Secure authentication and payment system
First Claim
1. A combined identity protection and secure transaction routing system for facilitating a financial transaction between a first user and a second user comprising:
- a computer based authentication system for authenticating at least the first user, the authentication system being configured to implement a plurality of established and user-defined authentication methods that are dynamically controllable and selectable by the first user at various transaction stages of the financial transaction and conform to standards set by relevant payment organisation'"'"'s rules, wherein upon the first user dynamically selecting one or more particular authentication methods from the plurality of established and user-defined authentication methods during a particular transaction stage, the authentication system is configured to combine the one or more selected authentication methods, and one or more interaction methods, and one or more communication media to become user-specific dynamic authentication components so as to authenticate at least the first user in a non-predictable manner;
one or more computer, electronic or physically based payment encryption and transaction routing systems, dynamically selectable and arrangable by the first user in combination with the first user'"'"'s independent dynamically selected authentication methods, for arranging and securely routing one or more particular payment methods during the financial transaction or a particular transaction stage between the first user and at least the second user after the first user is authenticated by the authentication system, wherein upon the first user selecting the one or more particular payment methods during the financial transaction or the particular transaction stage, the one or more particular payment methods are routed between the first user and at least the second user in a non-predictable manner and without disclosing the one or more payment methods used for the financial transaction or the particular transaction stage or the first user'"'"'s financial details and personal identity to the second user; and
the one or more communication media and the one or more interaction methods, dynamically controllable and selectable by the first user, wherein upon the first user selecting one or more of at least the one or more communication media or the one or more interactions methods during the financial transaction or at a particular transaction stage, each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides a service for allowing secure financial transactions to be carried out, the service involving authenticating a user'"'"'s identity and/or status as part of a financial transaction with another party and in the event that the user is authenticated arranging for the transaction to be completed without revealing the user'"'"'s financial details and/or other personal details to that other party. Authentication data and transaction data may be communicated over any suitable communications channel(s). The invention provides a trusted authentication and payment environment that protects a user'"'"'s financial details, but allows them to be securely authenticated and arranges for transactions to be fulfilled, while providing other parties with reassurance that transactions will be completed. In this way, fraud and theft due to misappropriation of financial details can be minimized.
156 Citations
83 Claims
-
1. A combined identity protection and secure transaction routing system for facilitating a financial transaction between a first user and a second user comprising:
-
a computer based authentication system for authenticating at least the first user, the authentication system being configured to implement a plurality of established and user-defined authentication methods that are dynamically controllable and selectable by the first user at various transaction stages of the financial transaction and conform to standards set by relevant payment organisation'"'"'s rules, wherein upon the first user dynamically selecting one or more particular authentication methods from the plurality of established and user-defined authentication methods during a particular transaction stage, the authentication system is configured to combine the one or more selected authentication methods, and one or more interaction methods, and one or more communication media to become user-specific dynamic authentication components so as to authenticate at least the first user in a non-predictable manner; one or more computer, electronic or physically based payment encryption and transaction routing systems, dynamically selectable and arrangable by the first user in combination with the first user'"'"'s independent dynamically selected authentication methods, for arranging and securely routing one or more particular payment methods during the financial transaction or a particular transaction stage between the first user and at least the second user after the first user is authenticated by the authentication system, wherein upon the first user selecting the one or more particular payment methods during the financial transaction or the particular transaction stage, the one or more particular payment methods are routed between the first user and at least the second user in a non-predictable manner and without disclosing the one or more payment methods used for the financial transaction or the particular transaction stage or the first user'"'"'s financial details and personal identity to the second user; and the one or more communication media and the one or more interaction methods, dynamically controllable and selectable by the first user, wherein upon the first user selecting one or more of at least the one or more communication media or the one or more interactions methods during the financial transaction or at a particular transaction stage, each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40)
-
-
41. An authentication and secure transaction device for use, in single or multiple component transaction parts, as part of a multi-device, multi-input method, multi-communication media, multi-interaction method, user-controlled and defined configuration, with a secure transaction routing system, comprising:
-
a processor that is configured to; allow at least one of a first or second user to register centrally, or maintain locally, a plurality of user configured, dynamic, independent authentication methods that are dynamically controllable and selectable by the first user or the second user at various transaction stages of a financial transaction being conducted between the first user and at least the second user and to select the authentication methods at the various transaction stages of the financial transaction to be used to authenticate at least one of the first or second user in a non-predictable manner; and authenticate at least a first user'"'"'s identity or status as a precursor to facilitating the financial transaction or particular transaction stage with at least the second user and in an event that at least the first user is authenticated, arranging for the financial transaction or the particular transaction stage to be completed using, under user or centrally-directed dynamic selection, a predefined or user-selected combination of independent, decoupled payment methods during the financial transaction or the particular transaction stage, in a non-predictable manner, the payment methods comprising at least one payment authentication method for further identity authentication related to the specific transaction, followed by a predefined or user-selected payment method, secured at least in accordance with payment organization rules associated with that payment method or combination of payment methods, without revealing the payment methods, the first user'"'"'s financial details, or other personal identity details to the second user, wherein; as appropriate under valid transaction combinations, the authentication and secure transaction device is associated with the first user and operable to communicate with the secure transaction routing system in order to authenticate the first user using one or more communication media and one or more interaction methods selected by the first user during the financial transaction or at a particular transaction stage so that each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner. - View Dependent Claims (42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52)
-
-
53. A computer implemented method for allowing a secure financial transaction to be carried out between a first user and a second user, the method involving:
-
registering centrally or maintaining locally or through access to a plurality of independent, secure third parties, user-selected, dynamic, independent authentication methods that are dynamically controllable and selectable by the first user or the second user at various transaction stages of the financial transaction; receiving a dynamic selection of one or more of the authentication methods used to authenticate the first user or accepting one or more of the authentication methods mandated by the relevant payment organization'"'"'s rules so as to authenticate at least the first user in a non-predictable manner; authenticating at least a first user'"'"'s identity or status using a computer based authentication as a precursor to facilitating the financial transaction or a particular transaction stage with at least the second user; and in an event that at least the first user is authenticated, arranging for the financial transaction or the particular transaction stage to be completed using, under user dynamic selection, a predefined or user-selected combination of independent, decoupled payment methods during the financial transaction or the particular transaction stage, in a non-predictable manner, the payment methods comprising at least one computer based payment authentication method for further identity authentication related to each specific transaction, followed by a predefined or user-selected payment method, secured at least in accordance with rules associated with that payment method, without revealing the payment methods, the first user'"'"'s financial details, or other personal details to the second user;
whereinauthentication data and transaction data are communicated over different communications channels, the communications channels being selected by the first user during the financial transaction or at a particular transaction stage so that the authentication data and transaction data are routed and transmitted in a non-predictable manner. - View Dependent Claims (54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79)
-
-
80. A computer-executable program tangibly embodied on a non-transitory computer readable medium for:
-
implementing at least one of the features of a combined identity protection and secure transaction system for facilitating a financial transaction between a first user and a second user, the system comprising; a computer based authentication system for authenticating at least the first user, the authentication system configured to implement a plurality of established and user-defined authentication methods that are dynamically controllable and selectable by the first user at various transaction stages of the financial transaction or mandated by a relevant payment organization'"'"'s rules, wherein upon the first user dynamically selecting one or more particular authentication methods from the plurality of established and user-defined authentication methods or acceptance of one or more of the authentication methods mandated by the relevant payment organization'"'"'s rules during a particular transaction stage, the authentication system is configured to combine the one or more selected authentication methods, one or more interaction methods, and one or more communication media to become user-specific dynamic authentication components so as to authenticate at least the first user in a non-predictable manner; one or more computer, electronic or physically based payment encryption and transaction routing systems, dynamically selectable and arrangable by the first user in combination with the first user'"'"'s independent dynamically selected authentication methods, for arranging and securely routing one or more particular payment methods during the financial transaction or a particular transaction stage between the first user and at least the second user after the first user is authenticated by the authentication system, wherein upon the first user selecting the one or more particular payment methods during the financial transaction or the particular transaction stage, the one or more particular payment methods are routed between the first user and at least the second user in a non-predictable manner and without disclosing the one or more payment methods used for the financial transaction or the particular transaction stage or the first user'"'"'s financial details and personal identity to the second user; and the one or more communication media and the one or more interaction methods, dynamically controllable and selectable by the first user, wherein upon the first user selecting one or more of at least the one or more communication media or the one or more interactions methods during the financial transaction or at a particular transaction stage, each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner.
-
-
81. A computer-executable program tangibly embodied on a non-transitory computer readable medium for implementing at least one of the features of an authentication and secure transaction device for use, in single or multiple component transaction parts, as part of a multi-device, multi-input, multi-communication media, multi-interaction method, user-controlled and defined configuration, with a secure transaction routing system that is configured to:
-
allow at least one of a first or second user to register centrally, or maintain locally, a plurality of user configured, dynamic, independent authentication methods that are dynamically controllable and selectable by the first user or the second user at various transaction stages of a financial transaction being conducted between the first user and at least the second user and to select the authentication methods at the various transaction stages of the financial transaction to be used to authenticate at least one of the first or second user in a non-predictable manner; and authenticate at least a first user'"'"'s identity or status as a precursor to facilitating the financial transaction or a particular transaction stage with at least the second user and in an event that at least the first user is authenticated, arranging for the financial transaction or the particular transaction stage to be completed using, under user or centrally-directed dynamic selection, a predefined or user-selected combination of independent, decoupled payment methods during the financial transaction or the particular transaction stage, in a non-predictable manner, the payment methods comprising at least one payment authentication method for further identity authentication related to the specific transaction, followed by a predefined or user-selected payment method, secured at least in accordance with payment organization rules associated with that payment method or combination of payment methods, without revealing the payment methods, the first user'"'"'s financial details, or other personal identity details to the second user, wherein as appropriate under valid transaction combinations, the authentication and secure transaction device is associated with the first user and operable to communicate with the transaction routing system in order to authenticate the first user using one or more communication media and one or more interaction methods selected by the first user during the financial transaction or at a particular transaction stage so that each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner.
-
-
82. A server when programmed with a computer-executable program for:
implementing at least one of the features of a combined identity protection and secure transaction routing system for facilitating a financial transaction between a first user and a second user, the system comprising; a computer based authentication system for authenticating at least the first user, the authentication system configured to implement a plurality of established and user-defined authentication methods that are dynamically controllable and selectable by the first user at various transaction stages of the financial transaction or mandated by a relevant payment organisation'"'"'s rules, wherein upon the first user dynamically selecting one or more particular authentication methods from the plurality of established and user-defined authentication methods or acceptance of one or more of the authentication methods mandated by the relevant payment organisation'"'"'s rules during a particular transaction stage, the authentication system is configured to combine the one or more selected authentication methods, one or more interaction methods, and one or more communication media to become user-specific dynamic authentication components so as to authenticate at least the first user in a non-predictable manner; one or more computer, electronic or physically based payment encryption and transaction routing systems, dynamically selectable and arrangable by the first user in combination with the first user'"'"'s independent dynamically selected authentication methods, for arranging and securely routing one or more particular payment methods during the financial transaction or a particular transaction stage between the first user and at least the second user after the first user is authenticated by the authentication system, wherein upon the first user selecting the one or more particular payment methods during the financial transaction or the particular transaction stage, the one or more particular payment methods are routed between the first user and at least the second user in a non-predictable manner and without disclosing the one or more payment methods used for the financial transaction or the particular transaction stage or the first user'"'"'s financial details and personal identity to the second user; and the one or more communication media and the one or more interaction methods, dynamically controllable and selectable by the first user, wherein upon the first user selecting one or more of at least the one or more communication media or the one or more interactions methods during the financial transaction or at a particular transaction stage, each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner.
-
83. A server when programmed with a computer-executable program for implementing at least one of the features of an authentication and secure transaction device for use, in single or multiple component transaction parts, as part of a multi-device, multi-input, multi-communication media, multi-interaction method, user-controlled and defined configuration, with a secure transaction routing system that is configured to:
-
allow at least one of a first or second user to register centrally, or maintain locally, a plurality of user configured, dynamic, independent authentication methods that are dynamically controllable and selectable by the first user or the second user at various transaction stages of a financial transaction being conducted between the first user and at least the second user and to select the authentication methods at the various transaction stages of the financial transaction to be used to authenticate at least one of the first or second user in a non-predictable manner; and authenticate at least a first user'"'"'s identity or status as a precursor to facilitating the financial transaction or a particular transaction stage with at least the second user and in an event that at least the first user is authenticated, arranging for the financial transaction or the particular transaction stage to be completed using, under user or centrally-directed dynamic selection, a predefined or user-selected combination of independent, decoupled payment methods during the financial transaction or the particular transaction stage, in a non-predictable manner, the payment methods comprising at least one payment authentication method for further identity authentication related to the specific transaction, followed by a predefined or user-selected payment method, secured at least in accordance with payment organisation rules associated with that payment method or combination of payment methods, without revealing the payment methods, the first user'"'"'s financial details, or other personal identity details to the second user, wherein as appropriate under valid transaction combinations, the authentication and secure transaction device is associated with the first user and operable to communicate with the transaction routing system in order to authenticate the first user using one or more communication media and one or more interaction methods selected by the first user during the financial transaction or at a particular transaction stage so that each decomposed transaction element of the financial transaction or the particular transaction stage is routed and transmitted in a non-predictable manner.
-
Specification