US20070299781A1 - System and apparatus for credit data transmission - Google Patents

System and apparatus for credit data transmission Download PDF

Info

Publication number
US20070299781A1
US20070299781A1 US11/818,693 US81869307A US2007299781A1 US 20070299781 A1 US20070299781 A1 US 20070299781A1 US 81869307 A US81869307 A US 81869307A US 2007299781 A1 US2007299781 A1 US 2007299781A1
Authority
US
United States
Prior art keywords
transaction data
credit transaction
authorization
point
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US11/818,693
Inventor
Alan Rodriguez
Christopher Cross
Dorwin Shields
David Meckenstock
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Paymentech LLC
Original Assignee
Paymentech LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Paymentech LLC filed Critical Paymentech LLC
Priority to US11/818,693 priority Critical patent/US20070299781A1/en
Publication of US20070299781A1 publication Critical patent/US20070299781A1/en
Assigned to PAYMENTECH, LLC reassignment PAYMENTECH, LLC MERGER (SEE DOCUMENT FOR DETAILS). Assignors: PAYMENTECH, L.P.
Abandoned legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/03Credit; Loans; Processing thereof

Definitions

  • a system for transmitting credit transaction data such as credit card data, account number data, vendor number data, user identification data, password data, PIN number data, an authorization request, or other suitable data
  • the system includes a remote hub system that is connected to a communications medium, such as the Internet.
  • the remote hub system receives credit transaction data, such as an authorization request, a credit card number, and a transaction amount, from one or more point of sale systems, such as credit card authorization terminals.
  • the remote hub system then encrypts the credit transaction data, and transmits the encrypted credit transaction data over the Internet to a gateway system.
  • the gateway system decrypts the encrypted credit transaction data and transmits the credit transaction data to an authorization system.
  • Gateway system 106 can be implemented in hardware, software, or a suitable combination of software and hardware, and can be one or more software systems operating on a general-purpose server platform. Gateway system 106 receives encrypted credit transaction data from remote hub system 102 over communications medium 112 and converts the encrypted credit transaction data into credit transaction data in a format suitable for transmission to authorization system 108 . Gateway system 106 can also transmit data to remote hub system 102 , such as data requesting the status of remote hub system 102 or point of sale system 104 , protocol modules for updating the credit transaction data format protocols used by remote hub system 102 , encryption modules for updating the encryption process used by remote hub system 102 , and other suitable data. Gateway system 106 can also interface with multiple authorization systems 108 , such that data received from remote hub system 102 can be routed to a suitable authorization system.
  • Dynamic protocol translator 506 receives credit transaction data from a point of sale system 104 based upon one or more standard protocols for the point of sale systems.
  • dynamic protocol translator 506 translates ISO 8583 or VISA-K protocol data into a data format suitable for encryption by encryption system 502 .
  • Dynamic protocol translator 506 can also receive a protocol module and update the protocol by which it receives the credit transaction data.
  • authorization data is transmitted to the point of sale system, such as by transmitting through a gateway system to a remote hub system, and then by using mapped authorization request and credit transaction data to identify the point of sale system to which the authorization data should be transmitted. If it is determined at 716 that authorization has been denied, a data message is transmitted to the point of sale system that instructs the operator that the credit transaction has been denied. Likewise, additional data such as theft warning data can be transmitted.
  • method 700 allows authorization requests and credit transaction data to be transmitted over a communications medium in a manner that allows the data to be encrypted and the encryption mechanism to be changed.
  • Method 700 allows multiple authorization systems and remote hub systems to be coupled through a single gateway system.

Abstract

A system for transmitting credit transaction data, such as an authorization request, is provided. The system includes a remote hub system that is connected to a communications medium, such as the Internet. The remote hub system receives credit transaction data, such as an authorization request, a credit card number, and a transaction amount, from one or more point of sale systems, such as credit card authorization terminals. The remote hub system then encrypts the credit transaction data, and transmits the encrypted credit transaction data over the Internet to a gateway system. The gateway system decrypts the encrypted credit transaction data and transmits the credit transaction data to an authorization system.

Description

    FIELD OF THE INVENTION
  • The present invention pertains to the field of payment data processing. More specifically, the invention relates to a system and apparatus for transmitting credit transaction data that allows the credit transaction data to be transmitted over a communications medium.
  • BACKGROUND
  • Electronic payment systems are used to receive credit and other electronic payment data and to transfer an authorization request that includes the credit transaction data to an authorization system. The authorization system then verifies whether the form and amount of payment is valid, and an authorization code is generated for transmission to the point of sale that authorizes the transaction, denies the transaction, notifies the operator or potential criminal activity, or provides other suitable data. In this manner, fraudulent activities using electronic payment on credit cards can be minimized.
  • Current authorization systems utilize the public switched telephone network for authorization. The point of sale terminal must establish a telephone connection with the authorization host, such as by a dial-up connection or by using a leased line with a permanent connection. Such connections through the public switched telephone network or through leased lines are expensive to maintain, and may experience communications failure.
  • A second method by which point of sale terminals may be connected with an authorization host is through the Internet or other online communications media through a virtual private network device. The virtual private network device encodes data received from the point of sale terminals and then decodes the data at the authorization host. Such virtual private network devices cannot be remotely programmed, are typically made from hardware or otherwise not designed to be updated with new programming, and do not provide communications from the authorization system to the point of sale system, such as to determine the status of point of sale system. In addition, such virtual private network devices are not compatible with standard network architecture and must be installed outside of the network firewall. In addition, failure of the virtual private network device can result in communications failure.
  • Thus, while credit transaction authorization is presently performed over communications media, such authorization either is at high cost, in that it requires connections to be made over the public switched telephone network, or in that it requires expensive virtual private network devices that are not compatible with existing networks and which must be changed out in the event of a security violation. In addition, the credit transaction data that can be transmitted is limited and cannot be readily modified in response to standards changes, technological changes, or for other reasons.
  • SUMMARY OF THE INVENTION
  • In accordance with the present invention, a system and apparatus for transmitting credit transaction data are provided that overcome known problems with transmitting credit transaction data.
  • In particular, a system and apparatus for transmitting credit transaction data are provided that allow credit transaction data to be transmitted over the Internet or other communications media, by allowing the encryption procedures used on the credit transaction data to be readily updated so as to protect system security.
  • In accordance with an exemplary embodiment of the present invention, a system for transmitting credit transaction data, such as credit card data, account number data, vendor number data, user identification data, password data, PIN number data, an authorization request, or other suitable data, is provided. The system includes a remote hub system that is connected to a communications medium, such as the Internet. The remote hub system receives credit transaction data, such as an authorization request, a credit card number, and a transaction amount, from one or more point of sale systems, such as credit card authorization terminals. The remote hub system then encrypts the credit transaction data, and transmits the encrypted credit transaction data over the Internet to a gateway system. The gateway system decrypts the encrypted credit transaction data and transmits the credit transaction data to an authorization system.
  • The present invention provides many important technical advantages. One important technical advantage of the present invention is a system and apparatus for transmitting credit transaction data that allows the encryption procedure to be readily modified. The present invention thus allows the Internet or other unsecured communications media to be used to transmit credit transaction data by allowing encryption procedures that are used to maintain the security of the credit transaction data to be readily updated.
  • Those skilled in the art will further appreciate the advantages and superior features of the invention together with other important aspects thereof on reading the detailed description that follows in conjunction with the drawings.
  • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 is a diagram of a system for providing online credit transaction data transmission in accordance with an exemplary embodiment of the present invention;
  • FIG. 2 is a diagram of a system for transmitting credit transaction data from multiple point of sale terminals to multiple authorization systems in accordance with an exemplary embodiment of the present invention;
  • FIG. 3 is a diagram of a system for transmitting credit transaction data over a communications medium in accordance with an exemplary embodiment of the present invention;
  • FIG. 4 is a diagram of a system for transmitting credit transaction data in accordance with an exemplary embodiment of the present invention;
  • FIG. 5 is a diagram of a system for providing remote hub access to a gateway system in accordance with an exemplary embodiment of the present invention;
  • FIG. 6 is a diagram of a system for performing gateway system functions in accordance with an exemplary embodiment of the present invention;
  • FIG. 7 is a diagram of a method for processing credit transaction data in accordance with an exemplary embodiment of the present invention; and
  • FIG. 8 is a diagram of a method for processing remote management messages in accordance with an exemplary embodiment of the present invention.
  • DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS
  • In the description which follows, like parts are marked throughout the specification and drawings with the same reference numerals, respectively. The drawing figures may not be to scale and certain components can be shown in generalized or schematic form and identified by commercial designations in the interest of clarity and conciseness.
  • FIG. 1 is a diagram of a system 100 for providing online credit transaction data transmission in accordance with an exemplary embodiment of the present invention. System 100 allows credit to be transferred over a public communications medium, such as the Internet, and allows the credit transaction data to be encrypted in a manner that allows the encryption mechanism to be modified or updated as needed.
  • System 100 includes remote hub system 102. Remote hub system 102 can be implemented in hardware, software, or a suitable combination of hardware, and can be one or more software systems operating on a Single Board Computer (“SBC”) manufactured by EMAC, Inc. of Carbondale, Ill., an Ericsson eBox Model 101, or other suitable Open Services Gateway Initiative (OSGI) compliant appliances. As used herein, a software system can include one or more lines of code, objects, agents, subroutines, one or more lines of code operating in two or more different software programs, two or more separate software programs, or other suitable software architectures. In one exemplary embodiment, a software system can include one or more lines of code or other suitable software structures operating in a general purpose competing program, such as an operating system, and one or more lines of code or other suitable software structures operating in a specific purpose software application.
  • Remote hub system 102 receives credit transaction data from point of sale system 104 in accordance with a predetermined data transmission protocol, such as the ISO 8583 protocol, the VISA-K protocol, or other suitable protocols. The credit transaction data can also include Electronic Data Interchange (EDI) format data, credit card data, account number data, vendor number data, user identification data, password data, PIN number data, an authorization request, or other suitable data. Remote hub system 102 then encrypts the credit transaction data, and transmits the credit transaction data as an authorization request over a communications medium 112 to gateway system 106. Authorization data is then received at remote hub system 102 from an authorization system through gateway system 106, and is transmitted to the point of sale system 104 by remote hub system 102.
  • Remote hub system 102 can also receive data from gateway system 106 through communications medium 112, such as data that can be used to control the operation of remote hub system 102, requests for status, or other suitable data. Remote hub system 102 can use a data format that is amenable for transmission through local area network or wide area network firewalls, such as HyperText Transfer Protocol (“HTTP”) format data, extensible Markup Language (XML), or other format data, such that remote hub system 102 can be installed at any point within a network without consideration for the location of that position in regards to the network firewall.
  • Point of sale system 104 is coupled to remote hub system 102, and can be implemented in hardware, software, or a suitable combination of hardware and software, and can be one or more software systems operating on a point of sale terminal or device. As used herein, the term “couple” and its cognate terms, such as “couples” and “coupled,” can include a physical connection (such as a copper conductor), a virtual connection (such as through randomly assigned memory locations of a data memory device), a logical connection (such as through logical devices of a semiconducting circuit), a combination of such connections, or other suitable connections. In one exemplary embodiment, systems and components are coupled to other systems and components through intervening systems and components, such as through an operating system of a processor platform.
  • Point of sale system 104 can receive credit transaction data from a magnetic stripe of a credit card, data entered by a user through a terminal, or other suitable forms of credit or electronic payment data, and can transmit the data to remote hub system 102 in a suitable format. Point of sale system 104 also receives authorization data from an authorization system through remote hub system 102, and uses the authorization data to determine whether to accept or reject a credit or electronic payment transaction.
  • Gateway system 106 can be implemented in hardware, software, or a suitable combination of software and hardware, and can be one or more software systems operating on a general-purpose server platform. Gateway system 106 receives encrypted credit transaction data from remote hub system 102 over communications medium 112 and converts the encrypted credit transaction data into credit transaction data in a format suitable for transmission to authorization system 108. Gateway system 106 can also transmit data to remote hub system 102, such as data requesting the status of remote hub system 102 or point of sale system 104, protocol modules for updating the credit transaction data format protocols used by remote hub system 102, encryption modules for updating the encryption process used by remote hub system 102, and other suitable data. Gateway system 106 can also interface with multiple authorization systems 108, such that data received from remote hub system 102 can be routed to a suitable authorization system.
  • Authorization system 108 can be implemented in hardware, software, or a suitable combination of hardware and software, and can be one or more software systems operating on a general-purpose server platform. Authorization system 108 receives credit transaction data from gateway system 106 and performs an authorization analysis on the credit transaction data. In one exemplary embodiment, authorization system 108 checks a credit card number against a list of reported stolen credit card numbers, a list of credit card numbers that are over their credit limit, and a list of credit card numbers for which monitoring of the credit card has been initiated. Authorization system 108 then transmits suitable data to gateway system 106, such as a code authorizing or denying the use of the credit card for the credit transaction.
  • Transaction system 110 can be implemented in hardware, software, or a suitable combination of hardware and software, and can be one or more software systems operating on a general-purpose server platform. Transaction system 110 receives credit transaction data from gateway system 106 and performs credit transaction processing. In one exemplary embodiment, transaction system 110 obtains historical data, account data, or other suitable data for a merchant pertaining to one or more credit transactions.
  • Communications medium 112 is coupled to remote hub system 102 and gateway system 106 and allows communications to flow between remote hub system 102 and gateway system 106. In one exemplary embodiment, communications medium 112 is the Internet, but can also or alternatively include a local area network, a wide area network, a wireless network, the public switched telephone network, a suitable combination of such media, or other suitable communications media. In another exemplary embodiment, communications medium 112 is the Internet and also includes a connection through the public switched telephone network that can be used in the event that the Internet is unavailable.
  • In operation, system 100 is used to transmit credit transaction data over an open, online communications medium, such as the Internet, a local area network, a wide area network, a wireless network, or other suitable communications media. System 100 allows credit transaction data received from a point of sale terminal to be encrypted before transmission over the open communications medium, and decrypted when the credit transaction data is received at a gateway. The encryption mechanism can be updated as needed in order to prevent unauthorized persons from decrypting or otherwise determining how to access the encrypted data.
  • System 100 further allows remote hub system 102 to interface with point-of-sale devices and other devices so as to recognize the device and set configuration parameters to allow the point-of-sale devices and other devices to communicate with the transaction systems, authorization systems, and other systems, so as to allow point of sale devices and other devices that were not previously able to communicate over the Internet, to receive and transmit data to these systems. Any non-HTTP-based communications protocol used by such devices, such as email, socket connections, File Transfer Protocol (FTP), any TCP/IP protocol that isn't inherently securable, and other protocols can be accommodated.
  • FIG. 2 is a diagram of system 200 for transmitting credit transaction data from multiple point of sale terminals to multiple authorization systems or transaction systems in accordance with an exemplary embodiment of the present invention. System 200 allows multiple authorization systems and transaction systems to connect to one or more remote hub systems through a public online communications medium or other suitable communications media. In the exemplary embodiment shown in FIG. 2, two authorization systems only are shown, but system 200 can also be used with three or more authorization systems, one or more transaction systems, and a suitable combination of authorization systems and transaction systems.
  • System 200 includes remote hub systems 102 a and 102 b, which are coupled to point of sale systems 104 a and 104 b, respectively. Gateway system 106 of system 200 is coupled to authorization systems 108 a and 108 b. In the exemplary embodiment shown in FIG. 2, point of sale system 104 a can interface with authorization system 108 a through remote hub system 102 a and gateway system 106. Likewise, point of sale system 104 b can interface with authorization system 108 b through remote hub system 102 b. Gateway system 106 can receive the encrypted credit transaction data from remote hub system 102 a and remote hub system 102 b, and can decrypt the data and determine whether the encrypted data should be transmitted to authorization system 108 a or authorization system 108 b. In this manner, a single gateway system can be used to connect to two or more authorization systems for use by multiple remote hub systems and point of sale systems.
  • FIG. 3 is a diagram of a system 300 for transmitting credit transaction data over a communications medium in accordance with an exemplary embodiment of the present invention. System 300 allows data from two or more point of sale systems to be transmitted to one or more authorization systems or transaction systems through a single remote hub system. In the exemplary embodiment shown in FIG. 3, an authorization system only is shown, but system 300 can also be used with two or more authorization systems, one or more transaction systems, and a suitable combination of authorization systems and transaction systems.
  • System 300 includes remote hub system 102, which is coupled to point of sale systems 104 a, 104 b and 104 c through communications medium 302. Communications medium 302 can be a local area network, a wide area network, individual hard-wired connections to each point of sale system, a wireless network, or other suitable communications media. Remote hub system 102 can transmit and receive data from each of point of sale systems 104 a, 104 b, and 104 c, such as through use of an Ethernet communications protocol, a token ring communications protocol, direct communications to each terminal, or other suitable protocols.
  • Remote hub system 102 can then transmit the data received from point of sale systems 104 a, 104 b, 104 c to gateway system 106 for subsequent transmission to authorization system 108. Likewise, multiple authorization systems can be connected to gateway system 106, such that point of sale system 104 a can transmit credit transaction data to a first authorization system, point of sale system 104 b can transmit credit transaction data to a second authorization system, and other suitable transmissions can be made. In this manner, a single remote hub system can couple a plurality of point of sale systems to one or more authorization systems through a single communications medium 112.
  • Likewise, remote hub system 102 can receive authorization data from one or more authorization systems 108 through one or more gateway systems 106, and can route the authorization data to the corresponding point of sale system 104 a, 104 b, or 104 c for which the authorization data has been generated. Remote hub system 102 includes routing functionality that allows the credit transaction data received from a point of sale terminal to be matched with the corresponding authorization data received from an authorization system 108. In one exemplary embodiment, remote hub system 102 maps address data to each credit transaction data message that identifies the point of sale systems 104 a, 104 b, or 104 c that the credit transaction data was received from. This address data map is then used to route the authorization data received from the authorization system 108 to the correct point of sale system 104 a, 104 b, or 104 c. Other suitable procedures can also be used.
  • FIG. 4 is a diagram of a system 400 for transmitting credit transaction data in accordance with an exemplary embodiment of the present invention. System 400 allows two or more gateway systems to transmit credit transaction data from a point of sale system to an authorization system, and to transmit the corresponding authorization data to the point of sale system. In the exemplary embodiment shown in FIG. 4, an authorization system only is shown, but system 400 can also be used with two or more authorization systems, one or more transaction systems, and a suitable combination of authorization systems and transaction systems.
  • System 400 includes gateway systems 106 a and 106 b which are each coupled to communications medium 112. Likewise, gateway systems 106 a and 106 b can be coupled to each other through a communications medium 402, which can be the public switched telephone network, a leased line, or other forms of communications. Gateway systems 106 a and 106 b thus exchange periodic updates and can function as redundant gateway systems for access to authorization system 108.
  • In operation, system 400 is used to transmit credit transaction data from point of sale system 104 to remote hub system 102 and then to authorization system 108 through either or both of gateway systems 106 a and gateway system 106 b. Data transmitted from remote hub system 102 over communications medium 112 can be received at either or both of gateway system 106 a and 106 b. Gateway system 106 b can be disabled while gateway system 106 a is in operation, or can also be configured to receive information and transmit information redundantly to authorization system 108. In this manner, if either of gateway systems 106 a or 106 b fail to operate, fail to receive the credit transaction data, or otherwise become unavailable, the credit transaction data is still transferred to authorization system 108 for authorization.
  • FIG. 5 is a diagram of a system 500 for providing remote hub access to a gateway system in accordance with an exemplary embodiment of the present invention. System 500 includes remote hub system 102, encryption system 502, remote management interface 504, dynamic protocol translator 506, device router 508, and telephone backup system 510, each of which can be implemented in hardware, software, or a suitable combination of hardware and software, and which can be one or more software systems operating on a Java virtual machine, such as a Single Board Computer (“SBC”) manufactured by EMAC, Inc. of Carbondale, Ill.
  • Encryption system 502 receives credit transaction data from a point of sale system and encrypts the credit transaction data for transmission over a suitable communications medium, such as the Internet. Encryption system 502 can receive credit transaction data in a first legacy protocol format from the point of sale system, and can extract the credit transaction data for transmission to a gateway system 106. Encryption system 502 then uses an encryption algorithm or other suitable encryption procedures to encrypt the data in a manner that prevents the data from being intercepted by unauthorized third parties. The encrypted data is then transmitted over the communications medium to the gateway system. Encryption system 502 can also receive an encryption module and update the encryption procedure used to encrypt the credit transaction data.
  • Remote management interface 504 can also receive data messages that have been transmitted from gateway system 106 to system 200 over a suitable communications medium. This data can either be encrypted for decryption by encryption system 502, or can be transmitted in an unencrypted form. Remote management interface 504 then removes header data, format data, and other data from the data message and performs predetermined functions based upon the content of the data message. In one exemplary embodiment, remote management interface 504 can execute code stored within the data message, such as code that installs a dynamic protocol translator module in dynamic protocol translator 506, code that installs an encryption module in encryption system 502, or suitable code.
  • Dynamic protocol translator 506 receives credit transaction data from a point of sale system 104 based upon one or more standard protocols for the point of sale systems. In one exemplary embodiment, dynamic protocol translator 506 translates ISO 8583 or VISA-K protocol data into a data format suitable for encryption by encryption system 502. Dynamic protocol translator 506 can also receive a protocol module and update the protocol by which it receives the credit transaction data.
  • Device router 508 can receive and transmit data messages from one or more point of sale systems. Device router 508 is operable to receive credit transaction data from one or more point of sale systems and to transfer the data to dynamic protocol translator 506 or encryption system 502 for subsequent transmission to an authorization server. Likewise, device router 508 can also receive data for one or more point of sale systems 104 from other or dynamic protocol translator 506 or encryption system 502, and can route the encrypted data to the appropriate point of sale system.
