+

WO2000077733A2 - Systeme de commerce electronique - Google Patents

Systeme de commerce electronique Download PDF

Info

Publication number
WO2000077733A2
WO2000077733A2 PCT/GB2000/002138 GB0002138W WO0077733A2 WO 2000077733 A2 WO2000077733 A2 WO 2000077733A2 GB 0002138 W GB0002138 W GB 0002138W WO 0077733 A2 WO0077733 A2 WO 0077733A2
Authority
WO
WIPO (PCT)
Prior art keywords
user terminal
internet
site
vendor
action
Prior art date
Application number
PCT/GB2000/002138
Other languages
English (en)
Other versions
WO2000077733A3 (fr
Inventor
John Quentin Phillipps
Original Assignee
John Quentin Phillipps
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by John Quentin Phillipps filed Critical John Quentin Phillipps
Priority to KR1020017015918A priority Critical patent/KR20020035004A/ko
Priority to MXPA01012714A priority patent/MXPA01012714A/es
Priority to JP2001503133A priority patent/JP2003502743A/ja
Priority to EP00937032A priority patent/EP1190263A2/fr
Priority to BR0011729-3A priority patent/BR0011729A/pt
Priority to AU52328/00A priority patent/AU762413B2/en
Priority to CA002376802A priority patent/CA2376802A1/fr
Publication of WO2000077733A2 publication Critical patent/WO2000077733A2/fr
Publication of WO2000077733A3 publication Critical patent/WO2000077733A3/fr

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/24Credit schemes, i.e. "pay after"
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/347Passive cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1025Identification of user by a PIN code
    • G07F7/1075PIN is checked remotely

