JP2003507824A - Guarantee system for performing electronic commerce and method used therefor - Google Patents

Abstract

(57) [Summary] A system that manages transactions by electronically checking the status of the required group. The host microprocessor (1) has an assigned memory with a restricted transaction identification number corresponding to the user personal identification information. The restricted transaction identification number comprises a random generation number and a time occurrence stamp. The communication device (4) validates the transaction identification number and communicates with the host computer (1).

Description

Detailed Description of the Invention

FIELD OF THE INVENTION The present invention relates to systems and related systems for electronic commerce processing, such as bank card services, including, for example, "on demand" electronic distribution of credit and debit card numbers. And how to do. In particular, at the request of consumers, such as credit and debit card holders, and / or
The present invention relates to a system and method for electronically generating, assigning, and issuing a transaction identification number on demand at a regular frequency determined by a number issuer such as a card issuer or its agent. For use in a variety of transactions, including but not limited to electronic payment transactions, the transaction identification number can be transferred electronically via a wired or wireless telecommunications link.

BACKGROUND OF THE INVENTION In the case of credit and debit card numbers, there is currently the process of mailing the numbers to cardholders in the form of expired, embossed plastic cards. The assigned credit and debit card numbers are fixed numbers so that the cardholder can use them repeatedly over a period of time. Normally, at the expiration date, a new plastic card with the exact same number and a new expiration date is issued.

This is a process and practice that exposes both the cardholder and card issuer to an inconvenient environment and potential fraud.

Inconvenience arises when a cardholder requests a new card, or finds that the current card is missing, stolen, or even damaged to the point of failing. Cardholders cannot redeem until delivery of a new card by mail, which normally requires at least a few days.

Inconvenience also occurs as a result of current practice of dealing with assigned credit and debit card numbers.

The seller uses the credit or debit card number given by the card issuer, intentionally or negligently, to obtain consent for the next payment, without notifying the cardholder and against the intended request. It has been discovered. Until the cardholder receives the statement of deposit after a few weeks and notices the unauthorized use,
Often unaware of these consents.

The increasing use of debit cards has exacerbated this problem by causing these “unsolicited” payment acceptances to result in unanticipated withdrawals from bank deposits. This means that for many debit card holders with limited reserves, accounts and return bills drawn above their balance activate the domino effect, thus reversing automatic payments and transfers.

Card issuers also suffer the inconvenience of having to investigate and resolve such affected cardholder interest conflicts.

The practice of treating credit and debit card numbers as fixed numbers has a great negative effect on cardholders and card issuers when card numbers are used improperly, ie without formal authorization. .

For cardholders, the effects of credit and debit card theft are also inconvenience problems, which may also have more serious consequences such as damaging the customer's credit history. When involved in card theft, the total amount of credit transaction or debit from your bank account charges is not approved, obtained by the seller who originally obtained the card number legally for the approved transaction and payment. Often much more than the amount resulting from the payment. Credits that have reached hundreds or thousands of dollars in billing or debt, after reaching the credit limit or savings, or after the cardholder finally finds the card missing and reports it lost or stolen And it is not uncommon to find debit card theft.

Often, cardholders find that they have been victims of theft, with only the numbers on credit and debit cards stolen, without actually having the card stolen. When it comes to inventing new ways to steal numbers from unsuspecting cardholders, theft seems to lack creativity. They find an ever-increasing number of ways to use stolen numbers, thanks to the burgeoning Internet and telephone commerce and the expanded range of services and software products that can be purchased without the need for physical delivery. ing. This provides the theft a means of circumventing the protection afforded by the credit card industry's requirement that merchandise purchased with credit and debit cards will only be shipped to addresses associated with the cardholder of the record.

For card issuers, the impact of fraudulent use of credit and debit cards is primarily manifested as cost. Federal law requires limiting the burden on consumers in unauthorized electronic commerce. Card issuers have voluntarily expanded this requirement in order to better ensure the trust of the cardholder when using credit and debit cards as a means of payment. Many issuers have pledged to limit the burden on cardholders to $ 50. In fact, issuers often go further and fully compensate for any losses incurred by the card issuer.

The card issuer regards the burden of loss compensation as a business cost. In the case of physically non-card-mediated transactions, including the Internet and other remote transactions, card issuers typically let sellers compensate for any loss due to fraud. However, the total burden continues to increase, and ultimately, of course, costs consumers.

Attempts have been made to solve the problems mentioned above. US Patent No. 5,826,2
At 45, a method is described in which a customer provides matching information in a transaction that results in first and second tokens based on certain sensitive information. Both tokens, in addition to some (but not all) of the sensitive information, for example 4 randomly generated
It contains certain common information such as transaction recognition tags such as digits. The first token is sent to the seller in an unprotected communication. The second token is sent to the card issuer in an unprotected communication. The card issuer then sends the unverified communication to the seller with the verification information (ie, some of the confidential information already provided to the seller with the transaction recognition tag). This way, the entire confidential information is not sent at any time, only the customer and the card issuer know all the confidential information.

