Smartcard internet authorization system
First Claim
1. A method for authorizing a transaction, the method comprising:
- completing shopping by a user at a merchant server;
initiating a transaction based on said shopping by receiving a request over a network at a wallet server, from said user, for payment authorization, wherein said request includes smartcard information and a selection of a financial institution;
prompting said user to physically interface a smartcard with a card reader system, wherein said smartcard comprises smartcard information including a digital certificate uniquely identifying said smartcard;
receiving said smartcard information from a computer coupled to said card reader system;
sending an authentication request for said transaction to a security server of said selected financial institution and said smartcard information by said wallet server;
receiving an authentication for said transaction from said security server;
completing an authorization form for said transaction and transmitting said authorization form to said merchant server;
authenticating said authorization form by said security server using said smartcard information; and
,receiving authorization form authentication from said security server by said merchant server, and said merchant server completing said transaction and debiting an account of said user.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method are disclosed for conducting electronic commerce such as a virtual purchase transaction with an on-line merchant. A user is provided with an intelligent token, such as a smart card containing a digital certificate. The intelligent token suitably authenticates with a wallet server on a network that conducts all or portions of the transaction on behalf of the user with out requiring changes to the merchant'"'"'s server. The wallet server interacts with a security server of a selected financial service to provide authentication of the transaction. Upon authentication, the digital wallet pre-fills forms which are transmitted to the merchant who contacts the security server for validation of the forms and upon validation, completes the transaction with the user.
-
Citations
6 Claims
-
1. A method for authorizing a transaction, the method comprising:
-
completing shopping by a user at a merchant server; initiating a transaction based on said shopping by receiving a request over a network at a wallet server, from said user, for payment authorization, wherein said request includes smartcard information and a selection of a financial institution; prompting said user to physically interface a smartcard with a card reader system, wherein said smartcard comprises smartcard information including a digital certificate uniquely identifying said smartcard; receiving said smartcard information from a computer coupled to said card reader system; sending an authentication request for said transaction to a security server of said selected financial institution and said smartcard information by said wallet server; receiving an authentication for said transaction from said security server; completing an authorization form for said transaction and transmitting said authorization form to said merchant server; authenticating said authorization form by said security server using said smartcard information; and
,receiving authorization form authentication from said security server by said merchant server, and said merchant server completing said transaction and debiting an account of said user. - View Dependent Claims (3, 4)
-
-
2. A method for authorizing a transaction, the method comprising:
-
completing shopping by a user at a merchant server; initiating a transaction based on said shopping by receiving a request over a network at a wallet server, from said user, for payment authorization, wherein said request includes smartcard information and a selection of a financial institution; prompting said user to physically interface a smartcard with a card reader system, wherein said smartcard comprises smartcard information including a digital certificate uniquely identifying said smartcard; receiving said smartcard information from a computer coupled to said card reader system; sending an authentication request for said transaction and said smartcard information by said wallet server to a security server of said selected financial institution; receiving by the wallet server an authentication for said transaction from said security server; completing an authorization form for said transaction by the wallet server and transmitting said authorization form to said merchant server; requesting authorization of the authentication form from the security server by the merchant server; authenticating said authorization form by said security server using said smartcard information; and
,receiving authorization form authentication from said security server by said merchant server, and said merchant server completing said transaction and debiting an account of said user.
-
-
5. A system for authorizing a transaction, the system comprising:
-
a wallet server comprising; a first hardware interface receiving an authorization request over a network from a user, for payment authorization, wherein said authorization request includes smartcard information from a smartcard and a selection of a financial institution; a second hardware interface prompting said user to physically interface a smartcard with a card reader system, wherein said smartcard comprises smartcard information including a digital certificate uniquely identifying said smartcard; memory receiving said smart card information from a computer coupled to said smart card system; a processor sending an authentication request for said transaction and said smartcard information to a security server of said financial institution; a first hardware module receiving an authentication for said transaction from said security server; a second hardware module completing an authorization form for said transaction and transmitting said authorization form to said merchant server said security server comprising; a hardware module authenticating said authorization form by using said smartcard information; said merchant server comprising; a first processor requesting authorization of the authentication form from the security server; a second processor receiving authorization form authentication from said, security server, completing said transaction and debiting an account of said user.
-
-
6. A computer-readable storage medium containing a set of instructions for a general purpose computer, wherein said set of instruction when executed by the general purpose computer cause the computer to perform the steps of:
-
completing shopping by a user at a merchant server; initiating a transaction based on said shopping by receiving a request over a network at a wallet server, from said user, for payment authorization, wherein said request includes smartcard information and a selection of a financial institution; prompting said user to physically interface a smartcard with a card reader system, wherein said smartcard comprises smartcard information including a digital certificate uniquely identifying said smartcard; receiving said smartcard information from a computer coupled to said card reader system; sending an authentication request for said transaction and said smartcard information by said wallet server to a security server of said selected financial institution; receiving by the wallet server an authentication for said transaction from said security server; completing an authorization form for said transaction by the wallet server and transmitting said authorization form to said merchant server; requesting authorization of the authentication form from the security server by the merchant server; authenticating said authorization form by said security server using said smartcard information; and
,receiving authorization form authentication from said security server by said merchant server, and said merchant server completing said transaction and debiting an account of said user.
-
Specification