AU734404B3 - System for handling network transactions - Google Patents

System for handling network transactions Download PDF

Info

Publication number
AU734404B3
AU734404B3 AU47289/00A AU4728900A AU734404B3 AU 734404 B3 AU734404 B3 AU 734404B3 AU 47289/00 A AU47289/00 A AU 47289/00A AU 4728900 A AU4728900 A AU 4728900A AU 734404 B3 AU734404 B3 AU 734404B3
Authority
AU
Australia
Prior art keywords
transaction
buyer
identification means
seller
acquirer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
AU47289/00A
Other versions
AU4728900A (en
Inventor
John O'hara
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Safepay Australia Pty Ltd
Original Assignee
Safepay Australia Pty Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Safepay Australia Pty Ltd filed Critical Safepay Australia Pty Ltd
Priority to AU47289/00A priority Critical patent/AU734404B3/en
Priority claimed from PCT/AU2000/000553 external-priority patent/WO2000072109A2/en
Publication of AU4728900A publication Critical patent/AU4728900A/en
Application granted granted Critical
Publication of AU734404B3 publication Critical patent/AU734404B3/en
Priority to AU10077/02A priority patent/AU776025C/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • G06Q20/206Point-of-sale [POS] network systems comprising security or operator identification provisions, e.g. password entry
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4012Verifying personal identification numbers [PIN]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/12Accounting

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Technology Law (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Description

