step of paying by receiving an authentication code when a user purchases a commodity using a user terminal on the Internet.
  • Internet comprises the steps of: accessing an electronic commerce site through the Internet using the Internet communication means of the user terminal at step SI 00, deciding to purchase a commodity at the electronic commerce site at step SI 05, receiving electronic commerce information data from the user terminal by the electronic commerce server and executing the authentication code assigning program stored in the user terminal to output the authentication code assigning window so as to perform user authentication through the authentication server at step SI 10, inputting personal information to a personal information input field arranged on the outputted authentication code assigning window to request user authentication from the authentication server at step S 115 , transmitting credit card company information of the user to the authentication code assigning window of the user terminal after performing the user authentication by the authentication server at step SI 20, inputting electronic commerce information and personal information to each input field of the outputted authentication code assigning window to request the assignment of the authentication code from the authentication server at step SI 25, storing information data received from the user terminal and transmitting authentication code request data to the credit card company server by the authentication server at step SI 30, executing the random number generation program to generate the authentication code by the credit card company server which
  • the authentication code assigning window 27 stored in a memory of the user terminal is outputted to the background screen.
  • the authentication code assigning window 27 is a document written in JAVA or a C-language.
  • the authentication code assigning window 27 is constructed such that it is written in JAVA or C-language instead of conventional HTML document. Further, the authentication code assigning window 27 includes a personal information input field 29 required to perform user authentication, a log- in menu 37, a credit card company name input field 31 required to pay, a commodity price input field 33, a payment method input field 35 and an authentication code download unit 39.
  • the user inputs information to the personal information input field 29 arranged on the authentication code assigning window 27 in accordance with an input form, and then transmits the user authentication request information to the authentication server 1 by clicking the log-in menu 37.
  • the authentication server 1 receives the user authentication request information and performs the user authentication by matching the user ID and password information with member ID and password information stored in the member information DB 5 operated by the authentication server 1.
  • the authentication server 1 transmits credit card company information (here, the name of the credit card company and the credit card number) of the member that is a user included in the member information matched with the user to the credit card company name input field 31 of the authentication code assigning window 27. If the number of pieces of the credit card company information of the user is two or more, the credit card company name input field 31 is constructed such that the user can select the credit card company information using his mouse.
  • credit card company information here, the name of the credit card company and the credit card number
  • the user inputs his personal information and information required in payment to the credit card company name input field 31, the commodity price input field 33 and the payment method input field 35 on the authentication code assigning window 27 in accordance with input forms. Then, the authentication code request data are transmitted to the authentication server 1.
  • the credit card company server 9 checks whether the credit card number is used by the personal information included in the received authentication code request data. Then, the credit card company server 9 drives the random number generation program 9a to generate the authentication code (including the credit card number information of the user) in which a card number having the same system as that of the credit card number is represented with random numbers and the amount of payment is decided.
  • the generated authentication code is stored to be matched with the credit card number.
  • the authentication server 1 transmits the authentication code received from the credit card company server 9 to the authentication code assigning window 27 of the user terminal 21.
  • the authentication code including position information, which is transmitted to the authentication code assigning window 27, is displayed on the authentication code download field 39.
  • the user inputs the authentication code which is a disposable credit card number received from the authentication server 1 instead of the credit card number which is used in conventional payment to a credit card information input window (not shown) of the electronic commerce site outputted to the Web browser of the user terminal 21.
  • the user who desires to purchase a commodity inputs corresponding information to each input field including the credit card company name input field and the credit card number input field arranged on the credit card information input window in accordance with input forms.