US Patent No. 5,627,355 describes a transaction element, device and method for protecting a billing number and its associated personal identification number. The device includes a host computer and a remote mobile commerce element with which it interacts. The card issuer generates a billing number and a personal identification number unique to each billing number series. This information is stored in the memory of the host computer and assigned as a reference series to individual customer billing numbers. The identification series of numbers in the same sequence is stored in the memory of the remote cell commerce device. During use of the remote element, the unique personal identification number (the next number in the stored series) is added to the customer billing number and sent to the host computer which compares the billing number in the reference series with the personal identification number. If the stored series number from the remote element is the same as the reference series number, approval is granted.

US Patent No. 5,317,636 also describes a method and apparatus for protecting credit card commerce. So-called "smart" credit cards are used. The card generates a confirmation number based on the transaction sequence number stored on the card and the encryption algorithm. The confirmation number is transferred to the confirmation computer, which uses the confirmation number together with the decrypted algorithm to generate a calculated commerce sequence number. Authorization is granted if the calculated commercial transaction sequence number matches the commercial transaction sequence number stored in the computer memory.

US Patent No. 5,870,476, the first party applies a temporary random generator to generate a seed to generate a temporary random word, and reverses the temporary random word in a one-to-one manner. It describes the process of a protected data exchange protocol, which generates a checkword in association with a data item constrained by and sends the checkword to a second party. In the next step the first party sends the seed to the second party along with the easily pledged data items. The second party then applies the seed to a temporary random generator similar to the first party to create another temporary random word, and the temporary random word and check word in the same way as the first party. Create a check data item by tying together
Check the consistency of the data items with the easily pledged data items received from the party.

US Patent No. 5,478,994 presents a secure credit card to prevent unauthorized commerce. The card has a microprocessor linked to a PROM programmed with a series of random numbers in a sequence that was predetermined. The random number is the same as the random number of the host computer that can be accessed by using each card. At each card use, the PROM will access the next random number in the sequence and verify by comparing it with the next random number in the sequence presented by the host computer.

US Patent No. 5,068,894 is a smart card and its use,
It describes how to generate unique numbers. The smart card generates a generation key PK, a distribution key MK, a transportation code CP and a series of numbers NS, which generate a unique number NU specific to the card, which is stored in the random access memory RAM after performing a series of steps. It includes a built-in RAM and a read-only memory PROM.

US Patent No. No. 4,965,827 describes the authentication code of digital data. The authenticator generates a sequence of numbers, uses a secret key to controllably move the relative positions of the elements in the sequence, and applies the scrambled sequence to the message to create the authenticator of the message. Is derived by.

Thus, particularly when using the conventional process of shipping credit and debit card numbers to cardholders in the form of embossed plastic cards,
It is desired to provide a method of avoiding the inconvenience caused by unauthorized use of credit card numbers. Further, there is a desire to provide a method that avoids the risk of unauthorized approval resulting from the traditional procedure of treating newly assigned credit and debit card numbers as fixed numbers.

In this application, terms such as “credit card” and “debit card”, “card holder”, “card issuer”, “card service” are used for the sake of clarity in the examples provided. It is being appreciated. However, these words seem to be inadequate over time. In fact, the credit and debit card numbers provided by the present invention, such as electronic check numbers processed through automated exchanges, telephone numbers processed through central exchanges, Internet protocol addresses, sent via computer networks. Uniform resource identifiers, digital certificates,
Given the advances in many other types of commerce, including signatures and others like this, it causes it.

(Summary of the Invention) The present invention allows a provider (eg, a seller) to electronically verify the status of a requester (eg, a customer) to perform a transaction, and if necessary, to approve payment for the transaction. , And provide new and improved systems and methods. For example, in a bank card service where credit and debit card numbers can be electronically issued and sent over wired and wireless communication links, the newly issued credit and debit card numbers should be used for electronic payment transactions. , May be issued on a regular basis, at the request of the cardholder, and / or at a period determined by the card issuer or its agent. Such numbers are combined with individually identifiable information, for example the email address of the cardholder who authorized the number, or demographic or financial profile information about the cardholder who authorized the number, for example. Or a digital certificate or signature, or a random or selective combination of letters and numbers that is known to the cardholder. The agent promptly authenticates such information at the point of sale (or by telecommunications or the like) and recognizes the submitter as an authorized user of the number, making payments in transactions if necessary. Electronically transmitted as a means of confirmation.

The system of the present invention is a system for electronically verifying the status of a requester by a provider to carry out a transaction, and is a system for communicating with a host microprocessor associated with a memory and a host computer. And a communication device, wherein the memory stores the personal identification information (
For example, it includes a restricted use transaction identification number linked to individually recognizable information (that is, personal information) and / or non-personal identification information, wherein the restricted use transaction identification number is a randomly generated number. And a time stamp. The transaction identification number can be used for a wide variety of purposes. For example, it can be used to confirm the price of purchasing a product or transaction service, confirm access to information, and authenticate transmission of information.

