WO2008125937A2 - Système de télécommunication pour gestion sécurisée de transactions et procédé connexe - Google Patents

Système de télécommunication pour gestion sécurisée de transactions et procédé connexe Download PDF

Info

Publication number
WO2008125937A2
WO2008125937A2 PCT/IB2008/000836 IB2008000836W WO2008125937A2 WO 2008125937 A2 WO2008125937 A2 WO 2008125937A2 IB 2008000836 W IB2008000836 W IB 2008000836W WO 2008125937 A2 WO2008125937 A2 WO 2008125937A2
Authority
WO
WIPO (PCT)
Prior art keywords
seller
buyer
processing means
central processing
delivery code
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/IB2008/000836
Other languages
English (en)
Other versions
WO2008125937A8 (fr
Inventor
Giuseppe Asselle
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Publication of WO2008125937A2 publication Critical patent/WO2008125937A2/fr
Publication of WO2008125937A8 publication Critical patent/WO2008125937A8/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems

Definitions

  • the present invention relates to a telecommunication system, as well as to an associated method, for the secure management of transactions pertaining to products and/or services.
  • Telecommunication systems which are adapted to put a buyer in contact with a seller of products or a provider of services (hereafter also simply referred to as seller) for making transactions; in particular, in the last few years the so-called electronic commerce (e-commerce) has become increasingly important as a part of the overall commercial trade volume.
  • e-commerce electronic commerce
  • the spread of the Internet has doubtlessly played a fundamental role in this respect.
  • a user of a client device can in fact connect to a plurality of servers to gain access to a plurality of on-line e-commerce sites, e.g. in order to buy products or request services of various kinds.
  • the present invention provides a telecommunication system for managing transactions of products and/or services and an associated management method, as set out in claims 1 and 11, respectively.
  • - Fig. 1 is a block diagram of a general architecture of a transaction management telecommunication system according to an embodiment of the present invention
  • - Fig. 2 is a flow chart showing the steps involved in associating a purchase offer with a sale offer in the telecommunication system of Fig. 1;
  • - Figs. 3-11 are screens displayed on one or more client devices during the steps of the flow chart of Fig. 2; and - Figs. 12 and 13 are flow charts showing the steps involved in executing a transaction in the telecommunication system of Fig. 1.
  • a telecommunication system 1 for managing transactions pertaining to products and/or services comprises an interconnection network 2 adapted to allow a telecommunication connection to be established and data to be exchanged between a server 3, controlled by an entity that manages, supervises and monitors telecommunication system 1, and at least a first and a second client devices 4, 5, respectively controlled by a buyer and by a seller/provider.
  • the buyer and the seller/provider may be a company or a private person, and are subscribers of the e- commerce telecommunication service provided by server 3.
  • Interconnection network 2 is generally the Internet network, but it may also be any other wired or wireless network adapted to allow data to be exchanged between the machines belonging to telecommunication system 1, e.g.
  • first and second client devices 4, 5 may be any devices adapted to allow access to the network resources; therefore, though they are depicted in Fig. 1 as personal computers, they may also be a PDA (Personal Digital Assistant), e mobile telephone with network access functionality, a decoder (also called “set-top box”), or any other known Internet terminal.
  • server 3 comprises a central processing unit 6, a central memory 7, and a communication interface module 8 adapted to allow data to be sent and received through interconnection network 2.
  • server 3 hosts an e-commerce site for managing transactions of products and services among registered users; for this purpose, central memory 7 stores a plurality of web pages, e.g. created by using the HTML language (Hypertext Markup Language), as well as a plurality of databases.
  • HTML language Hypertext Markup Language
  • user information such as name, address, preferences, previously placed orders
  • the retrieval of user information may be facilitated by the use of a "cookie" conveniently stored in the respective client device.
  • central processing unit 6 of server 3 operates and interacts with the aforementioned databases and communication interface module 8 in order to supply web pages to a client device, in particular by reacting to selections and data sent by a user of the client device through interconnection network 2.
  • Each of the first and second client devices 4, 5 is provided with a local processing unit 10 (e.g. a CPU - Central Processing Unit) and with a local memory 11 for storing data and applications, among which at least one communication interface (e.g. a web browser) for interfacing to interconnection network 2 and accessing the e-commerce site hosted by server 3.
  • each client device has data input means 12 (e.g. a keyboard or a mouse) adapted to allow the user to interact with telecommunication system 1, in particular to send data to server 3, as well as visualization means 13 (e.g. a display) for displaying, among other things, web pages 14 and data associated thereto.
  • the connection between the client devices and the server may take place through a secure channel (e.g. an SSL [Secure Sockets Layer] channel), in order to reduce the risk of interception of sensible data.
  • SSL Secure Sockets Layer
  • a banking body 15 and a guarantor body 16 are also connected to interconnection network 2, both of which are bound to the entity that manages telecommunication system 1 by a specific agreement (or convention) which regulates their reciprocal co-operation for the provision of the telecommunication service.
  • guarantor body 16 may be an insurance company, a bank, a financial company, or a public or private fund constituted or intended specifically for this purpose.
  • telecommunication system 1 also comprises a transaction control device 18 owned by the users who have subscribed to the telecommunication service.
  • Transaction control device 18 is, for example, a non-programmable portable electronic device, and may be configured as a stand-alone device or as a peripheral device of a respective client device to which it is connected, for example, by means of a USB connector 19.
  • Transaction control device 18 is also fitted with an alphanumerical display, an alphanumerical keypad (or a similar input device) for data input, signalling means, e.g. LEDs, and an electronic circuit including a memory and a local processor.
  • Transaction control device 18, and in particular the memory and local processor thereof are advantageously equipped with tamper-resistant technology, thus avoiding any undesired external access and in particular not allowing the memory contents to be read from the outside.
  • a user wanting to buy a product or a service accesses server 3 through first client device 4, in particular the home page of the e-commerce site hosted by server 3.
  • a screen is thus displayed on visualization means 13 of first client device 4, shown by way of example in Fig.
  • each transaction is made under a specific guarantee granted to the buyer by guarantor body 16.
  • the buyer when subscribing to the telecommunication service, the buyer must select a guarantor (of which he/she is a customer) to be referred to among a list of guarantors bound to the entity that manages telecommunication system 1 by specific agreements.
  • the entity that manages telecommunication system 1 then communicates the buyer data to the selected guarantor body; the latter verifies that the buyer is actually one of his customers and has a line of credit for the issue of guarantees. Only if such verifications have a positive outcome, the buyer's subscription will be accepted and the procedure can proceed.
  • the buyer has the possibility to enter a purchase offer which, if accepted, will be stored in purchase offer database 9a of central memory 7 of server 3.
  • Entering a purchase offer involves inputting data about said offer, among which, as shown by way of example in the screenshot of Fig.5: market sector; product/service type; state, region and place of delivery; description of the object; expiry date of the offer and consequently the deadline of the delivery/implementation of the product/service ; associated INCOTERMS code; and payment method.
  • the buyer may also select a first transaction execution mode, called “deposit version”, and a second transaction execution mode, called “guarantee version” (both of which will be described in detail below).
  • the buyer must also enter the code (or another identifier) of the guarantor body 16 designated when the subscription was made.
  • the process flow implemented in telecommunication system 1 proceeds to block 24, wherein the entity that manages telecommunication system 1 verifies the purchase offer entered by the buyer.
  • said verification is essentially limited to checking that the various fields have been filled in and that the data entered is consistent.
  • the entity that manages the telecommunication system sends the purchase offer details, e.g. through interconnection network 2, to guarantor body 16, which then verifies the actual existence of a line of credit for the issue of guarantees in favour of the buyer.
  • the purchase offer identification code may for example consist of a progressive day field followed by a field corresponding to the date of entry, in turn followed by a field consisting of the code of the associated guarantor body, if present (guarantee version) or a fixed code (deposit version).
  • a purchase offer identification code may be "55100220076033", where "55” is the progressive day field, "10022007” is the field stating the date of entry, and "6033" is the field of the guarantor/fixed code.
  • the purchase offer entered can be freely consulted by selecting the item for viewing the purchase offer list on the site's home page. Figs.
  • each new purchase offer can be sent automatically by server 3 to all users who have subscribed to a mailing list correlated to the purchase offer, e.g. based on a specific market sector or place of purchase. In particular, it should be underlined that at this level the purchase offer is wholly encoded but still completely anonymous.
  • the published purchase offer will then be removed from the site if any of the following conditions occur: the buyer places an order by accepting one of the received sale offer (as described below); the buyer cancels the purchase offer; the maximum purchase offer publication time set by the telecommunication service expires.
  • a seller/provider connected to server 3 through interconnection network 2 may, through second client device 5, view the various published purchase offers and enter one or more sale offers in response to corresponding purchase offers.
  • the detailed screen of each purchase offer includes an item for entering a corresponding sale offer.
  • the seller/provider After having entered his/her user code and password (and, if necessary, after having subscribed to the telecommunication service in the same manner as previously described), the seller/provider enters at least one offered price and possibly some additional details about the sale offer, see screenshot of Fig. 9.
