Authentication arrangement and method for use with financial transactions
First Claim
1. A network payment system for transacting a sale of merchandise over a network using an Integrated Circuit Card for authentication, said network payment system comprising:
- a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale;
a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
a card reader for communicating with said Integrated Circuit Card, a transaction approvals server for approving financial transactions, said client terminal having means to generate a challenge message, said challenge message being generated from the information relating to the merchant identifier and an account number, means for receiving the challenge message at the card reader and for generating a value from the challenge message;
said Integrated Circuit Card having means for generating a cryptographic message from at least a part of said value, the card reader having means to generate an authentication token from at least a part of the cryptographic message, said client terminal having means for transmitting at least part of the authentication token in a message for transmission via the network to said approvals server.
2 Assignments
0 Petitions
Accused Products
Abstract
An authentication arrangement for use in a network payment system for transacting a sale of merchandise over a network using an Integrated Circuit Card is described, the arrangement comprising: a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale; a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server; a card reader for communicating with said Integrated Circuit Card, said client terminal having means to generate a challenge message, said challenge message being generated from the information relating to the merchant identifier and an account number, means for receiving the challenge message at the card reader and for generating a value from the challenge message; said Integrated Circuit Card having means for generating a cryptographic message from at least a part of said value, the card reader having means to generate an authentication token from at least a part of the cryptographic message, and said client terminal having means for transmitting at least part of the authentication token in a message for transmission via the network.
-
Citations
36 Claims
-
1. A network payment system for transacting a sale of merchandise over a network using an Integrated Circuit Card for authentication, said network payment system comprising:
-
a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale;
a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
a card reader for communicating with said Integrated Circuit Card, a transaction approvals server for approving financial transactions, said client terminal having means to generate a challenge message, said challenge message being generated from the information relating to the merchant identifier and an account number, means for receiving the challenge message at the card reader and for generating a value from the challenge message;
said Integrated Circuit Card having means for generating a cryptographic message from at least a part of said value, the card reader having means to generate an authentication token from at least a part of the cryptographic message, said client terminal having means for transmitting at least part of the authentication token in a message for transmission via the network to said approvals server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for authentication for transacting a sale of merchandise over a network using an Integrated Circuit Card, the method comprising:
-
establishing a communication between a merchant server with a client terminal over said network, said merchant server having at least a first item of merchandise for sale;
reviewing said first item for sale on said client terminal, initiating a purchase transaction to purchase said first item for sale and building a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
generating a challenge message on the client terminal the information relating to the merchant identifier and an account number, receiving the challenge message at a card reader and for generating a value from the challenge message;
establishing a communication between the Integrated Circuit card and the card reader and generating a cryptographic message from at least a part of said value, generating an authentication token on the card reader from at least a part of the cryptographic message, transmitting at least part of the authentication token in a message from the client terminal for transmission via the network to an approvals server. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An authentication system for use with a network payment system for transacting a sale of merchandise over a network using an Integrated Circuit Card for authentication, said authentication system comprising:
-
a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale;
a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
a card reader for communicating with said Integrated Circuit Card, said client terminal having means to generate a challenge message, said challenge message being generated from the information relating to the merchant identifier and an account number, means for receiving the challenge message at the card reader and for generating a value from the challenge message;
said Integrated Circuit Card having means for generating a cryptogram from at least a part of said value, the card reader having means to generate an authentication token from at least a part of the cryptogram, said client terminal having means for transmitting at least part of the authentication token in a message for transmission via the network towards said merchant server. - View Dependent Claims (22, 23, 24, 25, 26, 27)
-
-
28. A method for authentication for transacting a sale of merchandise over a network using an Integrated Circuit Card, the method comprising:
-
establishing a communication between a merchant server with a client terminal over said network, said merchant server having at least a first item of merchandise for sale;
reviewing said first item for sale on said client terminal, initiating a purchase transaction to purchase said first item for sale and building a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
generating a challenge message on the client terminal the information relating to the merchant identifier and an account number, receiving the challenge message at a card reader and for generating a value from the challenge message;
establishing a communication between the Integrated Circuit card and the card reader and generating a cryptogram from at least a part of said value, generating an authentication token on the card reader from at least a part of the cryptogram, transmitting at least part of the authentication token in a message from the client terminal for transmission via the network to the merchant server. - View Dependent Claims (29, 30, 31, 32, 33, 34)
-
-
35. An authentication system for use with a network payment system for transacting a sale of merchandise over a network, said authentication system comprising:
-
a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale;
a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
a hand held device, said client terminal having means to generate a challenge message, said challenge message being generated from the information relating to the merchant identifier and an account number, means for receiving the challenge message at the hand held device and for generating a value from the challenge message, the hand held device having means for generating a cryptogram from at least a part of said value;
the hand held device having means to generate an authentication token from at least a part of the cryptogram, said client terminal having means for transmitting at least part of the authentication token in a message for transmission via the network towards said merchant server.
-
-
36. A method for authentication for transacting a sale of merchandise over a network using a hand held device, the method comprising:
-
establishing a communication between a merchant server with a client terminal over said network, said merchant server having at least a first item of merchandise for sale;
reviewing said first item for sale on said client terminal, initiating a purchase transaction to purchase said first item for sale and building a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server;
generating a challenge message on the client terminal the information relating to the merchant identifier and an account number, receiving the challenge message at hand held device and for generating a value from the challenge message, generating a cryptogram in the hand held device from at least a part of said value;
generating an authentication token on the hand held device from at least a part of the cryptogram, transmitting at least part of the authentication token in a message from the client terminal for transmission via the network to the merchant server.
-
Specification