  • the user inputs the authentication code which is a disposable credit card number received from the credit card company through the authentication server to the credit card number input field, with ut inputting the conventional credit card number.
  • the electronic commerce server 15 recognizes the authentication code as the credit card number of the credit card company.
  • the electronic commerce server 15 transmits the inputted credit card number, more exactly, the authentication code to the credit card company server 9 to request the approval of the authentication code.
  • the mobile communication terminal may include a cellular phone, a Personal Communications Services (PCS) terminal, a Personal Digital Assistant (PDA) terminal and a wireless Internet- only terminal each having a wireless Internet communication means.
  • the embodiment using a mobile communication terminal is constructed such that it comprises components such as a Wireless
  • WAP gateway functions as an interface for converting documents written in JAVA or C- language into Wireless Markup Language (WML) documents to enable various pieces of information to be transmitted through the mobile communication network 23, which is a wireless network.
  • the central office obtains the local position information of the user using the mobile communication terminal number information of the user included in a WML document received from the WAP gateway, and transmits the obtained information by including it to the WML document.
  • the base station controller establishes and sends a mobile to land call for the WML document including the local position information of the user, which is received from the central office.
  • Fig. 3 is a view showing an example of the authentication code assigning window required to request the authentication code for payment and to receive the approval of the authentication code when the user purchases a commodity.
  • the authentication code assigning window 27 which is used to transmit the authentication code request information to the authentication server 1 and to download the generated authentication code from the authentication server 1.
  • the personal information input field 29 is used to input personal information such as the ID, the password and the resident registration number of the user.
  • the credit card company name input field 31 is used to input credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding credit card company name information of a corresponding
  • an input field to input card numbers and their secret numbers of a predetermined number of credit cards is arranged on a member registration window (not shown) inputted when the user registers
  • the commodity price input field 33 is used to input the price of a commodity which the user desires to purchase.
  • the commodity price input field 33 is constructed
  • the payment method input field 35 is used to input payment methods such as payment by monthly installment or payment in lump sum by the user.
  • the authentication code download field is used to input payment methods such as payment by monthly installment or payment in lump sum by the user.
  • the authentication code generation method by the credit card company may include another method different from the above random number generation method described in the above embodiments.
  • the authentication code generation method may include an embodiment in which an authentication code is generated by changing a part of the credit card number of a credit card member, or a number preset by a credit card company is assigned as the authentication code.
  • the present invention may include an embodiment of directly receiving the authentication code from the credit card company server without passing through the authentication server as a path by which the user terminal receives the generated authentication code.
  • the method of inputting the authentication code to the electronic commerce site may include an embodiment which allows the user terminal to receive the authentication code without the user's inputting the authentication code, and which enables the authentication code to be automatically inputted to the credit card information input window of the electronic commerce site.
  • the present invention can be also used for payment to public services using the Internet, as well as payment using the authentication code at electronic commerce sites.
  • the present invention provides a credit card payment method for electronic commerce, which assigns a disposable authentication code to a user through a user terminal, an authentication server and a credit card company server whenever the user purchases a commodity on the Internet, and enables the user to pay using the assigned disposable authentication code. Therefore, the present invention is advantageous in that the leakage of credit card information of the user can be prevented, thus allowing the user to be free of concern over leakage of his credit card information. Accordingly, the user can safely use the credit card, thereby facilitating electronic commerce.
  • the present invention is advantageous in that the disposable authentication code required to purchase a commodity is produced as a random number constructed in its system the same as each credit card number set according to credit card companies, thereby allowing the user to purchase commodities at all electronic commerce sites.

