DATO'MOHAMMAD, Farid, Bin Haji, Ahmad, Ridhwan (26 Lorong Limau Manis Dua, Bangsar Park Kuala Lumpur, Wilayah Persedutuan, 59000, MY)
VELAYUTHAN, Rajendran (38 USJ 5/2A, Subang Jaya, Selangor Darul Eshan, 47610, MY)
DATO'MOHAMMAD, Farid, Bin Haji, Ahmad, Ridhwan (26 Lorong Limau Manis Dua, Bangsar Park Kuala Lumpur, Wilayah Persedutuan, 59000, MY)
| Claims
1. An online transaction system comprising: a. a telephone apparatus having a card receiving means that is connected to a processor for processing information from chip card inserted by a user into said card receiving means; b. a host server to which said telephone apparatus is connected, that receives said information from said telephone apparatus and performs first level authentication of user identification based on said chip card information c. a plurality of application servers provided by e-Services providers, connected to said host server, whereby upon authentication of said user identity by host server, said host server sends information to appropriate said application server for further authentication if required and for subsequent online transactions. d. a communications means between said telephone apparatus and said host server, and between said host server and said plurality of application servers
2. An online transaction system as claimed in claim 1, wherein said host server may use the telephone number which identifies transaction location of said telephone apparatus as an additional level of security filtering in determining allowed level of transactions.
3. An online transaction system as claimed in claim 1, wherein said telephone apparatus further comprising a display means for displaying information and an input means for said user to input data when required.
4. A telephone apparatus as claimed in claim 3, wherein said input means is keypad of said telephone apparatus.
5. An online transaction system as claimed in claim 1, wherein said card receiving means is a chip card receiving slot for receiving chip-based identification card, bank automated teller machine (ATM) card, credit card, telephone card and etc.
6. An online transaction system as claimed in claim 1, wherein information transmitted between said telephone apparatus and said host server may be encrypted with encryption key resident in telephone apparatus.
7. An online transaction system as claimed in claim 1, wherein said telephone apparatus can be connected to a printer for printing the transaction records for said user. |
Online Transaction System Using a Telephone
Field of Invention
The present invention relates to a concept of providing online transaction services such as home banking. More specifically, the present invention relates to a use of a telephone apparatus equipped with a chip card receiving means and a microprocessor to read chip based cards for identification purpose and relaying said identification information to a host server for first level transaction authentication and subsequently to a plurality of applica- tion servers, provided by service providers, for subsequent transactions. Depending on particular service providers, additional authentication may be required. For higher security transactions, the telephone apparatus may also encrypt information transmitted and use caller ID to identify or limit transaction request location.
Background of the Invention
The humble ATM revolutionized the way we deal with money. These days, Automated Teller Machines (ATM) are not only found in malls and airports but also in many other places.
Diebold and Fujitsu were developing ATMs, but Docutel was the first to patent ATMs. As with any new technology, the early days of ATMs were fraught with obstacles. The first hurdle was the bankers: Selling them on a machine that cost two to three times what a teller was paid for a year, plus convincing them that customers would use it, wasn't easy.
After the technology had earned the trust of once highly skeptical customers, an amazing transformation began to take place: Face-to-face business became face-to-interface, and it changed the way people consumed. Now that they had access to their cash whenever they wanted, they bought on impulse instead of planning every purchase ahead of time. The ATM also placed consumers firmly on the path of demanding ever more convenience and self-service products (and industry, in turn, of pushing more automated services). Perhaps most important, it introduced ordinary consumers to technology in a direct manner for the
first time, presaging PCs, cellular phones, and other conveniences we now can not live without.
The success on the Internet in the 1990's led to a proliferation of online transaction services such as online purchase for air tickets, online checking of traffic offences, online checking of university application results etc. The success of ATM and the Internet has also brought the present invention into reality. The present invention seeks to introduce the concept of multi service electronic kiosk in the home.
Although such services may now be ' obtained in the home for those with a computer and Internet connection, not everyone has such a facility in the house. Even for those with such a facility, not everyone is computer literate enough about computer security to safely conduct such transactions over the Internet. One of the greatest strength and ironically drawbacks of the Internet is that it allows computers from all over the world to be connected seamlessly. Thus scammers and fraudsters can set up 'look a like' websites of banks or stores practically anywhere in the world and trick users into conducting transactions with them. Incidences of fraud are routinely highlighted in the media. Using the Internet to conduct financial transactions is still fraught with dangers for those not knowledgeable on Internet security.
Additionally, with computers, startup is typically a rather long 2-minute process and logging in to their website requires additional effort as well. Users may not want to go through the hassle just to conduct a simple transaction. On the other hand, everyone knows how to use a phone, an instantaneously "ON" device found in almost all modern homes. Normally, telephone set is used for basic functions like making and receiving calls. However, the humble telephone set has been improved to provide more applications. For example, there is telephone apparatus improved as means for prepayment of telephone call charges. US Pat 5719926 discloses a long distance telephone service system that provides for accounting and flexible, customizable control of long-distance telephone usage by customers, especially prepaid long-distance service customers. In another patent, US 5946380 discloses a communication system which includes a network switch coupled through a telephone line uniquely associated with each customer for budgeted telephone
calling time and amount, either pre-paid or post paid, the budgeted amount being recorded in the system for calling purposes.
Using a telephone to conduct financial transactions is not new. Banks have had Interactive Voice Response (TVR) systems for years. However, these systems tend to be slow as users navigate the menu by keying in their choices as the bank server slowly announces them.
Banks in Malaysia have presently transitioned to chip-based card technology for ATM cards in order to improve security and minimize fraud. Some current chip cards have a multi user and a multi application native operating system. The new identity card (MyKad) is also a chip card and Malaysians above the age of 12 have this with them at all times. As a matter of fact, credit card industry is also transitioning to chip cards in order to reduce fraud which is a major concern and business risk.
It is the primary object of the present invention to combine the application of telephone apparatus and the chip card technology to provide a new service concept namely a home based multi service online transaction system to users that is secure and easy to use. The concept is fashioned after electronic kiosks often found in malls and airports.
It is a specific object of the present invention to provide a chip card enabled telephone ap- paratus that provides an authentication methodology and serves as an ideal platform for online transactions. The telephone apparatus in essence functions as a "mini terminal", without the complexity and cost of a PC, which enables user to conduct their transactions with a server.
It is also a specific object of the present invention to provide a telephone apparatus that is equipped with a card reading means and a microprocessor to read stored chip card information e.g. name or identifying information of the chip based identification card or bank card for identification purpose, initially authenticating user at host server, and sending said information to application servers for enquiries, additional authentication or transactions.
Another object of the present invention is to provide a low cost and secure transaction terminal for online transactions.
Summary of the Invention
A online transaction system comprising a telephone apparatus, having a chip card reader to read information stored in chip-based identification card and a processor to process said information; a host server for receiving the information so provided and to provide first level authentication of user identification based on data stored in unique key field in chip card, a plurality of application servers for transacting the user's business; and a Public Switched Telephone Network (PSTN) connection between the telephone apparatus and said host server to serve as a communications link between host server and telephone ap- paratus.
Preferably the telephone apparatus further comprising a display means for displaying the information and an input means for said user to input data when required. The input means is keypad of the telephone apparatus.
The host server acts as a front end to a plurality of application servers, provided by e- Services providers, which may require further authentication for the particular transaction other than information contained in the chip card. The verification may include additional data such as personal identification number (PIN) to be inputted by the user for security purposes. For more security, an added encryption key resident in telephone apparatus' microprocessor or dedicated IC may encrypt information transferred between telephone apparatus and host server.
The telephone apparatus can also be connected to a printer for printing transaction records for the user. The chip card receiving means has a slot for receiving chip-based identification card, bank automated teller machine (ATM) card, telephone card, credit card, etc.
Brief Description of the Drawings
Figure 1 shows the block diagram of the online transaction system of the present invention.
Figure 2 shows a typical example of an online transaction using the system.
Detailed Description of the Preferred Embodiment
Referring to the drawing figure 1 in which major elements are numbered, a description of the preferred embodiment of the present invention will now be provided. An online transaction system of the present invention comprising a telephone apparatus 110 configured with a display means 112 and input means such as keypad 114. The telephone apparatus 110 is provided with a chip card reader (not shown) that is controlled by a processor (not shown) to read chip based cards such as identification card 100, ATM bank card, credit card etc. for verification and identification purposes as shown in figure 1.
The telephone apparatus 110 is connected to a host server 130 via a public switched telephone network (PSTN) 120. In a preferred embodiment, the public switched telephone network (PSTN) 120 connection uses DTMF tones and 1200-baud FSK transmission methodology for optimum reliability and speed.
Preferably the host server 130 is linked to data storage means to match details and information sent by the telephone apparatus 110. By this manner the host server 130 performs a first level authentication of the user identity based on information stored in the chip card. Such information can be bank account number, credit card number, identity card number etc. that can be used to uniquely identify a user. The host server 130 is connected to a multitude of application servers 150 via a data network 140 (either a public or private data network). Application servers 150 are provided by e-Services providers and are not under the scope of the present invention. Depending on the type of transaction chosen by the user, the host server 130 will contact the relevant application server 150 and send required user information to the application server 150 for subsequent transaction processing.
The host server 130 acts as a user friendly 'front end' for application servers 150. For banking transactions in Malaysia, the host server 130 is connected to an application server 150 which resides in the MEPS network in Malaysia. Depending on the application selected, the user may be required to input additional information (e.g. PIN number etc.) for additional user authentication by the application server 150.
For added security, i.e. to prevent wire tapping, data between the telephone apparatus 110 and the host server 130 may be encrypted using a standard encryption method. Data transmitted between the host server 130 and the application server 150 may or may not be encrypted, depending on the requirement of the application server 150.
As an added level of security, for certain transactions (e.g. financial transactions), the user can chose to register particular telephone numbers with the host server 130. Only those telephone numbers that are registered can be used to conduct those transactions. Upon receiving the user's identification information from the telephone apparatus 110, the host server 130 will check the telephone number of the telephone apparatus 110 using Caller ID feature provided by the telephone service provider. If the telephone number is registered, the transaction is allowed to continue. This ensures the transaction can only be done from predetermined telephones (and by implication predetermined locations, as fixed line telephone numbers are allocated to a particular location, e.g. house telephone or office telephone) registered by the user and prevents misuse if the chip card is stolen or lost. If the Caller ID is not in the host server's 130 database, additional authentication steps may be required (e.g. an operator calling the user directly to determine identity of the user).
Data sent between the telephone apparatus 110 and application server 150 passes through the host server 130, where it is reformatted by the host server 130 to a. Fit the display means on the telephone apparatus 110 and; b. Fit the required data format of the application server 150
The invention can best be appreciated by way of example. Figure 2 shows an example of the steps required to conduct an online transaction with a bank.
The user picks up the handset and either dials an appropriate transaction code 200 (in this easel 737) or presses a one-touch button on telephone to autodial a preset number. This signals the host server 130 that the user wants to conduct a banking transaction with a particular bank.
The user then inserts his chip card 210 (in this case MyKad). The telephone apparatus 110 checks the card is inserted and displays the appropriate message 220 if no card or the
wrong card is inserted. The telephone apparatus 110 then reads the chip card information 230 and sends it 240 to the host server 130. the host server 130 receives the chip card information and checks if the user is registered and allowed to conduct the transaction. In this case the key field is the IC number in the MyKad. Other types of chip cards have other key fields that can be used uniquely identify a user. If the user has also registered Caller ID filtering, the telephone apparatus' telephone number is checked against a database of allowed telephone numbers by the host server 130, if the number is in agreement, the host server 130 contacts the MEPS application server 150 and relays the required user information from the host server's database to the MEPS application server 150.
The MEPS application server 150 receives the required information and is then ready for further transactions with the user. In this case, the MEPS application server 150 will require further authentication from the user via a PIN number, as with bank ATM cards. Upon entering the correct PIN, the user is presented with several options 250 on the telephone apparatus display means 112 (Balance Enquiry, Bill Payment, Account transfer etc.). The options presented depend on the application server 150. The host server 130 merely reformats received information to fit into the display means 112 of the telephone apparatus 110.
For recording transactions, a printer can be optionally connected to the telephone apparatus 110 to print out hard copy of transaction records.
This same methodology is used to authenticate access to other application servers 150 and enquiries to information residing in these databases 160.
It is to be understood that the present invention may be embodied in other specific forms and is not limited to the sole embodiment described above. However modification and equivalents of the disclosed concepts such as those which readily occur to one skilled in the art are intended to be included within the scope of the claims which are appended thereto.
Next Patent: CERAMIC HOLLOW FIBRE MEMBRANE, MEMBRANE MODULE AND METHOD FOR PRODUCING THE MEMBRANE