  • Telephone backup system 510 can establish a connection with the gateway system over the public switched telephone network in the event that system 500 is otherwise unable to transmit and receive data messages from the gateway system over a preferred communications medium, such as the Internet. In one exemplary embodiment, telephone backup system 510 establishes a dial-up connection or uses a leased telephone line when no response is received to an authorization request after several attempts over the preferred communications medium.
  • In operation, system 500 is used to control the operation of an apparatus for encrypting data received from a credit entry device or point of sale system, where credit transaction data is transmitted over a communications medium such as the Internet, such as in the form of an authorization request to a gateway system to an authorization system. System 500 also allows encrypted or unencrypted data messages to be received from the gateway system over the communications medium and to be handled appropriately, such as by updating encryption system 502 with an encryption module, updating dynamic protocol translator 506 with a protocol module, or by other suitable procedures.
  • System 500 allows credit transaction data to be received from one or more point of sale systems. The credit transaction data is then processed by dynamic protocol translator 506 to extract the credit transaction data. The credit transaction data is then encrypted by an encryption system 502 and is then transmitted to a gateway system. Likewise, system 500 allows data messages to be received from a gateway system 106 by a remote management interface 504, such as status requests, encryption modules, protocol modules, or other suitable data.
  • FIG. 6 is a diagram of system 600 for performing gateway system functions in accordance with an exemplary embodiment of the present invention. System 600 includes gateway system 106, translator 602, authorization host interface 604, hub manager 606, gateway interface 608, telephone backup system 610, and transaction host interface 612, each of which can be implemented in hardware, software, or a suitable combination of hardware and software, of which can be one or more software systems operating on a general purpose server platform.
  • Translator 602 receives encrypted data messages that include credit transaction data, and decrypts the encrypted data. Translator 602 can also receive encryption modules, such that the encryption system can be updated as required to maintain system security. Translator 602 can receive authorization data from an authorization system, and can encrypt the authorization data for subsequent transmission to the remote hub system.
  • Authorization host interface 604 receives credit transaction data from translator 602 and transmits the credit transaction data to an authorization system. If multiple authorization systems are used, authorization host interface 604 can also determine the appropriate authorization host to transmit the credit transaction data to, such as by using data from a credit card type identifier field, an authorization host identifier field, or other suitable procedures. Authorization host interface 604 can also convert the credit transaction data into a format for use by the authorization system. The authorization response from the authorization host can also be received by authorization host interface 604, and can be transmitted to translator 602, directly to the remote hub system, or to other suitable systems or components.
  • Hub manager 606 transmits status requests, encryption module updates, protocol module updates, or other suitable data to remote hub systems, and can analyze status data received in response to the status request from the remote hub systems. In one exemplary embodiment, hub manager 606 periodically transmits status requests and encryption modules to remote hub systems, in order to maintain system reliability and system security. Hub manager 606 can transmit status requests and encryption modules in response to operator requests or as otherwise required.
  • Gateway interface 608 allows system 600 to interface with other gateway systems, such as to allow data about the status of remote hub systems, encryption systems or other data to be coordinated or synchronized between systems 600. In one exemplary embodiment, gateway interface 608 is used to coordinate the encryption module updates and status requests such that conflicting encryption module updates are not made. Gateway interface 608 also allows credit transaction data received at a first gateway to be transmitted to a second gateway in the event the public online communications medium becomes disabled or interrupted.
  • Telephone backup system 610 can establish a connection with the remote hub systems over the public switched telephone network in the event that system 600 is otherwise unable to transmit and receive data messages from the remote hub systems over a preferred communications medium, such as the Internet. In one exemplary embodiment, telephone backup system 610 establishes a dial-up connection or uses a leased telephone line when no response is received to a message after several attempts over the preferred communications medium.
  • Transaction host interface 612 receives credit transaction data from translator 602 and transmits the credit transaction data to a transaction system. If multiple transaction systems are used, transaction host interface 612 can also determine the appropriate transaction host to transmit the credit transaction data to, such as by using data from a credit card type identifier field, a transaction host identifier field, or other suitable procedures. Transaction host interface 612 can also convert the credit transaction data into a format for use by the transaction system. Any response from the transaction host can also be received by transaction host interface 612, and can be transmitted to translator 602, directly to the remote hub system, or to other suitable systems or components.
  • In operation, system 600 allows encrypted credit transaction data to be received and translated for use by authorization systems. System 600 also allows remote hub systems and point of sale systems to be monitored for problems, and allows protocol updates to be transmitted for use by remote hub systems.
  • FIG. 7 is a diagram of a method 700 for processing credit transaction data in accordance with an exemplary embodiment of the present invention. Method 700 can be used in conjunction with a remote hub system or other suitable systems.
  • Method 700 begins at 702 where credit transaction data is received. The credit transaction data can include a credit card number, amount, and other suitable credit transaction data, and can be received in accordance with the ISO 8583 protocol, the VISA-K protocol, or other suitable protocols. If the credit transaction data is received from one of two or more point of sale systems or other devices, then the credit transaction data can be mapped to allow authorization data that is sent in response to an authorization request to be matched with the corresponding point of sale system. The method then proceeds to 704.
  • At 704, the credit transaction data is assembled into an authorization request and encrypted, such as by using an updateable encryption module of an encryption system. The method then proceeds to 706, where the encrypted authorization request and credit transaction data is transmitted over a suitable communications medium, such as the Internet, a local area network, a wide area network, a wireless network, or other suitable communications media. The encrypted authorization request and credit transaction data can be transmitted in packets, in HTTP format, or by other suitable procedures. The method then proceeds to 708.
  • At 708, the encrypted authorization request and credit transaction data is received and the method proceeds to 710 where the authorization request and credit transaction data is decrypted. In one exemplary embodiment, the encrypted authorization request and credit transaction data is received at a gateway system and a decryption method is used that is coordinated with the encryption method used at a remote hub system. The method then proceeds to 712.
  • At 712, an authorization host for the authorization request and credit transaction data is determined. For example, an authorization request and credit transaction data may be received for one or more credit card issuing organizations, such as a Visa card, a MasterCard, an American Express card, or other suitable credit cards. Each of these credit card issuing organizations may have its own authorization host, or a single authorization host can be used that performs authorization services in lieu of the issuing card organization. After the authorization host is determined at 712, the method proceeds to 714 where the authorization request and the credit transaction data is transmitted to the authorization host for authorization. The method then proceeds to 716.
  • At 716, it is determined whether authorization has been granted. If authorization has been granted, the method proceeds to 718 where credit authorization data is transmitted to the point of sale system, such as by transmitting through a gateway system to a remote hub system, and then by using mapped authorization request and credit transaction data to identify the point of sale system to which the authorization data should be transmitted. If it is determined at 716 that authorization has been denied, a data message is transmitted to the point of sale system that instructs the operator that the credit transaction has been denied. Likewise, additional data such as theft warning data can be transmitted.
  • An operation, method 700 allows authorization requests and credit transaction data to be transmitted over a communications medium in a manner that allows the data to be encrypted and the encryption mechanism to be changed. Method 700 allows multiple authorization systems and remote hub systems to be coupled through a single gateway system.
  • FIG. 8 is a diagram of a method 800 for processing remote management messages in accordance with an exemplary embodiment of the present invention. Method 800 begins at 802 where a remote management message is received, such as at a remote hub system. The method then proceeds to 806 where it is determined whether a status request has been received. If a status request has been received at 804 the method proceeds to 806 where status data is obtained and transmitted. In one exemplary embodiment, the status data can include status data for a remote hub system and one or more point of sale systems coupled to the remote hub system, such as operability state data, encryption module data, protocol module data, terminal setup data, historical data such as the number of authorization requests for which a telephone backup system was used, and other suitable data. The method then proceeds to 808. Likewise, if it is determined at 804 that a status request has not been received, the method proceeds directly to 808.
  • At 808, it is determined whether a protocol update has been received. If no protocol update has been received, the method proceeds to 812, otherwise the method proceeds to 810 where the protocol module is stored in a suitable dynamic protocol translator system, such as one that is used to control the transmission of credit transaction data to and from a point of sale system. The method then proceeds to 812.
  • At 812, it is determined whether an encryption module update has been received. The encryption module update can be used to modify an encryption system so as to maintain system security. If it is determined that an encryption module update has been received at 812 the method proceeds to 814 where the encryption module update is stored in a suitable encryption system. Otherwise, the method proceeds to 813 and terminates.
  • In operation, method 800 allows remote hub management messages to be transmitted from a gateway system to a remote hub system to facilitate the transmission of encrypted credit transaction data over a communications medium, such as the Internet. Method 800 allows status data to be requested from the remote hub system and any point of sale systems used in conjunction with the remote hub system, allows protocol modules to be transmitted for use by the remote hub system, allows encryption data to be transmitted so that the encryption process can be modified as required, and allows other suitable management data to be received and processed by the remote hub.
  • Although preferred and exemplary embodiments of a system and apparatus for credit transaction data transmission have been described in detail herein, those skilled in the art will also recognize that various substitutions and modifications can be made to the systems and methods without departing from the scope and spirit of the appended claims.

Claims (19)

1-21. (canceled)
22. An apparatus for transmitting credit transaction data over a communications medium comprising:
a protocol translator for receiving the credit transaction data from two or more point of sale systems according to two or more different transmission protocols, each transmission protocol associated with a different credit authorization system, and forming a credit transaction data message; and
means for receiving the credit transaction data message from the protocol translator and encrypting the credit transaction data message.
23. The apparatus of claim 22 further comprising a device router for transmitting authorization data received in response to the credit transaction data message to one of the two or more point of sale systems.
24. The apparatus of claim 22 further comprising a management system interface for storing a protocol module to the protocol translator.
25. The apparatus of claim 22 further comprising a management system interface for storing an encryption module to an encryption system.
26. The system of claim 22 further comprising:
a gateway system receiving and decrypting the encrypted credit transaction data message;
a first authorization system interface coupled to the gateway system;
a second authorization system interface coupled to the gateway system; and
wherein the gateway system transmits the credit transaction data message to the first or second authorization system based upon the credit transaction data message.
27. The system of claim 22 wherein the point-of-sale systems include one or more pre-existing point of sale systems that are configured to communicate using a public switched telephone network telephone line.
29. The system of claim 28 further comprising a telephone backup system coupled to one of the two or more of the point of sale systems, wherein one of the two or more point of sale systems uses the telephone backup system when a network communications medium is unavailable.
30. A method for transmitting credit transaction data over a communications medium comprising:
receiving credit transaction data from two or more point of sale devices;
determining a point-of-sale device data transmission protocol to use to assemble the credit transaction data into an authorization request;
transmitting the authorization request over the communications medium;
determining which of two or more authorization systems is an appropriate authorization system to provide the authorization request to; and
transmitting the authorization request to the appropriate authorization system.
31. The method of claim 30 wherein receiving the credit transaction data from the point of sale device comprises receiving the credit transaction data in accordance with one or more of an ISO 8583 protocol or a Visa-K protocol.
32. The method of claim 30 further comprising encrypting the credit transaction data using an encryption module received from a hub manager.
33. The method of claim 30 wherein transmitting the authorization request over the communications medium comprises transmitting encrypted data in an HTTP format.
34. An apparatus for transmitting credit transaction data over a communications medium comprising:
means for receiving the credit transaction data from two or more point of sale systems according to two or more different transmission protocols, each transmission protocol associated with a different credit authorization system, and forming a credit transaction data message; and
an encryption system receiving the credit transaction data message and encrypting the credit transaction data message.
35. The apparatus of claim 34 further comprising a device router for transmitting authorization data received in response to the credit transaction data message to one of the two or more point of sale systems.
36. The apparatus of claim 34 further comprising a management system interface for storing a protocol module to a protocol translator.
37. The apparatus of claim 34 further comprising a management system interface for storing an encryption module to the encryption system.
38. The apparatus of claim 34 further comprising:
a gateway system receiving and decrypting the encrypted credit transaction data message;
a first authorization system interface coupled to the gateway system;
a second authorization system interface coupled to the gateway system; and
wherein the gateway system transmits the credit transaction data message to the first or second authorization system based upon the credit transaction data message.
39. The apparatus of claim 34 wherein the point-of-sale systems include one or more pre-existing point of sale systems that are configured to communicate using a public switched telephone network telephone line.
40. The apparatus of claim 34 further comprising a telephone backup system coupled to one of the two or more of the point of sale systems, wherein one of the two or more point of sale systems uses the telephone backup system when a network communications medium is unavailable.
US11/818,693 2000-09-07 2007-06-15 System and apparatus for credit data transmission Abandoned US20070299781A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US11/818,693 US20070299781A1 (en) 2000-09-07 2007-06-15 System and apparatus for credit data transmission

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US09/656,815 US7233920B1 (en) 2000-09-07 2000-09-07 System and apparatus for credit transaction data transmission
US11/818,693 US20070299781A1 (en) 2000-09-07 2007-06-15 System and apparatus for credit data transmission

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US09/656,815 Continuation US7233920B1 (en) 2000-09-07 2000-09-07 System and apparatus for credit transaction data transmission

Publications (1)

Publication Number Publication Date
US20070299781A1 true US20070299781A1 (en) 2007-12-27

Family

ID=38157164

Family Applications (2)

Application Number Title Priority Date Filing Date
US09/656,815 Expired - Lifetime US7233920B1 (en) 2000-09-07 2000-09-07 System and apparatus for credit transaction data transmission
US11/818,693 Abandoned US20070299781A1 (en) 2000-09-07 2007-06-15 System and apparatus for credit data transmission

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US09/656,815 Expired - Lifetime US7233920B1 (en) 2000-09-07 2000-09-07 System and apparatus for credit transaction data transmission

Country Status (1)

Country Link
US (2) US7233920B1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090202081A1 (en) * 2008-02-08 2009-08-13 Ayman Hammad Key delivery system and method
US9270447B2 (en) 2011-11-03 2016-02-23 Arvind Gidwani Demand based encryption and key generation and distribution systems and methods
US10147089B2 (en) 2012-01-05 2018-12-04 Visa International Service Association Data protection with translation

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7627521B1 (en) * 2002-01-15 2009-12-01 Jpmorgan Chase Bank, N.A. System and method for processing mircotransactions
US7219149B2 (en) * 2003-06-12 2007-05-15 Dw Holdings, Inc. Versatile terminal adapter and network for transaction processing
US20070210909A1 (en) * 2006-03-09 2007-09-13 Honeywell International Inc. Intrusion detection in an IP connected security system
GB0904877D0 (en) * 2009-03-20 2009-05-06 Global Refund Holdings Ab Interface module, system and method
US10242368B1 (en) * 2011-10-17 2019-03-26 Capital One Services, Llc System and method for providing software-based contactless payment
US10949815B2 (en) 2011-12-13 2021-03-16 Visa International Service Association Integrated mobile trusted service manager
SG11201403251PA (en) 2011-12-13 2014-08-28 Visa Int Service Ass Integrated mobile trusted service manager
US10373168B2 (en) * 2015-01-12 2019-08-06 Mastercard International Incorporated Method and system for retry processing of controlled payment transactions
US10657534B2 (en) * 2017-05-15 2020-05-19 Bank Of America Corporation Information security using velocity attack detection