Abstract

Disclosed herein is a credit card payment method for electronic commerce on the Internet. Especially, the present invention relates to a credit card payment method for electronic commerce on the Internet, which can prevent the leakage of personal information such as the secret number of a credit card by allowing a user to pay using a disposable authentication code assigned by a credit card company without using a secret number of a credit card, when the user pays for a commodity purchased on the Internet by the credit card. In the prior art, since a purchasing user pays using his credit card information in electronic commerce on the Internet, there occurs the leakage or stealing of credit card information, thus resulting in financial loss to the user. The present invention assigns a disposable authentication code to a user whenever the user performs electronic commerce on the Internet and enables the user to pay using the assigned disposable authentication code, thus preventing the leakage of credit card information of the user, and preventing financial loss due to the leakage of the credit card information.

Description

A CREDIT CARD PAYMENT METHOD FOR
ELECTRONIC COMMERCE
Field of the Invention
The present invention relates generally to payment methods for electronic commerce on the Internet, and more particularly to a edit card payment method for electronic commerce on the Internet, which can prevent the leakage of personal information such as the secret number of a credit card by allowing a user to pay using a disposable authentication code assigned by a credit card company without using a secret number of a credit card, when the user pays for a commodity purchased on the Internet by the credit card.
Description of the Prior Art
Recently, with the increase in a number of persons using the Internet, services provided through the Internet are extended to fields such as education, advertising and electronic commerce.
Especially, electronic commerce on the Internet is broadly popularized, because it is convenient in that it allows a user to purchase commodities without temporal and spatial restrictions and by comparing similar commodities through a plurality of electronic commerce Web sites, and each electronic commerce Web site has a search engine to allow a user to easily find a required commodity. Further, a credit card payment method is generally used as a method of paying for commodities in electronic commerce. Typically, there are several general payment methods used by users in electronic commerce on the Internet as follows.
First, the user inputs a logical address of an electronic commerce site to a Uniform Resources Locator (URL) input field arranged on a Web browser of a user terminal so : as to access the electronic commerce site in order to purchase a commodity through the Internet.
In this case, the logical address is typically inputted in them "http://www.ABC.co.kr/".
Further, http (HyperText Transfer Protocol) included in the
URL input field on the Web browser of the user terminal is a communication protocol used to transfer hypertext documents treated in the world wide web to another place. In this case, when "http://ABC.co.kr/" inputted to the URL input field by the user using his keyboard is transferred, the http requests information of an electronic commerce server having the logical address of
ABC.co.kr
The electronic commerce server which receives the information request searches a database (DB) operated by the electronic commerce server for information requested by the user
(here, a corresponding Web site) and transfers the searched information to the Web browser of the user terminal. The user searches the Web site transferred to the Web browser of the user terminal for commodities using a search engine or a click means, and then transmits the searched result to the electronic commerce server by clicking a required electronic commerce menu. Then, the electronic commerce server extracts an electronic commerce window from the DB operated by the electronic commerce server and transmits it to the * Web browser of the user terminal.
On the electronic commerce window transmitted to the Web browser of the user terminal, there are a plurality of input fields such as a personal information input field for inputting user ID and a password, a credit card information input field for inputting a credit card number and a secret number, and a delivery area input field. Therefore, the user inputs corresponding information to each input field in accordance with input forms and transfers the inputted information to the electronic commerce server. The electronic commerce server stores the received information in the DB and transmits payment request information to a credit card company server, to which the user subscribes, on the basis of the information inputted to the credit card information input field by the user. The credit card company server sends payment approval information to the electronic commerce server with reference to the transmitted payment request information. The electronic commerce server stores the received payment approval information in the DB, and an operator of the electronic commerce server delivers the commodity to the user who desires the electronic commerce. As described above, electronic commerce and payment method thereof carried out between a seller and a purchaser on the Internet are generally used.
Further, there is another payment method using additionally assigned ID and password without the user's inputting a credit card number, by strategic affiliation between a credit card company and an operator of the electronic commerce when the user purchases a commodity on the Internet, as a more advanced payment method.
However, the conventional method of carrying out electronic commerce and payment between a seller and a purchaser on the Internet is problematic in that it results in financial loss to the user due to the leakage of credit card information of the user on the Internet, thereby causing the user to avoid credit card payment.
Further, the conventional method of paying only using ID and password without the user's inputting a credit card number, by strategic affiliation between a credit card company and an operator of the electronic commerce, is problematic in that the user can limitedly purchase commodities at only electronic commerce sites contracted to the credit card company.
SUMMARY OF THE INVENTION
Accordingly, the present invention has been made keeping in mind the above problems occurring in the prior art, and an object of the present invention is to provide a credit card payment method, which can allow a user to safely perform electronic commerce without the leakage of his credit card information by assigning a disposable authentication code to the user whenever the user purchases a commodity on the Internet and enabling the user to pay using the assigned disposable authentication code.
Another object of the present invention is to provide a credit card payment method, in which each disposable authentication code required to purchase a commodity is produced as random numbers constructed to have the same system as the credit card number set according to each credit card company, such that the electronic commerce server recognizes the authentication code as a credit card number of the credit card company, thereby allowing the user to purchase commodities at all electronic commerce sites.
