[go: up one dir, main page]

CN101010690A - Payment processing method and system - Google Patents

Payment processing method and system Download PDF

Info

Publication number
CN101010690A
CN101010690A CNA2005800286811A CN200580028681A CN101010690A CN 101010690 A CN101010690 A CN 101010690A CN A2005800286811 A CNA2005800286811 A CN A2005800286811A CN 200580028681 A CN200580028681 A CN 200580028681A CN 101010690 A CN101010690 A CN 101010690A
Authority
CN
China
Prior art keywords
dealer
transaction
payment
user
consumer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CNA2005800286811A
Other languages
Chinese (zh)
Inventor
R·P·尼克斯
A·默萨罗维奇
T·施沃特茨
J·杉克特
P·马斯特斯
C·克罗福特
J·蒙塔纳罗
R·L·里维斯特
S·米卡利
J·伯格朗
V·乔纳落加达
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Peppercoin Inc
Original Assignee
Peppercoin Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Peppercoin Inc filed Critical Peppercoin Inc
Publication of CN101010690A publication Critical patent/CN101010690A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A payment processing system includes one transaction processor that aggregates cost data associated with low-priced sales transactions between a consumer and a merchant. The transaction processor sends data that represents the aggregated cost data to an acquiring banking entity associated with the merchant. The system also includes another transaction processor that stores data that represents each individual low-priced sales transaction. The stored data is accessible by one or more banking entities associated with the merchant.

Description

Payment processing method and system
Related application
The application advocates the right of priority of following application: (a) U.S. provisional application number: on June 25th, 60/583,010,2004 submitted to, was entitled as " Small Payment GatewayMethod and System "; (b) U.S. provisional application number: on February 1st, 60/648,789,2005 submitted to, was entitled as " Edge Process for Small Transaction Methodand System ".
Technical field
The disclosure relates to handles payment, especially handles the small amount shopping to reduce transaction cost.
Background technology
Along with introducing and their more and more uses in market of credit card and debit card, industry trend shows that these instruments are becoming increasing consumer's first-selection.In 2003, the payment that the consumer carries out with electric paying method surpassed the payment that makes in cash or carry out based on the method for payment of check first.The investigation discovery has been used above 3,000 7 hundred ten thousand Americans and has been sticked into point of sale (POS, the point of sale) shopping of going smaller or equal to 5 dollars, and has been increased to 1,000 4 hundred ten thousand from 400 ten thousand with the American who blocks the purchase online content in less than 1 year.In addition, just will speed up this consumer's trend at the contactless Payment Card based on radio-frequency (RF) identification (RFID, radio frequencyidentification) of arrangement.
The quantity of small amount payment is with astonishing speed increment in physics POS, numeral and the mobile market.Paying in cash below 5 dollars surpassed 1.3 trillion in the U.S.; The numeral payment surpasses 3,000,000,000 dollars, and compound annual growth rate (CAGR, compound annual growthrate) surpasses 20%; Mobile payment surpasses 500,000,000 dollars, CAGR>100%; Worldwide chance even bigger.
Although actual dealer's interest is arranged in the small amount payment business model, potential problem may hinder the generation based on the gained business of small amount payment.For example, high transaction processing cost can have a negative impact to professional profitability.Typical transaction processing cost is 0.25 dollar and adds 2% of turnover.For 1 dollar penny ante, the transaction processing cost is 27% of 0.27 dollar or a turnover.For the business of supporting for dealer to gain, this is an out and out transaction cost.Some financial circles informed sources report that overall transaction processing cost is 0.20 to 0.40 dollar, and enterprise is being lower than in 10 dollars the transaction and can sustaining economic losses.
Be accompanied by transaction cost, the customer support cost also has actual influence for income and profit.Support that for phone conventional cost of customer service is 5 to 10 dollars of each incidents normally, for the support relevant with payment that causes reimbursement, the cost of serving of each incident is 15 to 30 dollars.It is a development and a key component that increases business that high-quality customer support is provided, and still, high customer support cost can reduce profitability.
Client's purchase cost may be irrelevant with lifelong client's value.Dealer may introduce a large amount of distribution cost to attract and to keep the client here.For example, the scope of advertising expenditures 2 to 4 dollars of each clients of fast food restaurant between 20 to 40 dollars of each clients of Internet service.In order to address these problems, dealer for form frequent consumers shopping mode is very interested flexibly and cheaply.For example, dealer may produce noticeable new product and service, realization does not have the dispute strategy, sets up the sales promotion (sometimes with third party partner together) that integrated loyalty and award program or startup have target.
Summary of the invention
According to an aspect of the present invention, a kind of payment processing system comprises a transaction handler, and it combines the relevant cost data of the transaction of the split sale between consumer and the dealer.This transaction handler will represent that the data of total expenses data send to the single financial entity (acquiring banking entity) of the receipts relevant with this dealer.This system also comprises the data of each independent split sale transaction of another transaction handler storage representation.The data of being stored can be by the one or more financial entity visits relevant with this dealer.
In one embodiment, second transaction handler can be positioned at the place away from consumer and dealer.First transaction handler can be carried out polytype merging.For example, the correlative charges data that this processor can combine the correlative charges data of the transaction of the split sale between a dealer and two consumers at least or split sale that will be relevant with two or more dealer is concluded the business combine.Between dealer and consumer, can realize various method of payment.For example, the consumer can adopt by using charging, pre-payment, order, back paying or alternate manner to dealer's payment split sale transaction.The data of each independent split sale transaction of the expression of being stored can be visited by each different financial entity, as receive single financial entity or the hair fastener financial entity (issuing banking entity) relevant with the consumer.The data of each independent split sale transaction of the expression of being stored also can be visited by the consumer.In order to provide the consumer to serve, first transaction handler can be forwarded to second transaction handler with consumer's request and serve so that the consumer to be provided.Each processor can be positioned at different positions.For example, first transaction handler can be positioned at the hair fastener financial entity relevant with the consumer.This payment processing system can comprise that also the 3rd transaction handler follow the tracks of the payment of at least one split sale transaction and check (reconciling).This 3rd transaction handler can be positioned at one and receive single financial entity.This system also can comprise the 4th transaction handler, and it becomes third-party form with the total expenses data-switching.This 4th transaction handler can be arranged in the server that comprises first transaction handler.In this payment processing system, can comprise safety method.For example, the data of each independent split sale transaction of the expression of being stored can comprise the uni-directional hash of the account number relevant with one or more transaction.Correspondingly, can give the data decryption of being stored in order to visit.One or more can occurring in the vending machine equipment in the split sale transaction.This payment processing system can also comprise that one the 3rd transaction handler combines the relevant data of the transaction of the split sale between this consumer and another dealer.In certain embodiments, dealer can provide priority processing with the future transaction of encouragement with this dealer to the consumer.
According to a further aspect in the invention, a kind of method of handling payment comprises the data that receive a penny ante between expression consumer and the dealer.This method comprises that also the expense with another split sale transaction between the expense of this split sale transaction and this consumer and this dealer combines.In addition, this method comprises the data that storage is relevant with each split sale transaction so that this data can be by the one or more financial entity visits relevant with this dealer.This method comprises that also the data with the expression total expenses send to the single financial entity of the receipts relevant with this dealer.
In one embodiment, this method comprises that also the expense with the expense of the split sale relevant with this consumer transaction and another consumer's relevant split sale transaction combines.In addition, this method can comprise that the expense with the relevant split sale transaction of the expense of the split sale transaction relevant with dealer and another dealer combines, and wherein sells the commercial city to receive single financial entity relevant with this for these two.
According to another aspect of the present disclosure, reside in the included instruction of a kind of computer program on the computer-readable medium and when carrying out, make this processor receive the data of a split sale transaction between consumer of expression and the dealer by a processor.The expense that instruction in addition makes this processor that another split sale between the expense of this split sale transaction and this consumer and this dealer is concluded the business combines.These instructions also make this processor storage data relevant with each split sale transaction so that these data can be by the one or more financial entity visits relevant with this dealer.In addition, these instructions also make this processor will represent that the data of total expenses send to the single financial entity of the receipts relevant with this dealer.
In one embodiment, this computer program can comprise that extra instruction combines with the expense of the expense of split sale transaction that will be relevant with consumer and another consumer's relevant split sale transaction.Can also comprise the instruction that the expense with the relevant split sale transaction of the expense of the split sale transaction relevant with dealer and another dealer combines.
Those skilled in the art will understand more advantages of the present invention and aspect from following detailed description, in the detailed description below by the explanation of implementing the desired optimal mode of the present invention being showed and embodiments of the invention being described.Will illustrate that the disclosure can have other different embodiment, and only otherwise depart from spirit of the present disclosure, its some details can be made amendment aspect tangible at each.Therefore, accompanying drawing and explanation will be counted as illustrative and non-limiting in itself.
Description of drawings
Fig. 1 is the structural drawing of an extensive payment system of expression;
Distribute for the processor that reduces transaction cost in the extensive payment system shown in the presentation graphs of structural drawing shown in Fig. 21;
Structural drawing shown in Fig. 3 represents to comprise the position of the server of distributed processor;
Structural drawing shown in Fig. 4 is represented the functional module that comprises in the distributed processor;
Structural drawing shown in Fig. 5 is represented the functional module that can comprise in the distributed processor;
The operation that flowcharting shown in Fig. 6 is relevant with penny ante;
Structural drawing shown in Fig. 7 is illustrated in the operation of carrying out between the distributed processor relevant with single dealer;
Structural drawing shown in Fig. 8 is illustrated in the operation of carrying out between the distributed processor relevant with a plurality of dealer;
Fig. 9 is the structural drawing of expression Merkle tree;
Structural drawing shown in Figure 10 represents to be included in the router in each distributed processor;
Figure 11 is the structural drawing of a node of expression distributed processor;
Figure 12 represent to keep accounts part of form and graphic user interface;
Figure 13 represents to provide the graphic user interface of transaction decomposition;
Figure 14 represents to discern the graphic user interface of single transaction;
Figure 15 represents the graphic user interface relevant with customer service;
Figure 16 represents to receive from the client relational graph user interface of services request;
Figure 17 represents client requests is offered service supplier's graphic user interface;
Figure 18 represents to provide the graphic user interface of the penny ante information that combines.
Embodiment
With reference to figure 1, shown in extensive payment processing system 10 really reduced the transaction cost of small amount shopping.Shown in example comprise the consumer who buys commodity and/or service from dealer.A financial institution that is called as merchant bank provides an account who is used to receive payment to dealer.The instrument that another financial institution that is called as issuing bank is provided for paying by mails to the consumer (as credit card, debit card, prepaid card, or the like).One is also referred to as the management issuing bank of association of card network and the relation between the merchant bank.In some scheme, the third party who is called as processor handles the transaction between dealer, merchant bank, issuing bank and the association.Run through the present invention, finance service's (being merchant bank, issuing bank, association and processor) can be called as FSI.
By the payment application that produces and issue can be invested dealer, merchant bank, issuing bank, processor and association on small amount payment, can regulate trust and the preference of consumers in general to credit card and debit card.For this reason, with dealer server in communication 14 on carry out penny ante processor 12.Penny ante processor 12 can use hardware, software or software in conjunction with realization, and it is designed to optimize income and the profit that penny ante is handled by expanding existing payment foundation structure.
In some scheme, penny ante processor 12 is extendible processing platforms, and it can grow up and development dealer, merchant bank, issuing bank, processor and association by small amount payment.By handling penny ante efficiently, economically, penny ante processor 12 is by merging the transaction cost that relevant shopping can really reduce the small amount shopping.Penny ante processor 12 also allows the consumer to do shopping with their preferred means of payment (as credit card, debit card, or the like).By numeral, move and physics POS environment in move, penny ante processor 12 can be used as that the credit card gateway is seamless to be integrated into during dealer's shopping experiences, and consumer's shopping is experienced then without any visible variation.By its operation, given instrument of dealer and made up the relation that to gain with mixing and their client by possible business model (paying) by using payment, pre-payment, reservation and back.Penny ante processor 12 can also be increased customer satisfaction degree and reduces cost of customer service by integrated bill-mailing and solution to disputes.Be accompanied by lower transaction cost, using of penny ante processor 12 can bring loyalty, sales promotion and fraud management technology cheaply as small amount payment market.
Penny ante processor 12 has brought interests for included each side in the payment processing system 10.For example, usually the consumer wishes the dirigibility of doing shopping.They think control what is bought, when buy and how to pay.But dealer's use that restriction blocks to small amount payment continually, and the convenience that finally can not provide the consumer to want.It is easier that dealer wants to allow the consumer buy their commodity and/or service.But for littler transaction, card is handled and cost of customer service has been eaten up a lot (if not whole words) profits of dealer.When the consumer used the credit or debit card payment small amount commodity of their first-selections, the income of dealer can disappear.
In fact the operation of penny ante processor 12 is sightless to the consumer.The consumer does not need downloaded software, sets up account number or supplements with money or spend minimum money to do shopping in advance to account number.But, consumer's their transaction of On line inspection relatively apace.For consumers, payment processing system 10 trusted and payments mechanism first-selection (card) that allows them to have with them is carried out small amount and is done shopping.This system allows them contact the numeral of small amount, mobile and physics POS commodity and service easily when doing shopping with various dissimilar business models (using paying, pre-payment, predetermined or back paying as pressing).