The present invention is a method for electronically providing a transaction identification number to a requester, the method comprising: a requester at a first location and a data storage system with a memory at a second location. Forming a telecommunications connection with a host microprocessor of a transaction number issuer (eg, card issuer or card issuing agent), and providing personal identification information to the host microprocessor by the requester. , Issuing a transaction identification number and assigning it to the requester, storing the transaction identification number in combination with the personal identification information in the memory, and providing the transaction identification number to the requester by the telecommunications connection. And a step of transmitting.

In the preferred embodiment of the present invention, the transaction identification number is issued by the following steps. That is, providing a communication link between the user and a microprocessor having an associated memory storage device, identifying the user by a predetermined protocol, and a range limited by the user according to a predetermined limit. A transaction identification number that includes a step of requesting a transaction identification number to be generated for use with a random number and a time stamp portion indicating the time of activation to be used by the requesting user. Providing the transaction identification number to a user, storing the transaction identification number in the associated memory with a link to associated personal identification information and specific restrictions, and A transaction processing network (eg, banking network) for the Tsu is a flop. Further, if certain restrictions are met, the transaction identification number is invalidated and the random portion of the number is returned to the pool of available numbers for subsequent selection and association with the next user. If the random portion continues to be used, the transaction identification number will be different due to the time stamp portion and the personal identification information associated therewith will also be different. Therefore, it is extremely unlikely that the transaction identification number will be illegally used. Typically, the time stamp portion can provide the date and can also provide an ideal indicia of the time that the transaction identification number was valid.

Further, according to the method of the present invention, the transaction is performed by the following steps while using the transaction identification number including the random portion and the time stamp portion indicating the time when it is activated to be used by the requesting user. Be seen. That is, a step of presenting the transaction identification number to a provider by a requesting user to obtain a product or service,
Sending the transaction identification number to the host microprocessor by the provider to confirm the status of the user and the transaction identification number; and receiving personal identification information from the host microprocessor to confirm the user. A step of obtaining information from the user for comparison with the personal identification information obtained from the host microprocessor, a step of confirming to the host microprocessor that the user has been confirmed, and a transaction if necessary. There is the step of obtaining authorization from the host microprocessor to pay for it. If the transaction identification number is used only to authenticate the user and payment is not required, for example if only club members have access to the information, the last step can be omitted. The personal identification information can also be sent to the microprocessor as part of a transaction for comparison with the user information stored in memory, and the host computer sends a confirmation signal to confirm the user. .

To warn against unauthorized use, the present invention takes full advantage of the randomness inherent in the pool of numbers. The present invention creates a means by which these numbers are assigned to users on a regular basis and issued for use in a limited time or in a limited environment, one number guaranteed for one user. It is reused among the users who are being used.

In a preferred embodiment, the user and the number issuer (eg, cardholder and card issuer) or their agent will determine the “lifetime” of individually assigned numbers (eg, credit and debit card numbers). Can be systematically adjusted. By changing this adjustment range, the assigned number can be assigned to a specified total number of approved transactions, a specified period of time, a transaction process only with a specific seller, or a specific provider of goods and services, newly issued. The number can be used only in "one-time uses," where it is valid in one-time transactions, and the like.

Whatever the particular restrictions are, once the individually assigned transaction identification number reaches the end of its life, the host microprocessor immediately changes its operating state.
The random part of the number is removed from the cyclical use and marked to return to the pool of available numbers and the last reallocation. The time interval before the number is actually returned to the pool may be due to specific and legal requirements, or certain guidelines set forth by the number issuer (eg card issuer) or its agent. However, according to the preferred embodiment of the present invention, the transaction identification number can never be duplicated.

According to a preferred embodiment of the present invention, the number issuer (eg card issuer) or its agent electronically numbers the newly activated transaction identification number (eg credit or debit card number). To secure the combination of web servers and other servers with the user's (eg cardholder's) personally identifiable information (eg personal information such as email address). be able to. With this, the seller of the goods and services and other providers or their agents can quickly judge whether the personal identification information shown together with the transaction identification information at the time of sale is available through the Internet or telephone. As a result, it is more protected from unauthorized use of any transaction identification number.

Accordingly, the present invention provides a process for issuing credit and debit card numbers and transmitting them electronically over wired and wireless telecommunications networks. This allows the cardholder to transmit in real time a newly assigned number for use in electronic commerce.

Detailed Description of the Invention Including Preferred Embodiments FIG. 1 illustrates a credit and debit card newly assigned to a cardholder by a card issuer or agent according to an embodiment of the present invention. 1 shows a schematic of an "on-demand" electronic distribution system for credit and debit card numbers by a preferred method of electronically transmitting numbers. In addition, it depicts components of a bank card network infrastructure, including number processing to obtain approval and complete electronic commerce.

At the heart of the system is the host computer 1 of the card issuer or agent. The host computer has a microprocessor and memory,
Issuance of new credit and debit card numbers, revision of the banking network for card number activation and status changes, management of assigned and previously assigned card numbers, maintenance of cardholder description, authorization and other cards Serves to perform all functions based on e-commerce. The functionality of the host computer can be divided among the computers or between the hosts. An interactive voice response unit 2 (IVR) or other electronic processing device interacts with the cardholder who first accessed the host computer via a telephone or other audio transceiver 6. The server 3 interacts with the cardholder who uses an electronic processing unit for communication and with the cardholder who directly accesses the host computer by means of a modern or internet connection 5. The wired and / or wireless telecommunication network 4 is used for communication.

For example, a system further including an electronic processing device 7 may include a personal or network computer, a digital telephone or other automated device may
rchant) or service provider for direct dial-up or internet connection. The smart card 8 is used for portable storage of credit and debit card numbers prior to electronic commerce done at the point of sale or on the Internet. Terminal vendor 9 is used with card-based electronic commerce initiated by the vendor. The additional IVR or other electronic processing device 10 is used with electronic commerce initiated by the cardholder's first access via the telephone transceiver. In addition, the additional server 11 is used with electronic commerce initiated by the cardholder's direct dial-up or access via an internet connection. Conventional bank networks 12 are used to authorize payments for card-based electronic commerce.

According to the present invention, the cardholder can use the telephone transceiver 6 or the electronic processing unit 7.
To access the system by. When accessed via the telephone transceiver 6, the cardholder dials the IVR 2 above the wired and / or wireless telecommunications network 4. During the connection, application and standard instructions are given by the card issuer or issuance agent, and the cardholder goes through a procedure to authorize the user's identification or certification. With such a simple configuration, the identification of the authorized user is encrypted with a password or a personal identification number (PIN). Higher level identification configurations may include voice printing techniques or digital certificates that authorize the identification through vocal and advanced telephone network connections.

After certifying the authorized user, the IVR 2 retrieves the cardholder information file and stores it in the host computer 1 of the card issuer or agent. Search for
It involves running the IVR 2 and the host computer 1 as well as running the file server. This provides a sufficient level of security for the cardholder who is searching to access the outside of the firewall.

Once the cardholder file has been retrieved, the cardholder can begin requesting new credit and debit card numbers. The request is processed to return to host 1 via the server. While receiving the request, Host 1 effectively changes the number previously assigned to the cardholder to an invalid number and changes state to remove the previously distributed number. Applying the features of the method of the present invention,
Card folders can be allocated at the same time and certain credit or debit card numbers and authorized personal numbers can remain valid until subject to certain restrictions. Such specific restrictions include, for example, one authorization per operational provision of the designated card program, card issuer and agent. In such cases, fulfillment of the request for a new credit or debit card number is not necessarily required, resulting in a change of state from the previously assigned number.

In a simpler form, after a previous cardholder number match or a state change has taken place, the host computer 1 has all available combinations of pools of credit and debit card numbers. Randomly generate a new number from among the possibilities, and the issuer assigns a number to the cardholder.

The issuance of the newly assigned credit or debit card number moves onto IVR2 after the number is returned to the server. The newly assigned number is then electronically transferred to the wired and / or wireless telecommunications network 4 so that the IVR 2 relays the new number to the cardholder at low frequency via the telephone transceiver 6.

Upon receipt of the above number, the cardholder can record the newly assigned number and use it in the upcoming electronic commerce transaction. Although the cardholder can easily use the identification or credit card number on the seller side by encrypting the end-to-end seller 9, the cardholder can mail / telephone order (MOTO) the card number. Can be used as part of a transaction.
For such transactions, a direct person-to-person or voice connection, along with a telephone call, together with the IVR 10, will issue an encrypted number or voice for determination by voice recognition technology with virtual assistance. Is used where In any case,
Once the above numbers have been communicated to the seller, they are handled in the same manner as transactions involving traditional credit and debit card numbers.

The difference between the method of the present invention and a conventional credit card number is that it provides some treatment of attempts by the seller to obtain authorization for additional payments through the use of the number. Any of the special numbers will result in a new credit card number or additional payment depending on the operational limits specified by the cardholder when obtaining the card issuer or agent's special card program. Used for authorization.

When accessing the host computer 1 via the electronic processing unit 7, the cardholder can dial the server 3 directly on the wired and / or wireless telecommunication network 4. Also, in combination with the internet using a web browser, the server 3 on a wired and / or wireless telecommunication network 4 can be accessed. During connection, the cardholder goes through a certification process consistent with the application and standards specified by the card issuer or card issuing agent. As mentioned above, in its simplest form, it includes a simple encrypted password or PIN in combination with the issuance of a digital certificate. In more advanced forms of authorization, digital certificates or signatures and / or some biometric (bi
More advanced applications such as forms of ometrics can be included.

After successful authorization, the server 3 retrieves the cardholder file stored in the host computer 1. Searching involves moving files to a server, possibly through another server that works with server 3 and host computer 1. In this way, a sufficient security level is provided by again limiting the cardholder access to the outside of the firewall.

Once the cardholder file is retrieved, the cardholder initiates a request for a new credit or debit card number. This request moves from the server 3 to the host computer 1. When the request is received, the host computer 1
It works to change the previously assigned number to a number that the cardholder has effectively revoked and distributed and removed. Therefore, if a previously assigned number has already been revoked, or if a new number is allowed to effectively lock in to be assigned, then there is virtually no other special restriction. In other words, the preferred form of the invention allows the user to have multiple valid transaction identification numbers. If the changed states match, the host computer 1 randomly generates and assigns a new number from all available combinations of credit and debit number pools and issues the number to the cardholder, if necessary. To do. At the same time, the host computer 1 notifies the bank network 12 of the activation of the new number and the change of the state of the previous number.

The issuance of the newly assigned credit or debit card number further involves the transfer of the number back to the server 3. The newly assigned number is then wired and / or so that the server 3 relays the new number to the cardholder in the form of an electronic processing unit 7 via download using a hard drive or a browser.
Alternatively, an electronic transfer is made to the wireless telecommunication network 4. This transfer may also involve the use of an electronic wallet provided either on the electronic processing device 7 or on the web server, possibly on the server 3. In addition, the smart card 8 can also be used for electronic transfers, delivered to the smart card 8 via the electronic processing device 7, such that the credit or debit card number is at the end of the number. Alternatively, the new number can be communicated to the smart card 8 via the end customer 9, IVR 10, or server 11 (FIG. 1).

Upon receipt of the number, the cardholder can immediately use the number for upcoming electronic commerce. For example, it can be used for transactions that are done either via direct dial-up or internet connection to the server 11. The procedure involves moving the transaction identification number to the seller's server 11 with the help of an electronic wallet, or by another means, a page that can be initiated by a browser or simple cryptographic entry. You can include a request. The transaction identification number can also be transferred to the seller's server 11 or IVR 10 via the smart card 8. In either case, once the transaction identification number is communicated to the seller, it is traded like a traditional credit and bit card number.

By the time the newly assigned credit and debit card numbers are electronically transferred within the established banking network or through other routes in a wired and / or wireless telecommunication network link for use in electronic commerce There are various alternative procedures. For example, the above number can be communicated directly to the server 11 or immediately preceding IVR 10, during the course of completing such a transaction. Such a procedure is made possible by the proposal provided by the present invention.

A unique and random representative 16 digit credit and debit card number is shown in FIG. Although a 16-digit number is used, the exact number of all digits is
Can be changed. It may be a bank identification number or the exact number of digits assigned for credit or other special features included in a debit card number. As in this example, make sure that the first digit to the left of the card type is "5" for a master card and "4" for a visa, for example. The subsequent digits contain the Bank Identification Number (BIN). This is a fixed number related to the card issuer's special information. Usually, if relevant to BIN, it contains the first digit that identifies the card type. Card issuers also typically allocate more BIN to accommodate the credit or debit card number requested by the cardholder. The extreme rightmost digit is what is commonly referred to as the "check digit". It is the result of applying a special algorithm and is used to ensure complete credit or debit card numbers.

The type of digit between the BIN and the check digit is configured to be almost “random” continuous. New credit or debit card numbers that are actually created and assigned are randomly selected by the card issuing host computer from a pool of available combinations (ie, currently unassigned or previously assigned combinations). Continuous. The numbers are not necessarily randomly selected. In a practical embodiment, the original number assigned to the cardholder varies continuously.

However, according to the present invention, for example, as shown in FIG. 2, a sequence of 7 digits is treated as a randomly created number. The present invention takes advantage of this random feature and creates a means for the guaranteed and accurate reissuing of these numbers within a group of cardholders. Then, a randomly assigned number will be assigned to only one cardholder at any time without delay.

FIG. 3 is a more detailed diagram of an arrangement for a preferred method of electronically transferring a newly assigned credit or debit card number across a wired and / or wireless telecommunication link. The host computer 1 including the microprocessor and the storage device unit is operated by a credit card issuer or an agent of the credit card issuer. This is wired and / or
Alternatively, it is linked via a wireless telecommunication network 4 to a telephone transceiver 6, a server 3 or an IVR 2 and an electronic processing device, for example a device 7 or a smart card 8. The server 3 and / or IVR 2 has the following configuration:
It comprises a custom written application 13, a microprocessor 14, a hard disk 15 and a random access memory 16.
Similarly, the electronic processing unit 7 and / or the smart card 8 also have the following configuration:
Customer entry application 17, microprocessor 18, hard disk 19
And a random access memory 20.

In operation, the RAM 20 or telephone transceiver 6 is connected to the memory of the host computer 1 through the wired and / or wireless telecommunication link 4 and via the RAM 16. The cardholder's request for a new card number or debit card number is relayed from the electronic processing unit 7 or the telephone transceiver 6 to the host computer 1 via the IVR 2 or the server 3 and / or a server operating in cooperation with the IVR 2. To be done. A digital replica of the newly assigned credit or debit card number is electronically transferred from the memory of the host computer 1 to the RAM 20 or the telephone transceiver 6 via the RAM 16.

Customer fill application 13 and customer fill application 17 also
Contributes to electronic transfer methods. The customer entry application 13 is stored on the hard disk 15 and operates in cooperation with the microprocessor. Such application software requires transfer performed by accessing either the IVR 2 or the server 3, and facilitates the operation of a session in which collaboration with the host computer 1 is managed. The customer entry application 17 is stored on the hard disk 19 and operates in cooperation with the microprocessor 18. This may require a transfer to be made with the help of a locally stored electronic wallet, an internet browser or a transfer to the smart card 8 for storage. Such application software may not require a transfer including the use of a web server, perhaps an electronic wallet belonging to server 3. In any case, such application software may be written by those skilled in the art as needed to facilitate communication between components in the system and save desired records at appropriate locations.

Customer filling applications also generally require a host computer 1. This application performs all the functions involved in achieving the functions required to carry out the present invention, and to maintain appropriate financial and historical records for credit card issuers. In addition, it is provided as a part of a set of applications belonging to the necessary host computer 1. Such application software is easily provided by a skilled programmer.

If the cardholder chooses to locally store the credit or debit card number and then transfer it, the digital copy is moved from a temporary store in RAM 20 to a more permanent store on hard disk 19. .

The system of the present invention is also configured in a manner that removes RAM 16 as an intermediate memory for access made via IVR2. However, it has been found that this configuration can currently reduce the degree of security provided by the system.

FIG. 4 illustrates a process according to the present invention that takes full advantage of the inherent randomness of typical 16 digit credit and debit card numbers. To the right of the host computer 1 is a display of a pool of credit or debit numbers consisting of all possible combinations of 7-digit strings used for selection in association with a unique BIN. The size of this pool can be modified to meet the needs of a given number of cardholders. Under the host computer 1,
There is a newly generated 16 digit number that contains the random part string, ie "0104905". This number is randomly selected at the request of the cardholder. According to a preferred embodiment of the invention, said number is assigned and via the IVR 2 or server 3 via the wired and / or wireless telephone communication link 4 depending on the means by which the cardholder has access to the system. It is issued by electronically transferring it (see FIGS. 1 and 3).

Above the selected 16-digit number and to the left of the host computer 1 is a description of the notification assigned to the number and sent to the activated bank network. The content of this description may include operating rules for the particular card program, card issuer, and other information corresponding to other agents. Then above the bank network 13 is a description in a database, made up of already assigned 16-digit numbers, maintained in cooperation with the host computer 1. The above number is
Removed from reassignment in accordance with certain legal requirements and / or certain guidelines followed by circulation and credit card issuers or their agents to return to a pool of usable numbers as circumstances change .

FIG. 5 illustrates the activation of newly assigned credit and debit card numbers by applying a time stamp indicating the time of activation. This timestamp is the activation time, for example, activation day, month and year: preferably activation hour, day, month and year: more preferably activation minute, hour, day, month and It may consist of appropriate instructions for the year. This timestamp may be incorporated into a string of numbers in various ways that exist in various data fields, or a combination of data fields available in the string of numbers (eg, currently used for expiration dates). Can be conventionally set as at least part of the data field). For extraordinary security, even the chronometer "seconds" can be included in the timestamp. The time stamp indicates the time of activation so that the transaction identification number is electronically communicated with the cardholder's personal identification information (eg, email address, or other unique information). This cardholder will be assigned the above number as a means of the seller or their agents to quickly match and identify authorized users when personally identifiable information is displayed at the point of sale. ing. Such personal information need not be shown directly to the seller. This may be terminated by comparing the cardholder in the system with only the confirmation or verification signal provided to the seller.

This aspect of the invention includes transmitting the transaction identification number and personal identification information in a manner that provides the merchant or its agent with a means of accessing the information without including the security of the cardholder. . This personal identification information is preferably
Either IVR2 or Server 3 or other suitable IV in the system
It can be sent to either R or the server. This sending step is done automatically on a normal process subject to acceptance of the cardholder's application and characteristics into the card program. This same information may be needed from the requesting cardholder if the cardholder receives a new restricted credit or debit card number according to the present invention.

The information required by the merchant to access the cardholder's personal information (or to request confirmation of an authorized user) is a newly assigned credit card in conjunction with a time stamp. A number or debit card number, preferably this time stamp is a simple derivation of the time the number was officially activated or issued. This timestamp is, for example, "mmddyy", which represents an array of numbers for the day, month, year, hour, and minute in the publication.
You can receive it in the form of "yyhhmm". A more expanded form may include an "ss" for the exact second at which the issue occurred.

The combination of 16 digit number and time stamp is shown in FIG. actually,
The two together form a "super string" which is the transaction identification number (eg, credit card number). In the case of the example, the transaction identification number is 28.
The digit string "5410940001049055081119991200", which is the random part "
0104905 ”and August 11, 1999, including the time stamp“ 081119991200 ”representing the official date and time of issue, which is noon in 1999.

An important feature of the transaction identification number according to the present invention is that it is generated, not expired,
It is a time stamp indicating the time of activation or issuance, which in the preferred embodiment is shown at essentially the same time. Therefore, what considers a timestamp is not known to be valid. Confirmation occurs through a bank network or other user verification and transaction authorization. However, use of expiration time or date is not excluded. In practice, a combination of activation time and expiration time may be a good basis. As used herein, the term "time" includes date.

Passing the superposed string to the cardholder is within the above framework for electronic transfer of credit and debit card numbers to the cardholder as part of the issuing process. IVR used by seller or its agent
Alternatively, sending the stack string to the server occurs simultaneously in the same framework as one step, preferably the step during the publishing process.

Once sent, the overlay string acts as a unique password to access the file containing the cardholder identification information at the IVR or server. Of course, the seller or its agent must first provide the date / time derivative in conjunction with the electronically issued transaction identification number to complete the overlaid string. Moreover, access to the personal identification information is denied once the number is deactivated.

There are various ways in which the “overlap string” may be provided to the seller or his agent. The cardholder can simply communicate the overlay string to the seller at the point of physical display or telephone sale. Also, the overlaid string may be communicated electronically (as an indication of a credit or debit card number) for use in electronic and discounting as a matter of the trading process. This can be done by various means described above (eg, voice recognition, electronic wallets, browsers, smart cards, other similar types of means). However, by any means of receiving the transaction identification number, the seller or its agent may collate or display the information provided in conjunction with the use of credit and debit card numbers at the point of sale. The above means can be used for authorized access to the cardholder personal identification information, in order to access further personal information which is not provided or to transfer said personal information. This can be done either on the internet or by phone. In any case, the seller or his agent will not be able to access the file that records the cardholder about the random part of the number and the time stamp, and in order to access the specific information, the overlapping string at the IVR or server. Simply display. To ensure the security of the cardholder, the process may allow the individual overlapping strings to be used only to access the cardholder information once. Further, such a security assessment is provided by once a specific number has been revoked and access to personal information is denied.

A wide variety of restrictions on the use of overlapping strings can be easily envisioned. In one embodiment, the overlay string may be augmented with additional data fields that identify a particular seller. For example, an electronically issued digital certificate authorizing use only by a particular seller, and if payment is included, will only provide payment for an account pre-specified by that seller. Various methods of limiting use are limited only to practical considerations and writing application software to operate systems with such limitations.

Accordingly, the present invention provides a methodology for managing new and improved system transactions, in particular at least a portion of the transactions are managed electronically, eg credit card numbers and debits. The card number is generated, activated,
And electronically transferred through wired and wireless telecommunication links,
Issuing bank card, where the credit and debit card numbers are time stamped upon activation to generate a unique number that limits usage and the newly assigned restricted credit card number. And with a certain frequency such that the debit card number is required by the cardholder and / or determined by the card issuer or its agent, for use in electronic payment transactions, and the transaction identification number. Will be securely sent electronically in collaboration with the cardholder's personally identifiable information (eg personal information such as email address or population or financial profile information), which will be displayed at the point of sale. Sellers or their agents to quickly collate personal information provided to them and verify authorized users. As a means of people, these numbers are assigned. Confirming the authorized user may include providing access to further personal information or forwarding the further personal information to the seller or other provider of tools and services.

The hardware configurations required to carry out the invention are those currently in existence. However, some customer entry applications may want to ensure smooth flow through the system. Such software can be easily written by a skilled programmer. An example is an application in which the card issuer's or its agent's host computer automatically makes a change to the circulating credit and debit card numbers after certain events limit the use of the card. obtain.

One aspect of the present invention includes a method of generating a "overlap string" to facilitate transactions and allow cardholder verification by a seller or its agent.
Overlaid strings are frequently utilized in the formation of credit or debit cards, or temporary credit or debit cards. However, overlapping strings can be utilized in a wide variety of trading situations.

Although the present invention has been described in detail, changes and modifications thereto can be made by those skilled in the art without departing from the spirit and scope of the invention as set forth in the appended claims. It should be understood. For example, the functionality of a host computer may be provided by various microprocessors, servers and storage devices that work together in distributed systems. In use, the time stamp is only needed to provide an indication of the time of activation or issuance. The order of the steps of obtaining the numbers and the steps used may vary depending on the circumstances. The number may be provided directly from the issuer to the seller under the circumstances selected by the user. The transaction identification number or "overlap string" may be in other forms, may be more than one number or string, and may be represented in a form such as a table. The time stamp may be provided as a separate number or in any conceivable way. The invention is not limited by the terms used to describe the invention or the various embodiments.

[Brief description of drawings]

FIG. 1 illustrates a credit and debit card number according to an embodiment of the present invention.
It is a figure which shows the structure of the electronic distribution system of "on demand."

FIG. 2 illustrates the inherent randomness of representative 16-digit credit and debit card numbers.

FIG. 3 shows in more detail the configuration of electronic transmission of a newly assigned credit or debit card number linked to a wired and / or wireless telecommunication network according to an embodiment of the present invention.

FIG. 4 illustrates a procedure for the inherent randomness of a typical 16 digit credit and debit card number by utilizing all of the methods of the present invention.

FIG. 5 is a diagram illustrating a system portion including electronically the newly assigned credit and debit card numbers along with the cardholder's email address according to one embodiment of the invention, where the seller or agent is The case where the above number is assigned is shown as a means for immediately confirming the address provided by the sales destination.

─────────────────────────────────────────────────── ─── Continued front page    (81) Designated countries EP (AT, BE, CH, CY, DE, DK, ES, FI, FR, GB, GR, IE, I T, LU, MC, NL, PT, SE), OA (BF, BJ , CF, CG, CI, CM, GA, GN, GW, ML, MR, NE, SN, TD, TG), AP (GH, GM, K E, LS, MW, MZ, SD, SL, SZ, TZ, UG , ZW), EA (AM, AZ, BY, KG, KZ, MD, RU, TJ, TM), AE, AG, AL, AM, AT, AU, AZ, BA, BB, BG, BR, BY, BZ, C A, CH, CN, CR, CU, CZ, DE, DK, DM , DZ, EE, ES, FI, GB, GD, GE, GH, GM, HR, HU, ID, IL, IN, IS, JP, K E, KG, KP, KR, KZ, LC, LK, LR, LS , LT, LU, LV, MA, MD, MG, MK, MN, MW, MX, MZ, NO, NZ, PL, PT, RO, R U, SD, SE, SG, SI, SK, SL, TJ, TM , TR, TT, TZ, UA, UG, UZ, VN, YU, ZA, ZW

Claims (25)

[Claims] 1. A system for conducting a commercial transaction by electronically verifying the status of a requester by a provider, comprising a host microprocessor associated with a memory, and a communication device for communicating with the host computer. The memory includes a transaction identification number with restricted use, and personal identification information associated with the transaction identification number with restricted use, wherein the restricted transaction identification number is a randomly generated number, A system for conducting a commercial transaction characterized by having a time stamp. 2. The random number can be selected as the randomly generated number,
The system for conducting commercial transactions according to claim 1, comprising a pool of available numbers. 3. The system for conducting commercial transactions according to claim 1, wherein the memory contains a list of reusable invalidation transaction identification numbers. 4. The system for conducting commercial transactions according to claim 2, wherein said memory contains a list of invalidation transaction identification numbers for returning to a pool of available numbers. 5. The transaction identification number is a credit card number.
A system for conducting commercial transactions described in. 6. The system for conducting a commercial transaction according to claim 1, wherein the transaction identification number is a debit card number. 7. A method for issuing a restricted use transaction identification number to a user, the method comprising: providing a communication link between the user and a microprocessor having associated memory storage; and a user according to a predetermined protocol. Verifying the transaction, providing a transaction identification number from the pool of available numbers, including a random portion and a time stamp portion indicating the time it was activated to be used by the requesting user; Transmitting an identification number, storing the transaction identification number in the associated memory with a link to the associated personal identification information and specific restrictions, and notifying the activation transaction identification number. A method characterized by comprising. 8. Disabling the transaction identification number when certain restrictions are met, in order to continue selecting and associating the random portion of the number with the next user.
8. Returning to the pool of available numbers. 9. The transaction identification number is a credit card number.
The method described in. 10. The method of claim 7, wherein the transaction identification number is a debit card number. 11. The method of claim 7, wherein the transaction identification number comprises an additional data field that authenticates a particular seller. 12. A method for completing a commercial transaction comprising providing a transaction identification number including a random portion and a time stamp portion indicating a time of activation to be used by a requesting user, the item or Presenting the transaction identification number to the provider by the requesting user to obtain service, and transmitting the transaction identification number by the provider to the host microprocessor to confirm the status of the user and the transaction identification number. A step of receiving personal identification information from the host microprocessor to confirm the user, obtaining information from the user to compare with the personal identification information obtained from the host microprocessor, the user confirmed To the host microprocessor to confirm that And a method comprising: 13. The method of claim 12 including the step of obtaining authorization from the host microprocessor to pay for the transaction. 14. The transaction identification number is a credit card number.
The method described in 2. 15. The transaction identification number is a debit card number.
The method described in. 16. The method of claim 11, wherein the transaction identification number comprises an additional data field that authenticates a particular seller. 17. The step of providing the transaction identification number comprises the steps of providing a communication link between the user and a microprocessor having an associated memory storage, and authenticating the user by a predetermined protocol. A step of requesting a transaction identification number generated for use by a user in a limited range according to a predetermined limit, a random part, and a time stamp part indicating a valid time to be used by the requesting user. Providing a transaction identification number from a pool of available numbers, sending the transaction identification number to the user, providing the transaction identification number with a link to the associated personal identification information and specific restrictions. Accordingly, the step of storing in the related memory and the step of notifying the activation transaction identification number The method of claim 12, characterized in that and a flop. 18. The transaction identification number is a credit card number.
7. The method according to 7. 19. The transaction identification number is a debit card number.
The method described in. 20. A method of electronically providing a transaction identification number to a requester, the transaction number issuer being connected to a memory data storage system at a first location and a second location. Forming a telecommunications connection with a host microprocessor, providing personal identification information to the host microprocessor by the requester, issuing a transaction identification number and assigning it to the requester, Storing the transaction identification number in combination with the personal identification information in a memory; and transmitting the transaction identification number to the requestor over the telecommunications connection. 21. The transaction identification number is a credit card number.
The method described in 0. 22. The transaction identification number is a debit card number.
The method described in. 23. The method of claim 20, wherein the step of issuing the transaction identification number comprises the step of validating the number by adding a time stamp indicating the time of activation. 24. The transaction identification number is a credit card number.
The method according to 3. 25. The transaction identification number is a debit card number.
The method described in.