CA2505920A1 - Systeme et procede permettant de realiser des transactions securisees de cartes de credit et de debit - Google Patents
Systeme et procede permettant de realiser des transactions securisees de cartes de credit et de debit Download PDFInfo
- Publication number
- CA2505920A1 CA2505920A1 CA002505920A CA2505920A CA2505920A1 CA 2505920 A1 CA2505920 A1 CA 2505920A1 CA 002505920 A CA002505920 A CA 002505920A CA 2505920 A CA2505920 A CA 2505920A CA 2505920 A1 CA2505920 A1 CA 2505920A1
- Authority
- CA
- Canada
- Prior art keywords
- customer
- host computer
- response code
- merchant
- transaction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
- G06Q20/023—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP] the neutral party being a clearing house
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/04—Payment circuits
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/388—Payment protocols; Details thereof using mutual authentication without cards, e.g. challenge-response
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/409—Device specific authentication in transaction processing
- G06Q20/4097—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
- G06Q20/40975—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
Abstract
L'invention concerne un procédé et un système permettant de réaliser des transactions sécurisées de cartes de crédit et de débit entre un client et un commerçant. Le client reçoit une chaîne de caractères de sécurité pseudo-aléatoire d'un ordinateur hôte, cette chaîne de sécurité étant envoyée sur le téléphone mobile du client. Un algorithme cryptographique exploité dans une carte SIM du téléphone mobile exécute un hachage sur la chaîne de sécurité ou le code unique extrait de la chaîne de caractères de sécurité, un PIN client et un montant de transaction, ces derniers étant entrés au moyen d'un clavier du téléphone mobile. Un code de réponse à trois chiffres est généré par l'algorithme, puis envoyé au commerçant. Le commerçant transmet ensuite le code de réponse, le montant de la transaction et un numéro de compte client (numéro de carte) à l'ordinateur hôte, la chaîne de caractères de sécurité pseudo-aléatoire et le PIN étant extraits de la mémoire. L'ordinateur hôte applique ensuite le même algorithme à la chaîne de caractères de sécurité, au PIN et au montant de la transaction de manière à générer un code de vérification, et si ce code correspond au code de réponse transmis par le commerçant, la transaction est alors autorisée. Les modes de réalisation de cette invention utilisent une infrastructure de sécurité CVV2 existante, mais fournissent un degré de sécurité sensiblement supérieur. Ces modes de réalisation peuvent être utilisés pour des transactions ordinaires face à face ou pour des transactions téléphoniques, ainsi que pour des transactions de commerce en ligne (sur le Web) et pour des transactions de commerce mobile (via un téléphone mobile).
Applications Claiming Priority (5)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB0207705.5 | 2002-04-03 | ||
GB0207705A GB2387253B (en) | 2002-04-03 | 2002-04-03 | System and method for secure credit and debit card transactions |
US10/131,489 US20030191945A1 (en) | 2002-04-03 | 2002-04-25 | System and method for secure credit and debit card transactions |
US10/131,489 | 2002-04-25 | ||
PCT/GB2003/001075 WO2003083793A2 (fr) | 2002-04-03 | 2003-03-14 | Systeme et procede permettant de realiser des transactions securisees de cartes de credit et de debit |
Publications (1)
Publication Number | Publication Date |
---|---|
CA2505920A1 true CA2505920A1 (fr) | 2003-10-09 |