In order to accomplish the above objects, the present invention provides a credit card payment method for electronic commerce using an Internet system comprised of a Web information DB to store various pieces of form information to be transmitted to a user terminal or a mobile communication terminal, a member information DB to store personal information and credit card information of a user, an authentication code assigning program information DB to store an authentication code assigning program used to receive an authentication code required in payment, an authentication server to operate the Web information DB, the member information DB and the authentication code assigning program information DB, a credit card member information DB to store personal information and credit card information of a user who subscribes to a credit card company as a member, an electronic commerce information DB to store information of a commodity purchased by the user, a random number generation program to generate an authentication code, a credit card company server to operate the credit card member information DB, the electronic commerce information DB and the random number generation program, an electronic commerce server to operate a commodity information DB storing information of various commodities, and a mobile communication terminal connected to the authentication sever, the credit card company server and the electronic commerce server through a mobile communication network, the payment method comprising the steps of (a) accessing an electronic commerce site through the Internet using an internet communication means of the user terminal; (b) deciding to perform electronic commerce at the electronic commerce site; (c) outputting an authentication code assigning window, which is provided with a personal information input field, a log-in menu, a credit card company information input field, an electronic commerce information input field, a payment method input field and an authentication code download field, and can be outputted on a Web browser, by executing an authentication code assigning program stored in the user terminal so as to obtain user authentication through the authentication server after the user decides to perform the electronic commerce; (d) inputting personal information to the personal information input field arranged on the outputted authentication code assigning window to request user authentication from the authentication server; (e) performing the user authentication and then transmitting credit card company information of the user to the authentication code assigning window of the user terminal by the authentication server; (f) transmitting data for requesting the assignment of the authentication code, which is a disposable credit card number generated and assigned to the user whenever the user performs electronic commerce, to the authentication server by inputting electronic commerce information and personal information to each input field on the authentication code assigning window; (g) storing information data received from the user terminal and transmitting authentication code request data to the credit card company server by the authentication server; (h) executing a random number generation program to generate an authentication code by the credit card company server which receives the authentication code request data; (i) transmitting the authentication code generated by the credit card company server to the authentication server; (j) storing the authentication code and transmitting it to the user terminal so as to input it to the authentication code assigning window of the user terminal by the authentication server which receives the authentication code; (k) inputting the authentication code to the credit card information input window of the electronic commerce site and transmitting the authentication code to the electronic commerce server by the user terminal; (1) receiving the authentication code inputted to the credit card information input window to request an approval of the authentication code from the credit card company server by the electronic commerce server; and (m) transmitting approval data for the authentication code to the electronic commerce server by the credit card company server.
BRIEF DESCRIPTION OF THE DRAWINGS
The above and other objects, features and other advantages of the present invention will be more clearly understood from the following detailed description taken in conjunction with the accompanying drawings, in which: Fig. 1 is a schematic block diagram of a system for performing a credit card payment method according to a preferred embodiment of the present invention; Fig. 2 is a flowchart showing the step of paying by receiving an authentication code when a user purchases a commodity using a user terminal on the Internet; and
Fig. 3 is a view showing an authentication code assigning window required to request an authentication code for payment and to receive an approval of the authentication code, when the user purchases a commodity.
DESCRIPTION OF THE PREFERRED EMBODIMENTS
Hereinafter, the construction and operation of embodiments of the present invention will be described in detail with reference to the attached drawings.
The electronic commerce payment method of the present invention requires a system in which a credit card company server, an authentication company server, an electronic commerce server and a user terminal each having an Internet communication means are connected to the Internet or a mobile communication network.
The system comprises a Web information DB 3 to store various form information (Web page) for a mobile communication terminal such as an authentication code request window, a member registration window, an authentication code assigning program download window and an authentication code assigning window, a member information DB 5 to store user information including user identification (ID), a password, a credit card number and a credit card secret number, an authentication code assigning program information DB 7 to store an authentication code assigning program of receiving an authentication code used in user's payment in electronic commerce, and an authentication server 1 of an authentication company to operate the Web information DB 3, the member information DB 5 and the authentication code assigning program information DB 7; a credit card member information DB 1 1 to store information including a name, a credit card member number and a credit card secret number of a user who subscribes to a credit card company as a member, an electronic commerce information DB 13 to store information of a commodity purchased by the user, a random number generation program 9 a to generate an authentication code required in user's payment, and a credit card company server 9 to operate the credit card member information DB 11, the electronic commerce information DB 13 and the random number generation program 9a; a commodity information DB 17 to store information of various commodities, and an electronic commerce server 15 having an electronic commerce site including a credit card payment means; a user terminal 21 connected to the authentication server 1,
5 the credit card company server 9 and the electronic commerce server 15 through the Internet 19 and provided with an authentication code assigning program 21a; and a mobile communication terminal 25 connected to the authentication server 1 , the credit card company server 9 and the
10 electronic commerce server 15 through the mobile communication network 23 and provided with an authentication code assigning program
21a.
The Web information DB 3 installed in the authentication server 1 includes an authentication code assigning download
15 window (not shown) for downloading the authentication code assigning program 21a which allows a user to receive a disposable credit card number (authentication code) generated from the random number generation program 9a operated by the credit card company server 9 through the user terminal 21.
