CA2329032C - Systeme et procede cryptographiques pour transactions electroniques - Google Patents
Systeme et procede cryptographiques pour transactions electroniques Download PDFInfo
- Publication number
- CA2329032C CA2329032C CA002329032A CA2329032A CA2329032C CA 2329032 C CA2329032 C CA 2329032C CA 002329032 A CA002329032 A CA 002329032A CA 2329032 A CA2329032 A CA 2329032A CA 2329032 C CA2329032 C CA 2329032C
- Authority
- CA
- Canada
- Prior art keywords
- service provider
- transaction
- message
- key
- cardholder
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/04—Payment circuits
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/357—Cards having a plurality of specified features
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/363—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3823—Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3825—Use of electronic signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/409—Device specific authentication in transaction processing
- G06Q20/4093—Monitoring of device authentication
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/0866—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means by active credit-cards adapted therefor
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1016—Devices or methods for securing the PIN and other transaction-data, e.g. by encryption
Abstract
L'invention concerne un système de transactions électroniques qui facilite la mise en oeuvre de transactions électroniques sûres entre des parties multiples, notamment des détenteurs (20) de carte, des commerçants (70) et des fournisseurs (60) de services (SP). Le système comporte l'utilisation de cartes électroniques, appelées généralement cartes intelligentes, et de leur progiciel informatique équivalent. La carte a l'apparence d'un portefeuille réel et contient des instruments financiers ou non financiers ordinaires tels qu'une carte de crédit, un carnet de chèques ou un permis de conduire. Une transaction est protégée par un système cryptographique à clé hybride, et est normalement mise en oeuvre sur un réseau public tel que l'Internet. Des signatures numériques et des nombres aléatoires sont utilisés pour garantir l'intégrité et l'authenticité d'une transaction. La carte utilise des clés secrètes telles que des clés de session attribuées par des fournisseurs de services (SP) pour garantir la confidentialité de chaque transaction. Le SP est seul responsable de la validation d'informations sensibles concernant chaque participant, et de l'attribution des clés de session. La seule relation de confiance nécessaire dans une transaction est celle qui existe entre les participants individuels et le SP.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US8425798P | 1998-05-05 | 1998-05-05 | |
US60/084,257 | 1998-05-05 | ||
PCT/US1999/009938 WO1999057835A1 (fr) | 1998-05-05 | 1999-05-05 | Systeme et procede cryptographiques pour transactions electroniques |
Publications (2)
Publication Number | Publication Date |
---|---|
CA2329032A1 CA2329032A1 (fr) | 1999-11-11 |
CA2329032C true CA2329032C (fr) | 2004-04-13 |
Family
ID=22183802
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CA002329032A Expired - Fee Related CA2329032C (fr) | 1998-05-05 | 1999-05-05 | Systeme et procede cryptographiques pour transactions electroniques |
Country Status (8)
Country | Link |
---|---|
JP (2) | JP2002514839A (fr) |
CN (2) | CN101087189A (fr) |
AU (1) | AU762708B2 (fr) |
CA (1) | CA2329032C (fr) |
GB (1) | GB2353623B (fr) |
HK (1) | HK1038657A1 (fr) |
TW (1) | TW476202B (fr) |
WO (1) | WO1999057835A1 (fr) |
Families Citing this family (30)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
BR0011768A (pt) | 1999-06-18 | 2002-06-11 | Echarge Corp | Método e aparelho para encomendar mercadorias, serviços e conteúdo através de um trabalho de internet utilizando uma conta de pagamento virtual |
US7249097B2 (en) | 1999-06-18 | 2007-07-24 | Echarge Corporation | Method for ordering goods, services, and content over an internetwork using a virtual payment account |
AUPQ556600A0 (en) * | 2000-02-14 | 2000-03-02 | Ong, Yong Kin (Michael) | Electronic funds transfers-zipfund |
AU2001233484B2 (en) * | 2000-02-14 | 2005-05-12 | Ong, Yong Kin | Electronic funds transfers - zipfund |
AU2005203599B2 (en) * | 2000-02-14 | 2007-03-08 | Yong Kin Ong (Michael) | Electronic funds transfer |
FR2805913B1 (fr) * | 2000-03-01 | 2002-08-09 | Ingenico Sa | Terminal de paiement sur reseau local |
FR2807552B1 (fr) * | 2000-04-11 | 2004-01-09 | France Telecom | Terminal horodateur de paiement su stationnement payant d'un vehicule automobile |
US7024395B1 (en) | 2000-06-16 | 2006-04-04 | Storage Technology Corporation | Method and system for secure credit card transactions |
JP2004519874A (ja) * | 2000-08-04 | 2004-07-02 | ファースト データ コーポレイション | 信頼された認証デジタル署名(tads)システム |
JP2002158650A (ja) * | 2000-11-21 | 2002-05-31 | Fujitsu Ltd | 認証・暗号化処理代行用のサーバ、アクセスカード、プログラム記録媒体及び携帯端末 |
AU2001268548A1 (en) * | 2001-06-19 | 2003-01-02 | Storage Technology Corporation | Method and system for secure credit card transactions |
US20030056111A1 (en) * | 2001-09-19 | 2003-03-20 | Brizek John P. | Dynamically variable security protocol |
GB2384096A (en) * | 2001-12-01 | 2003-07-16 | Grass Roots Group Uk Ltd | Payment system and related methods |
JP3979195B2 (ja) | 2002-06-25 | 2007-09-19 | ソニー株式会社 | 情報記憶装置、およびメモリアクセス制御方法、並びにコンピュータ・プログラム |
JP2004171416A (ja) * | 2002-11-21 | 2004-06-17 | Ntt Docomo Inc | 通信端末、価値実体提供サーバ、アプリケーション配信サーバ、電子購買支援システム、電子購買支援方法、及び電子購買支援プログラム |
ES2244283B1 (es) * | 2003-05-23 | 2007-02-16 | Fco. Manuel Cansino Fernandez | Sistema de transaccion electronica. |
US7613915B2 (en) * | 2006-11-09 | 2009-11-03 | BroadOn Communications Corp | Method for programming on-chip non-volatile memory in a secure processor, and a device so programmed |
EP1998279A1 (fr) * | 2007-05-29 | 2008-12-03 | First Data Corporation | Transaction de paiement sécurisé dans un environnement à plusieurs hôtes |
US10558961B2 (en) * | 2007-10-18 | 2020-02-11 | Wayne Fueling Systems Llc | System and method for secure communication in a retail environment |
CN102103651B (zh) * | 2009-12-21 | 2012-11-14 | 中国移动通信集团公司 | 一种一卡通系统的实现方法和系统以及一种智能卡 |
CN102568097B (zh) * | 2010-12-08 | 2017-02-22 | 邵通 | 一种增强电子钱包安全的方法和系统 |
CN103108245B (zh) * | 2011-11-15 | 2016-09-28 | 中国银联股份有限公司 | 一种智能电视支付密钥系统以及基于智能电视的支付方法 |
US9792451B2 (en) | 2011-12-09 | 2017-10-17 | Echarge2 Corporation | System and methods for using cipher objects to protect data |
US9264413B2 (en) * | 2012-12-06 | 2016-02-16 | Qualcomm Incorporated | Management of network devices utilizing an authorization token |
CN103942688A (zh) * | 2014-04-25 | 2014-07-23 | 天地融科技股份有限公司 | 数据安全交互系统 |
CN104243171A (zh) * | 2014-10-15 | 2014-12-24 | 北京奇虎科技有限公司 | 反馈数据的全文保护、校验方法和装置 |
WO2017152037A1 (fr) | 2016-03-04 | 2017-09-08 | 1Usf, Inc. | Systèmes et procédés destinés aux codecs et récipients multimédia |
US10742419B2 (en) * | 2016-03-15 | 2020-08-11 | Visa International Service Association | Validation cryptogram for transaction |
WO2017175926A1 (fr) * | 2016-04-05 | 2017-10-12 | 삼성전자 주식회사 | Procédé de paiement électronique et dispositif électronique utilisant une cryptographie à clé publique basée sur l'identité |
GB2549118B (en) * | 2016-04-05 | 2020-12-16 | Samsung Electronics Co Ltd | Electronic payment system using identity-based public key cryptography |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5396558A (en) * | 1992-09-18 | 1995-03-07 | Nippon Telegraph And Telephone Corporation | Method and apparatus for settlement of accounts by IC cards |
US5544246A (en) * | 1993-09-17 | 1996-08-06 | At&T Corp. | Smartcard adapted for a plurality of service providers and for remote installation of same |
JP3348753B2 (ja) * | 1994-04-28 | 2002-11-20 | 日本電信電話株式会社 | 暗号鍵配送システムおよび方法 |
US5537474A (en) * | 1994-07-29 | 1996-07-16 | Motorola, Inc. | Method and apparatus for authentication in a communication system |
JP3498268B2 (ja) * | 1994-09-14 | 2004-02-16 | 日本電信電話株式会社 | 文書通信管理方法 |
US5590197A (en) * | 1995-04-04 | 1996-12-31 | V-One Corporation | Electronic payment system and method |
US5671279A (en) * | 1995-11-13 | 1997-09-23 | Netscape Communications Corporation | Electronic commerce using a secure courier system |
-
1999
- 1999-05-05 CN CNA2007100063782A patent/CN101087189A/zh active Pending
- 1999-05-05 CN CNB998070726A patent/CN1307818C/zh not_active Expired - Fee Related
- 1999-05-05 GB GB0026755A patent/GB2353623B/en not_active Expired - Fee Related
- 1999-05-05 WO PCT/US1999/009938 patent/WO1999057835A1/fr active IP Right Grant
- 1999-05-05 CA CA002329032A patent/CA2329032C/fr not_active Expired - Fee Related
- 1999-05-05 JP JP2000547720A patent/JP2002514839A/ja active Pending
- 1999-05-05 AU AU43075/99A patent/AU762708B2/en not_active Ceased
- 1999-11-04 TW TW88119209A patent/TW476202B/zh not_active IP Right Cessation
-
2002
- 2002-01-15 HK HK02100280A patent/HK1038657A1/xx not_active IP Right Cessation
-
2004
- 2004-09-16 JP JP2004270384A patent/JP2005065315A/ja active Pending
Also Published As
Publication number | Publication date |
---|---|
CA2329032A1 (fr) | 1999-11-11 |
HK1038657A1 (en) | 2002-03-22 |
CN1307818C (zh) | 2007-03-28 |
TW476202B (en) | 2002-02-11 |
CN1304602A (zh) | 2001-07-18 |
JP2002514839A (ja) | 2002-05-21 |
JP2005065315A (ja) | 2005-03-10 |
GB2353623B (en) | 2003-01-08 |
WO1999057835A1 (fr) | 1999-11-11 |
CN101087189A (zh) | 2007-12-12 |
AU4307599A (en) | 1999-11-23 |
AU762708B2 (en) | 2003-07-03 |
GB0026755D0 (en) | 2000-12-20 |
WO1999057835A9 (fr) | 2000-02-03 |
GB2353623A (en) | 2001-02-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7096494B1 (en) | Cryptographic system and method for electronic transactions | |
CA2329032C (fr) | Systeme et procede cryptographiques pour transactions electroniques | |
Asokan et al. | The state of the art in electronic payment systems | |
US9792611B2 (en) | Secure authentication system and method | |
US8145899B2 (en) | Creation of user digital certificate for portable consumer payment device | |
US8438116B2 (en) | Token based new digital cash protocols | |
US5590197A (en) | Electronic payment system and method | |
US8352378B2 (en) | Virtual account based new digital cash protocols with combined blind digital signature and pseudonym authentication | |
AU2010315111B2 (en) | Verification of portable consumer devices for 3-D secure services | |
US20030154376A1 (en) | Optical storage medium for storing, a public key infrastructure (pki)-based private key and certificate, a method and system for issuing the same and a method for using | |
US8442919B2 (en) | Token based new digital cash protocols with combined blind digital signature and pseudonym authentication | |
US20020073045A1 (en) | Off-line generation of limited-use credit card numbers | |
US20070277013A1 (en) | Method for transmitting protected information to a plurality of recipients | |
KR100411448B1 (ko) | 공개키 기반구조의 개인키와 인증서를 저장하는 광학기록매체의 발급방법 및 발급시스템 | |
Rubin et al. | Off-line generation of limited-use credit card numbers | |
JP2005513956A (ja) | グループ署名のための暗号システム | |
CN109716373B (zh) | 密码认证和令牌化的交易 | |
JPH037399A (ja) | 個別鍵による認証が可能なicカード | |
KR20010022588A (ko) | 전자 지불 수단의 보안 처리 및 비즈니스 거래의 보안 실행을 위한 방법 및 그를 실시하기 위한 장치 | |
JP2001515621A (ja) | ネットワーク援用チップカードトランザクション処理方法 | |
EP1171849B1 (fr) | Systeme de communication et procede correspondant destine a effectuer efficacement des transactions electroniques dans des reseaux de communication mobile | |
GB2376337A (en) | A cryptographic method | |
Polemi | TTPs and biometrics for securing the payment of telemedical services | |
Hansmann et al. | Smart Cards and e-business | |
Waidner | Electronic Payment Systems |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
EEER | Examination request | ||
MKLA | Lapsed |
Effective date: 20130506 |