-1- SYSTEM FOR HANDLING NETWORK TRANSACTIONS Field of Invention The present invention relates to a system and method for enabling computer network transactions, and particularly, but not exclusively to a system and method for enabling transactions over wide area networks, such as, for example, the Internet.
Background of Invention One of the major hurdles to the growth of commerce over computer networks such as the Internet is the difficulty in obtaining payment for a transaction occurring over the network. Users of the Internet are in the main reluctant to provide their credit card numbers over the Internet, generally because of a concern that the credit card number may be misappropriated and used by unauthorised persons, such as network "hackers". Even if the security risk is not as great as feared, the perception that the security risk exists is great and is effective in :discouraging Internet commerce.
There is therefore a need for a secure system for enabling computer network transactions, particularly for wide area networks, such as the Internet, in order to 25 facilitate network commerce. Attempts have been made to •••go2 S• provide security for transactions over computer networks ••go such as the Internet. These include complex encryption ooooo S• systems, aimed at blocking access by hackers to secure :ooe information. The problem with these systems is three-fold.
So. 30 Firstly, they are complex and can be difficult to implement. Secondly, no matter how good the encryption system, it is likely that at some time a hacker will find a way to break it. Thirdly, they give possession of credit card numbers to sellers, who may misuse them.
Another system involves a buyer entrusting their credit details to a "go-between" broker who acts for them \\qhSydnt1\users\Speci\100 199\120 129\12834.doc 2 in handling transactions without revealing to the sellers their credit card numbers. A problem with these systems is that brokers can only trade with a limited number of merchants they can trust and who are prepared to operate in a confined syndication with them. In effect, this sets up monopolistic enclaves with which buyers have to deal whether they like it or not.
Summary of Invention The present invention provides a method of facilitating a computer network transaction for a product being purchased by a buyer from a seller, comprising the steps of generating a once-only transaction identification means associated with the transaction, providing the transaction identification means to a transaction acquirer, together with a buyer identification means which identifies the buyer to the transaction acquirer, and providing the once-only identification means to the seller, whereby the seller may provide the transaction identification means to the transaction acquirer and the transaction acquirer can match the transaction identification means received from e.
g the seller with the transaction identification means they r. "have been provided with and, if they match, -can enable o e settlement of the transaction.
25 Throughout this document, by "once-only" is meant ooooo S"that, preferably, for each transaction a unique transaction eeo identification means for that transaction is generated.
S"For another transaction, usually a different transaction eeoc :identification means for that transaction will be 30 generated.
oo o Preferably, the method can be applied to a plurality of transactions and a plurality of users. Preferably, the transaction identification means is a different identification means for each transaction across all users and is preferably randomly generated for each transaction across all users.
\\ghsydnt1\users\Speci\1OO 199\120 129\12834.doc 3 Preferably, the method also includes the step of the transaction acquirer being provided with a date for the transaction, and also preferably a time of the transaction.
Preferably, date and/or time of the transaction information is included with the transaction identification means provided to the transaction acquirer. Preferably, where the transaction identification means is a number, the date and time information is included as digits additional to the transaction identification number. This preferably guarantees unique identification of the transaction, across all users of the method of the present invention.
Preferably, the transaction identification means is generated at the time of the transaction. More preferably, it is generated in response to the buyer indicating an intention to purchase a product. Preferably, the indication that the buyer wishes to purchase a product is provided via a buyer computing system.
Preferably, the transaction identification means is a number which may be generated by a random number generator, S" 20 such as a hit counter facility. It is possible that once the transaction has been settled, at some time the same o number may be generated for another transaction (sometimes :o the same number can be generated randomly at different times) That same number will still uniquely identify the different transaction, however, because the different S" transaction will occur at a different point in time. It is g9e9 very unlikely that two transactions will be associated with the same number over the same -period of time. The term :oo: "once-only" should therefore be considered with this o 30 limitation in mind. As discussed above, to guarantee e uniqueness, date and time information may be provided to the transaction acquirer in addition to the transaction identification means.
Throughout this document, by "product" is meant any goods or services, including software, which can be purchased by the buyer from the seller.
\\ghsydnt1\ueers\Speci\100 199\120 129\12834.doc 4 Throughout this document, by "computer network transaction" is meant any transaction which may occur across a computer network, such as the Internet, and includes all types of electronic commerce transactions.
Throughout this document the term "transaction acquirer" is to be given a broader meaning than its usual meaning of a third party which acquires a responsibility for a transaction (such as in a credit card transaction) The transaction acquirer may be a "trust-entity" who may be trusted to facilitate the transaction and may be separate from a transaction acquirer, funds provider such as a bank, whom the trust entity may liaise with in order to facilitate the transaction. The transaction acquirer may, however, be a funds provider, such as a bank.
Preferably, the buyer identification means is a PIN or password, but can be any number which identifies the buyer to the transaction acquirer. In some cases, the buyer identification means may be automatically provided by a computing system associated with the buyer, for example. A S 20 transaction acquirer may have a computing system which communicates with the buyer computing system and automatically identifies the buyer computing system from S-.the communication. The buyer identification means is a.o.
preferably an identification means which is personal to the buyer, however, such as a PIN or a password. This would enable the buyer to enter into transactions in accordance o. :with the method of the present invention from any computing device. Further, this would prevent another person using the buyer computer to fraudulently enter into a transaction o o a."a 30 (if the method identified buyer via the buyer computer) Preferably, the seller never receives the buyer ooo0 identification means. The seller only receives the once-only transaction identification means. Because this once-only transaction identification means cannot be used again, a hacker who managed to obtain the once-only transaction identification means would find it useless.
\\ghsydntj\users\Speci\1OO 199\120 129\12834.doc 5 The buyer identification means is secure because it is only provided to the transaction acquirer. It is therefore unlikely that the buyer identification means could be misappropriated.
In one embodiment, a transaction acquirer may be available on line to enable checking of the buyers credit before a transaction proceeds. This may only be necessary for transactions exceeding a certain value.
Alternatively, the seller may check with the transaction acquirer off-line before providing the goods/services.
A "scheme operator" may be involved in the transaction, and may be associated with the transaction acquirer in a similar way to credit card scheme operators presently involved in credit card transactions.
Preferably, the buyer, seller and transaction acquirer each has access to a buyer computing system, seller computing system and transaction acquirer computing system respectively, and communication is between the parties via S" 20 these computing systems (which communicate over the computer network, preferably being the Internet) The present invention further provides a system for facilitating- a computer network transaction for a product being purchased by a buyer from a seller, comprising a generating means for generating a once-only transaction O* 0 identification means and associating it with the S- transaction, providing means for providing the transaction identification means to a transaction acquirer computing •o system together with an associated buyer identification 30 means which identifies the buyer, and for providing the o• transaction identification means to a seller computing system, whereby the seller may provide the transaction identification means to the transaction acquirer computing system and the transaction acquirer computing system can match the transaction identification means received from the seller computing system with the transaction \\ghsydntI\users\Speci\100 199\120 129\12834.doc 6 identification means associated with the buyer, and if they match, the transaction acquirer will settle the transaction.
The transaction acquirer computing system preferably includes a database for maintaining payment details of the buyer, such as credit card details. Preferably, payment details for a plurality of buyers who use the system are maintained.
The generating means may be an application served by a server computer of the transaction acquirer computing system, or may be a program running on a buyer computing system for generating the transaction identification means.
Preferably, the generating means is a random generator, arranged to randomly generate the transaction identification means. Preferably, the transaction identification means is a token, and may be a number or a token for identifying the transaction.
Where the generating means is an application served by a server computer, the generating means preferably automatically accesses the providing means and provides the transaction identification means to the transaction acquirer computing system. Where the generating means is an application running on an buyer computing system, the buyer computing system preferably accesses the providing means for providing the transaction identification means to the transaction acquirer computing system.
Preferably a date and preferably a time is also generated by the generating means and time and date information is provided by the providing means to the transaction acquirer computer along with the transaction identification means.
The present invention further provides a system for facilitating a computer network transaction for a product being purchased by a buyer from a seller, the system including a transaction acquirer computing system which includes storage means for storing a once-only transaction \\ghsydnt1\users\Speci\100 199\120 129\12834.doc 7 identification means generated in response to a buyer computing system, the once-only transaction identification means being associated with the transaction, the storage means also being arranged to store a buyer identification means which identifies the buyer associated with the transaction, receiving means for receiving from a seller a once-only transaction identification means, and comparison means for comparing the once-only transaction identification means received from the seller with the stored once-only transaction identification means, whereby if the comparison means determines a match between the transaction identification means, payment for the transaction may be facilitated.
Preferably, the transaction acquirer computing system also includes a payment enabling means for facilitating payment for the transaction if the once-only transaction identification means received from the seller and the stored once-only transaction identification means match.
The system preferably further includes a generating means for generating the once-only transaction identification means. The generating means may be an application served by a server computer of the transaction acquirer compu*ting system, or may be a program running on a buyer computer system for generating the transaction identification means. The generating means is preferably a random generator, for randomly generating a transaction identification means. Preferably, the transaction identification means is a token, and may be a number or a token for identifying the transaction.
Preferably, the date and preferably the time of the transaction are also stored in the storage means, associated with the transaction identification means.
Preferably, the storage means is also arranged to store payment details of the buyer, eg, credit card details, to enable payment to be facilitated.
199\120 1 29\12834.doc 8 The present invention further provides a method of facilitating a computer network transaction for a product being purchased by a buyer from a seller, the method comprising the steps of a transaction acquirer receiving a once-only transaction identification means associated with the transaction, and associating the once-only transaction identification means with a buyer, identifier identifying the buyer receiving from a seller a once-only transaction identification means, comparing the once-only transaction identification means received from the seller with the once-only transaction identification means associated with the buyer identifier and, if they match, facilitating payment for the transaction.
Preferably, the once-only transaction identification means is generated in response to a buyer indicating they wish to purchase a product.
Preferably, the indication may be provided via buyer computing system.
Preferably, the once-only transaction identification means is randomly generated in response to the indication from the buyer. It is preferably a randomly generated token, such as a random number.
Preferably, the method also includes the step of associating the date and preferably the timeof the transaction with the transaction.
Features and advantages of the present invention will become apparent from the following description of an embodiment thereof, with reference to the accompanying drawings, in which: Figure 1 is a schematic diagram for illustrating operation of a method and system in accordance with an embodiment of the present invention; Figure 2 is a flow diagram illustrating steps in a process in accordance with an embodiment of the present invention, and \\9hsydnt1\users\Spci\jOO 199\120 129\2834.doc 9 Figure 3 is a schematic diagram for illustrating operation of a further embodiment of the present invention.
Referring to Figure i, a transaction acquirer computing system 3 is illustrated. In this embodiment the transaction acquirer computing system is a server computing system including means for serving web pages 6.
The transaction acquirer computing system 3 also includes a storage means, which in this embodiment comprises a database 3A. The storage means 3A is arranged to store a once-only transaction identification means (not shown) which has been generated in response to actuation of a buyer computing system 2. The buyer computing system may be any computing system, such as a PC, utilised by a buyer.
The storage means 3A is also arranged to store a buyer identification means which identifies the buyer associated with the once-only transaction identification means.
Receiving means in the form of web pages 6 in this embodiment are arranged to receive from a seller computing system 1 a once-only transaction identification means, a comparison means (not shown, but in this embodiment includes computer software running on the transaction acquirer computing system 3) is arranged to compare the once-only transaction identification means received from the seller with the stored once-only transaction identification means. If they match, the transaction acquirer computing system 3 is then arranged to enable payment for the transaction to the seller. In this embodiment, this can be by adjusting the credit card account of the buyer.
In more detail, the parties to the transaction, (being, seller computer system i, buyer computer system 2, and transaction acquirer computer system 3) communicate with each other via the Internet 4. Each of the computer systems i, 2, 3 may comprise a single PC or a network of PC's or other types of computers, as will be appreciated by a skilled person. In this embodiment, as discussed above, \\9hsydnt1\users\Speci\100 199\120 129\12834.doc 10 the transaction acquirer computing system includes a server computer for serving web pages 6.
The buyer computer system 2 includes a browser program B which enables a buyer to receive web pages. The seller computer system 1 is arranged to operate as a server, providing web pages 5 for browsing, in a known manner. The seller computer system web pages 5 may include information offering products and/or services for sale via the Internet 4.
In a conventional Internet commerce system, the buyer 2 would access the seller computer system 1 web pages 5 via the browser B, review the web pages and select goods/services for purchase. The web pages 5 will usually include an area for the buyer to enter details of an account via which the seller can receive payment for the goods/services. Most commonly, the buyer is requested to enter their credit card details, which are then provided to the seller computer system i. Subsequently, the seller may provide the credit card details to a transaction acquirer (usually a bank or scheme operator that manages the buyers credit card account). The transaction acquirer will then settle the transaction by paying the seller and requesting payment from the buyer.
The main problem with this conventional approach is that it is necessary for the buyer to provide sensitive information (his or her credit card number) to a computer system (the seller computer system 1) which may not necessarily be secure. If the buyer regularly engages in electronic commerce he or she may be required to provide their credit card number to a plurality of seller computer systems. The more widely disseminated the buyer's credit card details become, the more likelihood that the details could be misappropriated by a hacker or unscrupulous seller and used to carry out unauthorised transactions.
The present invention provides an alternative to this inadequate and risky system.
\\9hsydnt1\users\Speci\100 199\120 129\12834.doc 11 The present invention relies on a buyer establishing a relationship with a transaction acquirer, in a similar way to the relationship which is established to manage a credit card. In the illustrated embodiment, the transaction acquirer provides the buyer with a unique buyer identification means, such as a password or ID number.
Note that other identification means could be accepted by the transaction acquirer. Digital signatures or a unique identification of the buyer computer system 2 may be acceptable as well.
As well as the buyer identification means, a transaction program TP is provided. The transaction program TP may be provided by the transaction acquirer computer system and accessed via web pages 6 served by the transaction acquirer computer system. Alternatively, the transaction program TP may be resident on the buyer computer system 2 as illustrated in figure 1.
The transaction program, TP, is arranged to generate a once-only transaction identification means when a buyer is engaged in a transaction over the Internet 1. This transaction identification means is provided to the seller computer system 1. The transaction acquirer computer system-3 also receives the once-only transaction identification means, together with the buyer identification means associated with the once-only transaction identification means. The seller can subsequently present (on-line or off-line) the transaction identification means to the transaction acquirer, who can match this with the transaction identification means he has received from the buyer. If both transactions identification means match, the transaction acquirer may settle the transaction. At all times, all the seller receives is a once-only transaction identification means.
This cannot be subsequently used by, for example, a hacker obtaining it, as it is only good for the one transaction.
\hsdn I usrs\Spci\ 00- 199\120 129\12834.doc 12 The buyer identification means is secure, as only the transaction acquirer and the buyer need to know it.
Once the transaction has been settled, the transaction acquirer disables the particular transaction identification means. In a preferred embodiment, if the same transaction identification means is received, the transaction acquirer will not settle a transaction. To facilitate the uniqueness of the transaction, information on time and date may also be provided to the transaction acquirer computing system, as discussed in the preamble of this document.
In more detail, referring to figure 2, in a transaction process in accordance with this embodiment of the invention, at 10, via the buyer computer system 2, the buyer logs onto the web pages 5 of the seller computer system 1 via browser B. The buyer selects goods/services for purchase and advises the seller computer system 1 via entry onto the web pages At 11 the seller web page requests credit card payment details, in the conventional manner. This is usually done by providing a space on web pages 5 for the buyer to enter the credit card details, plus personal details.
With the present invention, however, at 12 the buyer calls up the transaction program TP, either by "hyper linking" to web pages 6 on the transaction acquirer computer system 3, or calling up program*TP from their own computer system 2. The buyer enters the buyer identification means, which in this case-is a password which both the buyer and the transaction acquirer are aware of. The buyer may also enter the URL of the seller, the amount of money which is required to complete the transaction.
At 13, as the transaction program has been activated by the entering of the password, it provides a transaction ID number. In this embodiment, this is provided by a random number generator, such as a hit counter facility.
This number is provided, together with the buyer \\ghsydntl\users\Sp-cj\100 199\120 129\12834.doc 13 identification password to the transaction acquirer computer system 3. Only the transaction ID number is provided via the web pages 5 to the seller computer system i. This can either be done by manual entry of the transaction ID by the buyer into the appropriate space, or by the program automatically entering the transaction ID number into the web pages 5 and the seller computer system 1, steps 14 and The transaction program TP may also obtain other information relating to the transaction from the web pages This could be done manually or done automatically. In this embodiment the extra information which is acquired is the identity of the seller (which may be provided by an identity number which is agreed between the transaction acquirer and the seller subscribing to the system or may be the seller systems URL) and the transaction amount. This information is provided to the transaction acquirer computer system. The transaction acquirer computing system 3 is also provided with the date and time of the transaction. This may automatically be generated by the system, or may be input by the buyer. Preferably, it is automatically generated by the system.
-The transaction acquirer computer system 3 is therefore provided with all the information it needs to identify a buyer and a transaction and to settle the transaction with a seller. The only sensitive information used in the transaction (buyer ID) is known only by the buyer and the transaction acquirer. The transaction ID is not sensitive because it cannot be used again, and this is the only information which is provided to the seller computer system i.
At 16, in order to settle the transaction the seller provides the transaction ID that they have been provided with to the transaction acquirer. This could be done via the Internet but could equally well be done another way, by telephone, in writing, etc. At 17 the transaction \\ghsydnt1\users\Speci\1oo 199\120 129\12834.doc 14 acquirer matches the transaction ID's provided by the seller and provided by the transaction program TP, and settles the transaction with the seller and the buyer.
The transaction acquirer may charge a commission to the subscribing seller, after the same fashion as now obtained with transactions using credit cards. The difference in the case of the present invention, however, is that once the transaction has been approved, the transaction ID for this particular transaction would be disabled. In an embodiment of the invention, if a transaction identification means is received which is the same as a disabled transaction identification means, the transaction will not proceed. In this case, the transaction acquirer system includes comparison means for comparing received transaction identification means with disabled transaction identification means. This is a further guarantee of the uniqueness of the once-only transaction identification means.
The transaction program may enable successive numbers to be generated for successive transactions while keeping, open both the program and the seller web page.
An alternative embodiment of the present invention will now be described with reference to Figure 3.
In the embodiment described in relation to Figures 1 and 2, the transaction acquirer is shown as a single entity. In this case the transaction acquirer may be a funds provider, such as a bank, so that the single entity can deal both with the security of the transaction and also payment for the transaction by debiting the buyers account and crediting the sellers account.
In the embodiment illustrated in Figure 3, the transaction acquirer is a separate entity trust entity") to the funds provider (which may be a bank), and further communications are required to enable payment for the transaction.
\\ghaydnt1\users\Speci\lOO 199\120 129\12834.doc 15 Figure 3 schematically illustrates a buyer computing system 30, a trust entity computing system 31, a funds repository computing system 32 and a sellers computing system 33. These computing systems may communicate with each other via the Internet, using browsers and servers, in a known manner. The arrow headed lines connecting the blocks in the diagram indidate steps in the process of this embodiment of the invention as follows: 1. The buyer computing system 30 reviews web pages provided by the sellers computing system 33 (steps 1 and The buyer decides that they wish to purchase a product provided by the seller and to do this they bring up the web page of the trust entity computing system 31 (step The buyer computing system 30 requests a once-only transaction number from the trust entity computing system, in order to enable the transaction, and also provides the trust entity computing system 31 with further details of the transaction, such as seller identification (URL) the amount of payment required, date and time and any other information which may be required.
In step 4, the trust entity computing system 31 communicates with the funds repository computing system 32 to determine whether the buyer has sufficient credit to cover the transaction. The trust entity computing system 31 may also require the funds provider 32 to "quarantine" the payment amount for the transaction, so that it will not be used for anything else until the transaction is settled with the seller.
In step 5, the funds repository computing system 32 communicates with the trust entity computing system 31 confirming or denying the credit worthiness of the buyer.
If the buyer is credit worthy, in step 6, the trust entity computing system 31 causes a once-only transaction number to be generated. This is associated in the trust entity computing system 31 storage means (not shown) with a buyer identification of the buyer computing system 30. The \\ghsydnt1\users\Speci\100 199\120 12 9 \12834.doc 16 buyer identification means may be a password entered by the buyer to the trust entity computing system 31, in step 3.
In step 7 the buyer computing system 30 transmits the once-only transaction number to the seller computing system 33. Following on, in step 8 the seller computing system 33 transmits the once-only transaction number to the trust entity computing system 31, which compares it with the stored once-only transaction number. If the comparison matches, the trust entity computing system 31 (step 9) instructs the funds repository 32 to pay the seller (step and the transaction is completed. The seller now provides the product to the buyer.
In both above embodiments, the transaction identification means is a randomly generated number. In addition to the transaction identification means, date and time information of the transaction is provided, as well as a country abbreviation (so that the location of the transaction can be ascertained), and card type (is it a credit card, a debit card, what "brand of card" etc.) is also provided, in the following format: DATE/COUNTRY ABBREVIATION/CARD TYPE/RANDOM NUMBER (TRANSACTION IDENTIFICATION MEANS).
Note that sellers may be kept in a sellers list by the transaction acquirer so that there is a list of sellers accessible to potential buyers using this invention. To participate as sellers, sellers merely need to ensure that their systems recognise and act on transaction identification means (as opposed to credit card numbers) An application program may be provided to run on a sellers computing system.
In the above embodiments, the user's payment information is credit card details. It may be any account information, including debit cards, bank account, and more.
It will be appreciated by persons skilled in the art that numerous variations and/or modifications may be made to the invention as shown in the specific embodiments without \\9hsydnt \users\speci\I00 199\120 129\12834.doc 17 departing from the spirit or scope of the invention as broadly described. The present embodiments are, therefore, to be considered in all respects as illustrative and not restrictive.
\\ghsydntl\users\Speci\100 199\120 129\12834.doc

Claims (3)

1. A method of facilitating a computer network transaction for a product being purchased by a buyer from a seller, comprising the steps of generating a once-only transaction identification means associated with the transaction, providing the transaction identification means to a transaction acquirer, together with a buyer identification means which identifies the buyer-to the transaction acquirer, and providing the once-only identification means to the seller, whereby the seller may provide the transaction identification means to the transaction acquirer and the transaction acquirer can match the transaction identification means received from the seller with the transaction identification means they have been provided with and, if they match, can enable settlement of the transaction.
2. A method in accordance with claim 1, wherein the step of generating the transaction identification means to the S 20 transaction acquirer includes the step of generating the once-only transaction identification means in response to a buyer-computing system indicating a wish to proceed with the transaction.
3. A method in accordance with claim 1 or claim 2 25 including the further steps of the seller providing the transaction identification means to the transaction acquirer and the transaction acquirer matching the transaction identification means received from the seller with the transaction identification means they have been 30 provided with, and enabling settlement of the transaction S" if they match. \u 1 y™T2\user \Bpeci\30 9 3E91 SQ 3 updatea.ac l007 23/04 '01 MON 16:01 [TX/RX NO 9258]
AU47289/00A 1999-05-25 2000-05-25 System for handling network transactions Ceased AU734404B3 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
AU47289/00A AU734404B3 (en) 1999-05-25 2000-05-25 System for handling network transactions
AU10077/02A AU776025C (en) 1999-05-25 2002-01-07 System for handling network transactions

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
AUPQ334899 1999-05-25
AUPQ3348 1999-05-25
AU47289/00A AU734404B3 (en) 1999-05-25 2000-05-25 System for handling network transactions
PCT/AU2000/000553 WO2000072109A2 (en) 1999-05-25 2000-05-25 System for handling network transactions

Related Child Applications (1)

Application Number Title Priority Date Filing Date
AU10077/02A Division AU776025C (en) 1999-05-25 2002-01-07 System for handling network transactions

Publications (2)

Publication Number Publication Date
AU4728900A AU4728900A (en) 2000-12-12
AU734404B3 true AU734404B3 (en) 2001-06-14

Family

ID=25627797

Family Applications (1)

Application Number Title Priority Date Filing Date
AU47289/00A Ceased AU734404B3 (en) 1999-05-25 2000-05-25 System for handling network transactions

Country Status (1)

Country Link
AU (1) AU734404B3 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5815665A (en) * 1996-04-03 1998-09-29 Microsoft Corporation System and method for providing trusted brokering services over a distributed network
WO1999022291A1 (en) * 1997-10-24 1999-05-06 Ge Capital System and method for pre-authorization of individual account transactions
AU1251599A (en) * 1997-12-01 1999-06-16 Stock Traders Private Limited Method and apparatus for money transfers

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5815665A (en) * 1996-04-03 1998-09-29 Microsoft Corporation System and method for providing trusted brokering services over a distributed network
WO1999022291A1 (en) * 1997-10-24 1999-05-06 Ge Capital System and method for pre-authorization of individual account transactions
AU1251599A (en) * 1997-12-01 1999-06-16 Stock Traders Private Limited Method and apparatus for money transfers

Also Published As

Publication number Publication date
AU4728900A (en) 2000-12-12

Similar Documents

Publication Publication Date Title
US10565567B2 (en) System for handling network transactions
US10872343B2 (en) Secure and efficient payment processing system
US7082416B2 (en) Method of using prepaid cash card for making purchases on the world wide web
US8170954B2 (en) Secure and efficient payment processing system with account holder defined transaction limitations
KR100506913B1 (en) Electronic payment system using anonymous representative payment means and method thereof
JP5005871B2 (en) System and method for validating financial instruments
US20070179865A1 (en) Method for anonymous purchase of goods by providing a pluarlity of non-activated account numbers
JP2003509745A (en) Method and system for authorizing purchases made on a computer network
CA2380314A1 (en) Method of conducting secure transactions containing confidential, financial, payment, credit, or other information over a network
JP2002543523A (en) Transaction method and system for a data network such as the Internet
AU2021273182A1 (en) Account rebalancing daemon for use with secure digital asset custodians
JP3822978B2 (en) Product purchasing method and system
AU734404B3 (en) System for handling network transactions
KR20190044738A (en) The convenient and safe method to authenticate real name protecting personal information
AU776025B2 (en) System for handling network transactions
KR100509026B1 (en) Method and system for providing a cyber affiliated account(or debit card) to a master account
KR100377266B1 (en) An electronic commerce settlement system for preventing hacker from client's information
KR20010094574A (en) Electronic Commerce System Using Credit Card Having Electronic Money Function and the Method Thereof
KR20000017976A (en) Commercial Transaction Network System Using Conditional Profit Restoring Method
KR20030040577A (en) Electronic payment system using Internet Service Provider
KR20000049563A (en) System and method of electronic payment on adsl network
JP2007304839A (en) Trade member authentication system for electronic commerce

Legal Events

Date Code Title Description
FGF Patent sealed or granted (petty patent)

Ref document number: 4728900

Effective date: 20010614

NCF Extension of term for petty patent requested (sect. 69)
NDF Extension of term granted for petty patent (sect. 69)