20 In order to assign an authentication code to the user terminal 21 from the credit card company server 9, the authentication code assigning program 21a stored in the user terminal 21 is executed, such that data for requesting the assignment of the authentication code must be transmitted to the
25 authentication server 1. The random number generation program 9a installed in the credit card company server 9 is a program used to generate the disposable credit card number (authentication code) of a member having a credit card when an authentication request is inputted from the authentication server 1.
The electronic commerce information DB 13 includes commodity list information per category purchased by the user, authentication code information, resident registration number information and credit card number information of an electronic commerce user and commodity price information. >
Fig. 2 is a flowchart of a credit card payment method according to a preferred embodiment of this invention and shows the step of paying by receiving an authentication code when a user purchases a commodity using a user terminal on the Internet.
As shown in Fig. 2, the step of paying using the authentication code when the user purchases a commodity on the
Internet comprises the steps of: accessing an electronic commerce site through the Internet using the Internet communication means of the user terminal at step SI 00, deciding to purchase a commodity at the electronic commerce site at step SI 05, receiving electronic commerce information data from the user terminal by the electronic commerce server and executing the authentication code assigning program stored in the user terminal to output the authentication code assigning window so as to perform user authentication through the authentication server at step SI 10, inputting personal information to a personal information input field arranged on the outputted authentication code assigning window to request user authentication from the authentication server at step S 115 , transmitting credit card company information of the user to the authentication code assigning window of the user terminal after performing the user authentication by the authentication server at step SI 20, inputting electronic commerce information and personal information to each input field of the outputted authentication code assigning window to request the assignment of the authentication code from the authentication server at step SI 25, storing information data received from the user terminal and transmitting authentication code request data to the credit card company server by the authentication server at step SI 30, executing the random number generation program to generate the authentication code by the credit card company server which receives the authentication code request data at step SI 35, transmitting the authentication code generated by the credit card company server to the authentication server at step S140, storing the authentication code and transmitting the authentication code to the user terminal so as to enable the user to input the authentication code to the authentication code assigning window of the user terminal by the authentication server which receives the authentication code at step SI 45, inputting the authentication code to the credit card information input field of the electronic commerce site and transmitting the inputted authentication code to the electronic commerce server by the user terminal at step SI 50, receiving the authentication code inputted to the credit card information input window to request an approval of the authentication code from the credit card company server by the electronic commerce server at step SI 55, and transmitting approval data to the electronic commerce server by the credit card company server at step SI 60.
At the step S 110, if the user clicks an execution menu of the authentication code assigning program, which can be displayed as an icon on the background screen of the user terminal, the authentication code assigning window 27 stored in a memory of the user terminal is outputted to the background screen.
Here, the authentication code assigning window 27 is a document written in JAVA or a C-language.
In this case, for typical communication programs using TCP/IP, the user ID and password may be stolen by another person. Therefore, the authentication code assigning window 27 is constructed such that it is written in JAVA or C-language instead of conventional HTML document. Further, the authentication code assigning window 27 includes a personal information input field 29 required to perform user authentication, a log- in menu 37, a credit card company name input field 31 required to pay, a commodity price input field 33, a payment method input field 35 and an authentication code download unit 39.
At the above step SI 15, the user inputs information to the personal information input field 29 arranged on the authentication code assigning window 27 in accordance with an input form, and then transmits the user authentication request information to the authentication server 1 by clicking the log-in menu 37.
The authentication server 1 receives the user authentication request information and performs the user authentication by matching the user ID and password information with member ID and password information stored in the member information DB 5 operated by the authentication server 1.
At the step S120, after performing the user authentication, the authentication server 1 transmits credit card company information (here, the name of the credit card company and the credit card number) of the member that is a user included in the member information matched with the user to the credit card company name input field 31 of the authentication code assigning window 27. If the number of pieces of the credit card company information of the user is two or more, the credit card company name input field 31 is constructed such that the user can select the credit card company information using his mouse.
At the step SI 25, the user inputs his personal information and information required in payment to the credit card company name input field 31, the commodity price input field 33 and the payment method input field 35 on the authentication code assigning window 27 in accordance with input forms. Then, the authentication code request data are transmitted to the authentication server 1.
At the step SI 35, the credit card company server 9 checks whether the credit card number is used by the personal information included in the received authentication code request data. Then, the credit card company server 9 drives the random number generation program 9a to generate the authentication code (including the credit card number information of the user) in which a card number having the same system as that of the credit card number is represented with random numbers and the amount of payment is decided.
In this case, the generated authentication code is stored to be matched with the credit card number. At the step SI 40, the authentication server 1 transmits the authentication code received from the credit card company server 9 to the authentication code assigning window 27 of the user terminal 21. The authentication code including position information, which is transmitted to the authentication code assigning window 27, is displayed on the authentication code download field 39. At the step 150, the user inputs the authentication code which is a disposable credit card number received from the authentication server 1 instead of the credit card number which is used in conventional payment to a credit card information input window (not shown) of the electronic commerce site outputted to the Web browser of the user terminal 21.
That is, the user who desires to purchase a commodity inputs corresponding information to each input field including the credit card company name input field and the credit card number input field arranged on the credit card information input window in accordance with input forms. In this case, the user inputs the authentication code which is a disposable credit card number received from the credit card company through the authentication server to the credit card number input field, with ut inputting the conventional credit card number.
Since the authentication code is a random number constructed in its system the same as each credit card number set according to credit card companies, the electronic commerce server 15 recognizes the authentication code as the credit card number of the credit card company.
The electronic commerce server 15 transmits the inputted credit card number, more exactly, the authentication code to the credit card company server 9 to request the approval of the authentication code. The credit card company server 9, which receives the approval request of the authentication code, searches for a credit card number matched with the authentication code to determine whether the authentication code is approved. Then, the credit card company server 9 transmits approval number data for the authentication code to the electronic commerce server 15, thus completing the payment process.
As another embodiment of the present invention, there is proposed a method of paying by receiving an authentication code when the user purchases a commodity using a mobile communication terminal on the Internet.
In this embodiment using a mobile communication terminal, detailed descriptions of the same components and the same mutual operations as the above embodiment are omitted. '
The mobile communication terminal may include a cellular phone, a Personal Communications Services (PCS) terminal, a Personal Digital Assistant (PDA) terminal and a wireless Internet- only terminal each having a wireless Internet communication means. The embodiment using a mobile communication terminal is constructed such that it comprises components such as a Wireless
Application Protocol (WAP) gateway, a central office, a base station controller and a base station. The WAP gateway functions as an interface for converting documents written in JAVA or C- language into Wireless Markup Language (WML) documents to enable various pieces of information to be transmitted through the mobile communication network 23, which is a wireless network. The central office obtains the local position information of the user using the mobile communication terminal number information of the user included in a WML document received from the WAP gateway, and transmits the obtained information by including it to the WML document. The base station controller establishes and sends a mobile to land call for the WML document including the local position information of the user, which is received from the central office. The base station sends the WML document in which the mobile to land call is established to the mobile communication terminal 25 of the user. Fig. 3 is a view showing an example of the authentication code assigning window required to request the authentication code for payment and to receive the approval of the authentication code when the user purchases a commodity.
Referring to Fig. 3, there appears the authentication code assigning window 27, which is used to transmit the authentication code request information to the authentication server 1 and to download the generated authentication code from the authentication server 1.
5 The personal information input field 29 is used to input personal information such as the ID, the password and the resident registration number of the user.
The credit card company name input field 31 is used to input credit card company name information of a corresponding
10 credit card to be used for payment by the user.
In this case, if the user has a plurality of credit cards, an input field to input card numbers and their secret numbers of a predetermined number of credit cards is arranged on a member registration window (not shown) inputted when the user registers
15 as a member such that the user can pay using a predetermined number of credit cards.
The commodity price input field 33 is used to input the price of a commodity which the user desires to purchase.
That is, the commodity price input field 33 is constructed
20 such that the amount inputted to the commodity price input field 33 by the user is paid.
The payment method input field 35 is used to input payment methods such as payment by monthly installment or payment in lump sum by the user. In the authentication code download field
25 39, if the user inputs corresponding information to each input field on the authentication code assigning window in accordance with input forms, and then clicks a pay menu to request payment approval, the above process described with reference to Fig. 3 is executed, such that the authentication code is transmitted.
The above embodiments are only examples for description of the present invention, and it does not signify that the present invention is limited to the embodiments.
That is, the authentication code generation method by the credit card company may include another method different from the above random number generation method described in the above embodiments. For example, the authentication code generation method may include an embodiment in which an authentication code is generated by changing a part of the credit card number of a credit card member, or a number preset by a credit card company is assigned as the authentication code.
Further, the present invention may include an embodiment of directly receiving the authentication code from the credit card company server without passing through the authentication server as a path by which the user terminal receives the generated authentication code.
Further, the method of inputting the authentication code to the electronic commerce site may include an embodiment which allows the user terminal to receive the authentication code without the user's inputting the authentication code, and which enables the authentication code to be automatically inputted to the credit card information input window of the electronic commerce site.
Further, those skilled in the art will appreciate that the present invention can be also used for payment to public services using the Internet, as well as payment using the authentication code at electronic commerce sites.
As described above, the present invention provides a credit card payment method for electronic commerce, which assigns a disposable authentication code to a user through a user terminal, an authentication server and a credit card company server whenever the user purchases a commodity on the Internet, and enables the user to pay using the assigned disposable authentication code. Therefore, the present invention is advantageous in that the leakage of credit card information of the user can be prevented, thus allowing the user to be free of concern over leakage of his credit card information. Accordingly, the user can safely use the credit card, thereby facilitating electronic commerce.
Further, the present invention is advantageous in that the disposable authentication code required to purchase a commodity is produced as a random number constructed in its system the same as each credit card number set according to credit card companies, thereby allowing the user to purchase commodities at all electronic commerce sites. Although the preferred embodiments of the present invention have been disclosed for illustrative purposes, those skilled in the art will appreciate that various modifications, additions and substitutions are possible, without departing from the scope and spirit of the invention as disclosed in the accompanying claims.