Citations (68)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3786439A (en) * 1972-12-26 1974-01-15 Ibm Error detection systems
US4755940A (en) * 1983-09-17 1988-07-05 International Business Machines Corporation Transaction security system
US4799156A (en) * 1986-10-01 1989-01-17 Strategic Processing Corporation Interactive market management system
US4843220A (en) * 1987-03-13 1989-06-27 American Magnetics Corporation Automatic data capture for multiple form point of sale slip packs
US5222018A (en) * 1985-07-18 1993-06-22 Pitney Bowes Inc. System for centralized processing of accounting and payment functions
US5448047A (en) * 1992-10-30 1995-09-05 Microbilt Corporation Card validation method using multiple cord data regions
US5450317A (en) * 1993-11-24 1995-09-12 U S West Advanced Technologies, Inc. Method and system for optimized logistics planning
US5490251A (en) * 1991-08-09 1996-02-06 First Data Resources Inc. Method and apparatus for transmitting data over a signalling channel in a digital telecommunications network
US5490060A (en) * 1988-02-29 1996-02-06 Information Resources, Inc. Passive data collection system for market research data
US5500890A (en) * 1993-08-19 1996-03-19 Exxon Research And Engineering Company Point-of-sale system using multi-threaded transactions and interleaved file transfer
US5621670A (en) * 1991-08-01 1997-04-15 Fujitsu Limited Communication service simulator and a communication service specification verifying method
US5678010A (en) * 1995-06-07 1997-10-14 Compuserve Incorporated Automated routing of messages over a network
US5734823A (en) * 1991-11-04 1998-03-31 Microtome, Inc. Systems and apparatus for electronic communication and storage of information
US5742845A (en) * 1995-06-22 1998-04-21 Datascape, Inc. System for extending present open network communication protocols to communicate with non-standard I/O devices directly coupled to an open network
US5754772A (en) * 1996-03-26 1998-05-19 Unisys Corporation Transaction service independent HTTP server-to-transaction gateway
US5757917A (en) * 1995-11-01 1998-05-26 First Virtual Holdings Incorporated Computerized payment system for purchasing goods and services on the internet
US5765143A (en) * 1995-02-28 1998-06-09 Triad Systems Corporation Method and system for inventory management
US5774883A (en) * 1995-05-25 1998-06-30 Andersen; Lloyd R. Method for selecting a seller's most profitable financing program
US5778173A (en) * 1996-06-12 1998-07-07 At&T Corp. Mechanism for enabling secure electronic transactions on the open internet
US5781632A (en) * 1995-02-08 1998-07-14 Odom; Gregory Glen Method and apparatus for secured transmission of confidential data over an unsecured network
US5812997A (en) * 1995-10-26 1998-09-22 International Business Machines Incorporated Method and apparatus for deriving an association rule between data
US5812668A (en) * 1996-06-17 1998-09-22 Verifone, Inc. System, method and article of manufacture for verifying the operation of a remote transaction clearance system utilizing a multichannel, extensible, flexible architecture
US5832456A (en) * 1996-01-18 1998-11-03 Strategic Weather Services System and method for weather adapted, business performance forecasting
US5845267A (en) * 1996-09-06 1998-12-01 At&T Corp System and method for billing for transactions conducted over the internet from within an intranet
US5848161A (en) * 1996-05-16 1998-12-08 Luneau; Greg Method for providing secured commerical transactions via a networked communications system
US5854746A (en) * 1990-04-28 1998-12-29 Kanebo, Ltd. Flexible production and material resource planning system using sales information directly acquired from POS terminals
US5909492A (en) * 1994-10-24 1999-06-01 Open Market, Incorporated Network sales system
US5917913A (en) * 1996-12-04 1999-06-29 Wang; Ynjiun Paul Portable electronic authorization devices and methods therefor
US5931917A (en) * 1996-09-26 1999-08-03 Verifone, Inc. System, method and article of manufacture for a gateway system architecture with system administration information accessible from a browser
US5956700A (en) * 1994-06-03 1999-09-21 Midwest Payment Systems System and method for paying bills and other obligations including selective payor and payee controls
US5963924A (en) * 1996-04-26 1999-10-05 Verifone, Inc. System, method and article of manufacture for the use of payment instrument holders and payment instruments in network electronic commerce
US5978918A (en) * 1997-01-17 1999-11-02 Secure.Net Corporation Security process for public networks
US5983208A (en) * 1996-06-17 1999-11-09 Verifone, Inc. System, method and article of manufacture for handling transaction results in a gateway payment architecture utilizing a multichannel, extensible, flexible architecture
US5987140A (en) * 1996-04-26 1999-11-16 Verifone, Inc. System, method and article of manufacture for secure network electronic payment and credit collection
US6003008A (en) * 1998-03-20 1999-12-14 Skyteller L.L.C. Point of sale device
US6005939A (en) * 1996-12-06 1999-12-21 International Business Machines Corporation Method and apparatus for storing an internet user's identity and access rights to world wide web resources
US6032127A (en) * 1995-04-24 2000-02-29 Intermec Ip Corp. Intelligent shopping cart
US6064988A (en) * 1987-08-17 2000-05-16 Thomas; Harold K. Data processing system including transaction authorization device
US6122743A (en) * 1998-03-31 2000-09-19 Siemens Information And Communication Networks, Inc. System for providing enhanced security for transactions transmitted through a distributed network
US6157927A (en) * 1998-04-22 2000-12-05 Unisys Corporation Methods and apparatus for enabling a component in a first transaction processing environment to access a resource in another environment that is under the control of an Xatmi complaint transaction manager
US6160874A (en) * 1997-10-21 2000-12-12 Mci Communications Corporation Validation gateway
US6178409B1 (en) * 1996-06-17 2001-01-23 Verifone, Inc. System, method and article of manufacture for multiple-entry point virtual point of sale architecture
US20010001877A1 (en) * 1998-05-21 2001-05-24 Jennifer French System and method for authentication of network users with preprocessing
US6324525B1 (en) * 1996-06-17 2001-11-27 Hewlett-Packard Company Settlement of aggregated electronic transactions over a network
US6332133B1 (en) * 1996-11-14 2001-12-18 Matsushita Electric Industrial Co., Ltd. Personal electronic settlement system, its terminal, and management apparatus
US6332193B1 (en) * 1999-01-18 2001-12-18 Sensar, Inc. Method and apparatus for securely transmitting and authenticating biometric data over a network
US6334116B1 (en) * 1998-02-02 2001-12-25 Checkfree Corporation Technique for centrally tracking transactions in an electronic billing system
US6360211B1 (en) * 1995-12-08 2002-03-19 Mellon Bank, N.A. System and method for electronically processing invoice information
US20020059114A1 (en) * 1998-11-29 2002-05-16 Michael P. Cockrill Electronic commerce using a transaction network
US6411940B1 (en) * 1995-07-07 2002-06-25 Netcraft Corporation Internet billing method
US6460020B1 (en) * 1996-12-30 2002-10-01 De Technologies, Inc. Universal shopping center for international operation
US20020166090A1 (en) * 1999-09-03 2002-11-07 Matsushita Electric Industrial Co., Ltd. Error correction device
US20020191020A1 (en) * 2001-06-18 2002-12-19 International Business Machines Corporation Method and apparatus for removing confindential information from a history
US20020198798A1 (en) * 2001-04-03 2002-12-26 Bottomline Technologies, Inc. Modular business transactions platform
US20030046237A1 (en) * 2000-05-09 2003-03-06 James Uberti Method and system for enabling the issuance of biometrically secured online credit or other online payment transactions without tokens
US20030055754A1 (en) * 2000-11-30 2003-03-20 Govone Solutions, Lp Method, system and computer program product for facilitating a tax transaction
US20030061171A1 (en) * 2000-05-15 2003-03-27 Kevin Gilbert System for and method of effecting an electronic transaction
US6546441B1 (en) * 1993-01-26 2003-04-08 Logic Controls, Inc. Point-of-sale system
US6601040B1 (en) * 1998-07-20 2003-07-29 Usa Technologies, Inc. Electronic commerce terminal for wirelessly communicating to a plurality of communication devices
US6640214B1 (en) * 1999-01-16 2003-10-28 Symbol Technologies, Inc. Portable electronic terminal and data processing system
US20040073668A1 (en) * 2002-10-10 2004-04-15 Shivaram Bhat Policy delegation for access control
US20040078328A1 (en) * 2002-02-07 2004-04-22 Talbert Vincent W. Method and system for completing a transaction between a customer and a merchant
US20040172309A1 (en) * 2002-11-15 2004-09-02 Selwanes Ragui N. Method, system and storage medium for facilitating multi-party transactions
US6938022B1 (en) * 1999-06-12 2005-08-30 Tara C. Singhal Method and apparatus for facilitating an anonymous information system and anonymous service transactions
US6938019B1 (en) * 2000-08-29 2005-08-30 Uzo Chijioke Chukwuemeka Method and apparatus for making secure electronic payments
US6990470B2 (en) * 2000-04-11 2006-01-24 Mastercard International Incorporated Method and system for conducting secure payments over a computer network
US7096363B2 (en) * 2000-08-31 2006-08-22 Sony Corporation Person identification certificate link system, information processing apparatus, information processing method, and program providing medium
US7571142B1 (en) * 1998-03-25 2009-08-04 Orbis Patents Limited Credit card system and method

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0858201A3 (en) * 1997-02-06 1999-01-13 Sun Microsystems, Inc. Method and apparatus for allowing secure transactions through a firewall
US5910988A (en) * 1997-08-27 1999-06-08 Csp Holdings, Inc. Remote image capture with centralized processing and storage
JP2000293577A (en) * 1999-04-07 2000-10-20 Orient Corp Credit card, information processor, information processing method, and recording medium recording information processing software

Patent Citations (69)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3786439A (en) * 1972-12-26 1974-01-15 Ibm Error detection systems
US4755940A (en) * 1983-09-17 1988-07-05 International Business Machines Corporation Transaction security system
US5222018A (en) * 1985-07-18 1993-06-22 Pitney Bowes Inc. System for centralized processing of accounting and payment functions
US4799156A (en) * 1986-10-01 1989-01-17 Strategic Processing Corporation Interactive market management system
US4843220A (en) * 1987-03-13 1989-06-27 American Magnetics Corporation Automatic data capture for multiple form point of sale slip packs
US6064988A (en) * 1987-08-17 2000-05-16 Thomas; Harold K. Data processing system including transaction authorization device
US5490060A (en) * 1988-02-29 1996-02-06 Information Resources, Inc. Passive data collection system for market research data
US5854746A (en) * 1990-04-28 1998-12-29 Kanebo, Ltd. Flexible production and material resource planning system using sales information directly acquired from POS terminals
US5621670A (en) * 1991-08-01 1997-04-15 Fujitsu Limited Communication service simulator and a communication service specification verifying method
US5490251A (en) * 1991-08-09 1996-02-06 First Data Resources Inc. Method and apparatus for transmitting data over a signalling channel in a digital telecommunications network
US5734823A (en) * 1991-11-04 1998-03-31 Microtome, Inc. Systems and apparatus for electronic communication and storage of information
US5448047A (en) * 1992-10-30 1995-09-05 Microbilt Corporation Card validation method using multiple cord data regions
US6546441B1 (en) * 1993-01-26 2003-04-08 Logic Controls, Inc. Point-of-sale system
US5500890A (en) * 1993-08-19 1996-03-19 Exxon Research And Engineering Company Point-of-sale system using multi-threaded transactions and interleaved file transfer
US5450317A (en) * 1993-11-24 1995-09-12 U S West Advanced Technologies, Inc. Method and system for optimized logistics planning
US5956700A (en) * 1994-06-03 1999-09-21 Midwest Payment Systems System and method for paying bills and other obligations including selective payor and payee controls
US5909492A (en) * 1994-10-24 1999-06-01 Open Market, Incorporated Network sales system
US5781632A (en) * 1995-02-08 1998-07-14 Odom; Gregory Glen Method and apparatus for secured transmission of confidential data over an unsecured network
US5765143A (en) * 1995-02-28 1998-06-09 Triad Systems Corporation Method and system for inventory management
US6032127A (en) * 1995-04-24 2000-02-29 Intermec Ip Corp. Intelligent shopping cart
US5774883A (en) * 1995-05-25 1998-06-30 Andersen; Lloyd R. Method for selecting a seller's most profitable financing program
US5678010A (en) * 1995-06-07 1997-10-14 Compuserve Incorporated Automated routing of messages over a network
US5742845A (en) * 1995-06-22 1998-04-21 Datascape, Inc. System for extending present open network communication protocols to communicate with non-standard I/O devices directly coupled to an open network
US6411940B1 (en) * 1995-07-07 2002-06-25 Netcraft Corporation Internet billing method
US5812997A (en) * 1995-10-26 1998-09-22 International Business Machines Incorporated Method and apparatus for deriving an association rule between data
US5757917A (en) * 1995-11-01 1998-05-26 First Virtual Holdings Incorporated Computerized payment system for purchasing goods and services on the internet
US6360211B1 (en) * 1995-12-08 2002-03-19 Mellon Bank, N.A. System and method for electronically processing invoice information
US5832456A (en) * 1996-01-18 1998-11-03 Strategic Weather Services System and method for weather adapted, business performance forecasting
US5754772A (en) * 1996-03-26 1998-05-19 Unisys Corporation Transaction service independent HTTP server-to-transaction gateway
US5987140A (en) * 1996-04-26 1999-11-16 Verifone, Inc. System, method and article of manufacture for secure network electronic payment and credit collection
US5963924A (en) * 1996-04-26 1999-10-05 Verifone, Inc. System, method and article of manufacture for the use of payment instrument holders and payment instruments in network electronic commerce
US5848161A (en) * 1996-05-16 1998-12-08 Luneau; Greg Method for providing secured commerical transactions via a networked communications system
US5778173A (en) * 1996-06-12 1998-07-07 At&T Corp. Mechanism for enabling secure electronic transactions on the open internet
US5983208A (en) * 1996-06-17 1999-11-09 Verifone, Inc. System, method and article of manufacture for handling transaction results in a gateway payment architecture utilizing a multichannel, extensible, flexible architecture
US6178409B1 (en) * 1996-06-17 2001-01-23 Verifone, Inc. System, method and article of manufacture for multiple-entry point virtual point of sale architecture
US5812668A (en) * 1996-06-17 1998-09-22 Verifone, Inc. System, method and article of manufacture for verifying the operation of a remote transaction clearance system utilizing a multichannel, extensible, flexible architecture
US6324525B1 (en) * 1996-06-17 2001-11-27 Hewlett-Packard Company Settlement of aggregated electronic transactions over a network
US6163772A (en) * 1996-06-17 2000-12-19 Hewlett-Packard Company Virtual point of sale processing using gateway-initiated messages
US5845267A (en) * 1996-09-06 1998-12-01 At&T Corp System and method for billing for transactions conducted over the internet from within an intranet
US5931917A (en) * 1996-09-26 1999-08-03 Verifone, Inc. System, method and article of manufacture for a gateway system architecture with system administration information accessible from a browser
US6332133B1 (en) * 1996-11-14 2001-12-18 Matsushita Electric Industrial Co., Ltd. Personal electronic settlement system, its terminal, and management apparatus
US5917913A (en) * 1996-12-04 1999-06-29 Wang; Ynjiun Paul Portable electronic authorization devices and methods therefor
US6005939A (en) * 1996-12-06 1999-12-21 International Business Machines Corporation Method and apparatus for storing an internet user's identity and access rights to world wide web resources
US6460020B1 (en) * 1996-12-30 2002-10-01 De Technologies, Inc. Universal shopping center for international operation
US5978918A (en) * 1997-01-17 1999-11-02 Secure.Net Corporation Security process for public networks
US6160874A (en) * 1997-10-21 2000-12-12 Mci Communications Corporation Validation gateway
US6334116B1 (en) * 1998-02-02 2001-12-25 Checkfree Corporation Technique for centrally tracking transactions in an electronic billing system
US6003008A (en) * 1998-03-20 1999-12-14 Skyteller L.L.C. Point of sale device
US7571142B1 (en) * 1998-03-25 2009-08-04 Orbis Patents Limited Credit card system and method
US6122743A (en) * 1998-03-31 2000-09-19 Siemens Information And Communication Networks, Inc. System for providing enhanced security for transactions transmitted through a distributed network
US6157927A (en) * 1998-04-22 2000-12-05 Unisys Corporation Methods and apparatus for enabling a component in a first transaction processing environment to access a resource in another environment that is under the control of an Xatmi complaint transaction manager
US20010001877A1 (en) * 1998-05-21 2001-05-24 Jennifer French System and method for authentication of network users with preprocessing
US6601040B1 (en) * 1998-07-20 2003-07-29 Usa Technologies, Inc. Electronic commerce terminal for wirelessly communicating to a plurality of communication devices
US20020059114A1 (en) * 1998-11-29 2002-05-16 Michael P. Cockrill Electronic commerce using a transaction network
US6640214B1 (en) * 1999-01-16 2003-10-28 Symbol Technologies, Inc. Portable electronic terminal and data processing system
US6332193B1 (en) * 1999-01-18 2001-12-18 Sensar, Inc. Method and apparatus for securely transmitting and authenticating biometric data over a network
US6938022B1 (en) * 1999-06-12 2005-08-30 Tara C. Singhal Method and apparatus for facilitating an anonymous information system and anonymous service transactions
US20020166090A1 (en) * 1999-09-03 2002-11-07 Matsushita Electric Industrial Co., Ltd. Error correction device
US6990470B2 (en) * 2000-04-11 2006-01-24 Mastercard International Incorporated Method and system for conducting secure payments over a computer network
US20030046237A1 (en) * 2000-05-09 2003-03-06 James Uberti Method and system for enabling the issuance of biometrically secured online credit or other online payment transactions without tokens
US20030061171A1 (en) * 2000-05-15 2003-03-27 Kevin Gilbert System for and method of effecting an electronic transaction
US6938019B1 (en) * 2000-08-29 2005-08-30 Uzo Chijioke Chukwuemeka Method and apparatus for making secure electronic payments
US7096363B2 (en) * 2000-08-31 2006-08-22 Sony Corporation Person identification certificate link system, information processing apparatus, information processing method, and program providing medium
US20030055754A1 (en) * 2000-11-30 2003-03-20 Govone Solutions, Lp Method, system and computer program product for facilitating a tax transaction
US20020198798A1 (en) * 2001-04-03 2002-12-26 Bottomline Technologies, Inc. Modular business transactions platform
US20020191020A1 (en) * 2001-06-18 2002-12-19 International Business Machines Corporation Method and apparatus for removing confindential information from a history
US20040078328A1 (en) * 2002-02-07 2004-04-22 Talbert Vincent W. Method and system for completing a transaction between a customer and a merchant
US20040073668A1 (en) * 2002-10-10 2004-04-15 Shivaram Bhat Policy delegation for access control
US20040172309A1 (en) * 2002-11-15 2004-09-02 Selwanes Ragui N. Method, system and storage medium for facilitating multi-party transactions

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090202081A1 (en) * 2008-02-08 2009-08-13 Ayman Hammad Key delivery system and method
US9270447B2 (en) 2011-11-03 2016-02-23 Arvind Gidwani Demand based encryption and key generation and distribution systems and methods
US10147089B2 (en) 2012-01-05 2018-12-04 Visa International Service Association Data protection with translation
US11276058B2 (en) 2012-01-05 2022-03-15 Visa International Service Association Data protection with translation

Also Published As

Publication number Publication date
US7233920B1 (en) 2007-06-19

Similar Documents

Publication Publication Date Title
US20070299781A1 (en) System and apparatus for credit data transmission
US9794371B2 (en) Method and system for remote activation and management of personal security devices
US6694436B1 (en) Terminal and system for performing secure electronic transactions
US8190899B1 (en) System and method for establishing a remote connection over a network with a personal security device connected to a local client without using a local APDU interface or local cryptography
US8904178B2 (en) System and method for secure remote access
EP1551149B1 (en) Universal secure messaging for remote security tokens
US8588415B2 (en) Method for securing a telecommunications terminal which is connected to a terminal user identification module
US20100088766A1 (en) Method and system for detecting, blocking and circumventing man-in-the-middle attacks executed via proxy servers
EP2481230B1 (en) Authentication method, payment authorisation method and corresponding electronic equipments
CN101816140A (en) Token-based management system for PKI personalization process
JPH0787455B2 (en) Bootstrap channel protection device for communication network and method for preventing illegal communication
US20210073772A1 (en) System and method for secure detokenization
US20220385655A1 (en) Communication control system and communication control device
GB2354102A (en) System for communicating over a public network
CN111131416A (en) Business service providing method and device, storage medium and electronic device
US9185110B2 (en) Device and method for secure access to a remote server
EP3185502A1 (en) Secure payment system
KR20190004250A (en) Method for Providing Non-Faced Transaction by using Appointed Terminal
JP2006121440A (en) Medical system, medical data management method and communications program for medical data management
CN114726907A (en) Access method, system, equipment and storage medium of mobile terminal product
KR100837301B1 (en) System and method for providing cash advance service in mobile station payment portal service
JP2006115417A (en) Electronic commercial transaction system, electronic commercial transaction method, and communication program for electronic commercial transaction
KR20100103745A (en) System and method for connecting security channel between ic chip and server and recording medium
KR20170124504A (en) Method for Providing Non-Faced Transaction by using Appointed Terminal
KR20140111630A (en) Method for End-To-End Exchanging Data between IC Chip and Server

Legal Events

Date Code Title Description
AS Assignment

Owner name: PAYMENTECH, LLC, TEXAS

Free format text: MERGER;ASSIGNOR:PAYMENTECH, L.P.;REEL/FRAME:026051/0519

Effective date: 20070625

STCV Information on status: appeal procedure

Free format text: ON APPEAL -- AWAITING DECISION BY THE BOARD OF APPEALS

STCV Information on status: appeal procedure

Free format text: BOARD OF APPEALS DECISION RENDERED

STCV Information on status: appeal procedure

Free format text: BOARD OF APPEALS DECISION RENDERED

STCB Information on status: application discontinuation

Free format text: ABANDONED -- AFTER EXAMINER'S ANSWER OR BOARD OF APPEALS DECISION