Internet payment, authentication and loading system using virtual smart card
First Claim
1. An on-line purchase and load (OPAL) server computer for performing a purchase transaction over a network using a virtual smart card, said OPAL server computer comprising:
- a virtual smart card database having a plurality of records, each record including a virtual smart card identifier and a monetary balance corresponding to a single virtual smart card;
a hardware security module arranged to decrypt said monetary balance, to decrease said monetary balance, and to encrypt said decreased monetary balance;
a smart card emulator that receives smart card commands from a pseudo card reader module and processes said commands in conjunction with said virtual smart card database and said hardware security module, said smart card emulator arranged to retrieve one of said records from said virtual smart card database, and to deliver said monetary balance to said hardware security module and to store said encrypted decreased monetary balance received from said hardware security module in said retrieved record; and
said pseudo card reader module that receives said smart card commands related to said purchase transaction over said network and relays said commands to said smart card emulator, whereby said OPAL server computer performs said purchase transaction over said network using one of said records in said virtual smart card database.
1 Assignment
0 Petitions
Accused Products
Abstract
A system loads, authenticates and uses a virtual smart card for payment of goods and/or services purchased on-line over the Internet. An online purchase and load (OPAL) server includes a virtual smart card data base that has a record of information for each smart card that it represents for a user at the behest of an issuer. The server includes a smart card emulator that emulates a smart card by using the card data base and a hardware security module. The emulator interacts with a pseudo card reader module in the server that imitates a physical card reader. The server also includes a client code module that interacts with the pseudo card reader and a remote payment or load server. A pass-through client terminal presents a user interface and passes information between the OPAL server and a merchant server, and between the OPAL server and a bank server. The Internet provides the routing functionality between the client terminal and the various servers. A merchant advertises goods on a web site. A user uses the client terminal to purchase goods and/or services from the remote merchant server. The payment server processes, confirms and replies to the merchant server. The payment server is also used to authenticate the holder of a virtual card who wishes to redeem loyalty points from a merchant. To load value, the client terminal requests a load from a user account at the bank server. The load server processes, confirms and replies to the bank server.
471 Citations
24 Claims
-
1. An on-line purchase and load (OPAL) server computer for performing a purchase transaction over a network using a virtual smart card, said OPAL server computer comprising:
-
a virtual smart card database having a plurality of records, each record including a virtual smart card identifier and a monetary balance corresponding to a single virtual smart card; a hardware security module arranged to decrypt said monetary balance, to decrease said monetary balance, and to encrypt said decreased monetary balance; a smart card emulator that receives smart card commands from a pseudo card reader module and processes said commands in conjunction with said virtual smart card database and said hardware security module, said smart card emulator arranged to retrieve one of said records from said virtual smart card database, and to deliver said monetary balance to said hardware security module and to store said encrypted decreased monetary balance received from said hardware security module in said retrieved record; and said pseudo card reader module that receives said smart card commands related to said purchase transaction over said network and relays said commands to said smart card emulator, whereby said OPAL server computer performs said purchase transaction over said network using one of said records in said virtual smart card database. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. An on-line purchase and load (OPAL) server computer for performing a load transaction over a network using a virtual smart card, said OPAL server computer comprising:
-
a virtual smart card database having a plurality of records, each record including a virtual smart card identifier and a monetary balance corresponding to a single virtual smart card; a hardware security module arranged to decrypt said monetary balance, to increase said monetary balance, and to encrypt said increased monetary balance; a smart card emulator that receives smart card commands and processes said commands in conjunction with said virtual smart card database and said hardware security module, the smart card emulator also configured to send a load request message to a load server, wherein the load request message indicates a virtual smart card identifier and a load amount for a respective virtual smart card, the load amount indicating an amount of money to load onto the respective virtual smart card, said smart card emulator arranged to retrieve one of said records from said virtual smart card database and to deliver said monetary balance to said hardware security module and to store said encrypted increased monetary balance received from said hardware security module in said retrieved record; and a pseudo card reader module that receives said smart card commands related to said load transaction over said network and relays said commands to said smart card emulator, whereby said OPAL server performs said load transaction over said network using one of said records in said virtual smart card database. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification