WO2015004677A1 - A computer implemented system and method for performing cashless transactions - Google Patents

A computer implemented system and method for performing cashless transactions Download PDF

Info

Publication number
WO2015004677A1
WO2015004677A1 PCT/IN2014/000437 IN2014000437W WO2015004677A1 WO 2015004677 A1 WO2015004677 A1 WO 2015004677A1 IN 2014000437 W IN2014000437 W IN 2014000437W WO 2015004677 A1 WO2015004677 A1 WO 2015004677A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
otp
transaction
application
server application
Prior art date
Application number
PCT/IN2014/000437
Other languages
French (fr)
Inventor
Mandar Agashe
Original Assignee
Mandar Agashe
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mandar Agashe filed Critical Mandar Agashe
Publication of WO2015004677A1 publication Critical patent/WO2015004677A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/606Protecting data by securing the transmission between two devices or processes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/085Payment architectures involving remote charge determination or related payment systems
    • G06Q20/0855Payment architectures involving remote charge determination or related payment systems involving a third party
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3227Aspects of commerce using mobile devices [M-devices] using secure elements embedded in M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/325Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/363Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • G06Q20/425Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0863Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash

Definitions

  • the present disclosure relates to a system and method for performing transactions over the World Wide Web.
  • the expression 'device' used hereinafter in the specification refers to but is not limited to a mobile phones, a desktop, laptops, tablets, iPads, PDAs, notebooks, net books, terminals including wired or wireless computing/communicating devices.
  • the expression 'financial account' used hereinafter in the specification refers to but is not limited to a bank account, a financial repository account, a vault account, a credit union account, an investment firm account, a repository account, a PayPal account, and a Authorize.net account.
  • the expression 'authorizing interface' used hereinafter in the specification refers to but is not limited to a payment network, a VisaNet, a bank, a network, and a third party interface.
  • Cash has been used as one of the most preferable modes of carrying out financial transactions, since decades.
  • using cash as a mode of transaction gets cumbersome when a large amount of money is required to be exchanged.
  • Carrying a large amount of money, safeguarding the same against theft/robbery attempts involves a significant amount of overhead on the part of the people involved in said transaction.
  • a cheque is typically available in paper-format.
  • a cheque is exchanged between a payee and a payer.
  • the payer presents the payee with a cheque and the payee is required to submit said cheque at his/her bank and wait for the transaction to be completed.
  • a transaction, performed via a cheque requires at least three days for completion. Few of the drawbacks associated with cheque based transactions is that a cheque based transaction entails longer processing delays and cheque based transactions are prone to human errors.
  • E-commerce internet commerce
  • internet based transactions enable a person to use his/her credit/debit card to carry out a monetary transaction.
  • Internet based transactions provide a person with remote access to his/her financial account and enable a person to carry out a transaction without walking into a bank and without using paper-based transaction methods.
  • the drawbacks associated with internet based transactions are that they also suffer from processing delays and that they are prone to hacker attacks.
  • the major drawback associated with internet based transactions is that the confidential information including the credit card number, the CVV (Card Verification Value) number and the card expiry date are transmitted through public internet networks. Such transmissions are often prone to various types of hacker attacks and the confidentiality of the credit/debit card information is liable to be compromised.
  • the present disclosure envisages a computer implemented system and method which enables a user to securely carry out his/ her transactions.
  • the present disclosure envisages a system and a method which ensures that a user's confidential information remains secured and that it is not exposed to any sort of hacker attacks.
  • An object of the present disclosure is to provide a system that provides complete security for the transactions performed by a user on the World Wide Web.
  • Another object of the present disclosure is to provide a system that offers a user a convenient, yet safe way of performing transactions.
  • Another object of the present disclosure is to provide a system that enables a user to perform transactions without making physical use of credit/debit cards.
  • Another object of the present disclosure is to provide a system that is cost- effective and compatible with existing hardware infrastructure.
  • Another object of the present disclosure is to provide a system that prevents the occurrence of fraudulent transactions.
  • the system includes a two types computer applications a) a device application and b) a server application.
  • the user can register with the system by accessing a web application of the system and receive a link to download and execute the device application on his/her registered device.
  • the server application is configured in a transaction server for facilitating and managing the transactions performed by the user.
  • the server application and the device application being accessible to each other via secure communication network.
  • the server application is capable of generating a One Time Password (OTP) for the user initiated transaction by enabling the user to select the appropriate card (i.e. financial account detail related to the user) along with the transaction amount on the device application displayed on his/her device.
  • OTP One Time Password
  • the OTP received by the user on his/her device can be utilized by the user for completing the monetary transaction by entering on a commercial web page for purchasing any commodities or goods.
