BR0308965A - System and method for secure credit and / or debit card transaction - Google Patents

System and method for secure credit and / or debit card transaction

Info

Publication number
BR0308965A
BR0308965A BR0308965-7A BR0308965A BR0308965A BR 0308965 A BR0308965 A BR 0308965A BR 0308965 A BR0308965 A BR 0308965A BR 0308965 A BR0308965 A BR 0308965A
Authority
BR
Brazil
Prior art keywords
customer
security chain
merchant
mobile phone
transaction
Prior art date
Application number
BR0308965-7A
Other languages
Portuguese (pt)
Inventor
Winston Donald Keech
Original Assignee
Swivel Secure Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from GB0207705A external-priority patent/GB2387253B/en
Application filed by Swivel Secure Ltd filed Critical Swivel Secure Ltd
Publication of BR0308965A publication Critical patent/BR0308965A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • G06Q20/023Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP] the neutral party being a clearing house
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/388Payment protocols; Details thereof using mutual authentication without cards, e.g. challenge-response
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system

Abstract

"SISTEMA E MéTODO PARA TRANSAçãO SEGURA COM CARTãO DE CRéDITO E/OU DéBITO". Divulga-se aqui método e sistema para realizar transações seguras de crédito/ débito por cartão entre comerciante e cliente. Ao cliente é dada uma cadeia pseudo-randómica de segurança por um computador hospedeiro, a cadeia de segurança sendo enviada ao telefone móvel do cliente. Um algoritmo criptográfico é executado em um cartão SIM do telefone móvel que realiza mistura da cadeia de segurança ou no código descartável extraído da cadeia de segurança, do PIN do cliente e do valor da transação, estes dois últimos itens sendo teclados no telefone móvel. Um código de resposta de três dígitos é gerado pelo algoritmo e dado ao comerciante. O comerciante então transmite o código de resposta, o valor da transação e o número de conta do cliente (número do cartão) para o computador hospedeiro onde a cadeia pseudo-randómica de segurança e PIN são obtidas da memória. O computador hospedeiro então aplica o mesmo algoritmo à cadeia de segurança, ao PIN, e ao valor da transação gerando um código de verificação, se este código de verificação coincidir com o código de resposta transmitido pelo comerciante, a transação será autorizada. Configurações da presente invenção fazem uso da infra-estrutura existente CVV2, mas provêem um grau de segurança significativamente maior. Configurações da presente invenção podem ser usadas em transações por telefone ou face a face e também em transações pela Internet (e_commerce) e por telefone móvel (m_commerce)."SYSTEM AND METHOD FOR SECURE TRANSACTION WITH CREDIT AND / OR DEBIT CARD". The method and system for securing secure credit / debit card transactions between merchant and customer is disclosed here. The customer is given a pseudo-random security chain by a host computer, the security chain being sent to the customer's mobile phone. A cryptographic algorithm runs on a mobile phone SIM card that mixes the security chain or disposable code extracted from the security chain, customer PIN, and transaction value, these last two items being keyed into the mobile phone. A three digit response code is generated by the algorithm and given to the merchant. The merchant then transmits the response code, transaction amount, and customer account number (card number) to the host computer where the pseudo-random security chain and PIN are obtained from memory. The host computer then applies the same algorithm to the security chain, PIN, and transaction value generating a verification code, if this verification code matches the response code transmitted by the merchant, the transaction will be authorized. Configurations of the present invention make use of existing CVV2 infrastructure, but provide a significantly higher degree of security. Configurations of the present invention may be used for telephone or face-to-face transactions as well as Internet (e_commerce) and mobile phone (m_commerce) transactions.

BR0308965-7A 2002-04-03 2003-03-14 System and method for secure credit and / or debit card transaction BR0308965A (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
GB0207705A GB2387253B (en) 2002-04-03 2002-04-03 System and method for secure credit and debit card transactions
US10/131,489 US20030191945A1 (en) 2002-04-03 2002-04-25 System and method for secure credit and debit card transactions
PCT/GB2003/001075 WO2003083793A2 (en) 2002-04-03 2003-03-14 System and method for secure credit and debit card transactions

Publications (1)

Publication Number Publication Date
BR0308965A true BR0308965A (en) 2005-02-01

Family

ID=28676501

Family Applications (1)

Application Number Title Priority Date Filing Date
BR0308965-7A BR0308965A (en) 2002-04-03 2003-03-14 System and method for secure credit and / or debit card transaction

Country Status (11)

Country Link
EP (1) EP1490846A2 (en)
JP (1) JP2005521961A (en)
CN (1) CN1672180A (en)
AU (1) AU2003219276A1 (en)
BR (1) BR0308965A (en)
CA (1) CA2505920A1 (en)
EA (1) EA006395B1 (en)
MX (1) MXPA04009725A (en)
NZ (1) NZ535428A (en)
TW (1) TWI229279B (en)
WO (1) WO2003083793A2 (en)

Families Citing this family (58)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040098315A1 (en) 2002-11-19 2004-05-20 Haynes Leonard Steven Apparatus and method for facilitating the selection of products by buyers and the purchase of the selected products from a supplier
GB2416892B (en) * 2004-07-30 2008-02-27 Robert Kaplan Method and apparatus to enable validating entitlement to VoIP services
CN101523449B (en) * 2006-09-27 2011-04-13 黄金富 Method and system for encrypting transfer that the transfer code adding the user-defined arithmetic equal to the bank password
US8205793B2 (en) * 2007-03-31 2012-06-26 Dror Oved Banking transaction processing system
US7739169B2 (en) 2007-06-25 2010-06-15 Visa U.S.A. Inc. Restricting access to compromised account information
KR101600632B1 (en) 2007-09-24 2016-03-09 애플 인크. Embedded authentication systems in an electronic device
JP2009130882A (en) * 2007-11-28 2009-06-11 Oki Electric Ind Co Ltd Check value confirming method and apparatus
US8799069B2 (en) * 2007-12-21 2014-08-05 Yahoo! Inc. Mobile click fraud prevention
US8600120B2 (en) 2008-01-03 2013-12-03 Apple Inc. Personal computing device control using face detection and recognition
GB2457445A (en) * 2008-02-12 2009-08-19 Vidicom Ltd Verifying payment transactions
JP4656458B1 (en) 2009-11-09 2011-03-23 Necインフロンティア株式会社 Handy terminal and payment method by handy terminal
CN102096968A (en) * 2009-12-09 2011-06-15 ***股份有限公司 Method for verifying accuracy of PIN (Personal Identification Number) in agent authorization service
US8649766B2 (en) 2009-12-30 2014-02-11 Securenvoy Plc Authentication apparatus
EP2355028B1 (en) * 2009-12-30 2018-09-05 SecurEnvoy Ltd Authentication apparatus
CA2704864A1 (en) 2010-06-07 2010-08-16 S. Bhinder Mundip Method and system for controlling access to a monetary valued account
US8769624B2 (en) 2011-09-29 2014-07-01 Apple Inc. Access control utilizing indirect authentication
US9002322B2 (en) 2011-09-29 2015-04-07 Apple Inc. Authentication with secondary approver
WO2014162294A1 (en) 2013-04-05 2014-10-09 Visa International Service Association Systems, methods and devices for transacting
US9898642B2 (en) 2013-09-09 2018-02-20 Apple Inc. Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs
CN110687969B (en) 2013-10-30 2023-05-02 苹果公司 Displaying related user interface objects
TWI494880B (en) * 2013-11-14 2015-08-01 Nat Univ Tsing Hua Method for preventing misappropriation of plastic money and plastic money
US9324067B2 (en) 2014-05-29 2016-04-26 Apple Inc. User interface for payments
CN110599157A (en) * 2014-05-29 2019-12-20 苹果公司 User interface for payments
US9967401B2 (en) 2014-05-30 2018-05-08 Apple Inc. User interface for phone call routing among devices
US9336523B2 (en) 2014-07-28 2016-05-10 International Business Machines Corporation Managing a secure transaction
US10339293B2 (en) 2014-08-15 2019-07-02 Apple Inc. Authenticated device used to unlock another device
WO2016036552A1 (en) 2014-09-02 2016-03-10 Apple Inc. User interactions for a mapping application
WO2016036603A1 (en) 2014-09-02 2016-03-10 Apple Inc. Reduced size configuration interface
FR3028639B1 (en) * 2014-11-17 2016-12-23 Oberthur Technologies METHOD FOR SECURING A PAYMENT TOKEN
BR112017013223A2 (en) * 2014-12-19 2018-02-06 Diebold Inc ? pre-established ATM transactions?
US20160224973A1 (en) 2015-02-01 2016-08-04 Apple Inc. User interface for payments
US9574896B2 (en) 2015-02-13 2017-02-21 Apple Inc. Navigation user interface
US10254911B2 (en) 2015-03-08 2019-04-09 Apple Inc. Device configuration user interface
US9940637B2 (en) 2015-06-05 2018-04-10 Apple Inc. User interface for loyalty accounts and private label accounts
US20160358133A1 (en) 2015-06-05 2016-12-08 Apple Inc. User interface for loyalty accounts and private label accounts for a wearable device
GB201522762D0 (en) * 2015-12-23 2016-02-03 Sdc As Data security
DK179186B1 (en) 2016-05-19 2018-01-15 Apple Inc REMOTE AUTHORIZATION TO CONTINUE WITH AN ACTION
US10776780B2 (en) * 2016-05-27 2020-09-15 Visa International Service Association Automated reissuance system for prepaid devices
US10621581B2 (en) 2016-06-11 2020-04-14 Apple Inc. User interface for transactions
DK201670622A1 (en) 2016-06-12 2018-02-12 Apple Inc User interfaces for transactions
US9842330B1 (en) 2016-09-06 2017-12-12 Apple Inc. User interfaces for stored-value accounts
US10860199B2 (en) 2016-09-23 2020-12-08 Apple Inc. Dynamically adjusting touch hysteresis based on contextual data
US10496808B2 (en) 2016-10-25 2019-12-03 Apple Inc. User interface for managing access to credentials for use in an operation
KR102143148B1 (en) 2017-09-09 2020-08-10 애플 인크. Implementation of biometric authentication
KR102185854B1 (en) 2017-09-09 2020-12-02 애플 인크. Implementation of biometric authentication
US11170085B2 (en) 2018-06-03 2021-11-09 Apple Inc. Implementation of biometric authentication
US10860096B2 (en) 2018-09-28 2020-12-08 Apple Inc. Device control using gaze information
US11100349B2 (en) 2018-09-28 2021-08-24 Apple Inc. Audio assisted enrollment
CA3062211A1 (en) * 2018-11-26 2020-05-26 Mir Limited Dynamic verification method and system for card transactions
US11328352B2 (en) 2019-03-24 2022-05-10 Apple Inc. User interfaces for managing an account
US11477609B2 (en) 2019-06-01 2022-10-18 Apple Inc. User interfaces for location-related communications
US11481094B2 (en) 2019-06-01 2022-10-25 Apple Inc. User interfaces for location-related communications
EP4300277A3 (en) 2019-09-29 2024-03-13 Apple Inc. Account management user interfaces
US11169830B2 (en) 2019-09-29 2021-11-09 Apple Inc. Account management user interfaces
DK180985B1 (en) 2020-04-10 2022-09-02 Apple Inc User interfaces for enabling an activity
US11816194B2 (en) 2020-06-21 2023-11-14 Apple Inc. User interfaces for managing secure operations
JP7429819B1 (en) 2023-04-05 2024-02-08 株式会社セブン銀行 Trading systems, trading devices, trading methods, and programs
CN116092623B (en) * 2023-04-12 2023-07-28 四川执象网络有限公司 Health data management method based on basic medical quality control

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH0691526B2 (en) * 1985-03-08 1994-11-14 株式会社東芝 Communications system
AU1390395A (en) * 1994-01-14 1995-08-01 Michael Jeremy Kew A computer security system
GB2328310B (en) * 1996-05-15 1999-12-08 Ho Keung Tse Electronic transaction apparatus and method therefor
SE508844C2 (en) * 1997-02-19 1998-11-09 Postgirot Bank Ab Procedure for access control with SIM card
DE19820422A1 (en) * 1998-05-07 1999-11-11 Giesecke & Devrient Gmbh Method for authenticating a chip card within a message transmission network
FI115355B (en) * 2000-06-22 2005-04-15 Icl Invia Oyj Arrangement for the authentication and authentication of a secure system user
US7392388B2 (en) * 2000-09-07 2008-06-24 Swivel Secure Limited Systems and methods for identity verification for secure transactions
US20030055738A1 (en) * 2001-04-04 2003-03-20 Microcell I5 Inc. Method and system for effecting an electronic transaction

Also Published As

Publication number Publication date
EA006395B1 (en) 2005-12-29
AU2003219276A1 (en) 2003-10-13
CA2505920A1 (en) 2003-10-09
TW200306483A (en) 2003-11-16
MXPA04009725A (en) 2005-07-14
CN1672180A (en) 2005-09-21
EP1490846A2 (en) 2004-12-29
EA200401187A1 (en) 2005-04-28
WO2003083793A3 (en) 2003-12-31
WO2003083793A2 (en) 2003-10-09
TWI229279B (en) 2005-03-11
NZ535428A (en) 2006-08-31
JP2005521961A (en) 2005-07-21

Similar Documents

Publication Publication Date Title
BR0308965A (en) System and method for secure credit and / or debit card transaction
JP6603765B2 (en) Method and system for securely transmitting a remote notification service message to a mobile device without using a secure element
KR102094815B1 (en) Smart card for providing virtual card number, method and program for providing virtual card number by smart card
US20040044739A1 (en) System and methods for processing PIN-authenticated transactions
US5826245A (en) Providing verification information for a transaction
US6594759B1 (en) Authorization firmware for conducting transactions with an electronic transaction system and methods therefor
ES2748847T3 (en) Secure payment card transactions
US20070239622A1 (en) Method for generating customer secure card numbers
US20160239835A1 (en) Method for End to End Encryption of Payment Terms for Secure Financial Transactions
WO2007146159A3 (en) System, method, and apparatus for preventing identity fraud associated with payment and identity cards
US20090045257A1 (en) Federated ID Secure Virtual Terminal Emulation Smartcard
DE69935913D1 (en) LACK RESISTANT UPGRADE OF AN INDEXED CRYPTOGRAPHIC KEY
PH12015500674A1 (en) Secure financial transactions
TR200002758T2 (en) Credit card system and method
WO2002086826A8 (en) Financial information input method using symmetrical key security algorithm and commercial transaction system for mobile communications
ATE245841T1 (en) APPARATUS AND METHOD FOR SECURE ATM DEBIT CARD AND CREDIT CARD PAYMENT TRANSACTIONS OVER THE INTERNET
BRPI0411286A (en) system for authenticating a cardholder business transaction with a merchant on an electronic network; data structure for carrying information and method for business transaction authentication
JPS61139878A (en) Safety protection module for electronic fund transfer
US20110295753A1 (en) Pin protection for portable payment devices
EP3702991A1 (en) Mobile payments using multiple cryptographic protocols
NO996488D0 (en) Payment process and system
WO2006017144A3 (en) Real-time entry and verification of pin at point-of-sale terminal
CN108337090A (en) A kind of dynamic password acquisition methods, device, terminal and storage medium
CN101262348A (en) USB digital signature device and its operation method
El Madhoun et al. The EMV Payment System: Is It Reliable?

Legal Events

Date Code Title Description
B08F Application dismissed because of non-payment of annual fees [chapter 8.6 patent gazette]

Free format text: REFERENTE A 6A E 7A ANUIDADES

B08K Patent lapsed as no evidence of payment of the annual fee has been furnished to inpi [chapter 8.11 patent gazette]

Free format text: REFERENTE AO DESPACHO 8.6 PUBLICADO NA RPI 2051 DE 27/04/2010.