WO2002095549A2 - Secure information exchange - Google Patents

Secure information exchange Download PDF

Info

Publication number
WO2002095549A2
WO2002095549A2 PCT/IB2002/000006 IB0200006W WO02095549A2 WO 2002095549 A2 WO2002095549 A2 WO 2002095549A2 IB 0200006 W IB0200006 W IB 0200006W WO 02095549 A2 WO02095549 A2 WO 02095549A2
Authority
WO
WIPO (PCT)
Prior art keywords
token
secure
information exchange
personal data
transaction
Prior art date
Application number
PCT/IB2002/000006
Other languages
French (fr)
Other versions
WO2002095549A3 (en
Inventor
Andrew Paul Friedman
Original Assignee
Inqucor Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from GB0112449A external-priority patent/GB0112449D0/en
Priority claimed from GB0116171A external-priority patent/GB0116171D0/en
Application filed by Inqucor Limited filed Critical Inqucor Limited
Publication of WO2002095549A2 publication Critical patent/WO2002095549A2/en
Publication of WO2002095549A3 publication Critical patent/WO2002095549A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • G06F21/6263Protecting personal data, e.g. for financial or medical purposes during internet communication, e.g. revealing personal data from cookies
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2153Using hardware token as a secondary aspect

Definitions

  • This invention relates to a system for secure information exchange and, more particularly, but not exclusively, to a system for personal identification that can be used to verify the age and place of residence of a person.
  • the invention extends further to a method for secure information exchange and, more particularly, but not exclusively, a method for verifying the age and place of residence of an individual.
  • CONFIRMA ⁇ ON copy The advent of legislation that requires proof of age and residence for users of Internet web sites, particularly online casinos and adult content sites, has created a need for an efficient and simple method of electronic age and residence verification. As far is the applicant is aware, there is no known electronic method to verify the age or place of residence of a person, based on a token or the like.
  • MOTO Mail Order/Telephone Order
  • a more secure form of on-line commercial transaction is one that is processed as a " card present" transaction, in which confirmation is provided of the authenticity of the transaction.
  • a card present transaction it is firstly necessary to identify a card presented for settlement of a transaction.
  • All credit cards have an integral magnetic stripe on the rear thereof, which contains data relating to an identity of the credit card holder, and to a corresponding bank account held at a financial institution.
  • This data is stored in different tracks on the magnetic stripe.
  • track "2" of the magnetic stripe contains the bank account number, the card expiry date and a verification code which is known, variously, as a Card Verification Value ("CW”) or Card Validation Code (“CVC").
  • CW Card Verification Value
  • CVC Card Validation Code
  • a system for secure information exchange comprising: a token having an integral storage memory with personal data relating to a token holder stored therein; a reader co-operable with the token, the reader being associated with a computer workstation and being operable to read the personal data contained in the integral storage memory thereof; an application server having at least a portion of the same personal data stored therein; and an open communication channel between the reader and the application server.
  • the system to include a display facility capable of displaying in a perceptible form at least a portion of the personal data read from the integral storage memory of the token, for the system to include a communication means responsive to the reader to transmit at least a portion of the personal data read from the integral storage memory of the token along the open communication channel to the application server, for the open communication channel to be the Internet, for the application server to be an Internet Web server, for the system to include an encryption facility for encrypting the at least a portion of the personal data read from the integral storage memory of the token prior to transmission thereof to the application server, for the communication means and the encryption facility to be a stored program executable in the computer workstation.
  • the token to be a magnetic stripe card
  • the reader to be a magnetic stripe card reader
  • the personal data to be stored in a number of tracks on the magnetic stripe
  • the encryption facility to encrypt the personal data according to a Data Encryption Standard ("DES") algorithm
  • DES Data Encryption Standard
  • a communication between the communication means and the application server to be a secure communication, preferably according to a Secure Socket Layer (SSL) standard.
  • SSL Secure Socket Layer
  • the personal data to include any one or more of, a name, a date of birth, an address, a driver's licence particulars, a gender, one or more physical particulars, and an identification number of the token holder.
  • the token to be a payment token
  • the personal data to include payment token data stored in track 2 of the magnetic stripe
  • the payment token data to include an identity of a payment token holder, a corresponding bank account held at a financial institution, an expiry date of the payment token, and a verification code
  • the computer workstation to operate under control of an application software program
  • the application software program to be operable by the token holder to input data relating to a commercial transaction and to the payment token to be used for settlement of the commercial transaction
  • the encryption facility to also encrypt the commercial transaction data
  • the communication means to transmit the encrypted data to a transaction server and to receive a transaction status therefrom, the transaction status being an approved status if the commercial transaction is approved, and a declined status if the commercial transaction is declined.
  • the transaction server to authenticate the payment token, for the transaction server to authenticate the payment token by at least determining whether the expiry date of the payment token has passed and determining whether the payment token has been stolen, for the communication means to instruct payment of a purchase price corresponding to the commercial transaction if the status of the transaction is an approved status, and for the communication means to notify the token holder if the status of the commercial transaction is a declined status.
  • the invention extends to a method for secure information exchange, comprising the steps of: providing a token having an integral storage memory with personal data relating a token holder stored therein; reading the personal data contained in the integral storage memory; and transmitting at least a portion of the personal data read from the integral storage memory of the token to an application server along an open communication channel, the application server having at least a portion of the same personal data stored therein.
  • DES Data Encryption Standard
  • the token to be a payment token, for including payment token data in the stored personal data of the token, for storing the payment token data in track 2 of the magnetic stripe of the magnetic card token, for including in the payment token data an identity of a payment token holder, a corresponding bank account held at a financial institution, an expiry date of the payment token, and a verification code, for operating the computer workstation under control of an application software program, for operating the application software program to input data relating to a commercial transaction and to the payment token to be used for settlement of the commercial transaction, for also encrypting the commercial transaction data, and for transmitting the encrypted data to a transaction server and receiving a transaction status therefrom, the transaction status being an approved status if the commercial transaction is approved, and a declined status if the commercial transaction is declined.
  • a payment token for including payment token data in the stored personal data of the token, for storing the payment token data in track 2 of the magnetic stripe of the magnetic card token, for including in the payment token data an identity of a payment token holder, a
  • authenticating the payment token for authenticating the payment token by at least determining whether the expiry date of the payment token has passed and determining whether the payment token has been stolen, for instructing payment of a purchase price corresponding to the commercial transaction if the status of the transaction is an approved status, and for notifying a token holder if the status of the commercial transaction is a declined status.
  • Figure 1 is a functional representation of a first embodiment of a system for secure information exchange according to the invention.
  • Figure 2 is a functional block diagram of a second embodiment of a system for secure information exchange according to the invention.
  • a system for secure information exchange is indicated generally by reference numeral (1 ).
  • the system (1) includes a token in the form of a magnetic strip card (2) associated with a person to be identified, a magnetic strip reader (3), an Internet-enabled computer workstation (4) operating under control of an executable software program, and a display facility in the form of a video display monitor (5) connected to the computer workstation.
  • the magnetic strip card (2) has an integral storage memory in the form of a magnetic strip (not shown) thereon.
  • the magnetic strip reader (3) receives the magnetic strip card (2) and reads card data that is stored on the magnetic strip (not shown).
  • the card data stored on the magnetic strip (not shown) is personal data relating to the person to be identified.
  • the magnetic strip card (2) is a driver's licence conforming to a well-known standard of the American Association of Motor Vehicle Administrators (AAMVA). According to this standard, the magnetic strip is divided into three physical tracks, each of which contains a specific set of personal data of a person, as follows:
  • the software program provides a communication means (7) that enables card data read from the magnetic strip (not shown) of the magnetic strip card (3) to be transmitted to an application server (6) associated with an Internet website, for reasons which will become clearer in the description that follows.
  • the software program also provides an encryption facility (8) for encrypting the card data read from the magnetic strip (not shown) prior to transmission thereof to the application server (6).
  • the application server (6) compares the card data corresponding to either one or both of an age and a residence of the person to be identified, against known reference criteria, and returns a status response to the computer workstation (4).
  • the status response is an approved status if both the age and residence data read from the magnetic stripe (not shown) on the card (2) match the reference criteria, and a declined status if either one or both the age and residence data do not match the reference criteria.
  • a driver's licence of the person is swiped through the magnetic strip reader (2).
  • the magnetic strip reader (2) reads the card data that is stored on the various tracks of the magnetic strip (not shown) and passes the data to the computer workstation (4).