  • FIGURE 1 describes, by the way of example, a computer implemented system for performing cashless transactions
  • FIGURE 2(a), 2(b) and 2(c) describes, by the way of example, a flow chart corresponding to the computer implemented method for performing cashless transactions.
  • FIGURE 1 illustrates a system 100 which includes a device application 110 installed and configured in a device 10 accessible to a user and a server application 120 configured in a transaction server 20.
  • the system 100 further includes a web application accessible through a web browser installed on the device 10 such as Internet Explorer of the Windows operating system.
  • the device application 110 and the server application 120 are accessible to each other via a communication network.
  • the communication network is selected from the group consisting of a computer network, an Internet, an Intranet, a Wi-Fi network, a Wi-Max network, an online network, a Local Area Network (LAN), a Wide Area Network (WAN), a Metropolitan Area Network (MAN), a Near Field Communication (NFC), a Bluetooth network, a cellular network including a wired and a wireless network, and a combination thereof.
  • a computer network an Internet, an Intranet, a Wi-Fi network, a Wi-Max network, an online network, a Local Area Network (LAN), a Wide Area Network (WAN), a Metropolitan Area Network (MAN), a Near Field Communication (NFC), a Bluetooth network, a cellular network including a wired and a wireless network, and a combination thereof.
  • the device application 110 includes a first trans-receiver 112, an acquiring module 114 and a selection module 116.
  • the server application 120 includes a second trans-receiver 122, a validation module 124, a One Time Password (OTP) generator 126, and a verification module 128.
  • the transaction server 20 includes a user repository 140 accessible by the server application 120.
  • the second trans-receiver 122 of the server application 120 is capable of communicating with the user repository 140 for the purpose storing and retrieving user related data.
  • the user can register with the system 100 by accessing the web application of the system 100 and can install the device application 110 on the device 10.
  • the transaction server 20 of the system 100 stores the user related information into a user repository 140.
  • This user related information includes user registration information, user login credentials, contact details, information related to user's financial accounts, unique device identification provided to the device 10 registered corresponding to the user.
  • the user repository 140 is accessible by the server application 120 configured in the transaction server 20.
  • the transaction server 20 transmits a registration confirmation message to the registered user's contact details in a format such as an email format, an instant message format, a short messages service (SMS) format, a text message format and a combination thereof on successful completion of the registration process.
  • SMS short messages service
  • the registration confirmation message is sent to the device 10 accessible to the user to confirm the authenticity of the registered user.
  • the registration confirmation message includes a welcome note along with a link to download the device application 110 on the device 10 accessible to the user.
  • the user can download the device application 110 on his/her device 10 and install the device application 110 for performing cashless transactions.
  • a unique device identification is provided to the device 10 registered with the user.
  • the details provided by the user viz., the credit card details/debit card details/net banking account details are securely stored in a user repository 140 which is housed at a transaction server 20.
  • a user registered with the system 100 decides to perform a transaction using his device 10 i.e., monetary transaction involving buying of commodities/goods, over the World Wide Web, he/she is required to click on the device 10 accessible to him/her.
  • the user On the device application 110, the user is provided with a window that asks the user to provide his/her login credentials.
  • the acquiring module 114 acquires user login credentials from the user for initiating a transaction. Once the user provides his/her login credentials, the same are transmitted over a secured network connection to the transaction server 20 through the first trans-receiver 112. The acquired login credentials are transmitted to the transaction server 20 for the purpose of authentication.
  • the second trans-receiver 122 of the server application 120 receives the acquired user login credentials.
  • the second trans-receiver 122 in communicates the user login credential received from the device 10 to the validation module 124.
  • the validation module 124 validates the received user login credentials with the user credentials stored into the user repository 140. Subsequent to successful validation of the log-in credentials, the second trans-receiver 122 of the server application 120 transmits a validation confirmation message to the corresponding device 10.
  • the first trans-receiver 112 of the device application 110 receives the validation confirmation message from the transaction server 20 and further prompts the user on the device application 110 a list of credit cards/debit cards/net banking accounts that he/she had previously registered with the system 100.
  • the selection module 116 of the device application 110 receives a user selected financial account detail for the transaction. Subsequent to the user selecting a particular registered card and a particular amount for the transaction, the selection module 116 in communication with the first trans-receiver 112 and transmits the user selected financial account detail and the transaction amount to the transaction server 20 over a secured communication network.
  • the second trans-receiver 122 receives the user selected , financial account detail and the transaction amount and triggers the One Time Password (OTP) generator 126.
  • the OTP generator 126 generates an OTP for the corresponding user initiated transaction. Subsequently, the OTP generated for a particular user is mapped on to the credit card/debit card/net banking account details corresponding to the to the credit card/debit card/net banking account selected by the user for performing the transaction.
  • the OTP generated by the OTP generator 126 can consist of numerals or alphabets or a combination thereof. Further, the OTP generated has time limit and therefore the user required to use the OTP for the transaction with the time limit of the OTP otherwise validity of the OTP will expire.
