Illllllllllllllllllllllllllllllllllllllllllllllllll
US006834271B1
(12) United States Patent ao) Patent No.: us 6,834,271 Bi
Hodgson et al. (45) Date of Patent: Dec. 21,2004
(54) APPARATUS FOR AND METHOD OF
SECURE ATM DEBIT CARD AND CREDIT
CARD PAYMENT TRANSACTIONS VIA THE
INTERNET
(75) Inventors: Robert B. Hodgson, Dunwoody, GA (US); Harry Hargens, Hamton, GA (US)
(73) Assignee: Kryptosima, Hampton, GA (US)
( * ) Notice: Subject to any disclaimer, the term ol this patent is extended or adjusted under 35 U.S.C. 154(b) by 0 days.
(21) Appl. No.: 09/450,996
(22) Filed: Nov. 29, 1999
Related U.S. Application Data
(60) Provisional application No. 60/155,645, filed on Sep. 24, 1999.
(51) Int. CI.7 G06F 17/60
(52) U.S. CI 705/72; 705/64; 705/70;
705/71; 705/75
(58) Field of Search 705/72, 26, 27,
705/64-79
(56) References Cited
U.S. PATENT DOCUMENTS
5,336,870 A 8/1994 Hughes et al.
5,799,285 A * 8/1998 Klingman 705/26
5,809,143 A * 9/1998 Hughes 380/24
(List continued on next page.)
FOREIGN PATENT DOCUMENTS
GB 2333878 A 4/1999
GB 2333878 * 4/1999 G07F/7/10
OTHER PUBLICATIONS
www. webopedia.com/TERM/d/decryp tion.html.*
Webopedia.com "dynamic HTML", p. 1.*
Si et al., "Maintaining Page Coherence for Dynamic HTML
Page", 1998, ACM.*
The present invention is directed to a combination software and/or hardware system that provides consumers and merchants with a secure method for making and accepting credit card and ATM card payments over the Internet. Using various software and/or hardware implementations, the system operates by:
1) creating (at the consumer's Internet access device) a Data Encryption Standard (DES) encrypted Personal Identification Number (PIN) Block meeting American National Standards Institute (ANSI) X9.8 and Automatic Teller Machine (ATM) network requirements (as a result ol the consumer entering their PIN number and encryption automatically taking place);
2) using additional layer(s) ol encryption (also performed at the consumer's Internet access device) to place the PIN block and card information in a public key/private key encrypted financial payment transaction data block ("FP Block");
3) transmitting the FP Block to the merchant, along with any necessary product or service order information, which may be transmitted over the Internet encrypted or in the clear according to the implementation method chosen by the system software at the merchant's web site;
4) software at the merchant location then forwards the FP Block to a secure transaction management system, where the FP Block is decrypted using a decryption algorithm matching that used by the software at the consumer's Internet access device. The financial data is then re-formatted for transmission to the appropriate transaction processing network, and forwarded to the payment service processor accordingly. The present invention is independent ol the encryption algorithm(s) used, and may be implemented with any number ol encryption algorithms.
29 Claims, 18 Drawing Sheets