Family
ID=28676501
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CA002505920A Abandoned CA2505920A1 (fr) | 2002-04-03 | 2003-03-14 | Systeme et procede permettant de realiser des transactions securisees de cartes de credit et de debit |
Country Status (11)
Country | Link |
---|---|
EP (1) | EP1490846A2 (fr) |
JP (1) | JP2005521961A (fr) |
CN (1) | CN1672180A (fr) |
AU (1) | AU2003219276A1 (fr) |
BR (1) | BR0308965A (fr) |
CA (1) | CA2505920A1 (fr) |
EA (1) | EA006395B1 (fr) |
MX (1) | MXPA04009725A (fr) |
NZ (1) | NZ535428A (fr) |
TW (1) | TWI229279B (fr) |
WO (1) | WO2003083793A2 (fr) |
Families Citing this family (57)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040098315A1 (en) | 2002-11-19 | 2004-05-20 | Haynes Leonard Steven | Apparatus and method for facilitating the selection of products by buyers and the purchase of the selected products from a supplier |
GB2416892B (en) * | 2004-07-30 | 2008-02-27 | Robert Kaplan | Method and apparatus to enable validating entitlement to VoIP services |
WO2008037116A1 (fr) * | 2006-09-27 | 2008-04-03 | Kamfu Wong | Procédé et système de transfert chiffré de code de transfert ajouté par une opération arithmétique définie par l'utilisateur correspondant à un mot de passe bancaire |
US8205793B2 (en) * | 2007-03-31 | 2012-06-26 | Dror Oved | Banking transaction processing system |
US7739169B2 (en) | 2007-06-25 | 2010-06-15 | Visa U.S.A. Inc. | Restricting access to compromised account information |
WO2009042392A2 (fr) | 2007-09-24 | 2009-04-02 | Apple Inc. | Systèmes d'authentification incorporés dans un dispositif électronique |
JP2009130882A (ja) * | 2007-11-28 | 2009-06-11 | Oki Electric Ind Co Ltd | チェックバリュー確認方法及び装置 |
US8799069B2 (en) * | 2007-12-21 | 2014-08-05 | Yahoo! Inc. | Mobile click fraud prevention |
US8600120B2 (en) | 2008-01-03 | 2013-12-03 | Apple Inc. | Personal computing device control using face detection and recognition |
GB2457445A (en) * | 2008-02-12 | 2009-08-19 | Vidicom Ltd | Verifying payment transactions |
JP4656458B1 (ja) | 2009-11-09 | 2011-03-23 | Necインフロンティア株式会社 | ハンディターミナル、及びハンディターミナルによる決済方法 |
CN102096968A (zh) * | 2009-12-09 | 2011-06-15 | 中国银联股份有限公司 | 一种代授权业务中pin正确性验证的方法 |
US8649766B2 (en) | 2009-12-30 | 2014-02-11 | Securenvoy Plc | Authentication apparatus |
EP2355028B1 (fr) * | 2009-12-30 | 2018-09-05 | SecurEnvoy Ltd | Appareil d'authentification |
CA2704864A1 (fr) | 2010-06-07 | 2010-08-16 | S. Bhinder Mundip | Methode et systeme permettant de controler l'acces a un compte a valeur monetaire |
US9002322B2 (en) | 2011-09-29 | 2015-04-07 | Apple Inc. | Authentication with secondary approver |
US8769624B2 (en) | 2011-09-29 | 2014-07-01 | Apple Inc. | Access control utilizing indirect authentication |
US10769627B2 (en) | 2013-04-05 | 2020-09-08 | Visa International Service Association | Systems, methods and devices for transacting |
US9898642B2 (en) | 2013-09-09 | 2018-02-20 | Apple Inc. | Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs |
CN110687969B (zh) | 2013-10-30 | 2023-05-02 | 苹果公司 | 显示相关的用户界面对象 |
TWI494880B (zh) * | 2013-11-14 | 2015-08-01 | Nat Univ Tsing Hua | 用以防範塑膠貨幣盜用之方法及塑膠貨幣 |
US10482461B2 (en) | 2014-05-29 | 2019-11-19 | Apple Inc. | User interface for payments |
CN115496490A (zh) * | 2014-05-29 | 2022-12-20 | 苹果公司 | 用于支付的用户接口 |
US9967401B2 (en) | 2014-05-30 | 2018-05-08 | Apple Inc. | User interface for phone call routing among devices |
US9336523B2 (en) | 2014-07-28 | 2016-05-10 | International Business Machines Corporation | Managing a secure transaction |
US10339293B2 (en) | 2014-08-15 | 2019-07-02 | Apple Inc. | Authenticated device used to unlock another device |
WO2016036552A1 (fr) | 2014-09-02 | 2016-03-10 | Apple Inc. | Interactions utilisateur pour une application de cartographie |
US9547419B2 (en) | 2014-09-02 | 2017-01-17 | Apple Inc. | Reduced size configuration interface |
FR3028639B1 (fr) * | 2014-11-17 | 2016-12-23 | Oberthur Technologies | Procede de securisation d'un jeton de paiement |
BR112017013223A2 (pt) * | 2014-12-19 | 2018-02-06 | Diebold Inc | ?transações de atm pré-estabelecidas? |
US20160224973A1 (en) | 2015-02-01 | 2016-08-04 | Apple Inc. | User interface for payments |
US9574896B2 (en) | 2015-02-13 | 2017-02-21 | Apple Inc. | Navigation user interface |
US10216351B2 (en) | 2015-03-08 | 2019-02-26 | Apple Inc. | Device configuration user interface |
US20160358133A1 (en) | 2015-06-05 | 2016-12-08 | Apple Inc. | User interface for loyalty accounts and private label accounts for a wearable device |
US9940637B2 (en) | 2015-06-05 | 2018-04-10 | Apple Inc. | User interface for loyalty accounts and private label accounts |
GB201522762D0 (en) * | 2015-12-23 | 2016-02-03 | Sdc As | Data security |
DK179186B1 (en) | 2016-05-19 | 2018-01-15 | Apple Inc | REMOTE AUTHORIZATION TO CONTINUE WITH AN ACTION |
US10776780B2 (en) * | 2016-05-27 | 2020-09-15 | Visa International Service Association | Automated reissuance system for prepaid devices |
US10621581B2 (en) | 2016-06-11 | 2020-04-14 | Apple Inc. | User interface for transactions |
DK201670622A1 (en) | 2016-06-12 | 2018-02-12 | Apple Inc | User interfaces for transactions |
US20180068313A1 (en) | 2016-09-06 | 2018-03-08 | Apple Inc. | User interfaces for stored-value accounts |
US10860199B2 (en) | 2016-09-23 | 2020-12-08 | Apple Inc. | Dynamically adjusting touch hysteresis based on contextual data |
US10496808B2 (en) | 2016-10-25 | 2019-12-03 | Apple Inc. | User interface for managing access to credentials for use in an operation |
KR102389678B1 (ko) | 2017-09-09 | 2022-04-21 | 애플 인크. | 생체측정 인증의 구현 |
KR102185854B1 (ko) | 2017-09-09 | 2020-12-02 | 애플 인크. | 생체측정 인증의 구현 |
US11170085B2 (en) | 2018-06-03 | 2021-11-09 | Apple Inc. | Implementation of biometric authentication |
US11100349B2 (en) | 2018-09-28 | 2021-08-24 | Apple Inc. | Audio assisted enrollment |
US10860096B2 (en) | 2018-09-28 | 2020-12-08 | Apple Inc. | Device control using gaze information |
US11328352B2 (en) | 2019-03-24 | 2022-05-10 | Apple Inc. | User interfaces for managing an account |
US11481094B2 (en) | 2019-06-01 | 2022-10-25 | Apple Inc. | User interfaces for location-related communications |
US11477609B2 (en) | 2019-06-01 | 2022-10-18 | Apple Inc. | User interfaces for location-related communications |
KR102451495B1 (ko) | 2019-09-29 | 2022-10-06 | 애플 인크. | 계정 관리 사용자 인터페이스들 |
US11169830B2 (en) | 2019-09-29 | 2021-11-09 | Apple Inc. | Account management user interfaces |
DK202070633A1 (en) | 2020-04-10 | 2021-11-12 | Apple Inc | User interfaces for enabling an activity |
US11816194B2 (en) | 2020-06-21 | 2023-11-14 | Apple Inc. | User interfaces for managing secure operations |
JP7429819B1 (ja) | 2023-04-05 | 2024-02-08 | 株式会社セブン銀行 | 取引システム、取引装置、取引方法、およびプログラム |
CN116092623B (zh) * | 2023-04-12 | 2023-07-28 | 四川执象网络有限公司 | 一种基于基层医学质控的健康数据管理方法 |
Family Cites Families (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH0691526B2 (ja) * | 1985-03-08 | 1994-11-14 | 株式会社東芝 | 通信システム |
AU1390395A (en) * | 1994-01-14 | 1995-08-01 | Michael Jeremy Kew | A computer security system |
GB2328310B (en) * | 1996-05-15 | 1999-12-08 | Ho Keung Tse | Electronic transaction apparatus and method therefor |
SE508844C2 (sv) * | 1997-02-19 | 1998-11-09 | Postgirot Bank Ab | Förfarande för behörighetskontroll med SIM-kort |
DE19820422A1 (de) * | 1998-05-07 | 1999-11-11 | Giesecke & Devrient Gmbh | Verfahren zur Authentisierung einer Chipkarte innerhalb eines Nachrichtenübertragungs-Netzwerks |
FI115355B (fi) * | 2000-06-22 | 2005-04-15 | Icl Invia Oyj | Järjestely suojatun järjestelmän käyttäjän tunnistamiseen ja todentamiseen |
US7392388B2 (en) * | 2000-09-07 | 2008-06-24 | Swivel Secure Limited | Systems and methods for identity verification for secure transactions |
WO2002082387A1 (fr) * | 2001-04-04 | 2002-10-17 | Microcell I5 Inc. | Procede et systeme pour effectuer une transaction electronique |
-
2003
- 2003-03-14 CN CN03807792.2A patent/CN1672180A/zh active Pending
- 2003-03-14 NZ NZ535428A patent/NZ535428A/en unknown
- 2003-03-14 JP JP2003581137A patent/JP2005521961A/ja not_active Abandoned
- 2003-03-14 BR BR0308965-7A patent/BR0308965A/pt not_active IP Right Cessation
- 2003-03-14 AU AU2003219276A patent/AU2003219276A1/en not_active Abandoned
- 2003-03-14 CA CA002505920A patent/CA2505920A1/fr not_active Abandoned
- 2003-03-14 WO PCT/GB2003/001075 patent/WO2003083793A2/fr active Application Filing
- 2003-03-14 EP EP03715081A patent/EP1490846A2/fr not_active Withdrawn
- 2003-03-14 MX MXPA04009725A patent/MXPA04009725A/es unknown
- 2003-03-14 EA EA200401187A patent/EA006395B1/ru not_active IP Right Cessation
- 2003-04-01 TW TW092107373A patent/TWI229279B/zh not_active IP Right Cessation
Also Published As
Publication number | Publication date |
---|---|
EP1490846A2 (fr) | 2004-12-29 |
WO2003083793A2 (fr) | 2003-10-09 |
JP2005521961A (ja) | 2005-07-21 |
CN1672180A (zh) | 2005-09-21 |
TWI229279B (en) | 2005-03-11 |
MXPA04009725A (es) | 2005-07-14 |
AU2003219276A1 (en) | 2003-10-13 |
NZ535428A (en) | 2006-08-31 |
TW200306483A (en) | 2003-11-16 |
EA200401187A1 (ru) | 2005-04-28 |
BR0308965A (pt) | 2005-02-01 |
EA006395B1 (ru) | 2005-12-29 |
WO2003083793A3 (fr) | 2003-12-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20030191945A1 (en) | System and method for secure credit and debit card transactions | |
CA2505920A1 (fr) | Systeme et procede permettant de realiser des transactions securisees de cartes de credit et de debit | |
JP5108034B2 (ja) | 電子転送システム | |
AU2001257280C1 (en) | Online payer authentication service | |
US6988657B1 (en) | Wireless payment processing system | |
US7600676B1 (en) | Two factor authentications for financial transactions | |
MX2010010810A (es) | Servidor de transaccion configurado para autorizar transacciones de pago usando dispositivos de telefonos celulares. | |
JP2007521556A (ja) | クレジット・カードと関連装置により支払命令を許可する方法 | |
KR100441118B1 (ko) | 일회용 가상 카드 서비스 시스템 및 방법 | |
WO2002021767A1 (fr) | Carte de paiement virtuelle | |
US20040039709A1 (en) | Method of payment | |
KR20010087564A (ko) | 개인 휴대단말기를 이용한 사용자 인증 처리 시스템 및 그방법 | |
KR20080079714A (ko) | 이동통신단말기를 이용한 신용카드 결제의 사용자인증시스템 및 그 방법 | |
CN116711267A (zh) | 移动用户认证系统和方法 | |
JP4903346B2 (ja) | 擬似或いは代理口座番号なしでコンピュータネットワークを越えて安全な支払いを処理するための改善された方法およびシステム | |
NL1019440C2 (nl) | Werkwijze en systeem voor het verrichten van een creditcardtransactie. | |
CA2475275C (fr) | Systeme de traitement de donnees sans fil pour le paiement par carte de credit | |
US20220343311A1 (en) | Method for Payment Transaction Execution Using Customer's Mobile Device | |
JP2002074225A (ja) | カード決済加盟店端末、カード決済サービスシステム、及びカード決済におけるカード有効性判断方法 | |
KR20040072855A (ko) | 복수의 결제채널을 적용한 금융결제 보안시스템 및 방법 | |
KR20030019933A (ko) | 무선단말기를 이용한 신용카드 결제승인 방법 및 이를실행하기 위한 프로그램을 기록한 컴퓨터로 읽을 수 있는기록매체 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
FZDE | Discontinued |