Claims

WHAT IS CLAIMED IS:
1. A credit card payment method for electronic commerce using a system in which a credit card company server, an 5 authentication server, an electronic commerce server and a user terminal each having an Internet communication means are connected to the Internet or a mobile communication network, the credit card payment method comprising the steps of:
(a) accessing an electronic commerce site through the 10 Internet using an internet communication means of the user terminal;
(b) deciding to perform electronic commerce at the electronic commerce site;
(c) outputting an authentication code assigning window, 15 which is provided with a personal information input field, a log- in menu, a credit card company information input field, an electronic commerce information input field, a payment method input field and an authentication code download field, and can be outputted on a Web browser, by executing an authentication code assigning 20 program stored in the user terminal so as to obtain user authentication through the authentication server after the user decides to perform the electronic commerce;
(d) inputting personal information to the personal information input field arranged on the outputted authentication
25 code assigning window to request user authentication from the authentication server;
(e) performing the user authentication and then transmitting credit card company information of the user to the authentication code assigning window of the user terminal by the authentication server;
(f) transmitting data for requesting the assignment of the authentication code, which is a disposable credit card number generated and assigned to the user whenever the user performs electronic commerce, to the authentication server by inputting electronic commerce information and personal information to each input field on the authentication code assigning window;
(g) storing information data received from the user terminal and transmitting authentication code request data to the credit card company server by the authentication server;
(h) executing a random number generation program to generate an authentication code by the credit card company server which receives the authentication code request data;
(i) transmitting the authentication code generated by the credit card company server to the authentication server;
(j) storing the authentication code and transmitting it to the user terminal so as to input it to the authentication code assigning window of the user terminal by the authentication server which receives the authentication code; (k) inputting the authentication code to the credit card information input window of the electronic commerce site and transmitting the authentication code to the electronic commerce server by the user terminal;
5 (1) receiving the authentication code inputted to the credit card information input window to request an approval of the authentication code from the credit card company server by the electronic commerce server; and
(m) transmitting approval data for the authentication code to
10 the electronic commerce server by the credit card company server.
2. The credit card payment method according to claim 1, wherein the authentication code is formed by generating a random number provided with a unique code of a credit card member and
15 constructed in its system the same as a credit card number through the random number generation program.
3, The credit card payment method according to claim 1, wherein the approval data transmitting step is performed such that
20 the credit card company server, which receives approval request data for the authentication code from the electronic commerce server, transmits generated approval data to the electronic commerce server after searching for credit card information matched with the authentication code.
25
4. The credit card payment method according to claim 1, wherein the user terminal is a computer having Internet communication means such as a Web browser and a modem or an Internet exclusive line.
5. The credit card payment method according to claim 1, wherein the user terminal is a mobile communication terminal such as a cellular phone, a personal communications services (PCS) terminal, a personal digital assistant (PDA) terminal or a wireless Internet-only terminal each having wireless Internet communication means.
PCT/KR2001/002045 2000-11-27 2001-11-27 A credit card payment method for electronic commerce WO2002042972A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2002218563A AU2002218563A1 (en) 2000-11-27 2001-11-27 A credit card payment method for electronic commerce

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR2000/070847 2000-11-27
KR1020000070847A KR20010008360A (en) 2000-11-27 2000-11-27 A credit card payment method for electronic commerce

Publications (1)

Publication Number Publication Date
WO2002042972A1 true WO2002042972A1 (en) 2002-05-30

Family

ID=19701612

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2001/002045 WO2002042972A1 (en) 2000-11-27 2001-11-27 A credit card payment method for electronic commerce

Country Status (3)

Country Link
KR (1) KR20010008360A (en)
AU (1) AU2002218563A1 (en)
WO (1) WO2002042972A1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2389693A (en) * 2002-06-10 2003-12-17 Consignia Plc Payment systems
WO2004010344A1 (en) * 2002-07-19 2004-01-29 Shengwu Ye User identify identifying anti-theft system and its identifying method
FR2898711A1 (en) * 2006-03-20 2007-09-21 Stephane Givin Financial/banking operation e.g. purchase, securing method for e.g. banking organization, involves parametering operations, secret codes and transmission mode of codes, when client accesses page/site of organization to carryout operations
EP2074581A2 (en) * 2006-10-12 2009-07-01 Peter A. Shapiro Method and system for making anonymous on-line purchases
WO2012012545A1 (en) * 2010-07-20 2012-01-26 Wi-Mexx International Limited System and methods for transferring money

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100553309B1 (en) * 2001-03-02 2006-02-20 송우아이엔티 주식회사 System and method for intermediating credit information, and storage media having program source thereof
KR100476244B1 (en) * 2001-07-03 2005-03-16 정홍석 Credit payment system
KR100458688B1 (en) * 2001-08-01 2004-12-03 서동신 System for providing a web-service charge and display control and method thereof
KR20010088928A (en) * 2001-08-07 2001-09-29 허기행 Secure Payment System that prevents the disclosure of personal credit information using the Virtual Credit Number
KR20030050576A (en) * 2001-12-19 2003-06-25 김덕우 method for generating card user number for E-commerce, payment device and method using the generating method
KR100474213B1 (en) * 2002-10-31 2005-03-10 (주)로코모 Method for Issuing Instant Mobile Card using Wireless Network
KR20040050443A (en) * 2002-12-10 2004-06-16 주식회사 웰게이트 Electronic payment method and system using mobile terminal
KR20040070379A (en) * 2003-02-03 2004-08-09 임성식 A system to protect from a loss raised by a credit card or cash card copied illegally
KR101140223B1 (en) * 2005-08-19 2012-04-26 주식회사 비즈모델라인 Device for Processing a Payment
KR100733129B1 (en) * 2006-12-19 2007-06-28 한국버추얼페이먼트 주식회사 System and method for processing security payment
WO2010096245A2 (en) * 2009-02-17 2010-08-26 Tseryeng Lin Secure representation of payment information
KR101236960B1 (en) * 2010-12-17 2013-03-06 주식회사 티모넷 System for paying credit card using mobile security click of mobile phone and method therefor
KR101462258B1 (en) * 2012-02-24 2014-11-21 주식회사 비즈모델라인 Method for Mapping Payment Means

