AU2020102210A4

AU2020102210A4 - ISMT- Voice Based Mobile Banking: INTELLIGENT SECURE MONEY TRANSFER USING BIOMETRIC INPUT VOICE BASED MOBILE BANKING

Info

Publication number: AU2020102210A4
Application number: AU2020102210A
Authority: AU
Inventors: S. B. Chordiya; Santosh Tukaram Jagtap; Vrushsen Purushottam Pawar; S. S. Sridhar; P. Velmurugan; S. Godfrey Winster
Original assignee: Individual
Current assignee: Individual
Priority date: 2020-09-11
Filing date: 2020-09-11
Publication date: 2020-10-22
Anticipated expiration: 2028-09-11

Abstract

Patent Title: ISMT- Voice Based Mobile Banking: INTELLIGENT SECURE MONEY TRANSFER USING BIOMETRIC INPUT VOICE BASED MOBILE BANKING. ABSTRACT Our Invention "ISMT- Voice Based Mobile Banking "is a mobile banking system comprises a mobile banking unit and a data processing centre which may be the mainframe computer of the bank responsible for processing banking transactions and local and global data storage. The invented technology the mobile banking unit includes one or more banking terminals such as ATMs, deposit machines and or multi-media enquiry stations. The unit is normally installed on a means of transport, such as a car, bus or train. Both the mobile banking unit and the data processing centre are equipped with wireless communication devices based on one or more mobile telephones, with or without encryption devices and/or modems, so that the mobile telephone wireless network can be used to link up the mobile banking unit and the data processing centre to perform all sorts of banking transactions. Using the mobile telephone wireless network to replace the leased telephone lines currently used for communication between branch banking terminals and the data processing centre should not only increase the flexibility of the bank in offering services to customers in terms of geographical coverage and hours of service but should also lower the overall operating costs of the bank. The invented technology also to eliminate, or at least substantially eliminate, the security concerns of conventional Internet-enabled mobile banking operations and mobile banking operations in general the invention provides perhaps the most secure mobile banking and payment or product/service purchase method extent which avoids security problems of the Internet and provides a rapid transfer of transactional information and other information as desired, inclusive of revenue generating advertisements with the architecture and techniques of the inventive Internet data protocol (DTP). Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 1-221 1-3 0uso0e EMPLOYEE CAm I ExampleafaCUies AtattleasaTO <PQACTCETERI ELPDESK FIG.1: IS A SCHEMATIC DIAGRAM GIVING AN OVERVIEW OF A MOBILE BANKING SYSTEM.

Description

Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09

1-221

1-3

0uso0e

EMPLOYEE

CAm I

ExampleafaCUies AtattleasaTO

<PQACTCETERI ELPDESK

FIG.1: IS A SCHEMATIC DIAGRAM GIVING AN OVERVIEW OF A MOBILE BANKING SYSTEM.

Australian Government IP Australia Innovation Patent Australia

Patent Title: ISMT- Voice Based Mobile Banking: INTELLIGENT SECURE MONEY TRANSFER USING BIOMETRIC INPUT VOICE BASED MOBILE BANKING.

Name and address of patentees(s): Dr. P. Velmurugan (Assistant Professor) Address-1: Department of Computer Science and Engineering, SRM Institute of Science and Technology, Katankulathure, Chenna-603203, Tamil Nadu, India. Address-2: 24/9, Rathinapuri, Kayalpattinam, Thituchendure(Tk), Tutocorine(Dt) 628204, Tamil Nadu, India.

Dr. S. S. Sridhar (Professor) Address-1: Department of Computer Science and Engineering, SRM Institute of Science and Technology, Katankulathure, Chenna-603203, Tamil Nadu, India. Address-2: No:33, Chairman Thambiah reddy colony, 3rd Cross street, Madambakkam, Chennai-600126, Tamil Nadu, India.

Dr. S. Godfrey Winster (Assosiate Professor) Address-1: Department of Computer Science and Engineering, SRM Institute of Science and Technology, Katankulathure, Chenna-603203, Tamil Nadu, India. Address-2: No:5, Bethel Gardens, Pillayar Kovil Street, Padikuppam, Chennai-600107, Tamil Nadu, India.

Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Address: Suryadatta Institute of Management & Mass Communication (SIMMC) Sr. No: 342, Bavdhan, Pune-411021, MH, India.

Dr. Santosh Tukaram Jagtap Address: D-1103, Sargam, Nanded City, Sinhgad Road, Pune-411068, MH, India.

Dr. Vrushsen Purushottam Pawar (Group Director) (ASM Group of Institution) Address: Flat No.101, H1, Swiss County, Thergaon, Pune- 411033, MH, India.

Complete Specification: Australian Government.

FIELD OF THE INVENTION

Our Invention" ISMT- Voice Based Mobile Banking" is related to intelligent secure money transfer using biometric input voice based mobile banking.

BACKGROUND OF THE INVENTION

Commercial banks establish branch networks to expand their market coverage geographically and to compete for market share. This is particularly evident in the retail banking business. To offer computerized services to their customers, banks normally install banking terminals for transaction processing in their branches. These banking terminals are connected to a mainframe computer at a data centre of the bank via a leased data line for on-line transaction processing.

Establishing a branch network and the associated dedicated communication network via a leased line is very expensive and may limit the ability of the bank to expand. A mobile banking system with its low operating costs and mobility could enhance the ability of a bank to render banking services over a wide geographical area in order to expand the presence of the bank in the market-place.

The invention aims to provide a bank with a low cost but versatile mobile banking system. Accordingly, the invention provides a mobile banking system comprising a data processing centre for processing banking transactions and a remote banking unit having one or more banking terminals operable by a user to effect banking transactions, in which system the remote banking unit incorporates a wireless communication device including a mobile telephone by which the remote banking unit communicates with the data processing centre over the associated wireless communication network in order to perform the banking transactions.

The remote banking unit is preferably a mobile banking unit installed on a vehicle, such as a car, bus or train, and may be equipped with a group of banking service terminals, including terminals such as ATM's, passbook updating machines etc. The mobile banking unit and/or its individual banking service terminals, is or are equipped with mobile telephones with or without modems and with or without encryption devices.

The data processing centre may be constituted by an existing mainframe computer of the bank's data centre, which is correspondingly equipped with mobile telephones with or without modems and with or without encryption devices for data communication purposes. The mobile banking unit and/or its individual banking terminals can dial-up and connect via the wireless mobile telephone network to the mainframe computer using the mobile telephones installed at both ends, thereby to perform banking transactions.

A mobile banking system embodying the present invention applies mobile telephone technology and its wireless communication network to banking operations and allows banks to offer their customers on-line banking transaction services at any location which is within reach of the mobile telephone network.

The invention thus provides a bank with (a) the possibility of establishing mobile banking system and offering mobile banking services to its customers and (b) the ability to connect their banking terminals like ATMs passbook updating machines, multi-media enquiry stations and the like to their mainframe computer in the data centre using mobile telephony and its associated wireless communication network, so as to provide banking services in any locations and/or on board transportation such as cars, buses and trains.

The mobile banking system proposed by the present invention should offer the banks lower operating costs and possible expansion of market coverage geographically to include more remote and less densely populated areas of a country. In turn, the customers could expect to have easier access and more convenient banking services with longer operating hours and lower fees. The invention should, therefore, facilitate commercial activities as a whole.

The invention relates to novel banking methods, including a new protocol and venue for conventional banking usually conducted in person or over the Internet, and which may be performed remotely and wirelessly, and securely, over-the-air without the need for an Internet connection, and which may be conducted wirelessly (or by wireline) on an electronic device, such as a portable electronic device in the form of a cell phone device, or a wire line device as desired.

PRIOR ART SEARCH

S4861049A *1983-10-281989-08-29Chemical New York Corporation Mobile bank teller unit. EP0660280A1 *1993-12-241995-06-28nflight Financial Services Ltd. A vehicle mounted cash dispensing machine. W01997018653A1*1995-11-131997-05-22Transaction Technology, Inc. Wireless transaction and information system. US5726430A*1995-11-031998-03-1Wilson ATM Services Mobile banking devices and materials for construction of same. US4446334A *1983-01-311984-05-01Groff James W Telephone number coding device US5282222A*1992-03-311994-01-25Michel Fattouche Method and apparatus for multiple access between transceivers in wireless communications using OFDM spread spectrum. US5481599A*1993-07-221996-01-02Macallister; Donald I. Automated audio output device for a telephone set. US5629867A *1994-01-251997-05-13Goldman; Robert J. Selection and retrieval of music from a digital database. US5664111A *1994-02-161997-09-02Honicorp, Inc. Computerized, multimedia, network, real time, interactive marketing and transactional system. US5732216A*1996-10-021998-03-24nternet Angles, Inc. Audio message exchange system. US5809145A*1996-06-281998-09-15Paradata Systems Inc. System for distributing digital information.

This is a continuation-in-part application claiming priority to U.S. patent application Ser. No. 12/322,615, filed Feb. 4, 2009, and U.S. patent application Ser. No. 12/322,618, filed Feb. 4, 2009, which are continuation and divisional applications, respectively, of U.S. patent application Ser. No. 10/183,756, filed Jun. 6, 2002, now U.S. Pat. No. 7,548,875, and which claims priority to U.S. Provisional Application Ser. No. 60/301,681, filed Jun. 27, 2001, U.S. Provisional Application Ser. No. 60/303,115, filed Jul. 3, 2001, U.S. Provisional Application Ser. No. 60/312,450, filed Aug. 14, 2001, and U.S. Provisional Application Ser. No. 60/343,159, filed Oct. 26, 2001, all of which applications are incorporated herein by reference.

OBJECTIVES OF THE INVENTION

1. The objective of the invention is to a mobile banking system comprises a mobile banking unit and a data processing centre which may be the mainframe computer of the bank responsible for processing banking transactions and local and global data storage. 2. The other objective of the invention is to the invented technology the mobile banking unit includes one or more banking terminals such as ATMs, deposit machines and or multi-media enquiry stations. The unit is normally installed on a means of transport, such as a car, bus or train. 3. The other objective of the invention is to Both the mobile banking unit and the data processing centre are equipped with wireless communication devices based on one or more mobile telephones, with or without encryption devices and/or modems, so that the mobile telephone wireless network can be used to link up the mobile banking unit and the data processing centre to perform all sorts of banking transactions. 4. The other objective of the invention is to Using the mobile telephone wireless network to replace the leased telephone lines currently used for communication between branch banking terminals and the data processing centre should not only increase the flexibility of the bank in offering services to customers in terms of geographical coverage and hours of service but should also lower the overall operating costs of the bank. 5. The other objective of the invention is to The invented technology also to eliminate, or at least substantially eliminate, the security concerns of conventional Internet-enabled mobile banking operations and mobile banking operations in general the invention provides perhaps the most secure mobile banking and payment or product/service purchase method extent which avoids security problems of the Internet and provides a rapid transfer of transactional information and other information as desired, inclusive of revenue generating advertisements with the architecture and techniques of the inventive Internet data protocol (DTP).

6. The other objective of the invention is to A mobile banking system according to any preceding claim, wherein the data processing centre (2) incorporates one or more mobile telephones (2-21) for communicating with the mobile banking unit (1). A mobile banking system according to claim 7, wherein the mobile telephones (2-21) are connected to a mainframe computer (2-1) of the data processing centre (2).

7. The other objective of the invention is to A mobile banking system according to any preceding claim, wherein the wireless communications device of the remote banking unit (1) and the data processing centre include encryption devices (1-21 and 2-22). A mobile banking system according to any preceding claim, wherein the wireless communication device (1-2) of the remote banking unit (1) and the data processing centre (2) incorporate modems (1-22 and 2-22). 8. The other objective of the invention is to wherein the alert is one or more of informational, actionable, and interactive and also further comprising an interactive alert dialogue system means comprising one or more of the following: an SMS Gateway (SMSG), a Bank Secure Platform means (BSP), and an Alert Dialogue Server means (ADS). 9. The other objective of the invention is to further comprising a spooler framework. wherein the SMS Gateway is in communication with the SMS (SMSC) center of a mobile services operator and is effective to support one or more SMSC protocols conversion of HTTP-requests to binary text messages; conversion of binary text messages to HTTP-requests; retrial of conversion on failures and logging of transactions and also wherein the alert dialogue server is effective to perform one or more or allocation of dialogue ID and channel to a dialogue with session details matches of reply with corresponding dialogue and forwarding of an answer to BSP means.

SUMMARY OF THE INVENTION

Mobile phones have become an integral part of the 21stcentury landscape with an expected penetration of 4.5 billion by 2011. While North America and Europe have the highest penetration rate, reaching 100% in many Western countries, South America and Asia represent the fastest growing mobile markets.

In developing countries, the role of the mobile phone is more extensive than in developed countries, as it helps bridge the digital divide. Hundreds of millions of people, mainly in the developing world, have no access to banks because of remoteness and poor infrastructure. Yet many of these people have mobile phones. The mobile phone is the one device that people most often carry at all times, and mobile phone services beyond voice and text messaging are booming all over the globe. For example, people living in emerging markets or remote regions of Africa, South America and Asia who don't have a bank account or a computer still often own a mobile phone, which can provide them with access to basic financial services. Mobile phones represent a cost-effective solution for users, financial institutions and operators, allowing them to bridge the digital divide in places where traditional banking and Internet services are too expensive or simply nonexistent.

Easy access to financial services is widely acknowledged as highly desirable, in that users have ready and easy access to credit and can securely manage their money. Financial institutions can readily expand their user base and process more transactions. Governments also benefit from the effect credit has on lower-income sectors of the population and can better track funds distribution within their country.

Ubiquitous and versatile, wireless devices provide users weekly and around the clock access to financial services bringing the next market revolution-mobile banking, mobile payment, mobile wallet, mobile money transfer and other financial services to users anywhere and everywhere and at essentially anytime. Indeed, while the rate of Internet banking user growth has stabilized, mobile banking is spiking and recent market analysts predict that more than 800 million people will use the mobile services by 2011.

Indeed, banks are fast moving into the mobile market, with many of the largest U.S. bank having already introduced some kind of mobile banking technology and with most if not all big (and many small banks) expected to have a mobile banking option in the near future. While in the U.S. only about 3% or so of the more than 50 million households that currently use online banking have also tried mobile banking, such is expected to grow to % by 2010, with such everyday functions as checking balances, monitoring recent transactions and paying bills and e-bills representing the bulk of activity, and with automatic purchase of goods and services with automatic payment options through banking channels representing a dramatically increasing industry.

For example, while shopping at a department store or anywhere else, it would be extremely convenient to instantly check your debit card or credit card account for available funds and avoid those oftentimes unnecessary overdraft fees, and with a few operations on the phone a balance can be checked and/or money transferred from one account to another to cover any contemplated purchases. Other useful services can include locating the nearest ATM and banking centers, view transactions for checking and savings accounts, mortgages and home equity lines, including posted and pending transactions. Some examples of recent mobile banking methods and applications are described, for example, in U.S. Pat. Nos. 7,258,267 and 7,175,073.

The dramatic increase in mobile phone usage has also been followed by an ever increasing amount of mobile and/or Internet fraud, and although eager to use mobile financial services, many subscribers are correctly concerned about the security aspect when carrying out financial transactions over a mobile network. In fact, lack of security is seen as one of the biggest deterrents to the widespread adoption of mobile financial services or at least a major problem as mobile banking increases. Fraud prevention has become a pressing need across all modes of financial transactions.

Conventional mobile banking operations are usually conducted through an Internet connection. In spite of efforts to halt electronic fraud, the Internet has remained a notoriously dangerous place to do business. The impact of cybercrime is estimated to cause $100 billion in damages annually. All banks around the world fear a huge loss of reputation and dwindling customer confidence in their Internet platforms through very clever and increasingly successful Internet banking attacks. Furthermore, experts are now convinced that securing Internet banking through IT security methods (user authentication, encryption and authorization codes) is not enough, since almost every security system can be cracked in practice. It is well known that an unsecured wireless access point in the form of a router or broadband modem with wireless capability in an Internet connection is a dangerous weak link. Further, for example, a powerful new type of Internet attack has been seen as analogues to a telephone tap, except that it operates between computers and Web sites that are "trusted" by the computers. Such attacks prey on major problems with the way browsers interact with Secure Sockets Layer (SSL) certificates which is a common technology used in banking e-commerce and other sites that handle sensitive data.

The mobile banking and payment industry not being immune from pervasive Internet crime, personal identity and data kept on the mobile devices have previously been limited. The mobile phone has long been regarded as a device that is extremely personal and, as such, security on the handset has not had the same amount of attention as has been seen on the PC and fixed line internet. Indeed, many users are traumatized after a mobile-phone stocker targets them and a security threat to users and businesses is very real.

The environment in which mobile phones are used is rapidly changing and mobile devices are now ubiquitous to everyday functions of the mobile subscriber, both for personal and business use. However, the mobile phone being intrinsically linked with the mobile Internet has heightened the security risks associated with identity fraud. With Internet security concerns like Trojans and malware migrating to the mobile phone, banks and other financial institutions are expected to use their experiences with such threats in online banking to help ensure the safety of this new mobile channel.

Some additional potential threats that can affect mobile banking and payment services include, for example, "cloning", or copying the identity of one mobile phone to another, thereby allowing the perpetrator to masquerade as the victim, normally with the intent to have calls and other services billed to the victim's cellular account. In the case of mobile banking, cloning could provide a hacker access to the victim's financial accounts. Another potential threat is "hijacking", in which an attacker takes control of a communication between two entities, masquerading as one of them. As with cloning, hijacking could provide a hacker access to the victim's financial accounts. Another potential threat is the use of a malicious code, or software in the form of a virus, worm or other "malware", which is loaded onto the handset or a bank's server to perform an unauthorized process that will adverse impact on the confidentiality, integrity or availability of financial information and transactions.

Malware, a contraction for "malicious software" that is inserted into a system usually covertly, is performed with the intent of compromising the confidentiality, integrity or availability of a victim's data, applications or operating system, or otherwise annoying or disrupting the victim. Yet another potential threat is known as the "Man-In-The-Middle" attack, which is an attack on the authentication protocol exchange in which the attacker positions himself between the claimant and verifier with the intent to intercept and alter data traveling between them. Still another potential threat may come in the form of "phishing", or tricking a victim into disclosing sensitive personal information or downloading malware through an email. "Redirecting" is a threat by intercepting a communication by substituting a fraudulent address or identity, potentially by using a Man-In-The-Middle attack.

Security and Confidentiality of Information

The Mobile Banking Platform provides end-to-end security and confidentiality of data by ciphering information in the Client Application for secure transfer over the mobile phone based on the present non-Internet Data Transfer Protocol or standard SMS messages protocol or a combination of thereof.

For the highest level of security, sensitive data, such as PIN and transaction details, are never stored in the client's cell phone or the Mobile Banking platform. All customer's and financial information is kept exclusively at a bank or some form of banking institution, entity or server(s), which also has the sole control over the cryptographic keys used to secure financial transactions. Users are required to identify themselves to a bank or entity with a Mobile Banking PIN that protects access to financial information and transactions. Secret keys only known to the client application and the bank are used to encrypt and sign transaction data, further proving the identity of the user.

All sensitive data is encrypted with double length 3DES (128 bit) keys. In addition, transactional security standards such as Derived Unique Key per Transaction (DUKPT), short-lived transactional contexts and key roles are used for added protection of financial transactions.

Interactive Alert Dialogue System in Mobile Banking

An Alert System is particularly useful communication medium between wireless devices and bank system, which enabling banks to leverage the dynamic, real-time capabilities of the mobile banking system. This information can be highly personalized and can send alerts, for example, if an account balance is low, and a bill payment is due, or there is suspicious activity associated with one's credit card, debit card or other money transaction card, or personal or transactional information, or with any form of identity theft activity. Importantly, with proactive mobile banking, alerts are actionable.

Currently there are three levels of mobile alerts available to banks: informational, actionable, and interactive. Informational alerts enable low-cost delivery of messages to customers and reduce inbound calls to contact centers. Obviously, this is not very valuable for time-sensitive notifications such as low balance or fraudulent transaction alerts, especially when there is no response mechanism in place. With actionable alerts the customer can instantly address and resolve the issue by simply responding to the alert.

As a result of this inherent response mechanism, actionable alerts are ideal for improved account management, innovative mobile payments and heightened fraud prevention. For example, if a potentially fraudulent transaction is detected, an actionable alert can be sent to the customer, who can instantly verify or dispute the transaction with a reply. Interactive Alerts take actionable alerts to the next level by enabling banks to have genuine, personalized and interactive mobile dialogue with the customer. For example, if no response is received to a bill payment alert, subsequent actionable alerts can be sent closer to the bill due date enabling payment via the mobile device but with added convenience or expedited payment fees. Interactive alerts may considerably increase the number of customer transactions by enabling both bank-to-customer and customer-to bank interactions.

It also offers a new way for banks to proactively take command of customer interactions by engaging with customers on a deeper, more personal level, which promotes customer loyalty and retention, reduces the cost of service, mitigates fraud and provides the opportunity for the bank to cross-sell products and services. For customers, interactive alerts provide the obvious comfort of being informed in real-time when issues arise with their financial accounts, and the convenience of being able to immediately resolve the problem via their mobile phone.

Alert Push Case Message Flow:

In this aspect of the invention, or which this is merely one preferred embodiment a Bank System may send an XML-document as a send request using HTTP POST-method including recipient number and message contents, answer alternatives, and dialogue expiry time. A Bank Secure Platform (BSP) forwards the message to the Alert Dialogue Server if authentication and validation are successful and the load control permits. An Alert Dialogue Server performs the dialogue allocation based on the data in the XML message and sender related parameters, assigns a dialogue ID and selects a free "channel" to be used in sending the message, stores the dialogue data, forms the SMS-message of the alternatives if the message is not marked to be pre-formatted, forwards the message to the SMS Gateway using a HTTP-request, and replies to BSP with a send result XML message that contains dialogue ID for later answer-question matching. The SMS Gateway splits the message into smaller parts and sets the proper headers, and forwards parts to the mobile operator SMS Center (SMSC) for delivery to the End User.