Definitions

  • the present invention relates to an electronic commerce system.
  • Internet commerce is a rapidly expanding area. Many goods and services can be ordered via the Internet. To do this, a user typically uses a web browser, such as Netscape Navigator or Microsoft Internet Explorer, to visit a web site of a vendor.
  • the web site will include pages enabling the user to select the goods or services required and a page containing a form by means of which the user can enter their credit or debit card details so that the vendor can receive payment for the ordered goods or services.
  • a disadvantage of this arrangement is that the user must send their credit or debit card details to the vendor via the Internet.
  • the Internet is not a fully secure network and there is the possibility that the credit or debit card details may be intercepted and used in the perpetration of a fraud.
  • an electronic commerce system comprising an Internet connectivity provider site, a financial service provider site for producing transaction IDs, a user terminal programmed with a web browser program, which may be a "microbrowser" in, for example, a AP-enabled phone, and connectable to the Internet connectivity provider site for accessing the Internet, and a World Wide Web vendor site configured for sending a payment card information entry form, e.g. an HTML form, having an action definition, e.g. an action URL, having at least one parameter, associated therewith, wherein the Internet connectivity provider site is configured to intercept messages from the user terminal which include said action definition and substitute at least a payment card number (e.g.
  • payment card numbers are stripped from messages before the messages enter the Internet.
  • the vendor site can still be used by customers, accessing the World Wide Web by means other than the Internet connectivitly provider site, and requires minimal modification from a typical vendor site configuration.
  • World Wide Web shall be taken to include WAP (Wireless Application Protocol) WAE (Wireless Application Environment) origin servers and analogous systems.
  • WAP Wireless Application Protocol
  • WAE Wireless Application Environment
  • a user terminal for a system preferably comprises a computer including user input means, modem means and modem control data for controlling the modem for establishing communication with the Internet connectivity provider site, wherein the modem control data is not modifiable by means of data input using the user input means alone.
  • the user terminal includes read-only storage means storing an machine-specific ID. This ID can be used to confirm the identity of a person sending payment card details from the user terminal.
  • a World Wide Web vendor site for a system according to the present invention is preferably configured to run a process for processing said action definition, said process being capable of:- recognising unsubstituted parameters and recording a transaction in a first manner in response thereto; and recognising substituted parameters, which identify a transaction, and recording the transaction in a second manner in response thereto. More preferably, said process is capable of recognising substituted parameters which indicate a reason (e.g. insufficient credit or incorrectly entered payment card related data) for non-completion of the transaction and sending a page to the user terminal in dependence thereon.
  • a reason e.g. insufficient credit or incorrectly entered payment card related data
  • An Internet connectivity provider site for a system preferably includes:- a database of vendor site IP addresses and associated action definitions; search means for searching the database for the destination IP address in a message from the user terminal; identification means responsive to the search means finding an IP address in the database to identify said action definition in the message; and signalling means for signalling action definition parameters to the financial service provider site in dependence on identification of an action definition by the identification means and receiving a transa ⁇ ion ID or other data not comprising a payment card number therefrom; means for substituting at least a payment card number within the parameter or parameters of said action definition with the transaction ID or other data; and transmission means for sending the modified message to the vendor site.
  • the transmission means is configured to mimic the user terminal when sending said modified message.
  • the Internet connecting provider site may be integrated with the financial service provider site.
  • Figure 1 shows the hardware of first, second and third embodiment of the present invention
  • Figure 2 shows an exemplary credit card details entry HTML form
  • Figure 3 shows the hardware of a fourth embodiment of the present invention
  • first, second and third user terminals i, 2, 3 are connectable via the pstn (public switched telephone network) 4 to a financial service provider site 5.
  • the financial service provider site 5 is connectable via the Internet 6 to first and second Internet vendor sites 7, 8.
  • the number of user terminals 1, 2, 3 is not restricted to three. Similarly, there may be many more Internet vendor sites than the two Internet vendor sites 6, 7 shown.
  • the first user terminal 1 comprises a pad-type computer, such as the Cyrix® WebPADTM, which includes a modem.
  • WindowsCE is used as the operating system for the first user terminal 1.
  • the dial-up networking configuration user interface is disabled so that a user cannot alter the Internet connectivity provider used for Internet access.
  • a web browser program is provided on the first user terminal 1 so that the user can access the World Wide Web using the terminal's modem.
  • the second and third user terminals 2, 3 are of the same construction as the first user terminal 1.
  • the vendor sites 7, 8 comprise web servers.
  • the vendor sites 7, 8 provide HTML forms ( Figure 2) that enable a user to enter their credit card number and expiry date and their address.
  • the financial service provider site 5 comprises a modem bank 10 connected between the pstn 4 and a communication computer 11.
  • the communication computer 11 is also connected to the Internet 6 and to a transaction processor comprising a transaction computer 12 and a database 13.
  • the financial service provider site 5 also comprises a domain name server (DNS) 14.
  • DNS domain name server
  • the financial service provider site 5 is thus configured for the financial service provider to provide Internet connectivity to the user terminals 1, 2, 3. All datagrams to be sent via the Internet 6 from user terminals 1, 2, 3 pass through the communication computer 11.
  • the communication computer 11 contains a database of registered vendor sites 7, 8 including their IP addresses and the "action" URL of the vendor's credit card details form.
  • the making of a purchase by the user of user terminal 1 from the first Internet vendor site 7 will now be described. It will be appreciated that the method is effected by a conventional web browser running on the first user terminal 1 and custom programs running on the communication computer 11, the transaction computer 12 and the web server at the first vendor site 7.
  • the user of the first user terminal 1 switches on the first user teminal 1 and runs the web browser program. This causes the first user terminal 1 to dial up the financial service provider site 5 and log on as with any Internet connectivity provider providing dial-up Internet access.