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5839119A (en) * 1996-09-27 1998-11-17 Xerox Corporation Method of electronic payments that prevents double-spending
KR20000030790A (en) * 2000-03-16 2000-06-05 전찬구 Electronic Commerce Method & System with Reliability and Protection of Individual Information between Two Parties
KR20000049917A (en) * 2000-05-06 2000-08-05 김지영 Method of endowing/managing the personal cord number for advance payment products by using internet electronic payment system
KR20000063676A (en) * 1999-08-10 2000-11-06 박철 Internet trade enhancing purchaser's security

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5839119A (en) * 1996-09-27 1998-11-17 Xerox Corporation Method of electronic payments that prevents double-spending
KR20000063676A (en) * 1999-08-10 2000-11-06 박철 Internet trade enhancing purchaser's security
KR20000030790A (en) * 2000-03-16 2000-06-05 전찬구 Electronic Commerce Method & System with Reliability and Protection of Individual Information between Two Parties
KR20000049917A (en) * 2000-05-06 2000-08-05 김지영 Method of endowing/managing the personal cord number for advance payment products by using internet electronic payment system

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2389693A (en) * 2002-06-10 2003-12-17 Consignia Plc Payment systems
WO2004010344A1 (en) * 2002-07-19 2004-01-29 Shengwu Ye User identify identifying anti-theft system and its identifying method
FR2898711A1 (en) * 2006-03-20 2007-09-21 Stephane Givin Financial/banking operation e.g. purchase, securing method for e.g. banking organization, involves parametering operations, secret codes and transmission mode of codes, when client accesses page/site of organization to carryout operations
EP2074581A2 (en) * 2006-10-12 2009-07-01 Peter A. Shapiro Method and system for making anonymous on-line purchases
EP2074581A4 (en) * 2006-10-12 2011-06-22 Peter A Shapiro Method and system for making anonymous on-line purchases
WO2012012545A1 (en) * 2010-07-20 2012-01-26 Wi-Mexx International Limited System and methods for transferring money

Also Published As

Publication number Publication date
AU2002218563A1 (en) 2002-06-03
KR20010008360A (en) 2001-02-05

Similar Documents

Publication Publication Date Title
US10354300B2 (en) Electronic commercial transaction support method
WO2002042972A1 (en) A credit card payment method for electronic commerce
US8370637B2 (en) Virtual pad
US20020049914A1 (en) Electronic service system using safe user information management scheme
JP2002074188A (en) Method and device for registering member information, method and device for certifying member and server computer
US20060089887A1 (en) Information service providing method
CN101127108A (en) Method for accessing a information source via a computer system
US20160342674A1 (en) System and method for managing customer address information in electronic commerce using the internet
WO2002039346A1 (en) Method and apparatus of business transaction using inherent identification numbers of hardwares
CN107967646A (en) For providing the apparatus and method of transaction business
US20080046375A1 (en) Method and System for Distributing Digital Works
KR20020004168A (en) System for protecting user information using internet and method thereof
US20020165767A1 (en) Advertisement system
WO2003067493A1 (en) System and method for ordering goods using mobile terminal
KR100612900B1 (en) Electronic data interchange system, sales server, settlement server, terminal, sales method, settlement method, purchasing method and information recording medium storing information for realizing the same
JP2003030156A (en) System, server and method for contents distribution
US10013696B2 (en) Identification information supervising method, portal information providing apparatus, and IC card
WO2008007939A1 (en) Convenient online payment system
KR100472758B1 (en) Method For Providing Mobile Contents
KR20060016416A (en) System and method for issuing of mobile-security card, method for operating of mobile-security card, computer readable recoding medium having mobile security card operation program stored therein and mobile terminal having mobile security card operation program
JP2003067661A (en) Recovery agent system for small amount settlement using point purchase service system
EP1358574A2 (en) Pre-filling order forms for transactions over a communications network
KR100702867B1 (en) Small-amount settlement method and system using mobile phone
KR20020028617A (en) Internet payment management system and the payment method using the same
KR20020055204A (en) electronic commerce through wireless network and method thereof

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: COMMUNICATION UNDER RULE 69(1) EPC (FORM 1205A OF 260903

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP