This invention generally relates to a method and apparatus for ordering goods, services, and content from one or more other computers connected via common communications links and, more particularly, to a method and apparatus for ordering goods, services, and content from computers connected to the Internet using a virtual payment account.
Communication networks are well known in the computer communications field. By definition, a network is a group of computers and associated devices that are connected by communications facilities or links. Network communications can be of a permanent nature, such as via cables, or can be of a temporary nature, such as connections made through telephone or radio links. Networks may vary in size from a local area network (LAN) consisting of a few computers or workstations and related devices; to a wide area network (WAN), which interconnects computers and LANs that are geographically dispersed, to a remote access service (RAS), which interconnects remote computers via temporary communication links. An internetwork, in turn, is the joining of multiple computer networks, both similar and dissimilar, by means of gateways or routers that facilitate data transfer and conversion from various networks. A well-known abbreviation for the term internetwork is “Internet.” As currently understood, the capitalized term “Internet” refers to the collection of networks and routers that use the Transmission Control Protocol/Internet Protocol (TCP/IP) to communicate with one another.
A representative section of the Internet 40 is shown in
The Internet has recently seen explosive growth by virtue of its ability to link computers located throughout the world. As the Internet has grown, so has the World Wide Web (WWW). The WWW is a vast collection of interconnected or “hypertext” documents (also known as “Web pages”) written in HyperText Markup Language (HTML) that are electronically stored at “Web sites” throughout the Internet. A Web site is a server connected to the Internet that has mass storage facilities for storing hypertext documents and that runs administrative software for handling requests for those stored hypertext documents. A hypertext document normally includes a number of hyperlinks, i.e., highlighted portions of text that link the document to another hypertext document possibly stored at a Web site elsewhere on the Internet. Each hyperlink is associated with a Uniform Resource Locator (URL) that provides the exact location of the linked document on a server connected to the Internet. Thus, whenever a hypertext document is retrieved from any Web server, the document is considered to be retrieved from the WWW.
A user is allowed to retrieve hypertext documents from the WWW, i.e., a user is allowed to “surf the Web,” via a Web browser. A Web browser, such as NETSCAPE NAVIGATOR® or MICROSOFT® Internet Explorer, is a software program implemented by a Web client, i.e., a user's computer, to provide a graphical user interface to the WWW. Upon request from the user via the Web browser, the Web client accesses and retrieves the desired hypertext document or Web page from the appropriate Web server using the URL for the document and a protocol known as HyperText Transfer Protocol (HTTP). HTTP is a higher-level protocol than TCP/IP and is designed specifically for the requirements of the WWW. It is used on top of TCP/IP to transfer hypertext documents between servers and clients.
At the advent of the WWW, the information stored on the Internet was freely transferred back and forth between those parties interested in the information. However, the WWW is quickly becoming a channel of commercial activity, whereby a vast number of companies have developed their own Web sites for advertising and selling their goods and services. Commercial activity that takes place by means of connected computers is known as electronic commerce, or e-commerce, and can occur between a buyer and a seller through an on-line information service, the Internet, a bulletin board system (BBS), or between buyer and seller computers through electronic data interchange (EDI). A buyer (also referred to as a user, consumer or purchaser in the context of e-commerce) may “visit the Web site” of a company or seller, i.e., retrieve the hypertext documents located on the Web server of a particular seller, and order any good or service that the seller has to offer. If that good or service is in the form of electronically stored information, such as a book, a video, a computer game, etc., the buyer may simply download the good or service from the company's Web site to his or her computer for immediate consumption and use. If the good or service is of a more tangible nature, such as an appliance or article of clothing ordered from an on-line catalog, a more conventional method of delivery, e.g., the postal service or a common carrier, is used.
A common method of payment for e-commerce purchases is electronic credit, or e-credit. E-credit is a form of electronic commerce often involving credit card transactions carried out over the Internet. Traditional e-credit purchases are paid for by a major credit card, wherein the buyer is required to transmit his or her credit information, for example, an account number and expiration date, over the Internet to the company's Web site. Many buyers are concerned about the security and confidentiality of such electronic transmissions. Furthermore, many buyers do not have a major credit card with which to make such purchases. Alternative billing systems, such as providing credit information by facsimile or postal service, are much less convenient and often prove enough of a barrier to prohibit the sale altogether. Finally, the traditional methods of billing and payment do not adequately protect the seller or buyer from fraudulent purchases.
Accordingly, a more effective method and apparatus for ordering and billing for goods, services, and content over a network, and ultimately the Internet, is needed. The method and apparatus should protect the seller and buyer from fraudulent purchases. Additionally, the method and apparatus should provide an element of non-repudiation to all transactions. The method and apparatus should also prevent buyers with histories of nonpayment from purchasing additional goods, services and/or content. Finally, the method and apparatus should allow a buyer without a major credit card to purchase goods, services and content over the network.
The present invention provides a computer program for ordering products from computers connected to the Internet, wherein the buyer is automatically billed for the ordered good, service, or content based on a virtual payment account maintained by a commerce gateway.
In accordance with other aspects of the present invention, a commerce gateway interfaces with a credit processing server to handle the monetary aspects involved in purchasing goods, services and/or content. The credit processing server interfaces with one or more financial institutions that physically handle the buyer's account. For example, a buyer can pay for purchases electronically by transferring funds from a bank account held by the buyer at a financial institution or by prepaying for the purchases by sending a check to the provider of the commerce gateway. Alternatively, reward points earned by using the virtual payment account can be applied towards purchases.
In accordance with still other aspects of the present invention, the credit processing server or commerce gateway communicates with one or more identity bureaus in order to determine a buyer's identity before creating a virtual payment account.
In accordance with still other aspects of the present invention, the credit processing server communicates with one or more credit bureaus in order to determine a credit limit for a buyer's virtual payment account.
In accordance with yet other aspects of the present invention, a virtual payment account can have associated sub-accounts. A sub-account can have a credit limit that is less than the main account credit limit. A sub-account can limit the seller sites from which goods, services, and/or content can be purchased.
In accordance with further aspects of the present invention, purchases must be made by a registered buyer from a registered seller. Security is ensured via authentication of the parties to a transaction. Authentication can be performed by verification of a digital certificate, or a digital signature, or by alternate authentication methods.
The foregoing aspects and many of the attendant advantages of this invention will become more readily appreciated as the same become better understood by reference to the following detailed description, when taken in conjunction with the accompanying drawings, wherein:
As previously described and shown in
More specifically, as shown in
In one actual embodiment of the present invention described herein, the identity bureau 56 is a server provided and maintained by an agency for verifying the identity of the buyer, and the credit bureau 58 is a server provided and administrated by a credit agency for processing credit reports for buyers. The identity bureau 56 and credit bureau 58 can be located on the LAN 44 or elsewhere on the Internet 40.
In yet another embodiment, the credit processing server can establish a point-to-point connection with a remote identity bureau or credit bureau that is not connected to either the LAN 44 or the Internet 40. It will be appreciated that other methods of communication between the credit processing server 53 and identity bureau 56 or credit bureau 58 may be used, for example, a secure Virtual Private Network (VPN) maintained and operated by the identity bureau or credit bureau exclusively for the purpose of identity checking or credit rating, respectively.
Finally, in yet other embodiments, the identity and credit bureaus may not actually offer a server at all. Rather, a customer service representative for the identity or credit bureaus may process the identity or credit report and manually provide the report to an administrator of the present invention who manually enters the report to the credit processing server 53.
The credit processing server 53 also communicates with one or more financial institutions 59 for the purpose of obtaining the buyer's payment, i.e., a transfer of funds for the purchase of products. As is the case with the identity and credit bureaus 58, the financial institutions 59 may be other servers in electronic communication with the credit processing server 53, customer service representatives in more traditional communication with the credit processing server 53, or some combination thereof.
Finally, in addition to the commerce gateway 52, the LAN 44 includes an administrative computer 54 used to administer buyer and seller information and services provided by the commerce gateway 52 and credit processing server 53.
In the exemplary embodiment of the present invention shown in
Also shown in
Finally, those of ordinary skill in the art will recognize that while only one buyer computer 50 and one seller server 51 are depicted in
The buyer's computer 50 also includes a processing unit 61, a display 62, and a memory 63. The memory 63 generally comprises a random access memory (RAM), a read-only memory (ROM), and a permanent mass storage device, such as a disk drive. The memory 63 stores the program code and data necessary for ordering and paying for a product over the Internet 40 in accordance with the present invention. More specifically, the memory 63 stores a Web browser component 64, such as NETSCAPE NAVIGATOR® or MICROSOFT® Internet Explorer, and a buyer authenticator component 65 formed in accordance with the present invention for authenticating a buyer as a registered participant of the virtual payment system prior to performing any virtual payment account transactions. It will be appreciated that these components may be stored on a computer-readable medium and loaded into memory 63 of the buyer computer 50 using a drive mechanism associated with the computer-readable medium, such as a floppy or DVD/CD-ROM drive.
As will be described in more detail below, the products ordered by the buyer are supplied by a seller server 51, described next, following authorization from a remote server, i.e., a commerce gateway 52 described later, located elsewhere on the Internet, e.g., on LAN 44 illustrated in
The seller server 51 also includes a processing unit 71, a display 72, and a memory 73. The memory 73 generally comprises a random access memory (RAM), read-only memory (ROM), and a permanent mass storage device, such as a hard disk drive, tape drive, optical drive, floppy disk drive, or combination thereof. In one actual embodiment of the present invention, the memory contains a product database 74 that includes the electronically stored good or service ordered by the buyer. In other embodiments of the present invention, the product database 74 stores the premium content ordered by the buyer, i.e., the hypertext documents or other electronically stored information considered of monetary value by the seller. In yet other embodiments of the present invention, the goods may be tangible goods not capable of being electronically stored, in which case the product database includes descriptive information of the products.
The memory 73 also contains a commerce engine component 75 for purchasing a product from a seller Web site. The commerce engine component 75 may be an existing commerce engine, such as MICROSOFT® Site Server, which allows for the payment of products ordered over the Internet using a major credit card, e.g., VISA® or MASTERCARD®. A commerce gateway adapter component 76 is also provided to allow the commerce engine component 75 to interface with the commerce gateway 52. The commerce gateway adapter component uses and provides application programming interface (API) calls to interface with the commerce engine 75. Also included in memory is a seller authenticator component 77 for verifying that the seller is an authorized or registered seller of the virtual payment system of the present invention. It will be appreciated that the product database 74, the commerce engine component 75, the commerce gateway adapter component 76, and the seller authenticator component 77 may be stored on a computer-readable medium and loaded into memory 73 of the seller server 51 using a drive mechanism associated with the computer-readable medium, such as a floppy or CD-ROM drive. Finally, memory 73 stores a Web server component 78 for handling requests for stored information received via the Internet and the WWW.
The commerce gateway 52 also includes a processing unit 81, a display 82 and a memory 83. The memory 83 generally comprises a random access memory (RAM), a read-only memory (ROM), and a permanent mass storage device, such as a hard disk drive, tape drive, optical drive, floppy disk drive, or combination thereof. The memory 83 stores the program code and data necessary for authorizing a seller server 51 to supply products to buyers and obtaining payment for the products via a credit processing server 53 in accordance with the present invention. More specifically, the memory 83 stores a transaction server component 84 formed in accordance with the present invention for authorizing a seller to supply the ordered product and obtaining payment for the ordered product from the credit processing server 53. Memory 83 also contains an identity bureau adapter 79 formed in accordance with the present invention for verifying a buyer or seller's identity. Also stored in memory 83 is an enrollment server component 89 formed in accordance with the present invention for determining the credit worthiness of an applicant. An account identification container generator component 88 is also stored in memory 83 for determining an internal account identification. A report server 85 is also stored in memory 83 for processing request for reports and consolidating information for requested reports. Also stored in the memory 83 is a credit processing server adapter component 86 for communicating with a credit processing server 53 described below. It will be appreciated that the transaction server component 84, the credit processing server adapter component 86, the account identification container generator component 88, and the enrollment server component 89 may be stored on a computer-readable medium and loaded into memory 83 of the commerce gateway 52 using a drive mechanism associated with the computer-readable medium, such as floppy or CD-ROM drive. The memory 83 also stores a Web server component 87 for handling requests for stored information received via the Internet 40 and the WWW.
The credit processing server 53 also includes a processing unit 91, a display 92 and a memory 93. The memory 93 generally comprises a random access memory (RAM), a read-only memory (ROM), and a permanent mass storage device, such as a hard disk drive, tape drive, optical drive, floppy disk drive, or combination thereof. The memory 93 stores the program code and data necessary for authorizing and securing payment for products purchased using a virtual payment account in accordance with the present invention. More specifically, the memory 93 of the credit processing server stores credit processing sub-systems including: an account/billing sub-system 94 for billing a buyer for products purchased using a virtual payment account; a payment processing sub-system 95 for communicating with a financial institution 59 in order to process payments received for purchases made using a virtual payment account; and an account enrollment sub-system 96 for determining the credit limit for an applicant as determined by information received from one or more credit bureaus 58.
Also stored in memory 93 are an account database 97 and a financial database 98 used to store data required for the account/billing sub-system 94, the payment processing sub-system 95, identity bureau adapter 99 and the account enrollment sub-system 96 to perform their required functions. It will be appreciated that the account/billing sub-system 94, the payment processing sub-system 95, the account enrollment sub-system 96, the account database 97, identity bureau adapter 99, and the financial database 98 may be stored on a computer-readable medium and loaded into memory 93 of the credit processing system using a drive mechanism associated with the computer-readable medium, such as floppy or DVD/CD-ROM drive. It will also be appreciated that the account/billing sub-system 94, the payment processing sub-system 95, and the account enrollment sub-system 96 can comprise, either in full or in part, existing, traditional credit card payment systems.
Once a VPA is set up, the virtual payment system of the present invention is a closed system that provides buyers a secure method for purchasing products over the Internet. The closed system includes only a registered buyer's computer 50, a registered seller server 51, the commerce gateway 52 (administered by the provider of the virtual payment system), and the credit processing server 53 (which can also be administered by the provider of the virtual payment system). Since the account information necessary for charging the buyer for the purchase is already in the possession of the commerce gateway 52 and the credit processing server 53, the closed system of the present invention allows registered buyers to purchase products from registered sellers without transferring sensitive account information to the sellers over the Internet. In order to become a member of the virtual payment system of the present invention, a buyer becomes a registered user by obtaining a virtual payment account.
Upon completion of the application form, the buyer computer 50 submits the completed application form 104 to the commerce gateway 52. The commerce gateway 52 then submits the application data 106 from the completed form to the credit processing server 53 for account and credit limit authorization. The credit processing server 53 verifies the application data by requesting identity information 116 from an identity bureau 56. The identity bureau provides the requested identity information 118 and, if the provided identity information corresponds to the application data, then the credit processing server 53 requests credit information 108 about the buyer from a credit bureau 58. However, in one actual embodiment of the present invention, if the application data does not conform to the identity information from the identity bureau 56, then no virtual payment account is created, and the application is forwarded to customer service for review for possible fraud detection. As noted above, in the actual embodiment of the present invention, the identity bureau 56 is a server provided and maintained by a agency for verifying identity, and the credit bureau 58 is a server provided and administrated by a credit agency for processing credit reports. Hence, the credit processing server 53 requests the desired identity and credit information electronically, e.g., via appropriate database queries, etc., from the identity bureau 56 and credit bureau 58.
Returning to the illustrated embodiment, the credit bureau 58 provides the requested credit information 110 to the credit processing server 53 via the connection with the credit processing server 53. The credit processing server 53 then evaluates the application, identity, and credit information by combining the identity information from the identity bureau and the credit information received from the credit bureau 58 with application data in order to determine a credit score 111. If the score exceeds a certain threshold, a credit limit is set and the virtual payment account is created 112. If the score falls below the threshold, a virtual payment account may still be created 112, however, all purchases must be prepaid, and the account information is forwarded to a customer service representative for review for a possible later grant of credit.
Once the virtual payment account is created, the credit processing server 53 returns the result of the evaluation 113, e.g., approval/denial, prepaid account only, credit limit, etc., to the commerce gateway 52. The commerce gateway then requests 120 that the buyer authenticator 65 on the buyer computer generate a public key encryption key pair 122 comprising a secret key and a public key. The buyer authenticator 65 then submits the public key to the commerce gateway 124. The commerce gateway 52 digitally signs the public key to generate a digital certificate 126. As will be appreciated by those of ordinary skill in the art, a digital certificate comprises a public key digitally signed by a trustworthy entity. The commerce gateway 52 sends the digital certificate and an application result page 114 to the buyer computer 50 for display via the buyer computer's Web browser 64. Finally, the buyer computer stores the digital certificate 128 for use later with the virtual payment account.
It will be appreciated that the digital certificate may be stored in the memory 63 of the buyer computer 50 or on some form of device capable of interfacing with the buyer computer such as, but not limited to, a secure token, smart card, or as an encrypted file on some other computer readable medium. It will be appreciated by those of ordinary skill in the art that the order of the operations in
After the buyer completes the application form contained in the Web pages 605, 610, and 615 shown in
Once a virtual payment account has been approved and a credit limit set as described above, the account can be customized by the buyer. Account information is then stored in the account database 97 of the credit processing server 53.
As shown in
It will also be appreciated that a similar process is performed for a seller to become an authorized or registered seller. In one embodiment, a seller can apply to become a participant by completing an application form on-line. In another embodiment, a seller applies to become a participant of the system using a more traditional manual application procedure. In yet another embodiment, some combination of an on-line and manual process is used. It will be appreciated that if the seller application process is performed in whole or in part on-line, a Web browser component (not shown in
It will be appreciated, as described earlier, that a seller can apply for a “buyer” account. In other words, a seller can purchase products as the owner of a virtual payment account.
The illustrated embodiment also allows a buyer to create a custom package of sub-accounts. As will be readily recognized by those of ordinary skill in the art, the buyer may be provided with any number, type or combination of sub-accounts depending on the desires of those providing and administrating the virtual payment system of the present invention.
The buyer can add sub-accounts (e.g., supplemental users, young shoppers, etc.) via the Web pages 650 shown in
As will be described in more detail below, once the virtual payment account has been authorized 114 and customized, a digital certificate is transferred by the commerce gateway 52 and installed 128 on the buyer computer 50. The digital certificate is then used in subsequent transactions as a unique credential to identify the buyer as a registered holder of a virtual payment account. In an actual embodiment of the present invention, a buyer or seller is identified as a registered user of the virtual payment system by the commerce gateway 52 verifying the commerce gateway's digital signature on the digital certificate associated with the buyer's virtual payment account
It will be appreciated that several levels of security can be imposed on on-line transactions. Moving from the lowest level to the highest level, there can be: (1) no security restrictions imposed; (2) minimal security, such as account name and password verification; (3) intermediate security, such as a digital certificate or secret key; (4) high security, such as a transaction signed with a digital signature using the buyer's secret key; or (5) maximum security, such as a digital signature and additional access controls, such as an account number, a last purchase verification, smart cards, secure tokens or some combination thereof. As will be described later, in the actual embodiment of the virtual payment system described herein, the term “digital certificate” is used to describe the authorization used; however, it will be appreciated that a higher level of security such as a digital signature, or a digital signature with additional access controls may be desired in order to ensure the highest level of security for all parties involved (i.e., the buyer, the seller, the commerce gateway, and the credit processing server) in virtual payment account transactions.
In one exemplary embodiment of the security transaction, the seller server 51 digitally signs a purchase offer with a certificate issued by the commerce gateway 52 and sends it to the buyer computer 50; the buyer computer 50 digitally signs the purchase offer with a certificate issued by the commerce gateway 52 and sends it back to the seller server 51; the seller server 51 then forwards the doubly signed purchase offer to the commerce gateway 52; the commerce gateway 52 verifies both signatures, and if they are both valid and the transaction is permissible, then signs the doubly signed offer and returns the resulting triply signed purchase offer to the seller server 51; the seller server verifies the commerce gateway's 52 signature and, if it is valid, then the purchase transaction is complete. In the aforementioned example, the seller server 51 may notify the buyer computer 50 or they may not.
Once a buyer has created and customized his or her virtual payment account, he or she can immediately order products via the Internet if he or she was granted credit during the account application process. If, however, the buyer's virtual payment account is only a prepaid account, prepayment must be made before the buyer can order products. In an alternate embodiment, the buyer with only a prepaid account can order products, however, shipment of the product will be held until the prepaid account is sufficiently funded to cover the purchase. More specifically, this would allow any registered buyer to have a form of “digital layaway” and by ordering products directly from the Web site of any registered seller. It will be appreciated that in yet another embodiment, buyer and seller will use the same type of virtual payment accounts and that any buyer can therefore act as a seller and vice versa. Additionally, it will be appreciated that a seller can be an auction Web site, in which a buyer uses his or her virtual payment account to pay for the goods, services and/or content purchased from the auction Web site.
In one actual embodiment of the present invention depicted in
After initiating the purchase transaction, the seller server 51 provides the Web browser 64 of the buyer's computer 50 with the Web page 1150 shown in
The buyer authenticator 65 determines whether a buyer is a registered holder of a virtual payment account or, put another way, a registered participant in the closed virtual payment system of the present invention. The logic of
Next, in decision block 246, a test is made to determine if a digital certificate is installed on the buyer computer 50. The digital certificate may be stored in the buyer computer 50 memory 63 or one some other device associated with the buyer computer such as a secure token, a smart card, or encrypted on some computer readable medium. It will be appreciated that other methods of digital identification can be used. If the digital certificate is installed, the digital certificate identification is inserted into the authentication container and the authentication request and container are returned to the Web browser in blocks 248 and 250. The container can be any one of a variety of data formats, for example, in one embodiment of the present invention a proprietary protocol is used. In an actual embodiment of a present invention, a public key generated by the buyer's computer and signed by the commerce gateway (thereby forming a digital certificate) is also inserted into the container. The secret key is never transmitted anywhere in the virtual payment system of the present invention. The combination of the secret key and the digital certificate provides a heightened level of security to the buyer authentication process. A digital signature is generally a document that has been encrypted by the secret key of a public key pair. Only the public key of the same key pair will be able to decrypt the document to its original form. This is particularly useful in demonstrating that only the holder of the secret key is able to sign (encrypt) the document. In practical terms, signing a large document using public key cryptography can be very time consuming. Almost equally effective is creating a cryptographic message digest of the document and then encrypting the digest with the secret key. Therefore those of ordinary skill in the art will appreciate that anyone knowing the corresponding public key and the digest algorithm will be able to verify that the message was not altered and that it originated from the holder of the corresponding secret key. It will be appreciated that the digital certificate as used herein refers to an authentication identifier that is recognized by the provider of the virtual payment account that adheres to the provider's non-repudiation purchase policies.
If, however, in decision block 246 it is determined that a digital certificate is not installed on the buyer computer 50, the logic proceeds to a decision block 252 where a test is made to determine if “certificate not present” processing should be performed. “Certificate not present” processing allows a buyer to manually enter identification information when a digital certificate is not present. The identification information can include information such as an e-mail address, a password, and personal information, for example, a mortgage payment amount. If the result of decision block 252 is positive, the logic proceeds to an alternate authentication in block 254. The alternate authentication is shown in more detail in
The logic of
If however at block 1405 the buyer decides not to request an authorization code, then from block 1410 the logic flows to a block 1450 where an interactive authentication Web form 3000 is sent to the Web browser 64 on the buyer's computer 50. An exemplary interactive authentication Web form 3000 is shown in
Next, the completed authorization entry form from block 1425 or 1455 is transmitted to the commerce gateway 52 in a block 1430. The logic then proceeds to a block 1435 where it is determined whether the authentication was successful. If the authentication was successful the logic ends at a block 1498, returning a successful authentication. If the authentication was unsuccessful the logic ends at a block 1499, returning an unsuccessful authentication.
Returning to
Next, in a block 275, the completed account application form is sent to the commerce gateway 52 and processed by an enrollment server component 89, as shown in
The logic of the enrollment server 89 shown in
Accordingly, the logic of
Returning to
Upon receipt of the credit information, the logic proceeds to a block 286, where the application is scored based on the identity bureau information and credit bureau information in combination with internal criteria. The internal criteria provide a score for the various pieces of credit information. For example, incomes will be broken down into ranges, with a point value assigned to each range. Similarly, point values will be assigned based on the time the applicant has lived at his or her current residence, etc. The points for each piece of credit information are combined to determine a score for the applicant. The score equates to the credit worthiness of the buyer and is used to determine if the applicant will receive a credit account or, if the score falls in an intermediate range, a prepaid account and, if so, to establish a credit limit for the applicant, i.e., buyer. Next, if the score is above a threshold logic ends with a successful enrollment result returned to the Web browser in a block 288. However, if the score is below a certain threshold, or if the identity information provided by the identity bureaus 56 does not correspond to that of the buyer's application, then an unsuccessful result is returned in a block 289. Processing then returns to
In
Referring again to
While the logic of authenticating a buyer as shown in
Returning to
However, if the buyer was successfully authenticated, the logic proceeds to a block 228 where a virtual payment account selection Web page 1170 as shown in
The logic of
Returning to
The commerce engine 75 is the component of the seller server 51 that determines whether or not the order will be processed and whether the requested product will ultimately be provided to the buyer. It will be appreciated that commerce engines are well known in the art. The commerce engine component 75 used in conjunction with the commerce gateway adapter component 76 allows the virtual payment system of the present invention to expand existing technology that is currently used for traditional credit systems to encompass the virtual payment account of the present system. It will be further appreciated that while the embodiment shown and described modifies the commerce engine to achieve this functionality (which may be possible through existing API calls of the commerce engine), other embodiments are possible. This expanded commerce engine functionality is shown in
The logic of
The commerce gateway adapter 76 is a component residing on the seller server 51 that allows the seller server to communicate directly with the transaction server component 84 of the commerce gateway 52 in order to expand the authorization function of the commerce engine 75 to include virtual payment account transactions. Accordingly, the logic of
The transaction server component 84 of the commerce gateway 52 is responsible for interfacing with the other components of the system and determining whether or not a requested transaction should be applied to a buyer's virtual payment account. The logic of
If the transaction is not permissible, the logic proceeds to a block 357 where an impermissible transaction message is sent to the requester (e.g., the commerce gateway adapter 76 in the context of a purchase request). The logic of
The credit processing server adapter 86 is the component residing on the commerce gateway 52 that allows commerce gateway 52 components, such as the transaction server 84 and the enrollment server 89, to communicate directly with the various sub-systems of the credit processing server 53, which provide for the application of the requested transaction to the buyer's actual payment account. Accordingly, the logic of
For any credit processing sub-system, the logic of
The logic then proceeds to a block 399 where necessary account adjustments are applied, if applicable. For example, the account balance will be reduced by the amount of an authorized purchase transaction. In one embodiment of the present invention, reward points are accrued at the time of purchase but committed later, for example, during the periodic, e.g., monthly, statement preparation process. Alternatively, reward points may not accrue until payment is made for the product to which the points are attributed. Next, the transaction result, such as the credit information or the purchase authorization, is sent to the credit processing server adapter 86 in a block 400. The logic of
Returning to
Returning to
After a valid transaction response 370, an error transaction response 374 or an impermissible transaction response 357 is sent to the requester, the logic of
Returning to
Returning to
Returning to
However if at decision block 304, it is determined that the purchase request should not be forwarded to the commerce gateway 52; the logic proceeds to a block 316 where standard commerce engine processing is performed. More specifically, in block 316 traditional credit or debit card authorization is performed, such as approval or denial for the use of a credit card, e.g., VISA® or MASTERCARD®, for the specified purchase amount. Next, the authorized goods are shipped in a block 318. The logic then proceeds to a block 320 where a settlement request is sent to the traditional credit provider, e.g., VISA® or MASTERCARD®. A response confirming fulfillment of the order is then sent to the Web browser 64 of the buyer computer 50 in a block 322. The logic of
Returning to
If the seller is an auction Web site, the authorization 2340 sent by the commerce gateway 52 to the seller server 51 includes information such as a buyer account identification, a seller identification, a seller sale offering, a buyer authentication, a seller authentication, and a master identification, i.e., identification of the commerce gateway 52 provider. Particular to this type of response is an expiration date/time that is used to signal the shorter of the maximum times that the buyer and the seller are willing to “reserve” funds associated with this transaction. If the transaction, i.e., settlement request 2365, is not received by the commerce gateway 52 before the expiration date/time of the transaction, the products and/or funds will be released back to their owners. At a later time, once the buyer has committed to the purchase, the buyer releases an authorization to the provider of the commerce gateway 52 knowing that the seller has proven ability to ship the products on demand without delay. This initiates the actual settlement of funds and triggers payment to the seller in the next settlement batch, without any further interaction with the seller. This payment method supports buyer-initiated, pre-approved purchases with expiration date/time, such as auction and gift-certificate purchases.
It will be appreciated that
When a seller establishes a seller account, a contract is formed defining the relationship between the seller and the commerce gateway provider. That contract defines the terms, such as when payments will be funded and what fee shall be given to the commerce gateway provider. The commerce gateway fee can be a per transaction fee or a percentage fee based on the amount of a transaction. The logic for settlement transactions for a virtual payment account is similar to the logic used for processing standard credit card settlement transactions. After the seller ships the product, the seller sends a settlement transaction to the commerce gateway 52 as shown in
If the seller authenticator process is successful, the logic proceeds from decision block 536 to a block 544 where a settlement request is sent to the transaction server 84 on the commerce gateway 52. As shown and described in
The logic of
After a valid transaction response 2545, an error transaction response 2555, or an impermissible transaction response 2560 is sent to the requester, the logic of
Referring back to
Referring to
As also noted above, in processing the refund request, the transaction server 84 will forward a transaction request to the credit processing server 53 for processing by the account/billing sub-system 94 as shown in
Other transactions normally associated with an account such as a standard credit card account are also applicable to the virtual payment account of the present invention.
It is often desirable for seller's to have detailed reports available to judge the current state of their business. Accordingly, the present invention maintains records of transactions in readily retrievable formats. It is also desirable that competitors not have access to the same reports on the details of a seller's business. Accordingly, the present invention provides for secure authenticated access to a seller's reports.
In one actual embodiment of the present invention, the commerce gateway 52 requests report information from the credit processing server 53, in particular from the financial database 98 stored on the credit processing server. I will be appreciated by those of ordinary skill in the art, that a financial database may be used to store information forreport generation, yet may also store information relevant for other purposes.
While the preferred embodiment of the invention has been illustrated and described, it will be appreciated that various changes can be made therein without departing from the spirit and scope of the invention. For example, it will also be appreciated that there are other transactions applicable to a virtual payment account of the present invention, e.g., account closure, credit limit modification, overdue account notification, etc. It will be appreciated that these transactions can be initiated by various components of the system, for example a financial institution may institute a change in a credit limit by sending a request to one of the sub-systems on the credit processing server. One of ordinary skill in the art will recognize that the requests for such transactions are processed by the virtual payment system of the present invention in a manner similar to the processing of the purchase settlement, and refund transactions described in detail above.
This application is a continuation of application Ser. No. 10/663,443, filed Sep. 16, 2003, which is a continuation of U.S. patent application Ser. No. 10/338,133, filed Jan. 6, 2003, which is a continuation of U.S. patent application Ser. No. 09/578,395, filed May 25, 2000, which in turn is a continuation-in-part of U.S. application Ser. No. 09/370,949, Aug. 9, 1999, priority from the filing date of which is hereby claimed under 35 U.S.C. §120. U.S. patent application Ser. No. 09/370,949 claims the benefit of provisional Application No. 60/140,039, filed Jun. 18, 1999, the benefit of which is hereby claimed under 35 U.S.C. §119.
Number | Name | Date | Kind |
---|---|---|---|
5276444 | McNair | Jan 1994 | A |
5475819 | Miller | Dec 1995 | A |
5557518 | Rosen | Sep 1996 | A |
5610980 | Johnson | Mar 1997 | A |
5671279 | Elgamal | Sep 1997 | A |
5677955 | Doggett | Oct 1997 | A |
5715314 | Payne et al. | Feb 1998 | A |
5724424 | Gifford | Mar 1998 | A |
5729594 | Klingman | Mar 1998 | A |
5732400 | Mandler | Mar 1998 | A |
5737414 | Walker | Apr 1998 | A |
5765144 | Larche | Jun 1998 | A |
5768382 | Schneier | Jun 1998 | A |
5779549 | Walker | Jul 1998 | A |
5790677 | Fox | Aug 1998 | A |
5794207 | Walker | Aug 1998 | A |
5797127 | Walker | Aug 1998 | A |
5798508 | Walker | Aug 1998 | A |
5818933 | Kambe | Oct 1998 | A |
5822737 | Ogram | Oct 1998 | A |
5855008 | Goldhaber | Dec 1998 | A |
5870473 | Boesch | Feb 1999 | A |
5878403 | DeFrancesco | Mar 1999 | A |
5883810 | Franklin | Mar 1999 | A |
5883955 | Ronning | Mar 1999 | A |
5890137 | Koreeda | Mar 1999 | A |
5899980 | Wilf | May 1999 | A |
5903721 | Sixtus | May 1999 | A |
5903882 | Asay | May 1999 | A |
5905736 | Ronen | May 1999 | A |
5909492 | Payne | Jun 1999 | A |
5914472 | Foladare et al. | Jun 1999 | A |
5930776 | Dykstra | Jul 1999 | A |
5933625 | Sugiyama | Aug 1999 | A |
5963625 | Kawecki | Oct 1999 | A |
5991738 | Ogram | Nov 1999 | A |
5996076 | Rowney | Nov 1999 | A |
6003765 | Okamoto | Dec 1999 | A |
6058250 | Harwood | May 2000 | A |
6064987 | Walker | May 2000 | A |
6076078 | Camp | Jun 2000 | A |
6088686 | Walker | Jul 2000 | A |
6092147 | Levy | Jul 2000 | A |
6098053 | Slater | Aug 2000 | A |
6119105 | Williams | Sep 2000 | A |
6138107 | Elgamal | Oct 2000 | A |
6158657 | Hall, III | Dec 2000 | A |
6173269 | Solokl et al. | Jan 2001 | B1 |
6209091 | Sudia | Mar 2001 | B1 |
6233341 | Riggins | May 2001 | B1 |
6263447 | French | Jul 2001 | B1 |
6282658 | French et al. | Aug 2001 | B2 |
6321339 | French | Nov 2001 | B1 |
6324524 | Lent | Nov 2001 | B1 |
6327578 | Linehan | Dec 2001 | B1 |
6332134 | Foster | Dec 2001 | B1 |
6341349 | Takaragi | Jan 2002 | B1 |
6438691 | Mao | Aug 2002 | B1 |
6446052 | Juels | Sep 2002 | B1 |
6466917 | Goyal | Oct 2002 | B1 |
6484182 | Dunphy | Nov 2002 | B1 |
6629150 | Huded | Sep 2003 | B1 |
6675153 | Cook | Jan 2004 | B1 |
6721716 | Gross | Apr 2004 | B1 |
6959382 | Kinnis | Oct 2005 | B1 |
6961858 | Fransdonk | Nov 2005 | B2 |
7020635 | Hamilton | Mar 2006 | B2 |
7039688 | Matsuda | May 2006 | B2 |
7080049 | Truitt | Jul 2006 | B2 |
7090128 | Farley | Aug 2006 | B2 |
7107462 | Fransdonk | Sep 2006 | B2 |
7150045 | Koelle | Dec 2006 | B2 |
7249097 | Hutchison | Jul 2007 | B2 |
7356503 | Johnson | Apr 2008 | B1 |
7587502 | Crawford | Sep 2009 | B2 |
7606760 | Hutchison | Oct 2009 | B2 |
7711586 | Aggarwal | May 2010 | B2 |
7765151 | Williams | Jul 2010 | B1 |
7908226 | Hutchison | Mar 2011 | B2 |
8001039 | Crosthwaite | Aug 2011 | B2 |
8078527 | Cerise | Dec 2011 | B2 |
8127345 | Gregg | Feb 2012 | B2 |
9690968 | Wadley | Jun 2017 | B2 |
20010001877 | French et al. | May 2001 | A1 |
20010007098 | Hinrichs | Jul 2001 | A1 |
20010018739 | Anderson | Aug 2001 | A1 |
20010037310 | Saeki | Nov 2001 | A1 |
20010039535 | Tsiounis | Nov 2001 | A1 |
20020007343 | Oyama | Jan 2002 | A1 |
20020023051 | Kunzle | Feb 2002 | A1 |
20020035533 | Mache | Mar 2002 | A1 |
20020046188 | Burges | Apr 2002 | A1 |
20020059430 | Orbke | May 2002 | A1 |
20020078344 | Sandhu et al. | Jun 2002 | A1 |
20020111919 | Weller | Aug 2002 | A1 |
20020116341 | Hogan | Aug 2002 | A1 |
20020144120 | Ramanathan | Oct 2002 | A1 |
20020161719 | Manning | Oct 2002 | A1 |
20030033259 | Walker | Feb 2003 | A1 |
20030046223 | Crawford | Mar 2003 | A1 |
20030046237 | Uberti | Mar 2003 | A1 |
20030171992 | Blagg | Sep 2003 | A1 |
20040078394 | Powell | Apr 2004 | A1 |
20040083184 | Tsuei | Apr 2004 | A1 |
20040192306 | Elkarat | Sep 2004 | A1 |
20040199456 | Flint | Oct 2004 | A1 |
20040267665 | Nam | Dec 2004 | A1 |
20050177518 | Brown | Aug 2005 | A1 |
20050216421 | Barry et al. | Sep 2005 | A1 |
20060168663 | Viljoen | Jul 2006 | A1 |
20060237528 | Bishop | Oct 2006 | A1 |
20070052517 | Bishop | Mar 2007 | A1 |
20070299684 | Goodwin | Dec 2007 | A1 |
20070299771 | Brody | Dec 2007 | A1 |
20090132819 | Lu | May 2009 | A1 |
20100042542 | Rose | Feb 2010 | A1 |
20100223186 | Hogan | Sep 2010 | A1 |
20100228668 | Hogan | Sep 2010 | A1 |
20110087526 | Morgenstern | Apr 2011 | A1 |
20140258109 | Jiang | Sep 2014 | A1 |
20150006392 | Brand | Jan 2015 | A1 |
20150242825 | Mills | Aug 2015 | A1 |
20160267477 | Mcdonald | Sep 2016 | A1 |
20170103459 | Kim | Apr 2017 | A1 |
20170132630 | Castinado | May 2017 | A1 |
Number | Date | Country |
---|---|---|
2167543 | Jul 1997 | CA |
2217825 | Apr 1998 | CA |
0765068 | Mar 1997 | EP |
0 779 587 | Jun 1997 | EP |
0818907 | Jan 1998 | EP |
0883076 | Dec 1998 | EP |
0902381 | Mar 1999 | EP |
0 921 487 | Jun 1999 | EP |
9-218903 | Sep 1997 | JP |
9-297789 | Nov 1997 | JP |
9-326002 | Dec 1997 | JP |
10-509543 | Sep 1998 | JP |
10-327145 | Dec 1998 | JP |
11-3387 | Jan 1999 | JP |
11-53444 | Feb 1999 | JP |
11-503541 | Mar 1999 | JP |
11-239128 | Aug 1999 | JP |
11-353280 | Dec 1999 | JP |
1020000012391 | Mar 2000 | KR |
9516971 | Jun 1995 | WO |
9621192 | Jul 1996 | WO |
9631965 | Oct 1996 | WO |
9637848 | Nov 1996 | WO |
9701920 | Jan 1997 | WO |
9722074 | Jun 1997 | WO |
9729584 | Aug 1997 | WO |
9749054 | Dec 1997 | WO |
9809260 | Mar 1998 | WO |
9840809 | Sep 1998 | WO |
9857460 | Dec 1998 | WO |
9921321 | Apr 1999 | WO |
9957835 | Nov 1999 | WO |
Entry |
---|
“AT&T eCharge: Account Activity,” <http://www.echarge.att.com/cgi-bin/Transactions.cgi>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: Activate Your Account,” <http://www.echarge.att.com/cgi-bin/Activate.cgi>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: Apply for an Account,” <http://www.echarge.att.com/cgi-bin/Register.cgi>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: Frequently Asked QuestionslCustomer Support,” <http://www.echarge.att.com/faq.html>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: Frequently Asked Questions/Customer Support,” <http://www.echarge.att.com/terms—conditions.html>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: How Does It Work?” <http://www.echarge.att.com/how—wk.html>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: Simple,” <http://www.echarge.att.com/>, available at least as early as Oct. 29, 1997. |
“AT&T eCharge: Welcome to AT&T eCharge,” <http://www.echarge.att.com/index.html>, available at least as early as Oct. 29, 1997. |
Information Intelligence, Inc., “User Authentication and Authorization Challenges in a Networked Library Environment,” Online Libraries & Microcomputers 15(10), Oct. 1, 1997. |
Lau, H., “Open House: E-business and you: buying on the Net . . . Safely,” Businessworld (Philippines), Nov. 3, 1998. |
Marion, L., “Who's Guarding the Till at the Cybermall?” Datamation 41(3):38-39, Feb. 15, 1995. |
PR Newswire Association, Inc., “Verisign Offers Unique Seal to Show Internet Users ‘Proof of Authentication’,” PR Newswire, Dec. 10, 1996. |
“Victims Seeking Cheap Online Erotica Aroused by Not-So-Cheap Phone Bills,” San Jose Mercury News, Feb. 20, 1997, Sec. C, p. 1. |
Notification of Reason(s) for Refusal mailed Dec. 8, 2009, in corresponding Japanese Application No. 2001-504945, filed Jun. 16, 2000. |
“Briefly Noted,” Internet Business News, © 1994-8 M2 Communications Ltd., Coventry, United Kingdom, Jan. 1, 1998, p. 1. |
Lang, P., “Product Review: eCharge Billing System” © 1997-2009 Optimum Interactive LLC, Apr. 1998, <http://sellitontheweb.com/ezine/echarge.shtml> [retrieved Dec. 10, 2008], 3 pages. |
English translation provided by foreign associate of excerpts of Examiner's Opinion mailed Jun. 5, 2012, issued in Brazilian Patent Application No. PI 0011768-4, filed Jun. 16, 2000, 3 pages. |
Ajluni, C., “Security Techniques Ensure Privacy,” Electronic Design, Apr. 1995, pp. 83-84 (abstract). |
“Encryption Devices,” Government Executive, Jul. 1996, p. 2A. |
European Examination Report dated Nov. 28, 2008, issued in related Application No. EP 01944177.3, filed May 25, 2001. |
“Internet 900 Billing Fills Void,” Audiotex News, Dec. 1997, p. 5 (abstract). |
“Internet Service Considers 900,” Audiotex News, Jan. 1997, p. 8 (abstract). |
Minkoff, J., “Ensuring Online Security,” Discount Merchandiser, Jan. 1996, p. 49. |
Pappalardo, D., “Tools Lets ISPs Charge for Fax, Voice,” Network World, Apr. 1997, p. 116. |
Schneier, B., “Applied Cryptography: Protocols, Algorithms, and Source Code in C,” 2nd Edition, John Wiley & Sons, Inc., New York, 1996. |
Sirbu, M.A., “Creating an Open Market for Information,” Journal of Academic Librarianship, Nov. 1995, p. 467 (abstract). |
Summons to Attend Oral Proceedings mailed Aug. 19, 2009, in related Application No. EP 00942881.4, filed Jun. 16, 2000. |
Yamasaki, S., and K. Araki, “A Certificate Infrastructure Model for Integrated Cross-Authentication With Warranty and Use Policy Control,” Transactions of Information Processing Society of Japan 40(1):296-309, Jan. 1999 (with English abstract). |
Notification of Reason(s) for Rejection dated Apr. 19, 2011, in corresponding Japanese Application No. 2001-587188, filed May 25, 2001, and English Translation by Japanese foreign associate, 6 pages. |
Itoh, M., et al., “Outline of SET Protocol,” NEC Journal 51(9):90-99, 1998 (with partial English translation provided by foreign associate). |
Decision of Rejection mailed Dec. 6, 2011, issued in Japanese Patent Application No. 2001-587188, filed May 25, 2001, 8 pages. |
Office Action (CA) mailed Jan. 13, 2014, issued in related Canadian Application No. 2,377,706, filed Jun. 16, 2000, 5 pages. |
Yamasaki, S., and K. Araki, “A Certificate Infrastructure Model for Integrated Cross-Authentification With Warranty and Use Policy Control,” Transactions of Information Processing Society of Japan 40(1):296-309, Jan. 1999 (English Abstract). |
Number | Date | Country | |
---|---|---|---|
20080016003 A1 | Jan 2008 | US |
Number | Date | Country | |
---|---|---|---|
60140039 | Jun 1999 | US |
Number | Date | Country | |
---|---|---|---|
Parent | 10663443 | Sep 2003 | US |
Child | 11775473 | US | |
Parent | 10338133 | Jan 2003 | US |
Child | 10663443 | US | |
Parent | 09578395 | May 2000 | US |
Child | 10338133 | US |
Number | Date | Country | |
---|---|---|---|
Parent | 09370949 | Aug 1999 | US |
Child | 09578395 | US |