  • the OTP generator 126 includes an OTP-database 126A to store the generated OTP for the corresponding user. The OTP-database 126A housed within the OTP generator 126 stores the OTP temporarily.
  • the OTP generated by the OTP generator 126 is communicated to the device 10 accessible to the user, by the way of an email or SMS (Short Message Service) or via an interactive voice recorder.
  • the OTP generator 126 communicates the OTP to the second trans-receiver 122 which in turn transmits the OTP to the device 10 via a secured communication network.
  • the user accessing a third party commercial websites on the World Wide Web for purchasing commodities or goods online can enter the received OTP on a window provided on the web page on which he/she want to perform the transaction.
  • the user typically types out the OTP received on his/her device 10 on a window provided at the web page on which he/she performed the transaction.
  • the OTP entered by the user is transmitted to the transaction server 20 over a secured communication link. This is done by an authorizing interface interfaced with the third party commercial websites and the transaction server 20 through the communication network.
  • the second trans- receiver 122 triggers a verification module 128 which in turn verifies the OTP entered by the user with the entries (corresponding to OTPs) stored into the OTP-database 126A corresponding to the user.
  • the verification module 128 also verifies whether the time limit of the OTP has expired.
  • the verification module 128 runs a comparison on the OTPs stored in the OTP-database 126A and the OTP input by the user, and if the OTP entered by the user matches with any of the OTP entries stored in the OTP-database 126 A, the transaction performed by the user is authenticated.
  • the details corresponding to the credit card/debit card/net banking account are retrieved based on the mapping between the OTP and said details, and the transaction initiated by the user is further processed. Any of the well-known methods can be utilized for processing and clearing the transaction. Such a well- known method of processing a transaction is not discussed for the sake of brevity.
  • the entries stored in the OTP-database 126A are dynamically updated as soon as the OTPs are sent to the user at the first instance.
  • the OTP generated by the transaction server 30 can be utilized by the user to purchase goods/commodities from any normal store or a tele shopping network or an IVR (Interactive Voice Response) based shopping network.
  • IVR Interactive Voice Response
  • the user if the user is visiting a normal store, the user is required to type out the OTP received on his/her device 10, into a POS terminal located at the store.
  • the OTP acts as a substitute for swiping the credit/debit card. Subsequently, the OTP is transferred from the POS terminal to the transaction server 20 via a communication network.
  • the transaction server 20 subsequently triggers a verification module 128 which in turn, verifies the OTP entered by the user with the entries (corresponding to OTPs) stored in the OTP-database 126A, and derives the card details from the OTP if the OTP entered by the user is appropriate.
  • the user is required to enter the OTP received by him/her on the device 10.
  • the OTP is required to be entered by the user through a device (preferably device 10) that he/she uses to connect to the tele shopping network/IVR based shopping network.
  • a device preferably device 10
  • the user can read out the OTP delivered to him/her. Subsequently, the OTP is transferred to the transaction server 20 via a communication network.
  • the server application 120 of the transaction server 20 subsequently triggers the verification module 128 which in turn, verifies the OTP entered by the user with the entries (corresponding to OTPs) stored in the OTP-database 126 A, and derives the card details from the OTP if the OTP entered by the user is appropriate.
  • FIGURE 2(a), 2(b), and 2(c) there is shown a flow chart corresponding to the method for implementing a system 100 of FIGURE 1 for performing cashless transactions.
  • the system 100 includes a device application 110 and a server application 120.
  • the device application 110 is installed and executed on a device 10 accessible to the user and the server application 120 is configured on a transaction server 20.
  • the device application 110 and the server application 120 being accessible to each other via a communication network.
  • the method in accordance with the present disclosure includes the following steps:
  • STEP 204 prompting the user to enter his/her login credentials and transmitting the acquired user credential to the transaction server 20;
  • net banking account details further transmitting the acquired user's credit cards/debit cards and net banking account details to the transaction server 20 through a secured communication network;
  • STEP 210 receiving and storing at the transaction server 20, the details corresponding to the credit cards/debit cards/net banking accounts received from the device 10, in a user repository 140 housed on the transaction server 20 and accessible to the server application 120;
  • STEP 212 redirecting the user to the device application 110 in the event that the user wish performs a monetary transaction on a web page displayed on World Wide Web, in order to initiate the transaction;
  • STEP 214 prompting the user to enter his/her login credentials and further prompting the user after successful validation to select a particular card and corresponding transaction amount for completing the transaction, additionally, transmitting the acquired user selected card detail to the transaction server 20;
  • STEP 216 receiving at the server application 120 the acquired user selected card detail and generating an OTP corresponding to the transaction, further associating a time limit to the generated OTP;
  • STEP 218 mapping the generated OTP to the credit card/debit card/net banking account details corresponding to the to the credit card/debit card/net banking account selected by the user for performing the transaction;
  • STEP 232 retrieving the details corresponding to the credit card/debit card/net banking account chosen by the user, based on the mapping between the OTP and said details, and processing the transaction.
  • the method further includes the following steps:

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present disclosure envisages a computer implemented system and method for performing cashless transactions. The system includes a device application can be installed and executed on a device accessible to a user and a server application configured in a transaction server. The user can register and download the device application on his/her device. A transaction is initiated by the user selecting the appropriate card (i.e. financial account detail related to the user) along with the transaction amount on the device application displayed on his/her device and further transmitting a request for a One Time Password (OTP) to the transaction server via a communication network. The server application is capable of generating a One Time Password (OTP) for the user initiated transaction. The OTP received by the user on his/her device can be utilized by the user for completing the monetary transaction.

Description

A COMPUTER IMPLEMENTED SYSTEM AND METHOD FOR PERFORMING CASHLESS TRANSACTIONS
This application is a patent of addition to Indian Patent Application No. 57/MUM/2013 filed on January 8th, 2013, the entire contents of which are specifically incorporated herein by reference.
FIELD OF THE INVENTION
The present disclosure relates to a system and method for performing transactions over the World Wide Web.
DEFINITIONS OF TERMS USED IN THE SPECIFICATION
The expression 'device' used hereinafter in the specification refers to but is not limited to a mobile phones, a desktop, laptops, tablets, iPads, PDAs, notebooks, net books, terminals including wired or wireless computing/communicating devices.
The expression 'financial account' used hereinafter in the specification refers to but is not limited to a bank account, a financial repository account, a vault account, a credit union account, an investment firm account, a repository account, a PayPal account, and a Authorize.net account.
The expression 'authorizing interface' used hereinafter in the specification refers to but is not limited to a payment network, a VisaNet, a bank, a network, and a third party interface.
BACKGROUND OF INVENTION
Cash has been used as one of the most preferable modes of carrying out financial transactions, since decades. However, using cash as a mode of transaction gets cumbersome when a large amount of money is required to be exchanged. Carrying a large amount of money, safeguarding the same against theft/robbery attempts involves a significant amount of overhead on the part of the people involved in said transaction.
Financial experts, have in the past attempted to reduce the dependency on hard cash and have introduced ways by which a transaction can be carried out without the exchange of hard cash. One of the ways of carrying out a transaction without using hard cash is by the way of cheque. Cheques were to a certain extent successful in reducing the dependency on hard cash. A cheque is typically available in paper-format. A cheque is exchanged between a payee and a payer. The payer presents the payee with a cheque and the payee is required to submit said cheque at his/her bank and wait for the transaction to be completed. A transaction, performed via a cheque requires at least three days for completion. Few of the drawbacks associated with cheque based transactions is that a cheque based transaction entails longer processing delays and cheque based transactions are prone to human errors.
To eliminate the disadvantages associated with cheque based transactions, internet commerce (e-commerce) was introduced. E-commerce or internet based transactions enable a person to use his/her credit/debit card to carry out a monetary transaction. Internet based transactions provide a person with remote access to his/her financial account and enable a person to carry out a transaction without walking into a bank and without using paper-based transaction methods. However, the drawbacks associated with internet based transactions are that they also suffer from processing delays and that they are prone to hacker attacks. The major drawback associated with internet based transactions is that the confidential information including the credit card number, the CVV (Card Verification Value) number and the card expiry date are transmitted through public internet networks. Such transmissions are often prone to various types of hacker attacks and the confidentiality of the credit/debit card information is liable to be compromised.
Therefore, in order to overcome the drawbacks of the prior art systems, the present disclosure envisages a computer implemented system and method which enables a user to securely carry out his/ her transactions. The present disclosure envisages a system and a method which ensures that a user's confidential information remains secured and that it is not exposed to any sort of hacker attacks.
OBJECTS
Some of the objects of the system of the present disclosure, which at least one embodiment herein satisfies, are as follows:
An object of the present disclosure is to provide a system that provides complete security for the transactions performed by a user on the World Wide Web.
Another object of the present disclosure is to provide a system that offers a user a convenient, yet safe way of performing transactions.
Another object of the present disclosure is to provide a system that enables a user to perform transactions without making physical use of credit/debit cards.
Another object of the present disclosure is to provide a system that is cost- effective and compatible with existing hardware infrastructure.
Another object of the present disclosure is to provide a system that prevents the occurrence of fraudulent transactions. SUMMARY
In an aspect of the present disclosure envisages a computer implemented system and method for performing cashless transactions. The system includes a two types computer applications a) a device application and b) a server application. The user can register with the system by accessing a web application of the system and receive a link to download and execute the device application on his/her registered device. The server application is configured in a transaction server for facilitating and managing the transactions performed by the user. The server application and the device application being accessible to each other via secure communication network. The server application is capable of generating a One Time Password (OTP) for the user initiated transaction by enabling the user to select the appropriate card (i.e. financial account detail related to the user) along with the transaction amount on the device application displayed on his/her device. The OTP received by the user on his/her device can be utilized by the user for completing the monetary transaction by entering on a commercial web page for purchasing any commodities or goods.
BRIEF DESCRIPTION OF THE ACCOMPANYING DRAWINGS
The computer implemented system and method for performing cashless transaction will now be described with reference to the accompanying drawings, in which:
FIGURE 1 describes, by the way of example, a computer implemented system for performing cashless transactions; and
FIGURE 2(a), 2(b) and 2(c) describes, by the way of example, a flow chart corresponding to the computer implemented method for performing cashless transactions. DETAILED DESCRIPTION
The computer implemented system and method for cashless transactions of the present disclosure will now be described with reference to the accompanying drawings which do not limit the scope and ambit of the disclosure. The description provided is purely by way of example and illustration.
The embodiments herein and the various features and advantageous details thereof are explained with reference to the non-limiting embodiments in the following description. Descriptions of well-known components and processing techniques are omitted so as to not unnecessarily obscure the embodiments herein. The examples used herein are intended merely to facilitate an understanding of ways in which the embodiments herein may be practiced and to further enable those of skill in the art to practice the embodiments herein. Accordingly, the examples should not be construed as limiting the scope of the embodiments herein.