  • the web browser will submit an initial URL, e.g. for a search engine such as Yahoo or Alta Vista, or the home page of the financial service provider.
  • a name resolver process running on the first user terminal sends the server part of the URL to the DNS 14 and receives back the IP address of that server.
  • the URL is then sent from the first user terminal 1 in a message to the returned IP address.
  • the datagrams from the first user terminal are received by the communication machine 11.
  • the communication machine 11 reads the destination IP address in the header of the first datagram or a message and looks it up in its database of registered vendor sites. Since, in this case, the IP address is not for a registered vendor site, the first datagram is forwarded immediately to the Internet 6 and the subsequent datagrams of the message are forwarded as soon as possible to the Internet 6. In this case the communication computer 111 now operates merely as a router for subsequent datagrams of the message.
  • the destination server responds to the URL in the message from the first user terminal 1 by replying with a message containing HTML code for a page.
  • the datagrams of this message are routed by the Internet 6 to the communication computer 11 which then routes then via the modem bank 10 along the pstn connection to the first user terminal 1.
  • the web browser running on the first user terminal 1, then displays the page defined by the HTML in the reply message.
  • the system operates in this manner until, the first user terminal 1 sends a URL addressed to, for example, the first vendor site 7 which, for example, identifies the vendor's home page.
  • the communication computer 11 finds the destintion IP address in the first datagram of the message containing the URL in its database.
  • the communication machine 11 analyses the message to determine whether it contains the "action" URL of the destination vendor's credit card details form as contained in its database. Since, the URL is for the vendor's home page, the datagrams are now forwarded unmodified to the first vendor site 7 via the Internet 7.
  • the communication computer 11 At the TCP level, once the communication computer 11 has identified that a datagram from the first user terminal 1 is addressed to the first vendor site 7, it must respond to the first user terminal 1 as if it were the first vendor site 7 for connection set up, data transfer and connection termination. Also, when the communication computer 11 forwards the cached message to the first vendor site 7, it must mimic the first user terminal 1 so that the response to the sent URL is correctly addressed to the first user terminal 1 and lost or corrupted datagrams are retransmitted.
  • the user of the first user terminal 1 has decided to make a purchase and has received the first vendor's credit card details form.
  • the user fills in the form and clicks on the SUBMIT button (see Figure 2).
  • This causes the form's action URL to be submitted.
  • the message containing the action URL is intercepted by the communication machine 11 as described above.
  • the communication computer 11 now determines that the action URL is present.
  • the communication computer 11 sends the action URL to the transaction computer 12.
  • the transaction computer 12 compares the data in the action URL with card holder details in the database 13. If the data is incorrect, e.g. the address is not that of the card holder, the transaction computer 12 sends back the message "invalid" to the communication computer 11.
  • the reconstucted action URL is then sent to the first vendor site 7 with the communication computer 11 mimicking the first user terminal 1.
  • the action URL-handling process of the first vendor site 7 validates and logs the transaction ID for later confirmation of the transaction with the credit card company and sends a confirmation HTML page to the first user terminal 1.
  • Logged transaction IDs are send by a secure means, e.g. a direct pstn connection, to the credit card company together with the amount to be charged.
  • the credit card company compares the transaction ID with the records in the database 13 before authorising the transfer of funds to the first vendor.
  • the action URL produced by the credit card form ( Figure 2) includes the value of the transaction.
  • This information is sent by the communication computer 11 to the transaction computer 12 with the credit card number and card holder details.
  • the transaction computer 12 determines by reference to the database 13 whether the user has sufficient credit for the transaction. If the user does not have sufficient credit for the transaction, the transaction computer 12 sends the message "insufficient credit" to the communication computer 11.
  • the reconstucted action URL is then sent to the first vendor site 7 with the communication computer 11 mimicking the first user terminal 1.
  • the user terminals 1, 2, 3 are provided with unique IDs, e.g. chip-specific IDs for their processors.
  • the operation of the communication computer 11 is modified so that on receipt of an action URL for a registerer vendor site 6, 7, it sends a message to the user terminal 1, 2, 3 requesting the ID.
  • a process running on the user terminal 1, 2, 3 responds to this message by sending the ID back to the communication computer 11. If the ID is not received by the communication machine within a predetermined time the connection to the user terminal 1, 2, 3 is dropped as it is assumed that the user terminal 1, 2, 3 is not an authorised terminal.
  • an ID is received, it is passed to the transaction computer 12 with the data from the action URL.
  • the transaction computer 12 tries to match the ID with the credit card number. If there is a match, the process proceeds as in the first embodiment. However, if there is not a match, the transaction computer 12 sends the message "imposter" to the communication computer 11 which responds by dropping the connection to the user terminal 1, 2, 3.
  • caller line identification can be used to identify the telephone line used to dial into the financial service provider site 5. This number can then be passed to a law-enforcement agency with a report of an attempted credit card fraud.
  • first, second and third user terminals 101, 102, 103 are connectable via the pstn (public switched telephone network) 104 to an Internet connectivity provider site 109.
  • a financial service provider site 105 is connected to the Internet connectivity provider site 109 by a leased line 115.
  • Internet connectivity provider site 109 is connectable via the Internet 106 to first and second Internet vendor sites 107, 108.
  • the number of user terminals 101, 102, 103 is not restricted to three. Similarly, there may be many more Internet vendor sites than the two Internet vendor sites 106, 107 shown.
  • the first user terminal 101 comprises a pad-type computer, such as the Cyrix®
  • WebPADTM which includes a modem.
  • WindowsCE is used as the operating system for the first user terminal 101.
  • the dial-up networking configuration user interface is disabled so that a user cannot alter the Internet connectivity provider used for Internet access.
  • a web browser program is provided on the first user terminal 101 so that the user can access the World Wide Web using the terminal's modem.
  • the second and third user terminals 102, 103 are of the same construction as the first user terminal 101.
  • the vendor sites 107, 108 comprise web servers.
  • the vendor sites 107, 108 provide HTML forms ( Figure 2) that enable a user to enter their credit card number and expiry date and their address.
  • the Internet connectivity provider site 109 comprises a modem bank 110 connected between the pstn 104 and a communication computer 111.
  • the communication computer 111 is also connected to the Internet 106.
  • the Internet connectivity provider site 109 also comprises a domain name server (DNS) 114.
  • DNS domain name server
  • the financial service provider site 105 comprises a transaction computer 112 and a database 113.
  • the transaction computer 112 is connected to the communication computer 111 by the leased line 115.
  • the communication computer 111 contains a database of registered vendor sites 107, 108 including their IP addresses and the "action" URL of the vendor's credit card details form.
  • the making of a purchase by the user of user terminal 101 from the first Internet vendor site 107 will now be described. It will be appreciated that the method is effected by a conventional web browser running on the first user terminal 101 and custom programs running on the communication computer 111, the transaction computer 112 and the web server at the first vendor site 107.
  • the user of the first user terminal 101 switches on the first user teminal 101 and runs the web browser program. This causes the first user terminal 101 to dial up the Internet connectivity provider site 109 and log on as with any Internet connectivity provider providing dial-up Internet access.
  • the web browser will submit an initial URL, e.g. for a search engine such as Yahoo or Aha Vista, or the home page of the Internet connectivity service provider.
  • a name resolver process running on the first user terminal sends the server part of the URL to the DNS 114 and receives back the IP address of that server.
  • the URL is then sent from the first user terminal 101 in a message to the returned IP address.
  • the datagrams from the first user terminal 101 are received by the communication machine 111.
  • the communication machine 111 reads the destination IP address in the header of the first datagram and looks it up in its database of registered vendor sites. Since, in this case, the IP address is not for a registered vendor site 107, 108, the first datagram is forwarded immediately to the Internet 106 and the subsequent datagrams of the message are also immediately forwarded to the Internet 106. In this case the communication computer 111 now operates merely as a router for subsequent datagrams of the message.
  • the destination server responds to the URL in the message from the first user terminal 101 by replying with a message containing HTML code for a page.
  • the datagrams of this message are routed by the Internet 106 to the communication computer 111 which then routes then via the modem bank 110 along the pstn connection to the first user terminal 101.
  • the web browser running on the first user terminal 101, then displays the page defined by the HTML in the reply message.
  • the system operates in this manner until, the first user terminal 101 sends a URL addressed to the first vendor site 107 which, for example, identifies the vendor's home page.
  • the communication computer 11 finds the destintion IP address in the first datagram of the message containing the URL in its database.
  • the communication computer 111 caches the datagrams until the whole message has been received.
  • the communication machine 111 analyses the message to determine whether it contains the "action" URL of the destination vendor's credit card details form as contained in its database. Since, the URL is for the vendor's home page, the datagrams are now forwarded unmodified to the first vendor site 107 via the Internet 106.
  • the communication computer 111 At the TCP level, once the communication computer 111 has identified that a datagram from the first user terminal 101 is addressed to the first vendor site 107, it must respond to the first user terminal 101 as if it were the first vendor site 107 for connection set up, data transfer and connection termination. Also, when the communication computer 111 forwards the cached message to the first vendor site 107, it must mimic the first user terminal 101 so that the response to the sent URL is correctly addressed to the first user terminal 101 and lost or corrupted datagrams are retransmitted.
  • the communication computer 111 now determines that the action URL is present.
  • the communication computer 111 On determining that the action URL is present, the communication computer 111 sends the action URL to the transaction computer 112.
  • the transaction computer 112 compares the data in the action URL with card holder details in the database 113. If the data is incorrect, e.g. the address is not that of the card holder, the transaction computer 112 sends back the message "invalid" to the communication computer 111.
  • the reconstucted action URL is then sent to the first vendor site 107 with the communication computer 111 mimicking the first user terminal 101.
  • the transaction computer 112 If the data in the action URL is correct, the transaction computer 112 generates a unique transaction ID, which it stores in the database 113 against the card holder's account, and sends the transaction ID to the communication computer 111.
  • the reconstucted action URL is then sent to the first vendor site 107 with the communication computer 111 mimicking the first user terminal 101.
  • the action URL-handling process of the first vendor site 107 validates and logs the transaction ID for later confirmation of the transaction with the credit card company and sends a confirmation HTML page to the first user terminal 101.
  • Logged transaction IDs are send by a secure means, e.g. a direct pstn connection, to the credit card company together with the amount to be charged.
  • the credit card company compares the transaction ID with the records in the database 113 before authorising the transfer of funds to the first vendor.
  • a user cannot change the dial-up networking setup of their user terminal 1, 2, 3.
  • changing circumstances may make a change necessary, e.g. changes in the telephone number to be dialled.
  • These changes can be made by means of a JAVATM or ActiveX applet associated with a web page provided by the Internet connectivity providing entity.
  • the operation of the communication computer 11, 111 in any of the foregoing embodiments may be modified so that all messages from the user terminals 1, 2, 3, 101, 102, 103 are cached.
  • the communication computer 11, 111 can then analyse the content of the messages to determine whether is comprises an action URL of a credit card details form of an unregistered "vendor". These messages can then be blocked to avoid credit card details being sent to bogus vendors.
  • connection between the user terminals 1, 2, 3, 101, 102, 103 and the communication computer 11, 111 may be, but not exclusively so, via a telephone circuit, on ISDN connection or a leased line.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Development Economics (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Computer And Data Communications (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

L'invention concerne un système de commerce électronique évitant la transmission de numéros de cartes de crédit via Internet (6). Les sites de fournisseurs Internet (7, 8) sont enregistrés avec un fournisseur d'accès Internet (5). Aussi, ce dernier est-il en mesure d'intercepter les URL pour exécution issus des formulaires contenant des détails concernant les cartes de crédit des sites fournisseurs (7, 8). Ces URL pour exécution sont modifiés de manière à inclure un code ID de transaction remplaçant les détails sur la carte de crédit et envoyés au site fournisseur approprié (7, 9), le fournisseur d'accès Internet (5) copiant l'identité de l'utilisateur (1, 2, 3). Le fournisseur d'accès Internet (5) peut être un fournisseur de services financiers ou avoir une voie de communication protégée avec un fournisseur de services financiers.
PCT/GB2000/002138 1999-06-10 2000-06-02 Systeme de commerce electronique WO2000077733A2 (fr)

Priority Applications (7)

Application Number Priority Date Filing Date Title
KR1020017015918A KR20020035004A (ko) 1999-06-10 2000-06-02 전자상거래 시스템
MXPA01012714A MXPA01012714A (es) 1999-06-10 2000-06-02 Sistema de comercio electronico.
JP2001503133A JP2003502743A (ja) 1999-06-10 2000-06-02 電子商取引システム
EP00937032A EP1190263A2 (fr) 1999-06-10 2000-06-02 Systeme de commerce electronique
BR0011729-3A BR0011729A (pt) 1999-06-10 2000-06-02 Sistema de comércio eletrônico
AU52328/00A AU762413B2 (en) 1999-06-10 2000-06-02 Electronic commerce system
CA002376802A CA2376802A1 (fr) 1999-06-10 2000-06-02 Systeme de commerce electronique

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB9913530A GB2350982B (en) 1999-06-10 1999-06-10 Electronic commerce system
GB9913530.3 1999-06-10

Publications (2)

Publication Number Publication Date
WO2000077733A2 true WO2000077733A2 (fr) 2000-12-21
WO2000077733A3 WO2000077733A3 (fr) 2001-11-15

Family

ID=10855109

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/GB2000/002138 WO2000077733A2 (fr) 1999-06-10 2000-06-02 Systeme de commerce electronique

Country Status (10)

Country Link
EP (1) EP1190263A2 (fr)
JP (1) JP2003502743A (fr)
KR (1) KR20020035004A (fr)
CN (1) CN1354861A (fr)
AU (1) AU762413B2 (fr)
BR (1) BR0011729A (fr)
CA (1) CA2376802A1 (fr)
GB (1) GB2350982B (fr)
MX (1) MXPA01012714A (fr)
WO (1) WO2000077733A2 (fr)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002097685A1 (fr) * 2001-05-31 2002-12-05 Portalify Oy Procedes et systemes dans un reseau de communication de donnees permettant de fournir et de facturer des services
WO2003036529A1 (fr) * 2001-10-22 2003-05-01 Portalify Oy Procede et reseau de telecommunications permettant la prestation et la facturation de services
FR2862170A1 (fr) * 2003-11-06 2005-05-13 France Telecom Procede de transfert de donnees confidentielles en coeur de reseaux
WO2012141495A3 (fr) * 2011-04-11 2013-01-10 Samsung Electronics Co., Ltd. Appareil et procédé pour fournir un service de transaction

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030019404A (ko) * 2000-05-25 2003-03-06 윌슨 하우 기어프 궤 거래 시스템 및 방법
GB2370475A (en) * 2000-12-22 2002-06-26 Hewlett Packard Co Secure online transaction where a buyer sends some information direct to a bank and some via a vendor
WO2002058017A1 (fr) * 2001-01-19 2002-07-25 Haissam Malas Procede et systeme de paiement mondial et carte de paiement utilisee avec ce procede et ce systeme
GB2372616A (en) 2001-02-23 2002-08-28 Hewlett Packard Co Transaction method and apparatus using two part tokens
FR2843216B1 (fr) * 2002-07-30 2004-11-19 France Telecom Procede de telepaiement, systeme et passerelle pour la mise en oeuvre de ce procede, utilisation de ce procede
US20060047662A1 (en) * 2004-08-31 2006-03-02 Rajkishore Barik Capability support for web transactions

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0637548A1 (fr) 1993-08-06 1995-02-08 Kaysersberg Packaging S.A. Caisse d'emballage formant présentoir

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2059078C (fr) * 1991-02-27 1995-10-03 Alexander G. Fraser Transfert entre transactions via un systeme de communication
CA2100134C (fr) * 1992-09-29 1999-06-22 Raymond Otto Colbert Systeme d'autorisation securitaire pour cartes de credit/debit
US5826241A (en) * 1994-09-16 1998-10-20 First Virtual Holdings Incorporated Computerized system for making payments and authenticating transactions over the internet
US6252869B1 (en) * 1995-12-29 2001-06-26 At&T Corp. Data network security system and method
US5815665A (en) * 1996-04-03 1998-09-29 Microsoft Corporation System and method for providing trusted brokering services over a distributed network
US5778173A (en) * 1996-06-12 1998-07-07 At&T Corp. Mechanism for enabling secure electronic transactions on the open internet
EP0887776A1 (fr) * 1997-06-23 1998-12-30 Rainer Grunert Unité et méthode de transaction pour gestion de paiements sur Internet ou autres systèmes publiques client/serveur
WO2000075843A1 (fr) * 1999-06-09 2000-12-14 Intelishield.Com, Inc. Systeme de paiement sur l'internet

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0637548A1 (fr) 1993-08-06 1995-02-08 Kaysersberg Packaging S.A. Caisse d'emballage formant présentoir

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002097685A1 (fr) * 2001-05-31 2002-12-05 Portalify Oy Procedes et systemes dans un reseau de communication de donnees permettant de fournir et de facturer des services
WO2003036529A1 (fr) * 2001-10-22 2003-05-01 Portalify Oy Procede et reseau de telecommunications permettant la prestation et la facturation de services
FR2862170A1 (fr) * 2003-11-06 2005-05-13 France Telecom Procede de transfert de donnees confidentielles en coeur de reseaux
WO2005048558A1 (fr) * 2003-11-06 2005-05-26 France Telecom Procede de transfert de donnees confidentielles en coeur de reseaux
WO2012141495A3 (fr) * 2011-04-11 2013-01-10 Samsung Electronics Co., Ltd. Appareil et procédé pour fournir un service de transaction
CN103460237A (zh) * 2011-04-11 2013-12-18 三星电子株式会社 用于提供交易业务的设备和方法
JP2014516440A (ja) * 2011-04-11 2014-07-10 サムスン エレクトロニクス カンパニー リミテッド サービスサーバ、ユーザ端末装置、そのサービス提供方法及び制御方法

Also Published As

Publication number Publication date
WO2000077733A3 (fr) 2001-11-15
KR20020035004A (ko) 2002-05-09
GB2350982B (en) 2003-06-25
MXPA01012714A (es) 2003-09-04
BR0011729A (pt) 2003-07-08
AU762413B2 (en) 2003-06-26
CA2376802A1 (fr) 2000-12-21
CN1354861A (zh) 2002-06-19
GB2350982A (en) 2000-12-13
GB9913530D0 (en) 1999-08-11
EP1190263A2 (fr) 2002-03-27
AU5232800A (en) 2001-01-02
JP2003502743A (ja) 2003-01-21

Similar Documents

Publication Publication Date Title
US6959860B2 (en) System for automatic connection to a network
USRE43351E1 (en) Credit card validation for an interactive wireless network
EP2302523B1 (fr) Plateforme de services améliorée avec un système sécurisé et procédé pour la personnalisation du profil d'abonné
US5905736A (en) Method for the billing of transactions over the internet
RU2427893C2 (ru) Способ аутентификации служебного сервера (варианты) и способ оплаты услуг (варианты) в беспроводном интернете
US20060195597A1 (en) Automatic network user identification
US8755778B2 (en) Method for accessing a communications service by means of an electronic address
AU762413B2 (en) Electronic commerce system
US8725605B1 (en) Method and system for managing service accounts
RU2507579C2 (ru) Способ заказа для пользователей мобильной радиосети
US20040088250A1 (en) Subscriber account replenishment in a netework-based electronic commerce system incorporating prepaid service offerings
KR20000076224A (ko) 안전한 온라인 거래 처리 방법 및 그 시스템
US20030028614A1 (en) Portable storage media and method of utilizing remote storage unit on network as auxiliary memory of local computer by using the same
WO2002017253A1 (fr) Declenchement d'une transaction de paiement electronique
JP2003530618A (ja) 安全なネットワーク購入のためのシステム及び方法
US8302850B2 (en) Method with which a terminal can retrieve information associated to an EPC-code from an EPC network
WO2000049505A1 (fr) Systeme utilise dans la connexion automatique a un reseau
JP2002063524A (ja) 電子商取引における信用保証方法、この方法を適用した取引認証サーバーと商店サーバーと会員管理サーバー
US20030105723A1 (en) Method and system for disclosing information during online transactions
WO2002078257A1 (fr) Procede et systeme de traitement de donnees pour le chronometrage de la duree d'une session
WO2001031483A2 (fr) Systeme et procede permettant de verifier des informations en ligne presentees par des utilisateurs de l'internet
US20020156708A1 (en) Personalized internet server
EP1704516A1 (fr) Procede d'enregistrement d'utilisateur aupres d'un serveur mandataire pour une fonction additionnelle avec une des unites du serveur
KR100381860B1 (ko) 인증 및 결제 관리 시스템 및 방법
KR20010035055A (ko) 메신저를 이용한 지불인증 시스템 및 방법

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 00808546.3

Country of ref document: CN

AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

ENP Entry into the national phase

Ref document number: 2001 503133

Country of ref document: JP

Kind code of ref document: A

ENP Entry into the national phase

Ref document number: 2376802

Country of ref document: CA

Ref document number: 2376802

Country of ref document: CA

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: PA/a/2001/012714

Country of ref document: MX

Ref document number: 1020017015918

Country of ref document: KR

WWE Wipo information: entry into national phase

Ref document number: 2000937032

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 52328/00

Country of ref document: AU

WWP Wipo information: published in national office

Ref document number: 2000937032

Country of ref document: EP

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

WWE Wipo information: entry into national phase

Ref document number: 10018002

Country of ref document: US

WWP Wipo information: published in national office

Ref document number: 1020017015918

Country of ref document: KR

WWG Wipo information: grant in national office

Ref document number: 52328/00

Country of ref document: AU

WWW Wipo information: withdrawn in national office

Ref document number: 1020017015918

Country of ref document: KR

WWW Wipo information: withdrawn in national office

Ref document number: 2000937032

Country of ref document: EP

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载