Reply Case Message Flow:

In yet another aspect of the invention, in this non-limiting preferred embodiment, an End User sends a reply SMS with a one choice, one character ('one button reply') to the number where the original message came from. An SMS Gateway creates a HTTP-request with sender and recipient numbers and message content and sends it to the Alert Dialogue Server. An Alert Dialogue Server searches for an open dialogue with the same recipient and corresponding channel ID. If the dialogue is found, the dialogue status is updated and the HTTP-reply is sent to Bank Secure Platform (BSP). A Bank Secure Platform (BSP) fetches the reply URL of the dialogue from the database and sends the answer to it. If the sending is not successful it is retired after defined period.

The Interactive Alert Dialogue System implementation does not require any client software or end-user training; it works the same way on any mobile device, regardless of device type, platform, or operating system, and it is therefore capable of working with the hundreds of millions of mobile devices that are currently in use. This approach saves financial institutions significant costs in both product and human resource initiatives, and it offers customers an easy-to-use and nonintrusive method of authenticating to the bank.

The product includes capabilities such as an Actionable Alert functionality, which allows banks and financial institutions to deliver alerts for bill paying, antifraud notifications, important account change information, and so forth, empowering customers to take action immediately using SMS on their mobile phones. For example, banks can significantly reduce losses from fraud and identity theft by enabling customers to quickly respond to antifraud alerts from questionable account activities directly from their mobile phones.

The Interactive Alert Dialogue System employs standards-based components and protocols. This enables wide horizontal scalability across many different devices, protocols, carriers and applications.

Covert Communication in Mobile Banking:

Steganography or Stego literally means "covered writing", which is derived from the Greek language. In contrast to Cryptography, where an adverse, or potentially adverse, party is allowed to detect, intercept and modify messages without being able to violate certain security premises guaranteed by a cryptosystem, the goal and capability of Steganography is to hide messages inside other harmless messages in a way that does not allow any adverse party to even detect that there is a second message present.

General principles of steganography are illustrated in FIG. 8. A data message is hidden within a cover signal in the block called embeddor using a stego key, which is a secret set of parameters of a known hiding algorithm. The output of the embeddor is called a stego signal. After transmission, recording, and other signal processing the embedded message is retrieved using the appropriate stego key in the block called an extractor.

Embedding information in audio signals, or audio steganography, is vital for secure covert transmission of information such as banking transactions via audio channels. On another level, watermarking of audio signals for digital rights management is becoming an increasingly important technique for preventing illegal copying, file sharing, etc.

Data Hiding Method and Algorithm:

This algorithm employed in accordance with the present invention is based on unitary transforms and quantization in the transform domain. The Fast Fourier Transform is selected when dealing with audio signals in the framework of the present non-Internet Data Transfer Protocol (DTP) described in U.S. Pat. No. 7,548,875.

The DTP protocol implements data transmission based on an OFDM modulation scheme, and a Fast Fourier Transform is already employed in the protocol sub-channel symbols from frequency to time area.

The algorithm for secure digital audio steganography employs unitary transforms with quantization in the transform domain. The secure data is embedded in the transform domain coefficients. The algorithm does not require the original signal or information about the secure content for detection. Only a few parameters are necessary for detection and extraction of the steganographic data. The algorithm features with a type of pseudorandom binary sequence (m-sequence) added to the cover signal for detection purposes. The framework of an algorithm includes characteristics of the human auditory system.

Advertising Options:

Also contemplated in this invention are various advertising methods employed in conjunction with banking methods and transactions. For example, when a mobile user is on hold on her cell phone during a banking transaction, or is intentionally put on hold for a predetermined time span, instead of conventional hold music playing, the mobile user will receive an audio and/or visual advertisement push to their phone or advertising content of any kind or a clip of a TV show, and the like. This replaces the conventional "hold music" used by many large companies and other entities and increases the value of sending an advertisement during this "dead use time," for both advertiser and consumer alike. Additionally, it is also contemplated that when an alert is activated, or when a service operator or callee comes on the line, such will break into any advertisement being played and alert the user that someone or something or other content is coming on the line such that the user on hold does not miss the alert or proposed call, such as with a service operator.

Also contemplated is advertising content in the form of mortgages, car/house loans, insurance packages and whatever else, even advertising about new cars etc, or essentially anything, for example, they can be purchased with a bank loan, or credit union or advance, or advance from a line of credit or equity loan. Banks up to the present time have traditionally not really had an effective venue to reap significant revenue from advertising. and certainly not a great deal from television.

The invention presents via mobile screen devices, and telephone screen devices in general, possible huge revenue streams for banks via the shear enormous amount of everyday transactions where users would be exposed to advertisements, such as in the corner or other portion of a cell phone screen. These advertisements may also be interactive impulse purchase advertisements, as where a user has already got their finger on their money account in the cell phone push button array, such as in a money transfer, and decides to purchase something in the advertisement at the same time, while checking their account or transferring money.

While the present invention has been particularly described in conjunction with several preferred embodiments, it is evident that many alternatives, modifications and variations will be apparent to those skilled in the art in light of the forgoing description. It is therefore contemplated that the appended claims will embrace any such alternatives, modifications and variations as falling within the true scope and spirit of the present invention.

BRIEF DESCRIPTION OF THE DIAGRAM

FIG.1: is a schematic diagram giving an overview of a mobile banking system.

FIG.2: is a block diagram of the structure of one embodiment of a mobile banking unit with centralized communication control via a computer server incorporated in the mobile banking unit.

FIG.3: is a block diagram of the structure of another embodiment of a mobile banking unit without centralized control of communications.

FIG.4: is a block diagram of one example of a mobile banking unit incorporating a computer server.

FIG.5: is a block diagram of an exemplary data centre of a bank.

FIG. 6: is a vulnerabilities and attacks affecting Internet-based mobile banking and payment systems.

FIG. 7:is the weakest link in the mobile banking and payment security chain.

FIG. 8: is non-Internet mobile banking and payment solution.

FIG. 9: is a general schematic diagram illustrating Mobile Banking Architecture.

DESCRIPTION OF THE INVENTION

Referring to Figure 1, the illustrated mobile banking system embodying the present invention comprises mobile banking units 1 and a banking data centre 2. Any number of mobile banking units 1 and data centres 2 may be employed in the system and the use of a single data centre 2 and two mobile banking units 1 as depicted in the drawing is for the purposes of illustration only. The mobile banking units 1 should have no geographical boundary and could be situated within the same city, within different cities or even within different countries.

The mobile banking unit 1 may take the form of a car, a bus or a train carrying on board banking terminals 1-3 which are capable of performing on-line banking transactions. Thus, an ATM installed in a car and capable of communicating with a mainframe computer 2-1 of the data centre 2 via a mobile telephone 1-22 is the simplest form of mobile banking unit. Customers can make a deposit, a withdrawal, or an account transfer using the ATM as if it were installed in the lobby of a conventional branch bank.

Within the mobile banking unit 1, a computer server may be used to connect all the banking terminals 1-3, mobile telephones 1-22 and necessary peripherals, so that communication between the main frame computer 2-1 and the mobile banking unit 1 can be centralized within the banking unit. Alternatively, the individual banking terminals 1-3 of the mobile banking unit may be equipped with their own mobile telephones 1-22 and other necessary peripherals, so as to communicate directly with the mainframe computer 2-1 when performing transactions. As another possibility, a banking unit 1 could employ a combination of these communication modes for different banking terminals 1-3.

Within the context of the present invention, even if it is installed at a fixed site for a period of time instead of on a moving vehicle, the banking unit 1 is still considered to be a mobile banking unit, as long as it communicates with the bank's main frame computer 2-1 using a mobile telephone and the associated wireless communication network.

The data centre 2, and its mainframe computer 2-1, is normally located at the premises of the bank. It is the central data processing centre for all the banking terminals of the bank, including also the banking terminals 1-3 installed on the mobile banking unit 1. The banking terminals of the branch offices continue to be connected via the dedicated leased line network, whereas the terminals of the mobile banking unit 1 are connected to the data processing centre 2-1 by means of a mobile telephone 1-22, with or without a modem and/or encryption device 1-21, and its wireless communication network in order to process all kinds of banking transactions.

A mobile banking system embodying the present invention thus enables a bank to establish a mobile banking presence. The mobile banking unit 1 can be installed on any means of transport or movable object and may, in special circumstances, be installed at a site. The connection of the mobile banking unit 1 to the mainframe computer 2-1 is through the wireless mobile telephone communication network. Of course, the mobile banking unit 1 and/or its terminals 1-3 and the mainframe computer 2-1 must incorporate a mobile phone 1-22 with or without a modem and/or an encryption device 1-21.

To enhance the security of the data transmissions, encrypted data may be transmitted to and from the banking terminals 1-3 by separate message segments using different mobile telephone lines 6. On arrival, the data is reconstructed and decrypted by an encryption/decryption device 2-22 of data centre 2 prior to processing by the mainframe computer 2-1 to ensure the highest degree of security. It is believed that using a wireless network for data transmission in such an application is more secure and cost-effective. The wireless communication network could be a satellite network or a microwave network or any other wireless communication network.

Figure 2 is a block diagram, showing the components of one embodiment of a mobile banking unit 1 having centralized control via an installed server. The exemplary mobile banking unit 1 of Figure 2 consists of a moving object, such as a car 1-1, carrying on board a group of banking terminals 1-3, a wireless communication device 1-2, with or without a modem 1-21 and an encryption device 1-22. The individual banking terminals, such as ATM 1-36, cashier Cheque issuing machine 1-35, telephone banking kiosk 1-34, passbook updating machine 1-39, tele-terminals 1-37 and alarm system 1-30, connect to the communication device 1-2 via computer server CPU 1-38.

For self-service equipment, the customers of the bank can operate the machine for services as if they were using the machines in the lobby of a bank, but behind the scenes data is transmitted via the wireless communication network by means of the installed communication device 1-2. The tele-terminal 1-37 is to be operated as usual by the staff of the bank. The communication device 1-2, including the mobile telephones 1-22 with or without the modem and encryption device 1-21, may be installed within the mobile banking unit 1, as illustrated in Figure 2, or outside the mobile banking unit 1, as illustrated in Figure 1.

Figure 3 is a block diagram of the components of another embodiment of a mobile banking unit 1 which, in this case, does not employ centralised communication control. The only difference between Figures 2 and 3 is that, in Figure 3, a communication device 1-2 is incorporated in each banking terminal 1-3, so that each banking terminal is capable of communicating with the mainframe computer 2-1 directly in order to process a transaction.

It is further envisaged that the mobile banking unit 1 may communicate with the data processing centre 2 using a combination of the two types of communication illustrated in Figures 2 and 3. For example, only the ATM 1-36 and the passbook updating machine 1 39 may have their own individual communication devices 1-2, and be able to communicate directly with the mainframe computer 2-1, whereas the other banking terminals may be connected to a common communication device 1-2 via a computer server 1-38.

In the event that there are bank staff on board the mobile banking unit 1, the staff may make use of the banking terminals to perform other banking services, such as the acceptance of Cheque deposits and Cheque withdrawals etc. Figure 4 shows another example of a mobile banking unit 1, in which three ATMs 1-36 are connected to a single communication device 1-2 via a computer server 1-4.

Figure 5: illustrates schematically the structure of a data processing centre 2 of a bank. This centre comprises the mainframe computer 2-1 and mobile telephones 2-21, with our without a modem and with or without encryption device 2-22. The data processing centre 2 is connected to the mobile banking unit 1 using one or more mobile telephones 2-21 for data transmission via the mobile telephone wireless communication network in order to perform banking transactions. The use of wireless means of communication in a mobile banking system embodying the present invention is expected to enhance data communication security and to help reduce the communication costs of a bank.

FIG. 6: illustrates some vulnerabilities and attacks affecting Internet-based mobile payment systems. It is not an exaggeration to state that one has to be paranoid while analyzing the security aspects of an m-banking and m-payment system based on wireless Internet connection. It is well-known that any system is only as secure as the weakest link in the security chain. Given the pressure brought by regulatory agencies and consumers themselves, financial institutions are taking steps to bolster their lagging computer security. Nowadays most of financial institutions' own security platform is rather difficult to attack. As the result an army of Internet criminals have turned their attention to getting information directly from Internet enabled mobile customers themselves, as illustrated at FIG. 7.

The nature of the Internet as an open public network that allows for free exchange of information and files makes it inherently vulnerable to attack. Every time a customer connects to the Internet it faces potential danger of being open to hackers who could break into the system and cause damage. The TCP/IP protocols, the basis for today's Internet, lack even the most basic mechanisms for security. It was designed to operate in an environment where everyone was supposed to be able to communicate openly with everyone else. Consequently, TCP/IP has no security capabilities whatsoever and should be considered as the weakest link in the security chain.

Payments and banking are the biggest concern for mobile device manufacturers. At the same time, the manufacturers aren't installing additional security protection on the vast majority of the devices and generally will not allow consumers to install security software on mobile devices, such as is commonly done with PCs and laptops.

To safeguard against security risks, mobile users should use their device PIN codes, download mobile applications only from their financial institution, switch Bluetooth off when not in use, and avoid lending their phone to strangers to minimize the chance of someone downloading a malicious application onto the device. However, oftentimes such safeguards are not enough.

As mentioned above, the dramatic increase in mobile phone usage has been followed by an increase in mobile fraud, and although eager to use mobile financial services, many subscribers are concerned about the security aspect when carrying out financial transactions over the mobile network. In fact, lack of security is seen as the biggest deterrent to the widespread adoption of mobile financial services. As usage of the Internet and TCP/IP protocols increases in wireless environment, their lack of built-in security has become more and more problematic. The wireless Internet is now viewed by many businesses and organizations as a mission-critical asset whose unavailability leads to financial loss. Fraud prevention has become a pressing need across all modes of financial transactions.

The present invention has responded to these needs by developing the most secure Internet independent Mobile Banking and Payment solution based on non-Internet Data Transfer Protocol (DTP) methods systems and architecture described in U.S. Pat. No. 7,548,875. Key security benefits of the Mobile Banking and Payment solution are illustrated at FIG. 8, and described below.

An example of Mobile Banking system may have Server-Client architecture illustrated at FIG. 9. The Client Side comprises the Client Application which may be installed on the client's phone memory or on the phone SD card, or on USIM/SIM card, and is effective to perform one or more of the following tasks: displaying appropriate menus processing user requests and responses; prompting the user for information and collected user input; generating transaction keys, ciphers sensitive information and signing data to be sent; sending and receiving transaction messages, optionally inclusive of product and/or service purchase information and description as to price and quantity; encrypting and decrypting sensitive information; and managing transaction security and confidentiality

The Server Side may comprise different modules performing system critical tasks. The main components of the server side are the Business Mediation Server and the Bank Secure Platform. The Business Mediation Server (BMS) ensures communications between mobile subscribers and financial institutions, and routes mobile banking transactions exchanged between the Client Application in the mobile user's phone and the Bank Secure Platform at the user's bank.

The BMS is effective to perform one or more of the following tasks: receiving subscribers' mobile banking requests, interprets them, formats and forwards the requests to the subscribers' bank for processing; maintains the status of the requests; logs transaction results for auditing and billing purposes; receives the bank's responses and sends them to the Client Application; and maintains the list of financial institutions available on that operator's services.

On the financial institution side, a Bank Secure Platform (BSP) performs transactions between mobile users and the bank's systems. More specifically, the BSP is effective to perform one or more of the following tasks: facilitates communication between bank systems and end-users; hosts response templates (pages); authenticates mobile customers; and ensures that financial transactions and customer data are secure

WE CLAIMS 1) Our Invention "ISMT- Voice Based Mobile Banking "is a mobile banking system comprises a mobile banking unit and a data processing centre which may be the mainframe computer of the bank responsible for processing banking transactions and local and global data storage. The invented technology the mobile banking unit includes one or more banking terminals such as ATMs, deposit machines and or multi-media enquiry stations. The unit is normally installed on a means of transport, such as a car, bus or train. Both the mobile banking unit and the data processing centre are equipped with wireless communication devices based on one or more mobile telephones, with or without encryption devices and/or modems, so that the mobile telephone wireless network can be used to link up the mobile banking unit and the data processing centre to perform all sorts of banking transactions. Using the mobile telephone wireless network to replace the leased telephone lines currently used for communication between branch banking terminals and the data processing centre should not only increase the flexibility of the bank in offering services to customers in terms of geographical coverage and hours of service but should also lower the overall operating costs of the bank. The invented technology also to eliminate, or at least substantially eliminate, the security concerns of conventional Internet-enabled mobile banking operations and mobile banking operations in general the invention provides perhaps the most secure mobile banking and payment or product/service purchase method extent which avoids security problems of the Internet and provides a rapid transfer of transactional information and other information as desired, inclusive of revenue generating advertisements with the architecture and techniques of the inventive Internet data protocol (DTP). 2) According to claims# the invention is to a mobile banking system comprises a mobile banking unit and a data processing centre which may be the mainframe computer of the bank responsible for processing banking transactions and local and global data storage. 3) According to claiml,2# the invention is to the invented technology the mobile banking unit includes one or more banking terminals such as ATMs, deposit machines and or multi-media enquiry stations. The unit is normally installed on a means of transport, such as a car, bus or train. 4) According to claiml,2# the invention is to Both the mobile banking unit and the data processing centre are equipped with wireless communication devices based on one or more mobile telephones, with or without encryption devices and/or modems, so that the mobile telephone wireless network can be used to link up the mobile banking unit and the data processing centre to perform all sorts of banking transactions. ) According to claiml,2,4# the invention is to Using the mobile telephone wireless network to replace the leased telephone lines currently used for communication between branch banking terminals and the data processing centre should not only increase the flexibility of the bank in offering services to customers in terms of geographical coverage and hours of service but should also lower the overall operating costs of the bank. 6) According to claiml,2,3# the invention is to The invented technology also to eliminate, or at least substantially eliminate, the security concerns of conventional

Claims

Internet-enabled mobile banking operations and mobile banking operations in general the invention provides perhaps the most secure mobile banking and payment or product/service purchase method extent which avoids security problems of the Internet and provides a rapid transfer of transactional information and other information as desired, inclusive of revenue generating advertisements with the architecture and techniques of the inventive Internet data protocol (DTP).

7) According to claiml,2,5# the invention is to A mobile banking system according to any preceding claim, wherein the data processing centre (2) incorporates one or more mobile telephones (2-21) for communicating with the mobile banking unit (1). A mobile banking system according to claim 7, wherein the mobile telephones (2-21) are connected to a mainframe computer (2-1) of the data processing centre (2). 8) According to claim1,2,4,7# the invention is to A mobile banking system according to any preceding claim, wherein the wireless communications device of the remote banking unit (1) and the data processing centre include encryption devices (1-21 and 2-22). A mobile banking system according to any preceding claim, wherein the wireless communication device (1-2) of the remote banking unit (1) and the data processing centre (2) incorporate modems (1-22 and 2-22). 9) According to claiml,2,5,7# the invention is to wherein the alert is one or more of informational, actionable, and interactive and also further comprising an interactive alert dialogue system means comprising one or more of the following: an SMS Gateway (SMSG), a Bank Secure Platform means (BSP), and an Alert Dialogue Server means (ADS). 10)According to claim,2,6,9# the invention is to further comprising a spooler framework. wherein the SMS Gateway is in communication with the SMS (SMSC) center of a mobile services operator and is effective to support one or more SMSC protocols conversion of HTTP-requests to binary text messages; conversion of binary text messages to HTTP-requests; retrial of conversion on failures and logging of transactions and also wherein the alert dialogue server is effective to perform one or more or allocation of dialogue ID and channel to a dialogue with session details matches of reply with corresponding dialogue and forwarding of an answer to BSP means.

Date :9/9/2020 Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director)

FOR Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 11 Sep 2020 2020102210

FIG.1: IS A SCHEMATIC DIAGRAM GIVING AN OVERVIEW OF A MOBILE BANKING SYSTEM.

FOR Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 11 Sep 2020 2020102210

FIG.2: IS A BLOCK DIAGRAM OF THE STRUCTURE OF ONE EMBODIMENT OF A MOBILE BANKING UNIT WITH CENTRALIZED COMMUNICATION CONTROL VIA A COMPUTER SERVER INCORPORATED IN THE MOBILE BANKING UNIT.

FOR Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 11 Sep 2020 2020102210

FIG.3: IS A BLOCK DIAGRAM OF THE STRUCTURE OF ANOTHER EMBODIMENT OF A MOBILE BANKING UNIT WITHOUT CENTRALIZED CONTROL OF COMMUNICATIONS.

FOR Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 11 Sep 2020 2020102210

FIG.4: IS A BLOCK DIAGRAM OF ONE EXAMPLE OF A MOBILE BANKING UNIT INCORPORATING A COMPUTER SERVER.

FIG.5: IS A BLOCK DIAGRAM OF AN EXEMPLARY DATA CENTRE OF A BANK.

FIG. 6: IS A VULNERABILITIES AND ATTACKS AFFECTING INTERNET-BASED MOBILE BANKING AND PAYMENT SYSTEMS.

FOR Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 11 Sep 2020 2020102210

FIG. 7:IS THE WEAKEST LINK IN THE MOBILE BANKING AND PAYMENT SECURITY CHAIN.

FIG. 8: IS NON-INTERNET MOBILE BANKING AND PAYMENT SOLUTION.

FOR Dr. P. Velmurugan (Assistant Professor) Dr. S. S. Sridhar (Professor) Dr. S. Godfrey Winster (Assosiate Professor) Prof.(Dr.) S. B. Chordiya (Director-SIMMC-Campus) Dr. Santosh Tukaram Jagtap Dr. Vrushsen Purushottam Pawar (Group Director) TOTAL NO OF SHEET: 06 NO OF FIG.: 09 11 Sep 2020 2020102210

FIG. 9: IS A GENERAL SCHEMATIC DIAGRAM ILLUSTRATING MOBILE BANKING ARCHITECTURE.