  • the entered sale offer is confirmed, the data thereof is stored in sale offer database 9b of server 3, and a sale offer identification code is assigned and sent to the seller/provider.
  • Said code may consist, for example, of the corresponding purchase offer identification code followed by a progressive field; the sale offer identification code corresponding to the purchase offer identification code "55100220076033" may be, for example, "55100220076033 0014".
  • the entered sale offer is also wholly encoded but still anonymous.
  • the buyer receives each sale offer relating to a previously entered purchase offer from server 3, e.g. by e-mail.
  • the buyer can view on-line the list of sales offers relating to a particular purchase offer by selecting the appropriate item on the home page, thus displaying the screen of Fig. 10.
  • the sale offer list is only accessible to the buyer (thus requiring the entry of an identification code and a password).
  • the buyer then waits, block 32 until a satisfactory sale offer is found (of course, said waiting period ends at the expiry of the purchase offer, which is then removed). If the buyer sees a satisfactory sale offer, he/she selects said offer from the sale offer list, block 34. For this purpose, a confirmation summary screen is then displayed, Fig. 11, through which the buyer can confirm the association between the purchase offer identification code and the sale offer identification code displayed on the screen.
  • block 36 after having received from first client device 4 the information about the association between the purchase offer and the sale offer, the entity that manages telecommunication system 1 assigns a buyer delivery code to the buyer and a seller delivery code to the seller/provider, which codes will be used for ensuring a secure transaction, thus providing in particular: the certainty that the product will be delivered or the service will be provided to the buyer, and the certainty that the amount due will be paid to the seller.
  • the respective delivery codes are secret keys, and are sent exclusively to the respective consignees, e.g. by e- mail or sms or possibly in paper format by ordinary mail.
  • the seller delivery code is tied to the buyer delivery code, so that afterwards it will be possible to verify the code association.
  • the buyer delivery code is a random code generated by central processing unit 6 of server 3 (e.g. through a pseudorandom generator), and consists of a matrix or a string of alphanumerical characters having a predefined length, e.g. twenty elements (said code may therefore be something like "A5Yp6gWP0Khp076PRw2G").
  • the seller delivery code consists of a random portion of the buyer delivery code, extracted randomly by central processing unit 6 through a suitable random extraction procedure.
  • the seller delivery code may consist of sixteen elements, whether or not consecutive, each having the same value and position as one element included in the buyer delivery code (the seller delivery code may therefore be "A5-p6-WP0K-p076PR-2G” or "A5Yp-Gwp-Kh-076PRw-G", where the characters "-" indicate the presence of a respective character in the string of the buyer delivery code).
  • the seller/provider enters the seller delivery code, received from server 3 through interconnection network 2, into transaction control device 18 (by manual input or through an automatic procedure, after having connected transaction control device 18 to second client device 5). Due to the tamper-resistant nature of the circuitry of transaction control device 18, the code entered into the memory is not accessible from the outside to personnel who have not been authorized to use said device.
  • the entity that manages telecommunication system 1 puts the buyer in contact with the seller/provider by sending to each party the personal data and addresses of the other party, obtained from personal database 9c. Furthermore, this stage also includes the execution of those preliminary steps that afterwards will allow the product/service to be paid and the transaction to be completed. More in detail, in the deposit version the buyer credits the amount corresponding to the price stated in the order to a current account registered at banking body 15 in the name of the entity that manages telecommunication system 1, specifying as a crediting reason the purchase offer identification code which the order refers to. Said amount is kept in said account waiting to be transferred to the seller/provider when the transaction is completed.
  • guarantor body 16 issues, being instructed to do so by the entity that manages telecommunication system 1 , a first- request autonomous guarantee in favour of the seller/provider, again specifying the identification code of the purchase offer that the order refers to; guarantor body 16 verifies that the line of credit for issuing the guarantee exists and is available, in which case it will issue said guarantee, without however delivering the paper original neither to the buyer nor to the seller/provider. The guarantee is thus issued but not yet active, since it is waiting to be requested by the seller/provider.
  • the following block 38 carries out a step of interaction between the buyer and the seller/provider, who come into contact with each other to define the details of the delivery of the product(s) or provision of the service(s). Subsequently the product is delivered to the buyer, e.g. through a carrier, or the service agreed upon is provided.
  • the provision of a service requires several deadlines, as many delivery codes and as many payments will be made (or guarantees will be issued) as the number of deadlines stated in the order.
  • block 40 the buyer or an appointed person checks the quantity and quality thereof.
  • the seller/provider can now verify, block 46, the authenticity of the code received from the buyer and can then proceed with delivering the product/providing the service only if this verification has a positive outcome.
  • the seller/provider compares the random portion of the code he/she owns with the whole buyer delivery code, verifying that the values and positions in the matrix or character string match. This verification can give the seller/provider the certainty of the authenticity of the buyer's identity, as well as the certainty that the latter actually carried out the preliminary procedures required by telecommunication system 1 in order to ensure the payment of the amount due (transfer to current account or issue of guarantee).
  • the verification of the authenticity of the buyer delivery code is carried out automatically by transaction control device 18, without the user knowing the procedure for generating the delivery codes nor the relationship between them.
  • the local processor of said device can appropriately process the seller delivery codes stored therein and the buyer delivery code (entered by the seller, e.g. through the input means of said device) in order to verify that the seller delivery code can actually be obtained by starting from the buyer delivery code through a predetermined function (also permanently stored in transaction control device 18).
  • the device can perform a value and position "matching" of the characters contained in the two codes, and verify that the seller delivery code really matches a random portion of the buyer delivery code; as an alternative, transaction control device 18 may be set up to implement suitable asymmetrical cryptography functions, or hash functions, in order to verify the correspondence between the seller and buyer delivery codes.
  • the positive outcome of this verification may be signalled to the seller/provider through the signalling means, e.g. by turning on the LED.
  • the seller/provider will not complete the delivery of the product or provision of the service, block 48. Otherwise, block 50, the seller/provider will communicate to the entity that manages telecommunication system 1, e.g.
  • the problems found will be reported to the seller/provider and the amount due will not be paid.
  • the temporarily deposited sum will not be drawn by the seller/provider. Said sum will subsequently be made available to the buyer by the entity that manages telecommunication system 1 under a specific buyer's request subject to the seller/provider's approval. The sum in the current account is also released if the transaction has been completed successfully but the seller/provider has not requested the amount due within a certain period of time (stated in the purchase order).
  • Fig. 13 at a block 58 subsequent to block 50 the entity that manages telecommunication system 1, after having verified the correspondence and exactness of the buyer delivery code received from the seller/provider, authorizes guarantor body 16 to issue and activate the guarantee, which is thus drawn by the same seller/provider.
  • the parties will then wait for said transfer to take place, block 62. If a bank transfer containing the order codes (purchase offer identification code and delivery code) is executed within the expected times, the buyer may request that the guarantee be cancelled, block 64. In order to obtain said cancellation, block 66, the buyer sends a corresponding request to server 3, specifying the essential data of the bank transfer made in favour of the seller/provider.
  • the entity that manages the telecommunication system then sends a transfer confirmation request to banking body 15 entrusted by the buyer to make said transfer. If a confirmation is received from said banking body at block 68, at a subsequent block 70 the managing entity will instruct guarantor body 16 to cancel the guarantee and restore the buyer's line of credit for issuing further guarantees.
  • the process flow will proceed to a block 72 wherein, when the established terms expire, the guarantee will be cancelled and the buyer's line of credit will be restored with the amount corresponding to the cancelled guarantee.
  • the buyer does not make the bank transfer within the times and terms due
  • the seller/provider will inform the entity that manages telecommunication system 1 that he/she intends to excuss the guarantee, and said entity will in turn communicate said intention to the buyer.
  • the method waits for the buyer to communicate the essential data of the executed bank transfer to the managing entity for a predetermined period of time.
  • the managing entity will, after having received from banking body 15 a confirmation that the transfer has been made, notify the seller/provider, block 78. Otherwise, block 80, said entity will inform the guarantor body 16 that the payment has not been made, and will confirm said non-payment to the seller/provider, so that the latter can request the examination of the guarantee to same guarantor body 16. In any case, it should be underlined once more that the procedure implemented in telecommunication system 1 ensures that the seller/provider can at all events receive the payment due once the product has been delivered or the service has been provided.
  • the resulting transaction management telecommunication system can be used to advantage by a larger number of users, who are normally discouraged by the lack of security so far associated with e-commerce environments. Furthermore, such a system can be implemented in a simple and economical manner by exploiting existing telecommunication infrastructures.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

La présente invention concerne un système de télécommunication (1) destiné à gérer une transaction entre un acheteur et un vendeur d'un produit ou d'un service, dans lequel une unité centrale (3) est commandée par un gestionnaire du système de télécommunication (1), ainsi qu'une première et une seconde unité locale (4, 5) qui sont respectivement commandées par l'acheteur et le vendeur et sont configurées de manière à interagir à distance avec l'unité centrale (3) via un réseau d'interconnexion (2) afin d'établir une association entre une offre d'achat et une offre de vente. En particulier, l'unité centrale (3) est configurée de manière à générer et communiquer à l'acheteur et au vendeur des codes de livraison respectifs en réponse à ladite association ; ceux-ci peuvent être utilisés pendant une étape d'interaction mutuelle, de manière à assurer une transaction sécurisée.
PCT/IB2008/000836 2007-04-11 2008-04-08 Système de télécommunication pour gestion sécurisée de transactions et procédé connexe Ceased WO2008125937A2 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
ITTO20070252 ITTO20070252A1 (it) 2007-04-11 2007-04-11 Sistema telematico per la gestione sicura di transazioni, e relativo metodo
ITTO2007A000252 2007-04-11

Publications (2)

Publication Number Publication Date
WO2008125937A2 true WO2008125937A2 (fr) 2008-10-23
WO2008125937A8 WO2008125937A8 (fr) 2008-12-11

Family

ID=39764929

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2008/000836 Ceased WO2008125937A2 (fr) 2007-04-11 2008-04-08 Système de télécommunication pour gestion sécurisée de transactions et procédé connexe

Country Status (2)

Country Link
IT (1) ITTO20070252A1 (fr)
WO (1) WO2008125937A2 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ITTO20090136A1 (it) * 2009-02-25 2010-08-25 Giuseppe Asselle Sistema di controllo per la gestione degli accessi ad aree riservate
CN117541341A (zh) * 2023-10-24 2024-02-09 福建大数据交易有限公司 一种大数据交付方法及系统

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
No Search *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ITTO20090136A1 (it) * 2009-02-25 2010-08-25 Giuseppe Asselle Sistema di controllo per la gestione degli accessi ad aree riservate
WO2010097745A1 (fr) * 2009-02-25 2010-09-02 Giuseppe Asselle Système de contrôle pour gérer l'accès à des zones réservées
US8730005B2 (en) 2009-02-25 2014-05-20 Giuseppe Asselle Control system for managing access to restricted areas
CN117541341A (zh) * 2023-10-24 2024-02-09 福建大数据交易有限公司 一种大数据交付方法及系统

Also Published As

Publication number Publication date
ITTO20070252A1 (it) 2008-10-12
WO2008125937A8 (fr) 2008-12-11

Similar Documents

Publication Publication Date Title
US7797237B2 (en) Electronic financial transaction system and method providing real-time authentication service through wire/wireless communication network
JP5377602B2 (ja) 取引処理方法、コーディネータサーバ、及び取引方法
US7835960B2 (en) System for facilitating a transaction
EP0734556B1 (fr) Systeme de paiement base sur un reseau de donne et methode pour l'utilisation d'un tel systeme
KR101379168B1 (ko) 온라인 인증 서비스 방법
US6752313B1 (en) Method and system for establishing a credit card transaction processing merchant account
US20010029485A1 (en) Systems and methods enabling anonymous credit transactions
US20160328705A1 (en) Mediated conversion of cryptographic currency and other funding sources to gold
CN102341817A (zh) 支付系统
CN101443821A (zh) 通道内货币转移的系统和方法
US20150026037A1 (en) System, method and apparatus to provide a multi-channel retail layaway service using physical retail point-of-sale and on-line virtual payment systems
BG108478A (bg) Защитна система за разплащане в режим он-лайн
AU775065B2 (en) Payment method and system for online commerce
WO2001029637A2 (fr) Systeme et procede pour effectuer des transactions electroniques sures
US10733643B2 (en) Systems, devices and methods for computer automated assistance for disparate networks and internet interfaces
US20050015304A1 (en) Secure purchasing over the internet
WO2008125937A2 (fr) Système de télécommunication pour gestion sécurisée de transactions et procédé connexe
KR20020064473A (ko) 전자지갑과 통합된 전자 지불 보증 서비스 시스템 및 그방법
US20260094180A1 (en) System and method for digital currency payment reward allocation and delivery
KR20060124375A (ko) 거래 시스템 및 이 시스템을 통한 사용자 인증 방법
KR20060082012A (ko) 휴대폰을 이용한 전자 지불 방법 및 시스템

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08737395

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase in:

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08737395

Country of ref document: EP

Kind code of ref document: A2