The description hereinafter, of the specific embodiments will so fully reveal the general nature of the embodiments herein that others can, by applying current knowledge, readily modify and/or adapt for various applications such specific embodiments without departing from the generic concept, and, therefore, such adaptations and modifications should and are intended to be comprehended within the meaning' and range of equivalents of the disclosed embodiments. It is to be understood that the phraseology or terminology employed herein is for the purpose of description and not of limitation. Therefore, while the embodiments herein have been described in terms of preferred embodiments, those skilled in the art will recognize that the embodiments herein can be practiced with modification within the spirit and scope of the embodiments as described herein. The present disclosure envisages a system and method for performing cashless transactions. Referring to the accompanying drawings, FIGURE 1 illustrates a system 100 which includes a device application 110 installed and configured in a device 10 accessible to a user and a server application 120 configured in a transaction server 20. The system 100 further includes a web application accessible through a web browser installed on the device 10 such as Internet Explorer of the Windows operating system. The device application 110 and the server application 120 are accessible to each other via a communication network. The communication network is selected from the group consisting of a computer network, an Internet, an Intranet, a Wi-Fi network, a Wi-Max network, an online network, a Local Area Network (LAN), a Wide Area Network (WAN), a Metropolitan Area Network (MAN), a Near Field Communication (NFC), a Bluetooth network, a cellular network including a wired and a wireless network, and a combination thereof.
i
In accordance with the present disclosure, the device application 110 includes a first trans-receiver 112, an acquiring module 114 and a selection module 116. The server application 120 includes a second trans-receiver 122, a validation module 124, a One Time Password (OTP) generator 126, and a verification module 128. In addition, the transaction server 20 includes a user repository 140 accessible by the server application 120. The second trans-receiver 122 of the server application 120 is capable of communicating with the user repository 140 for the purpose storing and retrieving user related data.
The user can register with the system 100 by accessing the web application of the system 100 and can install the device application 110 on the device 10. On completion of the registration process on the web application, the transaction server 20 of the system 100 stores the user related information into a user repository 140. This user related information includes user registration information, user login credentials, contact details, information related to user's financial accounts, unique device identification provided to the device 10 registered corresponding to the user. The user repository 140 is accessible by the server application 120 configured in the transaction server 20. The transaction server 20 transmits a registration confirmation message to the registered user's contact details in a format such as an email format, an instant message format, a short messages service (SMS) format, a text message format and a combination thereof on successful completion of the registration process. The registration confirmation message is sent to the device 10 accessible to the user to confirm the authenticity of the registered user. The registration confirmation message includes a welcome note along with a link to download the device application 110 on the device 10 accessible to the user. The user can download the device application 110 on his/her device 10 and install the device application 110 for performing cashless transactions. In addition, a unique device identification is provided to the device 10 registered with the user. The details provided by the user, viz., the credit card details/debit card details/net banking account details are securely stored in a user repository 140 which is housed at a transaction server 20.
In accordance with the present disclosure, whenever a user, registered with the system 100 decides to perform a transaction using his device 10 i.e., monetary transaction involving buying of commodities/goods, over the World Wide Web, he/she is required to click on the device 10 accessible to him/her. On the device application 110, the user is provided with a window that asks the user to provide his/her login credentials. The acquiring module 114 acquires user login credentials from the user for initiating a transaction. Once the user provides his/her login credentials, the same are transmitted over a secured network connection to the transaction server 20 through the first trans-receiver 112. The acquired login credentials are transmitted to the transaction server 20 for the purpose of authentication. At the transaction server 20, the second trans-receiver 122 of the server application 120 receives the acquired user login credentials. The second trans-receiver 122 in communicates the user login credential received from the device 10 to the validation module 124. The validation module 124 validates the received user login credentials with the user credentials stored into the user repository 140. Subsequent to successful validation of the log-in credentials, the second trans-receiver 122 of the server application 120 transmits a validation confirmation message to the corresponding device 10.
The first trans-receiver 112 of the device application 110 receives the validation confirmation message from the transaction server 20 and further prompts the user on the device application 110 a list of credit cards/debit cards/net banking accounts that he/she had previously registered with the system 100. The selection module 116 of the device application 110 receives a user selected financial account detail for the transaction. Subsequent to the user selecting a particular registered card and a particular amount for the transaction, the selection module 116 in communication with the first trans-receiver 112 and transmits the user selected financial account detail and the transaction amount to the transaction server 20 over a secured communication network. At the server application 120 of the transaction server 20, the second trans-receiver 122 receives the user selected , financial account detail and the transaction amount and triggers the One Time Password (OTP) generator 126. The OTP generator 126 generates an OTP for the corresponding user initiated transaction. Subsequently, the OTP generated for a particular user is mapped on to the credit card/debit card/net banking account details corresponding to the to the credit card/debit card/net banking account selected by the user for performing the transaction. The OTP generated by the OTP generator 126 can consist of numerals or alphabets or a combination thereof. Further, the OTP generated has time limit and therefore the user required to use the OTP for the transaction with the time limit of the OTP otherwise validity of the OTP will expire. In addition, the OTP generator 126 includes an OTP-database 126A to store the generated OTP for the corresponding user. The OTP-database 126A housed within the OTP generator 126 stores the OTP temporarily.
The OTP generated by the OTP generator 126 is communicated to the device 10 accessible to the user, by the way of an email or SMS (Short Message Service) or via an interactive voice recorder. The OTP generator 126 communicates the OTP to the second trans-receiver 122 which in turn transmits the OTP to the device 10 via a secured communication network.
In accordance with the present disclosure, the user accessing a third party commercial websites on the World Wide Web for purchasing commodities or goods online , can enter the received OTP on a window provided on the web page on which he/she want to perform the transaction. The user, typically types out the OTP received on his/her device 10 on a window provided at the web page on which he/she performed the transaction. Once the user enters the received OTP on a window provided at the web page, the OTP entered by the user is transmitted to the transaction server 20 over a secured communication link. This is done by an authorizing interface interfaced with the third party commercial websites and the transaction server 20 through the communication network.
In accordance with the present disclosure, when the server application 120 of the transaction server 20 receives the OTP entered by the user, the second trans- receiver 122 triggers a verification module 128 which in turn verifies the OTP entered by the user with the entries (corresponding to OTPs) stored into the OTP-database 126A corresponding to the user. The verification module 128 also verifies whether the time limit of the OTP has expired. The verification module 128 runs a comparison on the OTPs stored in the OTP-database 126A and the OTP input by the user, and if the OTP entered by the user matches with any of the OTP entries stored in the OTP-database 126 A, the transaction performed by the user is authenticated. Subsequent to the authentication of the OTP, the details corresponding to the credit card/debit card/net banking account are retrieved based on the mapping between the OTP and said details, and the transaction initiated by the user is further processed. Any of the well-known methods can be utilized for processing and clearing the transaction. Such a well- known method of processing a transaction is not discussed for the sake of brevity. The entries stored in the OTP-database 126A are dynamically updated as soon as the OTPs are sent to the user at the first instance.
In accordance with the present disclosure, the OTP generated by the transaction server 30 can be utilized by the user to purchase goods/commodities from any normal store or a tele shopping network or an IVR (Interactive Voice Response) based shopping network. In one embodiment, if the user is visiting a normal store, the user is required to type out the OTP received on his/her device 10, into a POS terminal located at the store. The OTP acts as a substitute for swiping the credit/debit card. Subsequently, the OTP is transferred from the POS terminal to the transaction server 20 via a communication network. The transaction server 20 subsequently triggers a verification module 128 which in turn, verifies the OTP entered by the user with the entries (corresponding to OTPs) stored in the OTP-database 126A, and derives the card details from the OTP if the OTP entered by the user is appropriate.
In another embodiment, if the user is visiting an online tele shopping network or an IVR based shopping network, the user is required to enter the OTP received by him/her on the device 10. The OTP is required to be entered by the user through a device (preferably device 10) that he/she uses to connect to the tele shopping network/IVR based shopping network. In case of an IVR based shopping network, the user can read out the OTP delivered to him/her. Subsequently, the OTP is transferred to the transaction server 20 via a communication network. The server application 120 of the transaction server 20 subsequently triggers the verification module 128 which in turn, verifies the OTP entered by the user with the entries (corresponding to OTPs) stored in the OTP-database 126 A, and derives the card details from the OTP if the OTP entered by the user is appropriate.
Referring to FIGURE 2(a), 2(b), and 2(c), there is shown a flow chart corresponding to the method for implementing a system 100 of FIGURE 1 for performing cashless transactions. The system 100 includes a device application 110 and a server application 120. The device application 110 is installed and executed on a device 10 accessible to the user and the server application 120 is configured on a transaction server 20. The device application 110 and the server application 120 being accessible to each other via a communication network. The method, in accordance with the present disclosure includes the following steps:
• STEP 202 - enabling a user to access the device application 110 displayed on the device 10;
• STEP 204 - prompting the user to enter his/her login credentials and transmitting the acquired user credential to the transaction server 20;
• STEP 206 - verifying at the server application 120 of the transaction server 20, the login credentials entered by the user and transmitting a verification confirmation message to the corresponding device 10 accessible to the user;
• STEP 208 - receiving at the device application 110, the verification confirmation message from the transaction server 20 and prompting the user to enter the details corresponding to his credit cards/debit cards and o
net banking account details, further transmitting the acquired user's credit cards/debit cards and net banking account details to the transaction server 20 through a secured communication network;
• STEP 210 - receiving and storing at the transaction server 20, the details corresponding to the credit cards/debit cards/net banking accounts received from the device 10, in a user repository 140 housed on the transaction server 20 and accessible to the server application 120;
• STEP 212 - redirecting the user to the device application 110 in the event that the user wish performs a monetary transaction on a web page displayed on World Wide Web, in order to initiate the transaction;
• STEP 214 - prompting the user to enter his/her login credentials and further prompting the user after successful validation to select a particular card and corresponding transaction amount for completing the transaction, additionally, transmitting the acquired user selected card detail to the transaction server 20;
• STEP 216 - receiving at the server application 120 the acquired user selected card detail and generating an OTP corresponding to the transaction, further associating a time limit to the generated OTP;
• STEP 218 - mapping the generated OTP to the credit card/debit card/net banking account details corresponding to the to the credit card/debit card/net banking account selected by the user for performing the transaction;
• STEP 220 - transmitting the OTP to the device 10 accessible, to -the user via a secured communication link;
• STEP 222 - receiving the device application 110, the received OTP generated by the transaction server 20 for completing the user initiated transaction; • STEP 224 - prompting the user to enter the received OTP on the web page displayed on World Wide Web for completing the user desired transaction;
• STEP 226 - transmitting the user entered OTP n the web page displayed on World Wide Web to the transaction server 20;
• STEP 228 - comparing at the server application 120, the OTP entered by the user with a list of OTPs stored in a OTP-database;
• STEP 230 - determining if the OTP entered by the user matches with any of the OTP entries stored in the OTP-database and further checking whether the time limit of the OTP has expired; and
• STEP 232 - retrieving the details corresponding to the credit card/debit card/net banking account chosen by the user, based on the mapping between the OTP and said details, and processing the transaction.
In accordance with the present disclosure, the method further includes the following steps:
• registering the user and the device 10 accessible to the user on the web interface and storing the user credentials into the user repository accessible by the server application 120 of the transaction server 20; and
• receiving at the device application 110, a unique device identification post user registration.
TECHNICAL ADVANCEMENTS
The technical advantages of the system and method envisaged by the present disclosure include the following:
• providing a system that ensures the transactions performed by a user on the World Wide Web are secure;
• providing a system that offers a user a convenient, yet safe way of performing transactions;
• providing a system that enables a user to perform transactions without making physical use of credit/debit cards;
• providing a system that is reliable and tamper-proof;
• providing a system that is cost-effective and compatible with existing hardware infrastructure;
• providing a system that is user-friendly; and
• providing a system that prevents the occurrence of fraudulent transactions.
While considerable emphasis has been placed herein on the particular features of this invention, it will be appreciated that various modifications can be made, and that many changes can be made in the preferred embodiment without departing from the principles of the invention. These and other modifications in the nature of the invention or the preferred embodiments will be apparent to those skilled in the art from the disclosure herein, whereby it is to be distinctly understood that the foregoing descriptive matter is to be interpreted merely as illustrative of the invention and not as a limitation.
Throughout this specification the word "comprise", or variations such as "comprises" or "comprising", will be understood to imply the inclusion of a stated element, integer or step, or group of elements, integers or steps, but not the exclusion of any other element, integer or step, or group of elements, integers or steps.
The numerical values mentioned for the various physical parameters, dimensions or quantities are only approximations and it is envisaged that the values higher/lower than the numerical values assigned to the parameters, dimensions or quantities fall within the scope of the disclosure, unless there is a statement in the specification specific to the contrary. The foregoing description of the specific embodiments will so fully reveal the general nature of the embodiments herein that others can, by applying current knowledge, readily modify and/or adapt for various applications such specific embodiments without departing from the generic concept, and, therefore, such adaptations and modifications should and are intended to be comprehended within the meaning and range of equivalents of the disclosed embodiments. It is to be understood that the phraseology or terminology employed herein is for the purpose of description and not of limitation. Therefore, while the embodiments herein have been described in terms of preferred embodiments, those skilled in the art will recognize that the embodiments herein can be practiced with modification within the spirit and scope of the embodiments as described herein.

Claims

CLAIMS:
1) A computer implemented system for cashless transaction comprising a device application installed and configured on a device accessible to a user and a server application configured on a transaction server, said device application and. said server application being accessible to each other via a communication network, said system comprising:
• an acquiring module configured in said device application, said acquiring module configured to acquire at least a user credential to initiate a transaction, said acquiring module further configured to transmit the acquired user credential to said server application via a first trans- receiver;
• a validation module configured in said server application, said validation module configured receive the acquired user credential from said device application via a second trans-receiver, said validation module configured to validate the received user credential with the user credential stored into a user repository; wherein said user repository is accessible to said server application;
• a selection module configured in said device application, said selection module configured to prompt the user to user to select a financial account from a list of financial account details stored into said user repository, said selection module configured to transmit the acquired user's selection to said server application via the first trans-receiver; wherein said selection module prompts the user to select the financial account based on the successful validation of the user credential; '
• an One Time Password (OTP) generator configured in said server application, said OTP generator configured to receive the acquired user selection from said device application via the second trans-receiver, said OTP generator configured to generate an OTP for the user who has initiated the transaction, said OTP generator further configured to transmit the OTP to said device application via the second trans-receiver; and
• a verification module configured in said server application, said verification module configured to receive a user submitted OTP on a web interface via the second trans-receiver, said verification module configured verify the user submitted OTP with the OTP generated by said OTP generator.
2) The system as claimed in claim 1, wherein said device application executed on the device accessible to the user is provided with a unique device identification post user registration.
3) The system as claimed in claim 1, wherein said OTP generator configured to map the contents of the OTP with the selected user's financial account.
4) The system as claimed in claim 1 , wherein the second trans-receiver of said server application configured to transmit the OTP to said device application in a format selected from the group consisting of an email format, a Short Message Service (SMS) format, an interactive voice formation and a combination thereof.
5) The system as claimed in claim 1, wherein said OTP generator includes a OTP-database to store the generated OTP corresponding to the user and the unique device identification.
6) The system as claimed in claim 1, wherein said OTP generator configured to generate a time bound OTP. 7) The system as claimed in claim 1, wherein said verification module configured to validating the time limit of the user submitted OTP, said verification module further configured to authenticate the user initiated transaction either positive or negative.
8) The system as claimed in claim 1, wherein said OTP generator generates the OTP in format selected from the group consisting of a text format, a voice format, an image format and a combination thereof.
9) The system as claimed in claim 1, wherein the user submitted OTP on the web interface wherein the user submission OTP format includes a text format, a voice format, an image format and a combination thereof.
10) A computer implemented method for implementing a system for performing cashless transaction comprising a device application installed and configured on a device accessible to the user and a server application configured on a transaction server, said device application and said server application being accessible to each other via a communication network, said method comprising:
• acquiring at said device application, at least a user credential to initiate a transaction and transmitting the acquired user credential to said server application;
• receiving and validating at said server application, the received user credential acquired at said device application with the user credential stored into a user repository, wherein said user repository is accessible to said server application;
• prompting the user at said device application on successful validation of the user credential at said server application and enabling the user to select a financial account from a list of financial account details stored into said user repository;
• transmitting the acquired user's selection of the financial account detail to said server application;
• receiving at said server application, the user selected financial account detail;
• generating an One Time Password (OTP) for the user who has initiated the transaction and further transmitting the generated OTP to said device application; and
• receiving at said server application, a user submitted OTP on a web interface and verifying the user submitted OTP with the generated OTP.
1 1) The method as claimed in claim 10, wherein said method further includes the following steps:
• registering the user and the device accessible to the user on said web interface and storing the user credentials into said user repository accessible by said server application; and
• receiving at said device application, a unique device identification post user registration.
12) The method as claimed in claim 10, wherein the step of generating the OTP at said server application includes the following steps:
• mapping the OTP with the user selected financial account detail;
• associating a time limit to the generated OTP; and
• storing the OTP into a OTP-database corresponding to the user and the unique device identification. 3) The method as claimed in claim 10, wherein the step of verifying the user submitted OTP with the generated OTP at the server application further includes the followings steps:
• validating the time limit of the user submitted OTP; and
• authenticating the user initiated transaction either positive or negative.
PCT/IN2014/000437 2013-07-01 2014-07-01 A computer implemented system and method for performing cashless transactions WO2015004677A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
IN2212/MUM/2013 2013-07-01
IN2212MU2013 IN2013MU02212A (en) 2013-07-01 2013-07-01

Publications (1)

Publication Number Publication Date
WO2015004677A1 true WO2015004677A1 (en) 2015-01-15

Family

ID=52279427

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IN2014/000437 WO2015004677A1 (en) 2013-07-01 2014-07-01 A computer implemented system and method for performing cashless transactions

Country Status (2)

Country Link
IN (1) IN2013MU02212A (en)
WO (1) WO2015004677A1 (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016139351A1 (en) 2015-03-05 2016-09-09 Prozymex A/S Peptidyl nitril compounds as dipeptidyl peptidase i inhibitors
US20160321632A1 (en) * 2015-04-28 2016-11-03 The Hillman Group, Inc. Systems and methods for secure remote data retrieval for key duplication
CN107408251A (en) * 2015-02-27 2017-11-28 三星电子株式会社 The electronic equipment and its operating method of electronic payment function are provided
EP3262584A4 (en) * 2016-02-04 2018-01-03 Samsung Electronics Co., Ltd. Electronic device providing electronic payment function and operation method thereof
US10193700B2 (en) 2015-02-27 2019-01-29 Samsung Electronics Co., Ltd. Trust-zone-based end-to-end security
US11107047B2 (en) 2015-02-27 2021-08-31 Samsung Electronics Co., Ltd. Electronic device providing electronic payment function and operating method thereof
US11129018B2 (en) 2015-02-27 2021-09-21 Samsung Electronics Co., Ltd. Payment means operation supporting method and electronic device for supporting the same
US11182769B2 (en) 2015-02-12 2021-11-23 Samsung Electronics Co., Ltd. Payment processing method and electronic device supporting the same

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120011066A1 (en) * 2010-07-12 2012-01-12 Telle Todd N Methods and systems for authenticating an identity of a payer in a financial transaction
EP2608486A1 (en) * 2011-12-20 2013-06-26 Tata Consultancy Services Ltd. A computer implemented system and method for providing users with secured access to application servers

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120011066A1 (en) * 2010-07-12 2012-01-12 Telle Todd N Methods and systems for authenticating an identity of a payer in a financial transaction
EP2608486A1 (en) * 2011-12-20 2013-06-26 Tata Consultancy Services Ltd. A computer implemented system and method for providing users with secured access to application servers

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11182769B2 (en) 2015-02-12 2021-11-23 Samsung Electronics Co., Ltd. Payment processing method and electronic device supporting the same
CN107408251A (en) * 2015-02-27 2017-11-28 三星电子株式会社 The electronic equipment and its operating method of electronic payment function are provided
US10193700B2 (en) 2015-02-27 2019-01-29 Samsung Electronics Co., Ltd. Trust-zone-based end-to-end security
US11107047B2 (en) 2015-02-27 2021-08-31 Samsung Electronics Co., Ltd. Electronic device providing electronic payment function and operating method thereof
US11129018B2 (en) 2015-02-27 2021-09-21 Samsung Electronics Co., Ltd. Payment means operation supporting method and electronic device for supporting the same
CN107408251B (en) * 2015-02-27 2022-01-25 三星电子株式会社 Electronic device providing electronic payment function and method of operating the same
WO2016139351A1 (en) 2015-03-05 2016-09-09 Prozymex A/S Peptidyl nitril compounds as dipeptidyl peptidase i inhibitors
US20160321632A1 (en) * 2015-04-28 2016-11-03 The Hillman Group, Inc. Systems and methods for secure remote data retrieval for key duplication
EP3262584A4 (en) * 2016-02-04 2018-01-03 Samsung Electronics Co., Ltd. Electronic device providing electronic payment function and operation method thereof

Also Published As

Publication number Publication date
IN2013MU02212A (en) 2015-06-12

Similar Documents

Publication Publication Date Title
US11836724B2 (en) Systems and methods for performing ATM fund transfer using active authentication
US20220414629A1 (en) Systems and methods for performing atm fund transfers using active authentication
CN109196535B (en) Electronic payment system and method thereof
US8934865B2 (en) Authentication and verification services for third party vendors using mobile devices
CN111819555A (en) Secure remote token issuance with online authentication
US10453062B2 (en) Systems and methods for performing person-to-person transactions using active authentication
WO2015004677A1 (en) A computer implemented system and method for performing cashless transactions
US20160086172A1 (en) Trusted execution environment for transport layer security key pair associated with electronic commerce and card not present transactions
WO2015048533A1 (en) Method and system for implementing financial transactions
US11861600B2 (en) Systems and methods for providing card interactions
US10489565B2 (en) Compromise alert and reissuance
US20130268439A1 (en) Vtex3 fraud protection system mobile verification protocol (mvp)
US20110087591A1 (en) Personalization Data Creation or Modification Systems and Methods
KR101384846B1 (en) Simple payment method using mobile terminal
US10395244B1 (en) Systems and methods for providing card interactions
AU2014255446A1 (en) Method and system for activating credentials
US20210241266A1 (en) Enhancing 3d secure user authentication for online transactions
KR20130034111A (en) Simple payment method using mobile terminal
CN114730334A (en) Enhancing security of secure remote platform systems using network authentication
US20230035507A1 (en) Method And System For Token Gateway
US20150332269A1 (en) Systems and methods for debit card account confirmation
EP3059703A1 (en) Method for retrieving by a payment server a funding permanent account number from a token payment account number
GB2438651A (en) Secure financial transactions
KR101596434B1 (en) Method for authenticating electronic financial transaction using payment informaion seperation
US20240193603A1 (en) Systems and methods for performing atm fund transfer using active authentication

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14823052

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14823052

Country of ref document: EP

Kind code of ref document: A1