  • the card data relating to the age and residence of the person to be identified is encrypted by the encryption facility (8) according to a Data Encryption Standard algorithm with a unique encryption key per transaction.
  • the encrypted data is transmitted by the communication means (7) to the application server (6) where it is validated by comparing the encrypted data against known reference criteria that are programmed in the application server.
  • the validation criteria relate to certain requirements that must be made by the encrypted data. As an example, the criteria may specify that the age of the person to be identified must exceed 18 years of age, and that the person's residence must in the United States of America but not in the state of California.
  • the application server (6) returns a status response to the computer workstation (4) in the form of an approved status if the card data complies with the reference criteria, and a declined status, otherwise. If the returned status response is an approved status, the application server enables a desired Internet website for access by the identified person. Access to the Internet website has prevented if the returned status response is a declined status
  • the age and residence of the person to be identified which is read from the magnetic strip (not shown on the magnetic strip card (2) may also be displayed by the software program in a perceptible form on the video display monitor (5).
  • This mode of operation may be conveniently employed where access to a desired Internet website is not required.
  • the system (1 ) may be used locally, without requiring communication to an application server (6) in order to provide quick identification and age verification of users in applications such as the purchase of alcohol or tobacco, or access to places of adult entertainment.
  • the computer workstation (4) may communicate with the application server (6) by means of any open communication channel other than the Internet.
  • DES is currently the standard method for encrypting transactions, this is likely to change to the 3DES algorithm in the near future.
  • the encryption algorithm used by the system for personal identification (1), which is implemented as part of the software program, is easily upgradeable to this new standard.
  • a different token such as a smart card, may be used as a storage medium for personal data of a person to be identified, with the magnetic strip reader (3) being replaced by a smart card reader.
  • the token may be some other form of identification other than a driver's licence.
  • This embodiment of the invention there provides a system for verification of a token holder's age or place of residence over an open network on the basis of a personalised token.
  • the system (10) includes transaction input means in the form of an Internet- enabled computer workstation (11 ) operating under control of an executable software program.
  • the functionality of the software program enables a purchaser to input data relating to a commercial transaction and to a payment token, such as a credit card (12), to be used for settlement of the commercial transaction.
  • the credit card (12) is a magnetic stripe card that has an integral storage memory in the form of a magnetic stripe (not shown) thereon.
  • the system (10) also includes a magnetic stripe card reader (13) connected to the computer workstation (11 ), which receives the purchaser's credit card (12) and reads card data that is stored on the magnetic stripe.
  • the software program also provides an encryption facility (14) for encrypting the data relating to the commercial transaction data and to the credit card.
  • the encrypted data is transmitted to a transaction server (15) that returns a transaction status to the computer workstation (11), the transaction status being an approved status if the transaction server approves the commercial transaction, and a declined status if the commercial transaction is declined by the transaction server.
  • the credit card data read by the magnetic stripe card reader (13) relates, inter alia, to an identity of the credit card holder, and to a corresponding bank account held at a financial institution.
  • track "2" of the magnetic stripe contains the bank account number, the card expiry date and a verification code which is known, variously, as a Card Verification Value ("CW”) or Card Validation Code (“CVC").
  • CW Card Verification Value
  • CVC Card Validation Code
  • a user enters data relating to the commercial transaction on the computer workstation (11 ) of the system (10).
  • the credit card (12) is the swiped through the magnetic stripe card reader (13).
  • the credit card data which is stored on track "2" of the magnetic stripe (not shown) is read by the magnetic stripe card reader (13) and is passed to the computer workstation.
  • the transaction data and the credit card data is encrypted by the encryption facility (14) according to a Data Encryption Standard algorithm with a unique encryption key per transaction.
  • the software program executing in the computer workstation (11 ) then emulates the functionality of a standard point-of- sale device as follows:
  • the software communicates with a merchant server (not shown) and an acquiring financial institution (not shown) to execute payment for the commercial transaction;
  • the data entry device (10) may communicate with the transaction server, the merchant server, and the acquiring and issuing financial institutions by means of any open communication channel other than the Internet.
  • the invention therefore provides a system for secure information exchange over a public communication such as the Internet on the basis of a personalised token such as a driver's licence or a credit card.

