+

WO2009083999A1 - Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications - Google Patents

Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications Download PDF

Info

Publication number
WO2009083999A1
WO2009083999A1 PCT/IN2007/000627 IN2007000627W WO2009083999A1 WO 2009083999 A1 WO2009083999 A1 WO 2009083999A1 IN 2007000627 W IN2007000627 W IN 2007000627W WO 2009083999 A1 WO2009083999 A1 WO 2009083999A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile device
transaction
coupon
message
authenticating
Prior art date
Application number
PCT/IN2007/000627
Other languages
English (en)
Inventor
Kumar Jeevanani Suresh
Johri Gaurav
Kumar Mohapatra Tanmay
Koranapalli Nagaraju Rohith
Original Assignee
Onmobile Global Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Onmobile Global Limited filed Critical Onmobile Global Limited
Priority to PCT/IN2007/000627 priority Critical patent/WO2009083999A1/fr
Publication of WO2009083999A1 publication Critical patent/WO2009083999A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising

Definitions

  • TITLE METHOD AND SYSTEM FOR AUTHENTICATING COMMERCIAL TRANSACTION IN A TELECOMMUNICATION NETWORK
  • the present invention relates to a system and a method for authenticating a transaction made by a customer. More particularly, the invention relates to a system and a method for authenticating a transaction made by a customer in a real-time manner using a mobile device.
  • Customer A person who intends to make, or has already made a transaction with a business entity.
  • the customer also has a mobile device.
  • Agent A person or an entity which asks the customer to authenticate her identity.
  • Coupon A document, printed or otherwise, that entitles the customer to certain goods, services, or discounts upon presentation.
  • the coupon is stored in the mobile device of the customer.
  • customers typically purchase coupons for events such as concerts, sports matches, performances, movie shows, plays etc., for traveling and for other commercial activities such as shopping.
  • customers may be given coupons by merchants under certain offers.
  • a shopping of INR 5000 might entitle a customer to get a coupon which can be redeemed for INR 500 on next shopping with the same merchant.
  • an air ticket booked from a certain travel agent might entitle a customer to get a coupon which is redeemable for another air ticket.
  • the customer might be given coupons if she is winner of a contest.
  • the coupons are provided to the customers in print form at merchant authorized outlets.
  • the customer collects the ticket or coupon from the authorized outlets possibly after making a corresponding payment.
  • the coupon might be delivered to a customer for a specified payment. This removes the problem of going and collecting the coupon.
  • Printed coupons might be lost or damaged due to reasons beyond the control of the customer which may render the coupon unusable.
  • Coupons can also be bought electronically from coupon outlets located in shopping malls, other commercial centers, or through the Internet.
  • a customer In order to purchase such a coupon, a customer first checks the availability of such a coupon. In case the coupon is available, the customer makes a payment and gets the printed coupon. The coupon may be booked over the internet, in which case the coupon is e-mailed to the customer.
  • the printed coupons usually have a barcode for unique identification of the coupon. The bar code is scanned at the venue of the event to identify the coupon.
  • Such a system still requires that an actual coupon must be printed at some point in the entire process. Further, such paper coupons may be transferred or re-sold to others.
  • Another way to provide coupons to customers is using a mobile device.
  • the mobile device include mobile phones, palm tops and laptops.
  • a coupon is authenticated with a bar code displayed on the screen of the mobile.
  • the distribution of coupons directly to mobile phones as messages including barcodes is a convenient way to distribute coupons. Such a system is easy for a customer to retrieve and present when asked for authentication.
  • a unique bar-coded ticket also containing the pre registered photograph of the ticket holder, is sent to the user mobile device.
  • a barcode reader authenticates the ticket by reading the ticket. But this system requires photograph of the ticket holder to be taken and transmitted to the system, which is cumbersome. Moreover, it also requires additional infrastructure such as a barcode reader.
  • a method for authenticating a transaction in a real-time manner using a mobile device includes receiving a request for a coupon corresponding to a transaction.
  • the request includes Unique Identity Identification (UII) of the mobile device.
  • the method includes sending the coupon to the mobile device based on one or more eligibility criteria.
  • the coupon facilitates the generation of an authentication request from the mobile device.
  • the method also includes authenticating the UII of the mobile device when the authentication request is received. Further, the method includes sending a transaction authentication message at real-time to the mobile device when the UII of the mobile device is authenticated.
  • UAI Unique Identity Identification
  • a system for authenticating a transaction in a real-time manner using a mobile device includes a database for storing a plurality of transaction details.
  • the system also includes a receiving module for receiving an authentication request for authenticating a coupon.
  • the authentication request is generated from the mobile device.
  • the system includes a verification module for authenticating UII of the mobile device.
  • the system includes a sending module for sending a transaction authentication message at real-time to the mobile device.
  • FIG. 1 is a schematic depicting an exemplary telecommunication network
  • FIG. 2 is a schematic illustrating an exemplary Value Added Services (VAS) system in accordance with an embodiment of the invention
  • FIG. 3 is a flow diagram illustrating a method for executing a transaction in accordance with an embodiment of the invention
  • FIG. 4 is a flow diagram illustrating a method for authenticating the transaction in accordance with an embodiment of the invention.
  • FIG. 5 is a flow diagram illustrating a method for verifying a coupon in accordance with an embodiment of the invention.
  • FIG. 1 illustrates a telecommunication network according to an embodiment of the invention.
  • the telecommunication network includes a mobile device 102 and a telecommunication infrastructure 104.
  • Mobile device 102 belongs to a customer.
  • Telecommunication infrastructure 104 includes a Mobile Switching Center (MSC) 106, a Home Location Register (HLR) 108 and a Value Added Services (VAS) system 110.
  • MSC Mobile Switching Center
  • HLR Home Location Register
  • VAS Value Added Services
  • a telecommunication service provider enables a connection between mobile device 102 and telecommunication infrastructure 104.
  • mobile device 102 may be a communication device like a mobile phone, pocket computer, laptop, palmtop, personal digital assistant etc. connected to telecommunication infrastructure 104.
  • MSC 106 enables a network connection between the customer and the destination.
  • the telecommunication network is a Global System for Mobile Communications (GSM) network.
  • GSM Global System for Mobile Communications
  • data information including mobile phone number, text, voice etc
  • MSC 106 At MSC 106, this information is decoded into an analog signal.
  • Telecommunication infrastructure 104 further includes an information storage module used to store subscription information related to subscribers of the telecommunication service.
  • An example of the information storage module is Home Location register (HLR) 108.
  • HLR 108 contains details of customers authorized to use the GSM network.
  • HLR 108 also stores details of every SIM card issued by the mobile device operator. More specifically, HLR 108 stores , telephone numbers, current location and other relevant details of the customers.
  • VAS system 110 in the telecommunication infrastructure 104 authenticates a transaction made by a customer.
  • VAS system 110 has been described in detail below in conjunction with FIG. 2.
  • VAS system 110 is connected to web server 112.
  • Web server 112 accepts Hypertext Transfer Protocol (HTTP) requests from clients, for example, web browsers and serves them HTTP responses along with optional data contents. Examples of optional data content may be web pages such as Hypertext Markup Language (HTML) documents and linked objects such as images.
  • HTTP Hypertext Transfer Protocol
  • FIG. 2 is a schematic illustrating an exemplary VAS System 110 in accordance with an embodiment of the invention.
  • VAS system 110 includes an application server 202 and a database 218.
  • Application server 202 includes a receiving module 204, a decision module 206, a transaction module 208, a coupon generating module 210, a sending module 212, a verification module 214 and a message generating module 216.
  • Receiving module 204 receives a request for transaction (RT) and a request for authentication of transaction (RAT) from mobile device 102 of the customer.
  • the customer may send the request for transaction using any mode, for example, mobile device, internet, cash transaction and a cheque.
  • the request of transaction may also be sent by a third party on the customer's behalf.
  • Sending module 208 sends coupons and messages such as coupon non eligibility message (CNEM) and transaction authentication message (TAM) at real-time to mobile device 102.
  • CNEM coupon non eligibility message
  • TAM transaction authentication message
  • receiving module 204 may include an SMS module, an Unstructured Supplementary Service Data (USSD) module, a Wireless Application Protocol (WAP) module, a Multimedia Messaging Service (MMS) module, a Hypertext Transfer Protocol (HTTP) module, and a voice module.
  • USSD module receives the authentication request in the form of a USSD message from mobile device 102 of the customer. Typically, a USSD message starts with a * followed by digits which indicate an action to be performed. Each group of digits is separated by a *, and the message is terminated with a #. The USSD message can contain a maximum of 182 alphanumeric characters. USSD allows interactive services between the mobile device and applications hosted by the telecommunication service provider.
  • the SMS module receives the authentication request from mobile device 102 in the form of an SMS to a specified number.
  • the specified number might belong to a telecommunication service provider, an agent or a merchant who wishes to authenticate the transaction made by the customer. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5.
  • the voice module receives the authentication request from mobile device 102 in the form of a voice call or video call.
  • HTTP module and WAP module receive the authentication request from mobile device 102 in the form of an HTTP message and a WAP message respectively, to a specified number.
  • the specified number might belong to a telecommunication service provider, an agent or a merchant who wishes to authenticate the transaction made by the customer. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5.
  • decision module 206 checks one or more eligibility criteria of the customer to send the RCT. This can be explained in conjunction with the following example.
  • a club X might open membership only for customers over the age of 25 and having annual income of at least INR 1000000.
  • Decision module 206 receives the customer information such as age and annual income from receiving module 204 and checks for the eligibility criteria. Thus a customer with the age of 30 but annual income of INR 600000 is not eligible for membership of the club X.
  • Another example may be a theatre with a seating capacity of 200. Thus, when 200 seats have been booked, no further RCT can be entertained. Further details regarding the process are described in conjunction with FIG. 3 and FIG. 5.
  • transaction module 208 executes the requested transaction that satisfies the eligibility criteria.
  • the transaction is executed when appropriate amount is deducted from the bank account or credit card of the customers.
  • the transaction is also executed when cash or cheque is accepted from the customer or a third party.
  • the transaction details (TD) such as UII of the mobile device and any additional information that accompanies the RCT is stored in database 218.
  • coupon generating module 210 generates a coupon based on the transaction executed by transaction module 208.
  • the coupon may include information such as Transaction Record Number (TRN), value, benefits and validity period of the transaction.
  • message generating module 216 generates a CNEM.
  • the CNEM may include information such as the reason why the customer is not eligible for the coupon.
  • Verification module 214 authenticates the UII of mobile device 102. According to an embodiment, verification module 214 checks whether UII of mobile device 102 sending the RAT is registered in database 218. Further, verification module 214 also searches for TD in database 218.
  • Message generating module 216 generates a message depending on the result of the verification by verification module 214.
  • the message may be generated, for example, as a USSD message, an HTTP message, an MMS, an encrypted SMS, a voice call, a video call, and a WAP message.
  • the generated SMS might state "CTRN 45/2345 is valid". Further details regarding the verification process are described in conjunction with FIG. 5.
  • sending module 208 includes at least one of a USSD module, HTTP module, WAP module, an SMS module, a MMS module and a voice module.
  • Sending module 208 sends coupons generated by coupon generating module 210 and messages generated by message generating module 216, such as CNEM and TAM 1, at real-time to mobile device 102 of the customer.
  • USSD module is used when a USSD message is sent.
  • SMS module and MMS module are used when the communication is through an encrypted SMS and an MMS respectively.
  • voice module and WAP module are used when communication is through a call or a WAP message respectively. Further details regarding the process are described in conjunction with FIG. 3 and FIG. 4.
  • Database 218 stores information regarding customer subscriptions to telecommunication services and is accessible by application server 202.
  • the information stored in database 218 includes TD, such as UII of mobile device of the customer, coupon related information such as transaction record number (TRN), and value, benefits and validity period of the coupons.
  • the UII may include, for example, mobile number and International Mobile Equipment Identity (IMEI) number of mobile device 102. Further details are described in conjunction with FIG. 3 and FIG. 4.
  • FIG. 3 is a flow diagram illustrating a method for executing a transaction in accordance with an embodiment of the invention.
  • VAS system 110 receives an RCT.
  • decision module 206 checks the eligibility criteria of the customer making the request for transaction. In case the customer satisfies the eligibility criteria, step 306 is executed, otherwise step 314 is executed.
  • VAS system 110 stores UII of the mobile device and other TD in database 218 when the customer satisfies the eligibility criteria.
  • transaction module 208 executes the transaction. Based on the transaction executed, at step 310, coupon generating module generates a coupon or a plurality of coupons.
  • sending module 212 sends the coupon or coupons at real-time to mobile device 102 of the customer.
  • step 314 is executed when the customer making the RCT doesn't satisfy the eligibility criteria at step 304.
  • message generating module 216 generates a coupon non eligibility message (CNEM).
  • sending module 212 sends the CNEM at real-time to mobile device 102 of the customer.
  • CNEM coupon non eligibility message
  • FIG. 4 is a flow diagram illustrating a method for authenticating the transaction according to an embodiment of the invention.
  • the method of FIG. 4 is executed when the request for transaction sent by mobile device 102 of the customer satisfies the eligibility criteria.
  • VAS system 110 sends a coupon or coupons to mobile device 102 of the customer.
  • VAS system 110 receives a request for authentication of transaction (RAT) from mobile device 102 of the customer.
  • RAT request for authentication of transaction
  • the RACT can be made in different formats such as USSD message, SMS, voice call, video call and click on a WAP link.
  • relevant module of receiving module 204 handles the RAT. For example, in case the customer sends the RAT as a USSD message, USSD module handles it.
  • verification module 214 checks whether UII of the mobile device sending the RAT is registered in database 218. Further, verification module 214 also searches for the TD. The verification process is described in detail in FIG. 5.
  • message generating module 216 generates a transaction authentication message (TAM) depending on the result of the verification of the RACT by verification module 214.
  • the TAM may be sent to one or more of the agent, customer or merchant's mobile device.
  • the TAM may be in the form of at least one USSD message, an HTTP message, an MMS, an encrypted SMS, a voice call, a video call, and a WAP message.
  • the TAM might be a USSD message stating "The CTRN A45/23T5 is invalid" when the verification result is negative.
  • sending module 212 sends the TAM at real-time to mobile device 102 of the customer. The authentication is successful when mobile device 102 from which RAT is sent matches with the corresponding information in database 218.
  • FIG. 5 is a flow diagram illustrating a method for verifying a coupon in accordance with an embodiment of the invention.
  • the verification process begins when the VAS system 110 receives an RAT from mobile device 102 of the customer at step 402.
  • verification module 214 checks whether the customer has already used the coupon earlier.
  • Step 506 is executed when no prior use of the coupon by the customer is detected.
  • verification module 214 checks whether the coupon can currently be used by the customer when prior use of the coupon is determined at step 502. Further, at step 506, verification module 214 checks whether the coupon can be used at that particular time.
  • the authentication of the transaction is successful when it is determined that the coupon can be used at the particular time.
  • message generating module 216 generates a successful TAM when the transaction is successful. Similarly, an unsuccessful TAM is generated by message generating module 216 when the authentication is unsuccessful.
  • a travel agent gives a coupon to a customer to avail three free air tickets between 7 th August, 2007 and 15 th September, 2007.
  • the attempt of the customer to use the coupon is verified by checking if the coupon has been used earlier and if the coupon can be used again.
  • Verification module 214 also checks whether the time of using the coupon is valid i.e. between 7 th August, 2007 and 15 th September, 2007.
  • VAS system 110 keeps a count of the number of times the coupon has been used by the customer. Further, the system checks if the coupon usage has exceeded three times and if the validity period of the coupon has lapsed.
  • the TAM is then sent at real-time to mobile device 102 of the customer.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Game Theory and Decision Science (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

La présente invention concerne un procédé et un système pour authentifier une transaction à l'aide d'un dispositif mobile dans un réseau de télécommunications. Une transaction est effectuée pour le client lorsque certains critères d'éligibilité sont satisfaits. Le système stocke les informations d'identité unique (UII) du dispositif mobile du client et les détails de la transaction (TD). Le système envoie un bon sur le dispositif mobile lorsque la transaction est réalisée. Une requête pour l'authentification de la transaction (RAT) peut être envoyée depuis le dispositif mobile du client. Un message d'authentification de la transaction (TAM) est envoyé en temps réel au dispositif mobile authentifiant la transaction.
PCT/IN2007/000627 2007-12-31 2007-12-31 Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications WO2009083999A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/IN2007/000627 WO2009083999A1 (fr) 2007-12-31 2007-12-31 Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/IN2007/000627 WO2009083999A1 (fr) 2007-12-31 2007-12-31 Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications

Publications (1)

Publication Number Publication Date
WO2009083999A1 true WO2009083999A1 (fr) 2009-07-09

Family

ID=40823806

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IN2007/000627 WO2009083999A1 (fr) 2007-12-31 2007-12-31 Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications

Country Status (1)

Country Link
WO (1) WO2009083999A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011051553A1 (fr) * 2009-10-30 2011-05-05 Nokia Corporation Procédé et appareil de récupération durant une authentification
US20140289127A1 (en) * 2013-03-22 2014-09-25 F-Secure Corporation Secured Online Transactions

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010018660A1 (en) * 1997-05-06 2001-08-30 Richard P. Sehr Electronic ticketing system and methods utilizing multi-service vistior cards
US20020023215A1 (en) * 1996-12-04 2002-02-21 Wang Ynjiun P. Electronic transaction systems and methods therefor
US20060165060A1 (en) * 2005-01-21 2006-07-27 Robin Dua Method and apparatus for managing credentials through a wireless network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020023215A1 (en) * 1996-12-04 2002-02-21 Wang Ynjiun P. Electronic transaction systems and methods therefor
US20010018660A1 (en) * 1997-05-06 2001-08-30 Richard P. Sehr Electronic ticketing system and methods utilizing multi-service vistior cards
US20060165060A1 (en) * 2005-01-21 2006-07-27 Robin Dua Method and apparatus for managing credentials through a wireless network

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011051553A1 (fr) * 2009-10-30 2011-05-05 Nokia Corporation Procédé et appareil de récupération durant une authentification
CN102668491A (zh) * 2009-10-30 2012-09-12 诺基亚公司 用于认证期间的恢复的方法和装置
US9195980B2 (en) 2009-10-30 2015-11-24 Nokia Technologies Oy Method and apparatus for recovery during authentication
US20140289127A1 (en) * 2013-03-22 2014-09-25 F-Secure Corporation Secured Online Transactions
US9626676B2 (en) * 2013-03-22 2017-04-18 F-Secure Corporation Secured online transactions

Similar Documents

Publication Publication Date Title
TW594514B (en) Method and apparatus in a wireless communication system for using a selective call receiver to provide demographic information, redeem coupons, and emulate affinity cards
EP1297466B1 (fr) Systeme de delivrance de jeton
US7693744B2 (en) Optimised messages containing barcode information for mobile receiving devices
US7708194B2 (en) Virtual wallet
US7209903B1 (en) Method and system for facilitation of wireless e-commerce transactions
US7240036B1 (en) Method and system for facilitation of wireless e-commerce transactions
US20130097078A1 (en) Mobile remote payment system
US20020091569A1 (en) Electronic coupon system
US20130179250A1 (en) Digital coupon redemption
US20060015402A1 (en) Using multiple PINs for redemption through multiple distribution channels
WO2007012085A2 (fr) Systeme de transactions electroniques mobiles, dispositif et procede s'y rapportant
WO2003096159A2 (fr) Procede et systeme permettant d'effectuer des transactions electroniques via un dispositif personnel
JP2004511052A (ja) チケット発行装置および方法
JP2003132256A (ja) クーポン券情報発行システム及び表示システム
US20020138422A1 (en) Electronic commerce contracts mediating method and mobile communication network
US20120143668A1 (en) Method of managing franchises using credit-card payment system
WO2008113355A1 (fr) Procédé et système permettant de délivrer des tickets électroniques
JP2003168063A (ja) カード決済方法における決済承認方法及びシステム
WO2009083999A1 (fr) Procédé et système pour authentifier une transaction commerciale dans un réseau de télécommunications
JP2003511797A (ja) 電子クーポン付きのリモート・コンフィギュレーション可能なマルチメディア・エンタテインメントおよび情報システム
US20040181531A1 (en) Speed pass system
EP1368796A2 (fr) Terminal de point de vente
WO2009084001A2 (fr) Procédé et système pour authentifier des informations utilisateur
AU780500B2 (en) A token delivery system
JP2001256406A (ja) ポイント管理方法およびポイント管理装置

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07870575

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07870575

Country of ref document: EP

Kind code of ref document: A1

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载