The present patent application generally relates to information technologies and more specifically to a platform/system and a method for interactive pattern exchange related to an electronic transaction which can be used as an add-on to support existing transaction process to generate a secured transaction between users and/or applications.
Nowadays almost every transaction contains data. Each transaction is typically triggered in a form of Person-to-Person (P2P), Application-to-Person (A2P) or Machine-to-Machine (M2M) and may also require some kind of security process to be applied to protect and/or access the data and/or service which involves hardware and the user would need to memorize the instruction key as well as human identity such as finger print.
Generally, whenever a user initiates and respond to a transaction, several steps (i.e. connect, input and submit) are mandatory and the recipient will authenticate the received information to decide whether to put through the transaction forward or reply an associated response to the user. Currently, there are several ways to trigger a transaction which involves P2P, A2P and M2M. An initiator of the transaction is usually required to: connect the target entity, input keys in alphanumeric format, verify the input, and wait for response. Another method requires additional devices or technologies such as dongle, RFID, QR Code or NFC technology.
Credit card payment, RFID access card and dongle use a physical media (i.e. Connect) for transaction triggering. The user keys in (i.e. Input) a password and confirms (i.e. Submit) for authentication before the operation begins.
QR code data requires the user to turn-on a QR code scanner (i.e. Connect) and scan the created QR code (i.e. Input) for transaction triggering, and to use the QR code scanner (at the user device) to decode the data (i.e. Process).
NFC technology requires a user's NFC enabled device to be in pair with a reception terminal (i.e. Connect). The reception terminal will read the user NFC device data (i.e. Input) and the read data will be sent toward an associated application (i.e. Submit) for further processing.
The present patent application is directed to a method for interactive pattern exchange. In one aspect, the method includes: triggering a transaction and sending a transaction request to a platform via an access media by a first user device; transmitting a first pattern between the first user device and the platform via the access media; receiving input of a second pattern by the first user device or a second user device; submitting the second pattern to the platform to be verified by the first user device or the second user device; and returning a transaction result with associated data to at least one of the first user device and the second user device according to the result of the verification by the platform.
Input of the second pattern may be received and submitted to the platform by the first user device. Input of the second pattern may be received and submitted to the platform by the second user device. The transaction result with associated data may be returned to both the first user device and the second user device.
The first user device and the second user device may each include a draw panel configured for receiving input of a pattern, while the platform may be a server that runs applications and stores data. The platform may include a transaction engine and a pattern engine configured to handle transactions and generate patterns respectively. The access media may be a mobile network, the Internet or a cloud. The transaction may be triggered through a subscriber identity module attached to the first user device.
The first pattern may be randomly generated by the platform using a set of predefined algorithms and the first pattern may be kept valid for a period of time; or the first pattern may be randomly generated by an initiator of the first user device and the first pattern may be kept valid for a period of time.
The first pattern and the second pattern may each include a pattern frame, a start point, an end point, and a path that includes vectors starting from one position and ending at a next position assigned by the server.
The method may further include sending a level 1 credential and a level 2 credential to the platform by the first user device; and determining a coding rule and generating the first pattern after verifying the level 1 credential and the level 2 credential by the platform. The method may further include preparing a level 3 credential according to the coding rule and sending the second pattern and the level 3 credential to the platform by the first device or the second user device; and verifying the received level 3 credential by the platform. The level 1 credential may include Client Operation Data generated during user's sign-on. The level 2 credential may include Initial User Data generated during user registration and account setup. The level 3 credential may include Draw Panel Data generated by the draw panel of the first user device or the second user device.
In another aspect, the present patent application provides a method for interactive pattern exchange including: triggering a transaction and sending a transaction request to a platform via an access media by a first user device; sending a level 1 credential and a level 2 credential to the platform by the first user device; determining a coding rule and generating the first pattern after verifying the level 1 credential and the level 2 credential by the platform; transmitting a first pattern between the first user device and the platform via the access media; receiving input of a second pattern by the first user device or a second user device; preparing a level 3 credential according to the coding rule and sending the second pattern and the level 3 credential to the platform by the first user device or the second user device; verifying the received level 3 credential by the platform; and returning a transaction result with associated data to at least one of the first user device and the second user device according to the result of the verification by the platform. The first user device and the second user device each include a draw panel configured for receiving input of a pattern, while the platform is a server that runs applications and stores data. The level 1 credential includes Client Operation Data generated during user's sign-on, the level 2 credential includes Initial User Data generated during user registration and account setup, while the level 3 credential includes Draw Panel Data generated by the draw panel of the first user device or the second user device.
Input of the second pattern may be received and submitted to the platform by the first user device. Input of the second pattern may be received and submitted to the platform by the second user device. The transaction result with associated data may be returned to both the first user device and the second user device.
In yet another aspect, the present patent application provides a system for interactive pattern exchange. The system includes: a platform; a first user device connected with the platform through an access media; and a second user device connected with the platform through the access media. The first user device and the second user device each include a draw panel configured for receiving input of a pattern, while the platform is a server that runs applications and stores data. The first user device is configured to trigger a transaction and sending a transaction request to the platform via the access media. The platform is configured to dispatch a first pattern to the first user device via the access media. At least one of the first user device and the second user device is configured to receive input of a second pattern, and submit the second pattern to the platform to be verified. The platform is configured to return a transaction result with associated data to at least one of the first user device and the second user device according to the result of the verification.
The platform may include a transaction engine and a pattern engine configured to handle transactions and generate patterns respectively, while the access media may be a mobile network, the Internet or a cloud.
The first user device may be configured to send a level 1 credential and a level 2 credential to the platform; and the platform may be configured to determine a coding rule and generate the first pattern after verifying the level 1 credential and the level 2 credential. At least one of the first user device and the second user device may be configured to prepare a level 3 credential according to the coding rule and send the second pattern and the level 3 credential to the platform; and the platform may be configured to verify the received level 3 credential.
The level 1 credential may include Client Operation Data generated during user's sign-on. The level 2 credential may include Initial User Data generated during user registration and account setup, while the level 3 credential may include Draw Panel Data generated by the draw panel of the first user device or the second user device.
Reference will now be made in detail to a preferred embodiment of the system and the method for interactive pattern exchange disclosed in the present patent application, examples of which are also provided in the following description. Exemplary embodiments of the system and the method for interactive pattern exchange disclosed in the present patent application are described in detail, although it will be apparent to those skilled in the relevant art that some features that are not particularly important to an understanding of the system and the method for interactive pattern exchange may not be shown for the sake of clarity.
Furthermore, it should be understood that the system and the method for interactive pattern exchange disclosed in the present patent application is not limited to the precise embodiments described below and that various changes and modifications thereof may be effected by one skilled in the art without departing from the spirit or scope of the protection. For example, elements and/or features of different illustrative embodiments may be combined with each other and/or substituted for each other within the scope of this disclosure.
The user device 10 may be a smart phone, tablet or other equipment (the trigger device is not limited to desktop, smartphone or tablet) configured to trigger a transaction and send or receive an assigned pattern to or from the application server 16. In other words, the assigned pattern is transmitted between the user device 10 and the application server 16. The mobile network 12, the Internet 14, or a Cloud is the access media for data transport. Applications & Data on the application server 16 are the programming logics for generating pattern and its associated resources. The draw panel 18 is the pattern input area on the user device(s) 10 and/or user device(s) (18).
Referring to
Although the application software is pre-configured in the user device 10, it is understood that the application can also be accessible by the initiator through a web service using a user device 10 over a communication network, preferably the Internet. It is also understood that the implementation of the present application platform is not limited to the use of a specific operating platform, Windows, Linux, UNIX, or the like, or any programming language.
Referring to
An embodiment of the present patent application is to trigger a transaction and complete it with two to three manual intervention steps by pattern request, while input pattern and confirmation are optional.
User activities are treated as a transaction while P2P, A2P and M2M activities, which may further extend to other e-commerce platform integrations, are supported. The functions and features that require an authentication, verification and/or confirmation may make use of interactive pattern exchange as a checkpoint and the functions and features may continue to proceed with their require action(s) if necessary.
The user will initiate a transaction and trigger/complete the transaction by entering a pattern on the mobile phone/device to be validated by the platform before putting through to the next step as shown in
Further to the transaction procedures triggered by interactive pattern exchange as shown in
It is noted that the user device 115 that triggers the transaction and receives the pattern dispatch may be different from the user device 117 that includes the draw panel for inputting the pattern and triggering the result. It is further noted that there may be more than one user device 117 configured for inputting the pattern and triggering the result.
The draw panel 18 is configured for the user to input the provided pattern. When its reaches the end position, the inputted pattern submitted by the Draw Panel is transmitted through the transport media (12, 14) toward the application server 16 to be further processed.
In the pattern request and the draw panel, the following information is included: Initial User Data, Client Operation Data, Draw Panel Data, SIM is optional, for security purposes and improving the validation accuracy, which will be described hereafter in more detail.
Step 101: the user initiates (i.e. Connect) a transaction and get a pattern from an application server 16;
Step 102: the user will submit (i.e. Input & submit) a pattern from the draw panel 18 to the application server 16;
Step 103: a security check is run to verify the inputted pattern in the application server 16; and
Step 104: transaction result is returned to the reception terminal (10 and/or 18).
Step 201: a mobile client 10 opens and prepares an authentication rule to be used for authentication;
Step 202: the mobile client 10 sends a level 1 credential to a server 16 for authentication;
Step 203: the mobile client 10 sends a level 2 credential to the server 16 for authentication;
Step 204: the server 16 generates a pattern for request;
Step 205: the server 16 deliver the pattern to the mobile client 10;
Step 206: a draw panel 18 sends the inputted pattern with a level 3 credential to the server 16;
Step 207: the server 16 authenticates the received credential from the draw panel 18;
Step 208: the server 16 verifies the received inputted pattern from the draw panel 18;
Step 209: the server 16 sends the verification result in step 208 to a target application; and
Step 210: the target application starts to determine a next step based the result of the step 209.
1. Frame shape
2. Number of dots
3. Number of vector
4. Start position
5. End position
6. Coding rule
The coding rules are predefined in a backend server for authentication purpose and/or transaction matching if required information exchanges between the parties. Coding rule is dynamically assigned to each pattern request and multiple formed vectors which are in combination with credential levels and the vectors may be in single order or sequential order.
Each vector has 2 dots and each dot is associated with one credential data which is generated during users' activities with the mobile applications. The credentials in the vector should be sent towards the backend server for authentication after the recipient submits the pattern from the draw panel.
From the pattern example with 4 vectors assigned coding rule should send the correspondence data towards the server after the end user inputs the pattern from the draw panel.
Referring to
Step 301: an end user opens a mobile client 10 and connects to the Internet by available access media;
Step 302: the mobile client 10 sends level 1 credential to the server 16 for authentication;
Step 303: the mobile client 10 sends level 2 credential to the server 16 for authentication;
Step 304: the server 16 sends request to the mobile client 10 for level 2 credential data;
Step 305: the server 16 verifies the level 1 credential data from the step 302;
Step 306: the server 16 verifies the level 2 credential data from the step 303;
Step 307: the server 16 determines the coding rule and generates a pattern for such request;
Step 308: the server 16 sends the pattern via available access media;
Step 309: the mobile client 10 displays the pattern on its screen;
Step 310: the end user opens the draw panel 18 and connects to the Internet by available access media;
Step 311: the draw panel 18 is ready and displays the pattern frame;
Step 312: the end user inputs the pattern from the draw panel 18;
Step 313: the draw panel 18 prepares level 3 credential data according to the coding rule;
Step 314: the draw panel 18 sends the inputted pattern with level 3 credential to the server 16;
Step 315: the server 16 determines the coding rule for level 3 credential data from the step 314;
Step 316: the server 16 verifies the level 3 credential data from the step 314; and
Step 317: the server 16 sends the verification result from the step 316 to a target application.
The above-mentioned embodiments provide an improved, easy and cost effective way for the user to trigger transaction procedures with other entities, allowing an initiator to control and protect the required transaction with authentication vectors and authorization rules by manual intervention before the request is put through to the next execution point. The embodiments enable any kind of transaction procedure triggered with validation in a form of fixed variable authorization method transformed to a dynamic variable authorization method. Such method addresses the type of transactions process that requires interactions between the parties, verification and control. The embodiments provide a new and unique way of protection and/or service enabler facilitating any type of electronic transaction in a real-time manner, which supports user(s) or server(s) pattern generation in accordance to the application and transaction requirements.
In still another embodiment, finger print recognition can be incorporated by generating unique patterns based on finger prints impressed against the monitor as receiving device. The benefit of this is creating more secured method other than SIM, and potentially selling much more easily to banks and etc. who have to be 100% secure.
In still another embodiment, it does not matter in which direction or order the vectors are drawn by joining the dots, or if joining the dots is required at all. The initiator can only touch the dots without joining them by drawing vectors.
While the present patent application has been shown and described with particular references to a number of embodiments thereof, it should be noted that various other changes or modifications may be made without departing from the scope of the present invention.