Abstract

A system for secure information exchange comprises a token having an integral storage memory, a reader co-operable with the token, an application server and an open communication channel between the reader and the application server. The storage memory of the token has personal data relating to a token holder stored therein, and the application server has at least a portion of the same personal data stored therein. The reader is associated with a computer workstation and is operable to read the personal data contained in the integral storage memory thereof and the computer workstation transmits the personal data thus read along the open communication channel to the application server, either encrypted or in clear.

Description

SECURE INFORMATION EXCHANGE
FIELD OF THE INVENTION
This invention relates to a system for secure information exchange and, more particularly, but not exclusively, to a system for personal identification that can be used to verify the age and place of residence of a person. The invention extends further to a method for secure information exchange and, more particularly, but not exclusively, a method for verifying the age and place of residence of an individual.
BACKGROUND TO THE INVENTION
The prevention of access by unauthorised users to Internet web sites containing unsuitable or restricted content is difficult to achieve. One of the reasons for this is that, when accessing restricted material on the Internet, it is common practice for a user to input his age on a form. Such access does not require a face-to-face encounter with another person, and there is thus no way of verifying the veracity of the user's age that has been input by the user via a keyboard. This methodology does not actually prevent access to the restricted material, but rather serves only to allow the proprietor of the restricted material to escape liability for any unauthorised access thereto by under-age users.
In order to overcome this problem, it is possible to furnish each authorised user with a password, but such a method is unnecessarily expensive and difficult to manage, particularly for applications where access to such Internet websites is legislated solely on the basis of the user's age, or the user's place of residence.
CONFIRMAΠON copy The advent of legislation that requires proof of age and residence for users of Internet web sites, particularly online casinos and adult content sites, has created a need for an efficient and simple method of electronic age and residence verification. As far is the applicant is aware, there is no known electronic method to verify the age or place of residence of a person, based on a token or the like.
There is also a requirement for electronic age verification for purposes of purchasing smoking materials, alcoholic beverages, gaining admission to a nightclub, or the like, where such activities are usually age restricted.
It is known that current methods of conducting commercial transactions in an online environment such as the World Wide Web of the Internet are unsatisfactory. The reason is that a majority of all commercial transactions across the Web are processed as Mail Order/Telephone Order (MOTO) credit card purchases. Such a transaction only requires that a purchaser provide a credit card number and a corresponding expiry date. The cardholder is not required to authorise the transaction either by means of a signature or by presentation of the credit card. Due to the ease with which credit card numbers and expiry dates may be intercepted, fraudulent MOTO transactions are easy to conduct, particularly on the Internet, as compared to mail order transactions.
The above situation is disadvantageous for merchants because current credit card legislation favours a purchaser who can simply claim that a charge relating to a particular transaction is fraudulent, the so-called "charge back", thereby placing the onus on the merchant to prove the legitimacy of the purchase. In many instances, this burden of proof is exceedingly difficult, if not impossible, to discharge.
A more secure form of on-line commercial transaction is one that is processed as a " card present" transaction, in which confirmation is provided of the authenticity of the transaction. In order to process a transaction as a card present transaction, it is firstly necessary to identify a card presented for settlement of a transaction. All credit cards have an integral magnetic stripe on the rear thereof, which contains data relating to an identity of the credit card holder, and to a corresponding bank account held at a financial institution. This data is stored in different tracks on the magnetic stripe. In particular, track "2" of the magnetic stripe contains the bank account number, the card expiry date and a verification code which is known, variously, as a Card Verification Value ("CW") or Card Validation Code ("CVC"). This data is also stored on track "1", along with a billing address corresponding to the cardholder. By convention, however, financial institutions require that the data be read off track "2".
OBJECT OF THE INVENTION
In accordance with this invention there is provided a system and a method for secure information exchange that will, at least partially, alleviate the above- mentioned difficulties and disadvantages.
SUMMARY OF THE INVENTION
In accordance with this invention there is provided a system for secure information exchange, comprising: a token having an integral storage memory with personal data relating to a token holder stored therein; a reader co-operable with the token, the reader being associated with a computer workstation and being operable to read the personal data contained in the integral storage memory thereof; an application server having at least a portion of the same personal data stored therein; and an open communication channel between the reader and the application server.
Further features of the invention provide for the system to include a display facility capable of displaying in a perceptible form at least a portion of the personal data read from the integral storage memory of the token, for the system to include a communication means responsive to the reader to transmit at least a portion of the personal data read from the integral storage memory of the token along the open communication channel to the application server, for the open communication channel to be the Internet, for the application server to be an Internet Web server, for the system to include an encryption facility for encrypting the at least a portion of the personal data read from the integral storage memory of the token prior to transmission thereof to the application server, for the communication means and the encryption facility to be a stored program executable in the computer workstation.
Still further features of the invention provide for the token to be a magnetic stripe card, for the reader to be a magnetic stripe card reader, and for the personal data to be stored in a number of tracks on the magnetic stripe, for the encryption facility to encrypt the personal data according to a Data Encryption Standard ("DES") algorithm, and for a communication between the communication means and the application server to be a secure communication, preferably according to a Secure Socket Layer (SSL) standard.
In accordance with one aspect of the invention, there is provided for the personal data to include any one or more of, a name, a date of birth, an address, a driver's licence particulars, a gender, one or more physical particulars, and an identification number of the token holder.
In accordance with a further aspect of the invention there is provided for the token to be a payment token, for the personal data to include payment token data stored in track 2 of the magnetic stripe, for the payment token data to include an identity of a payment token holder, a corresponding bank account held at a financial institution, an expiry date of the payment token, and a verification code, for the computer workstation to operate under control of an application software program, for the application software program to be operable by the token holder to input data relating to a commercial transaction and to the payment token to be used for settlement of the commercial transaction, for the encryption facility to also encrypt the commercial transaction data, and for the communication means to transmit the encrypted data to a transaction server and to receive a transaction status therefrom, the transaction status being an approved status if the commercial transaction is approved, and a declined status if the commercial transaction is declined.
There is also provided for the transaction server to authenticate the payment token, for the transaction server to authenticate the payment token by at least determining whether the expiry date of the payment token has passed and determining whether the payment token has been stolen, for the communication means to instruct payment of a purchase price corresponding to the commercial transaction if the status of the transaction is an approved status, and for the communication means to notify the token holder if the status of the commercial transaction is a declined status.
The invention extends to a method for secure information exchange, comprising the steps of: providing a token having an integral storage memory with personal data relating a token holder stored therein; reading the personal data contained in the integral storage memory; and transmitting at least a portion of the personal data read from the integral storage memory of the token to an application server along an open communication channel, the application server having at least a portion of the same personal data stored therein.
There is also provided for displaying in a perceptible form at least a portion of the personal data read from the integral storage memory of the token, for encrypting the at least a portion of the personal data read from the integral storage memory of the token prior to transmission thereof to the application server, and for transmitting the at least a portion of the personal data to the application server and for encrypting the at least a portion of the personal data prior to transmission thereof to the application server by means of a stored program executable in a computer workstation. There is further provided for storing the personal data in a number of tracks of a magnetic stripe of a magnetic card token, for encrypting the personal data according to a Data Encryption Standard ("DES") algorithm, and for communicating with the application server by means of a secure communication, preferably according to an SSL standard.
In accordance with one aspect of the invention there is provided for including in the personal data any one or more of, a name, a date of birth, an address, a driver's licence particulars, a gender, one or more physical particulars, and an identification number of the token holder.
In accordance with a further aspect of the invention there is provided for the token to be a payment token, for including payment token data in the stored personal data of the token, for storing the payment token data in track 2 of the magnetic stripe of the magnetic card token, for including in the payment token data an identity of a payment token holder, a corresponding bank account held at a financial institution, an expiry date of the payment token, and a verification code, for operating the computer workstation under control of an application software program, for operating the application software program to input data relating to a commercial transaction and to the payment token to be used for settlement of the commercial transaction, for also encrypting the commercial transaction data, and for transmitting the encrypted data to a transaction server and receiving a transaction status therefrom, the transaction status being an approved status if the commercial transaction is approved, and a declined status if the commercial transaction is declined.
There is still further provided for authenticating the payment token, for authenticating the payment token by at least determining whether the expiry date of the payment token has passed and determining whether the payment token has been stolen, for instructing payment of a purchase price corresponding to the commercial transaction if the status of the transaction is an approved status, and for notifying a token holder if the status of the commercial transaction is a declined status.
BRIEF DESCRIPTION OF THE DRAWINGS
Preferred embodiments of the invention are described below, by way of example only, and with reference to the accompanying drawings, in which:
Figure 1 is a functional representation of a first embodiment of a system for secure information exchange according to the invention; and
Figure 2 is a functional block diagram of a second embodiment of a system for secure information exchange according to the invention.
DETAILED DESCRIPTION OF THE INVENTION
Referring to Figure 1 , a system for secure information exchange is indicated generally by reference numeral (1 ).
Although the invention will be described with particular reference to personal identification, it is to be clearly understood that the scope of the invention is not limited to this particular application.
The system (1) includes a token in the form of a magnetic strip card (2) associated with a person to be identified, a magnetic strip reader (3), an Internet-enabled computer workstation (4) operating under control of an executable software program, and a display facility in the form of a video display monitor (5) connected to the computer workstation.
The magnetic strip card (2) has an integral storage memory in the form of a magnetic strip (not shown) thereon. The magnetic strip reader (3) receives the magnetic strip card (2) and reads card data that is stored on the magnetic strip (not shown). The card data stored on the magnetic strip (not shown) is personal data relating to the person to be identified. In this embodiment, the magnetic strip card (2) is a driver's licence conforming to a well-known standard of the American Association of Motor Vehicle Administrators (AAMVA). According to this standard, the magnetic strip is divided into three physical tracks, each of which contains a specific set of personal data of a person, as follows:
Track No. Track Data
1 State or Province, City, Last name, First name, Street address.
2 Driver's licence no., Expiry date, Date of birth.
3 Zip or Postal code, Class, Restrictions, Endorsements, Sex, Height, Weight, Hair colour, Eye colour, Identity number.
The software program provides a communication means (7) that enables card data read from the magnetic strip (not shown) of the magnetic strip card (3) to be transmitted to an application server (6) associated with an Internet website, for reasons which will become clearer in the description that follows. The software program also provides an encryption facility (8) for encrypting the card data read from the magnetic strip (not shown) prior to transmission thereof to the application server (6). The application server (6) compares the card data corresponding to either one or both of an age and a residence of the person to be identified, against known reference criteria, and returns a status response to the computer workstation (4). The status response is an approved status if both the age and residence data read from the magnetic stripe (not shown) on the card (2) match the reference criteria, and a declined status if either one or both the age and residence data do not match the reference criteria.
In use, when the age and residence of a person is to be identified, a driver's licence of the person, as described above, is swiped through the magnetic strip reader (2). The magnetic strip reader (2) reads the card data that is stored on the various tracks of the magnetic strip (not shown) and passes the data to the computer workstation (4). The card data relating to the age and residence of the person to be identified is encrypted by the encryption facility (8) according to a Data Encryption Standard algorithm with a unique encryption key per transaction. The encrypted data is transmitted by the communication means (7) to the application server (6) where it is validated by comparing the encrypted data against known reference criteria that are programmed in the application server. The validation criteria relate to certain requirements that must be made by the encrypted data. As an example, the criteria may specify that the age of the person to be identified must exceed 18 years of age, and that the person's residence must in the United States of America but not in the state of California.
Once the card data has been verified in a manner as described above, the application server (6) returns a status response to the computer workstation (4) in the form of an approved status if the card data complies with the reference criteria, and a declined status, otherwise. If the returned status response is an approved status, the application server enables a desired Internet website for access by the identified person. Access to the Internet website has prevented if the returned status response is a declined status
The age and residence of the person to be identified, which is read from the magnetic strip (not shown on the magnetic strip card (2) may also be displayed by the software program in a perceptible form on the video display monitor (5). This mode of operation may be conveniently employed where access to a desired Internet website is not required. In this mode, the system (1 ) may be used locally, without requiring communication to an application server (6) in order to provide quick identification and age verification of users in applications such as the purchase of alcohol or tobacco, or access to places of adult entertainment.
Numerous modifications are possible to this embodiment without departing from the scope of the invention. In particular, the computer workstation (4) may communicate with the application server (6) by means of any open communication channel other than the Internet. Further, although DES is currently the standard method for encrypting transactions, this is likely to change to the 3DES algorithm in the near future. The encryption algorithm used by the system for personal identification (1), which is implemented as part of the software program, is easily upgradeable to this new standard. Still further, a different token, such as a smart card, may be used as a storage medium for personal data of a person to be identified, with the magnetic strip reader (3) being replaced by a smart card reader. Yet further, the token may be some other form of identification other than a driver's licence.
This embodiment of the invention there provides a system for verification of a token holder's age or place of residence over an open network on the basis of a personalised token.
Referring now to Figures 2, a further embodiment of a system for secure information exchange is indicated generally by reference numeral (10).
The system (10) includes transaction input means in the form of an Internet- enabled computer workstation (11 ) operating under control of an executable software program. The functionality of the software program enables a purchaser to input data relating to a commercial transaction and to a payment token, such as a credit card (12), to be used for settlement of the commercial transaction. The credit card (12) is a magnetic stripe card that has an integral storage memory in the form of a magnetic stripe (not shown) thereon. The system (10) also includes a magnetic stripe card reader (13) connected to the computer workstation (11 ), which receives the purchaser's credit card (12) and reads card data that is stored on the magnetic stripe. The software program also provides an encryption facility (14) for encrypting the data relating to the commercial transaction data and to the credit card. The encrypted data is transmitted to a transaction server (15) that returns a transaction status to the computer workstation (11), the transaction status being an approved status if the transaction server approves the commercial transaction, and a declined status if the commercial transaction is declined by the transaction server. The credit card data read by the magnetic stripe card reader (13) relates, inter alia, to an identity of the credit card holder, and to a corresponding bank account held at a financial institution. In addition, track "2" of the magnetic stripe contains the bank account number, the card expiry date and a verification code which is known, variously, as a Card Verification Value ("CW") or Card Validation Code ("CVC").
In use, in order to conclude a commercial transaction, a user enters data relating to the commercial transaction on the computer workstation (11 ) of the system (10). The credit card (12) is the swiped through the magnetic stripe card reader (13). The credit card data which is stored on track "2" of the magnetic stripe (not shown) is read by the magnetic stripe card reader (13) and is passed to the computer workstation. The transaction data and the credit card data is encrypted by the encryption facility (14) according to a Data Encryption Standard algorithm with a unique encryption key per transaction. The software program executing in the computer workstation (11 ) then emulates the functionality of a standard point-of- sale device as follows:
• the encrypted data is passed to the transaction server (15) where it is validated by checking that the expiry date has not passed and that the credit card number is not contained in a database of stolen cards;
• a transaction status is then received back from the transaction server (15) by which the transaction is either approved or declined;
• where the transaction is approved, the software communicates with a merchant server (not shown) and an acquiring financial institution (not shown) to execute payment for the commercial transaction; and
• where the transaction is declined, the user is notified on the computer workstation (11 ). It will be appreciated by those skilled in the art that reading of the track "2" data of the credit card (12), as described above, which data appears exclusively on the magnetic stripe (not shown) on the credit card, constitutes a unique identification of the card and the commercial transaction can then be processed as a "card present" transaction.
Numerous modifications are possible to this embodiment without departing from the scope of the invention. In particular, the data entry device (10) may communicate with the transaction server, the merchant server, and the acquiring and issuing financial institutions by means of any open communication channel other than the Internet.
The invention therefore provides a system for secure information exchange over a public communication such as the Internet on the basis of a personalised token such as a driver's licence or a credit card.

Claims

Claims
1. A system for secure information exchange, comprising: a token having an integral storage memory with personal data relating to a token holder stored therein; a reader co-operable with the token, the reader being associated with a computer workstation and being operable to read the personal data contained in the integral storage memory thereof; an application server having at least a portion of the same personal data stored therein; and an open communication channel between the reader and the application server.
2. A system for secure communication as claimed in claim 1 which includes a display facility capable of displaying in a perceptible form at least a portion of the personal data read from the integral storage memory of the token.
3. A system for secure communication as claimed in either one of claims 1 or 2 which includes a communication means responsive to the reader to transmit at least a portion of the personal data read from the integral storage memory of the token along the open communication channel to the application server.
4. A system for secure communication as claimed in any one of the preceding claims in which the open communication channel is the Internet.
5. A system for secure communication as claimed in claim 4 in which the application server is an Internet Web server.
6. A system for secure communication as claimed in any one of the preceding claims which includes an encryption facility for encrypting the at least a portion of the personal data read from the integral storage memory of the token prior to transmission thereof to the application server.
7. A system for secure communication as claimed in claim 6 in which the communication means and the encryption facility are a stored program executable in the computer workstation.
8. A system for secure communication as claimed in any one of the preceding claims in which the token is a magnetic stripe card.
9. A system for secure communication as claimed in claim 8 in which the reader is a magnetic stripe card reader.
10. A system for secure communication as claimed in either one of claims 8 or 9 in which the personal data is stored in a number of tracks on the magnetic stripe.
11. A system for secure communication as claimed in either one of claims 6 or 7 in which the encryption facility encrypts the personal data according to a Data Encryption Standard ("DES") algorithm.
12. A system for secure communication as claimed in claim 11 in which a communication between the communication means and the application server is a secure communication.
13. A system for secure communication as claimed in claim 12 in which the secure communication conforms to a Secure Socket Layer (SSL) standard.
14. A system for secure communication as claimed in any one of the preceding claims in which the personal data includes any one or more of, a name, a date of birth, an address, a driver's licence particulars, a gender, one or more physical particulars, and an identification number of the token holder.
15. A system for secure communication as claimed in any one of claims 1 to 13 in which the token is a payment token.
16. A system for secure communication as claimed in claim 15 in which the personal data includes payment token data stored in track 2 of the magnetic stripe.
17. A system for secure communication as claimed in claim 16 in which the payment token data includes an identity of a payment token holder, a corresponding bank account held at a financial institution, an expiry date of the payment token, and a verification code.
18. A system for secure communication as claimed in any one of claims 15 to 17 in which the computer workstation operates under control of an application software program.
19. A system for secure communication as claimed in claim 18 in which the application software program is operable by the token holder to input data relating to a commercial transaction and to the payment token to be used for settlement of the commercial transaction.
20. A system for secure communication as claimed in claim 19 in which the encryption facility also encrypts the commercial transaction data.
21. A system for secure communication as claimed in claim 20 in which the communication means transmits the encrypted data to a transaction server and receives a transaction status therefrom, the transaction status being an approved status if the commercial transaction is approved, and a declined status if the commercial transaction is declined.
22. A system for secure communication as claimed in claim 21 in which the transaction server authenticates the payment token.
23. A system for secure communication as claimed in claim 22 in which the transaction server authenticates the payment token by at least determining whether the expiry date of the payment token has passed and determining whether the payment token has been stolen.
24. A system for secure communication as claimed in any one of claims 21 to 23 in which the communication means instructs payment of a purchase price corresponding to the commercial transaction if the status of the transaction is an approved status.
25. A system for secure communication as claimed in any one of claims 21 to 24 in which the communication means notifies the token holder if the status of the commercial transaction is a declined status.
26. A method for secure information exchange, comprising the steps of: providing a token having an integral storage memory with personal data relating a token holder stored therein; reading the personal data contained in the integral storage memory; and transmitting at least a portion of the personal data read from the integral storage memory of the token to an application server along an open communication channel, the application server having at least a portion of the same personal data stored therein.
27. A method for secure information exchange as claimed in claim 26 in which at least a portion of the personal data read from the integral storage memory of the token is displayed in a perceptible form.
28. A method for secure information exchange as claimed in either one of claims 26 or 27 in which at least a portion of the personal data read from the integral storage memory of the token is encrypted prior to transmission thereof to the application server.
29. A method for secure information exchange as claimed in claim 28 in which the at least a portion of the personal data is transmitted to the application server and the at least a portion of the personal data is encrypted prior to transmission thereof to the application server, by means of a stored program executable in a computer workstation.
30. A method for secure information exchange as claimed in any one of the preceding claims in which the personal data is stored in a number of tracks of a magnetic stripe of a magnetic card token.
31. A method for secure information exchange as claimed in either one of claims 28 or 29 in which the personal data is encrypted according to a Data
Encryption Standard ("DES") algorithm.
32. A method for secure information exchange as claimed in claim 31 in which communication with the application server is by means of a secure communication standard.
33. A method for secure information exchange as claimed in any one of claims 26 to 32 in which the personal data includes any one or more of a name, a date of birth, an address, a driver's licence particulars, a gender, one or more physical particulars, and an identification number of the token holder.
34. A method for secure information exchange as claimed in any one of claims 26 to 32 in which the token is a payment token.
35. A method for secure information exchange as claimed in claim 34 in which the stored personal data of the token includes payment token data.
36. A method for secure information exchange as claimed in claim 35 in which the payment token data is stored in track 2 of the magnetic stripe of the magnetic card token.
37 A method for secure information exchange as claimed in either one of claims 35 or 36 in which the payment token data includes an identity of a payment token holder, a corresponding bank account held at a financial institution, an expiry date of the payment token, and a verification code.
38. A method for secure information exchange as claimed in any one of claims 34 to 37 in which the computer workstation operates under control of an application software program.
39. A method for secure information exchange as claimed in claim 38 in which the application software program allows data input relating to a commercial transaction and to the payment token to be used for settlement of the commercial transaction.
40. A method for secure information exchange as claimed in claim 39 in which the commercial transaction data is also encrypted.
41. A method for secure information exchange as claimed in claim 40 which includes the step of transmitting the encrypted data to a transaction server and receiving a transaction status therefrom, the transaction status being an approved status if the commercial transaction is approved, and a declined status if the commercial transaction is declined.
42. A method for secure information exchange as claimed in claim 41 which includes the further step of authenticating the payment token.
43. A method for secure information exchange as claimed in claim 42 in which the payment token is authenticated by at least determining whether the expiry date of the payment token has passed and determining whether the payment token has been stolen.
44. A method for secure information exchange as claimed in claim 43 in which payment of a purchase price corresponding to the commercial transaction is instructed if the status of the transaction is an approved status.
45 A method for secure information exchange as claimed in claim 44 which includes the step of notifying the token holder if the status of the commercial transaction is a declined status.
46 A system for secure information exchange, substantially as herein described with reference to and as illustrated in the accompanying drawings.
47. A method for secure information exchange, substantially as herein described with reference to the accompanying drawings.
PCT/IB2002/000006 2001-05-22 2002-01-04 Secure information exchange WO2002095549A2 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
GB0112449A GB0112449D0 (en) 2001-05-22 2001-05-22 Point-of-sale terminal
GB0112449.4 2001-05-22
GB0116171.0 2001-07-02
GB0116171A GB0116171D0 (en) 2001-07-02 2001-07-02 Personal identification

Publications (2)

Publication Number Publication Date
WO2002095549A2 true WO2002095549A2 (en) 2002-11-28
WO2002095549A3 WO2002095549A3 (en) 2003-11-27

Family

ID=26246104

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2002/000006 WO2002095549A2 (en) 2001-05-22 2002-01-04 Secure information exchange

Country Status (1)

Country Link
WO (1) WO2002095549A2 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006040250A1 (en) * 2004-10-13 2006-04-20 Deutscher Sparkassenverlag Gmbh System and method for checking access authorisation
EP2033132A1 (en) * 2006-06-23 2009-03-11 Semiconductor Energy Laboratory Co., Ltd. Personal data management system and nonvolatile memory card

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB1496984A (en) * 1975-12-03 1978-01-05 Diebold Inc Automatic banking equipment
GB2331825A (en) * 1997-11-28 1999-06-02 Nec Corp Personal identification authentication using fingerprints
GB2333878A (en) * 1998-01-28 1999-08-04 Citibank Na Performing an online transaction using card information and PIN
WO2000074007A1 (en) * 1999-05-28 2000-12-07 Utm Systems Corporation Network authentication with smart chip and magnetic stripe
EP1061482A1 (en) * 1999-06-18 2000-12-20 Citicorp Development Center, Inc. Method, system, and apparatus for transmitting, receiving, and displaying information

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB1496984A (en) * 1975-12-03 1978-01-05 Diebold Inc Automatic banking equipment
GB2331825A (en) * 1997-11-28 1999-06-02 Nec Corp Personal identification authentication using fingerprints
GB2333878A (en) * 1998-01-28 1999-08-04 Citibank Na Performing an online transaction using card information and PIN
WO2000074007A1 (en) * 1999-05-28 2000-12-07 Utm Systems Corporation Network authentication with smart chip and magnetic stripe
EP1061482A1 (en) * 1999-06-18 2000-12-20 Citicorp Development Center, Inc. Method, system, and apparatus for transmitting, receiving, and displaying information

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
LUIS PADILLA VISDOMINE: "Track format of magnetic stripe cards" INTERNET, 13 July 2002 (2002-07-13), XP002237354 Retrieved from the Internet: <URL:http://www.gae.ucm.es/~padilla/extraw ork/tracks.html> [retrieved on 2003-04-07] *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006040250A1 (en) * 2004-10-13 2006-04-20 Deutscher Sparkassenverlag Gmbh System and method for checking access authorisation
EP2033132A1 (en) * 2006-06-23 2009-03-11 Semiconductor Energy Laboratory Co., Ltd. Personal data management system and nonvolatile memory card
EP2033132A4 (en) * 2006-06-23 2010-09-08 Semiconductor Energy Lab Personal data management system and nonvolatile memory card
US7987498B2 (en) 2006-06-23 2011-07-26 Semiconductor Energy Laboratory Co., Ltd. Personal data management system and nonvolatile memory card

Also Published As

Publication number Publication date
WO2002095549A3 (en) 2003-11-27

Similar Documents

Publication Publication Date Title
US6012039A (en) Tokenless biometric electronic rewards system
US7953671B2 (en) Methods and apparatus for conducting electronic transactions
US6983882B2 (en) Personal biometric authentication and authorization device
US7269737B2 (en) System and method for biometric authorization for financial transactions
US7774076B2 (en) System and method for validation of transactions
TW591459B (en) Enabling use of smart cards by consumer devices for Internet commerce
US20060090203A1 (en) System and method for secure authentication of a subscriber of network services
KR100466826B1 (en) Method of automatic ticket self-issuing with an integrated circuit card and system thereof
US20020046092A1 (en) Method for preventing fraudulent use of credit cards and credit card information, and for preventing unauthorized access to restricted physical and virtual sites
US20080301056A1 (en) Online payer authentication service
JP2002537619A (en) Credit card system and method
US9508074B2 (en) Method for secure use of identification cards
US20160328717A1 (en) BioWallet Biometrics Platform
KR20160040731A (en) Verification of a transactor&#39;s identity
US6829597B1 (en) Method, apparatus and computer program product for processing cashless payments
JP2002109237A (en) Ic card for card dealing
JP2003504759A (en) System for executing transactions
WO2002005077A2 (en) Method and system for using biometric sample to electronically access accounts and authorize transactions
KR20050008439A (en) Card with Cardholder`s Definition Information for Using It and Method for Operating It
WO2002095549A2 (en) Secure information exchange
JP2001243392A (en) Electronic commercial transaction method and portable terminal for dealing with electronic commercial transaction
WO2000008610A1 (en) Offline verification of integrated circuit card using hashed revocation list
GB2475301A (en) Payment Authentication System and Processing Method
JP3578237B2 (en) Card validity confirmation system and card validity confirmation method using the system
WO2002001517A1 (en) A method for carrying out electronic commerce transactions

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase in:

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP