DYNAMIC NUMBER AUTHENTICATION FOR CREDIT/DEBIT CARDS
First Claim
1. A method for conducting commercial transactions comprising the steps of:
- providing an authentication system;
providing a transaction device including;
a power source;
a unique set of predetermined random numbers, said set including at least a plurality of numbers;
software for selecting and dispensing an unused number from the set of random numbers;
a memory for storing the software and the set of random numbers, wherein the set of random numbers is identical to a set of numbers stored in the external authentication system;
a display device for displaying the dispensed random number; and
,an account selection means;
selecting via the account selection means a unique account identifier number representing a type of account for conducting a commercial transaction;
invoking the software, for each activation of the selection means, to select and dispense a previously unused number from the set of random numbers and display the dispensed number and the unique account identifier in the display device; and
,providing the authentication system with the account identifier and the dispensed number, wherein the authentication system;
compares the dispensed number to the next unused number stored on the authentication system; and
,accepts the transaction if the dispensed number matches the next unused number stored on the authentication system or rejects the transaction if the dispensed number does not match the next unused number stored on the authentication system.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for conducting a commercial transaction over the Internet or other network connection are provided. The method includes the use of random numbers which are unique for each user session. These random numbers are pre-loaded onto a handheld, portable device, token, at the time of the device'"'"'s manufacture or programming. These numbers are generated by external systems. The external systems then deliver the number sets to the token for storage in the token'"'"'s internal memory and also to another random number database that is accessible by an authentication system. The random numbers are dispensed by the token to a user by pressing a button on the token or otherwise signaling the token. A simple polynomial equation may be employed in order to increase the number of codes. A dispensed number is cross referenced, by the authentication system, to the random number database that was created when the token was programmed. In this way the user or transaction can be authenticated. In its preferred configuration, it is intended that once the total number of random combinations, including the original random numbers and numbers generated by polynomial transformations, have been exhausted, the device becomes inoperable.
58 Citations
6 Claims
-
1. A method for conducting commercial transactions comprising the steps of:
-
providing an authentication system; providing a transaction device including; a power source; a unique set of predetermined random numbers, said set including at least a plurality of numbers; software for selecting and dispensing an unused number from the set of random numbers; a memory for storing the software and the set of random numbers, wherein the set of random numbers is identical to a set of numbers stored in the external authentication system; a display device for displaying the dispensed random number; and
,an account selection means; selecting via the account selection means a unique account identifier number representing a type of account for conducting a commercial transaction; invoking the software, for each activation of the selection means, to select and dispense a previously unused number from the set of random numbers and display the dispensed number and the unique account identifier in the display device; and
,providing the authentication system with the account identifier and the dispensed number, wherein the authentication system; compares the dispensed number to the next unused number stored on the authentication system; and
,accepts the transaction if the dispensed number matches the next unused number stored on the authentication system or rejects the transaction if the dispensed number does not match the next unused number stored on the authentication system. - View Dependent Claims (2, 3, 4, 5)
-
-
6. The method for conducting commercial transactions according to claim further including providing a PIN number, wherein the software is configured to request a user to enter the predetermined PIN number each time the transaction device is activated, and wherein the software is configured to not dispense a random number until the correct PIN number has been entered.
Specification