In addition, dealer wants to provide desirable commodity and facility to the consumer.By payment options flexibly is provided, payment processing system 10 provides convenience.Dealer also likes selecting for all shopping provide large-scale payment, and high transaction processing and customer service expense make dealer can't obtain profit in the credit card of small amount and charge card purchase.
Payment processing system 10 makes the small amount shopping become the transaction that can gain.This system has reduced by two prime cost-transaction processing cost and the cost of customer service relevant with the payment of little volume with small amount.Payment processing system 10 usefulness merging methods are handled transaction cost.Dealer combines small amount payment by permission, and revises and regulate the merging setting, and this system has improved efficient.In a kind of scheme, the some parts of payment processing system 10 (being passed through Internet) canbe used on line.In this scheme, provide the customer service of robotization so that provide customer service timely with relatively low cost.Business-pattern that payment processing system 10 also allows the design optimization consumer of dealer to honour provides.
For dealer, payment processing system 10 helps dealer to increase their top line (income) and their bottom line (profit) by low cost goods.This system also provides the business model dirigibility by payment by use paying, reservation, pre-payment and back payment scheme.Also the cost and the customer satisfaction benefit of oneself clothes of client have cheaply been brought in addition for dealer.
Merchant bank and payment processes machine may be to providing the product that satisfies the client of dealer needs and improve whole trading volume interested.But merchant bank and processor can not provide small amount payment solution cheaply to dealer usually.Disproportionate is to handle with conventional payment that relevant height is fixed and the expense that changes has adverse influence to the rate of profit of dealer.The replacement schemes such as use of picture realization prepaid card and minimum shopping amount may be brought economical or temporal inconvenience to the consumer.
By introducing penny ante processor 12, processor and merchant bank can bring the new business model that can gain for dealer.Dealer can and still can gain for small amount and little volume transaction preferred means of payment of acceptance (credit card and debit card).Along with novel transaction flow through this system, treatment capacity can increase, and the income of merchant bank and processor also increases thereupon.Usually, penny ante processor 12 can be integrated in the system of dealer of existing disposal system and this processor.For merchant bank and processor, payment processing system 10 can increase the transaction flow that brings income and profit.
Issuing bank wishes that being stuck in when the holder concludes the business of they always is in " wallet topmost " (top of wallet is promptly always preferentially used).But concerning small amount shopping, high processing cost and high cost of customer service have hindered (numeral with physics) dealer to receive credit card and debit card.As a result, merchant bank can give cash and other payment system with losing the market share.
Utilize the function of payment processing system 10, the holder of issuing bank can enjoy with card rather than the purchase with cash convenience that commodity brought at a low price.Purchasing process is familiar with and is quick, and without any need for account register.The payment processing system 10 that has its pooling function can reduce the cost of customer service of issuing bank to small amount payment.In some conventional systems, customer service in real time responds each incident and may expend up to 10 dollars, especially for the small amount payment that hangs down profit.The customer service of small amount payment being kept such costliness is nonsensical.Payment processing system 10 provides the online client who is in particular the small amount payment design from clothes, and it can provide service timely with relatively low cost.For issuing bank, payment processing system 10 converts cash and check expense to card, has improved transaction flow thus.The cassette tape that penny ante improved frequency that the consumer concludes the business, use for the consumer has come the market share of " wallet topmost " to gain.The online client of payment processing system 10 usefulness has reduced cost from clothes.In addition, merge more economic economic characteristics and eliminated the obstruction that the dealer towards the distribution product (as contactless Payment Card) of small amount payment is produced.
Usually, current Standard Rate structure to transaction processing has hindered the possibility of the small amount payment that can gain.Do not respond, the card network can be lost the low price digital commodities market that a part increases fast.
Payment processing system 10 makes holder and dealer to carry out and to accept blocking payment rather than paying in cash to the low price commodity.It is more convenient that the consumer can feel, because shopping process is still familiar with relative quick, and only needs minimum (if any) account register.Payment processing system 10 has helped the member of card association by the cost of customer service that reduces small amount payment.Usually, traditional real-time customer service response and reimbursement expense are very high, especially to hanging down the small amount payment of profit.On the contrary, payment processing system 10 provides born online client to obey certainly, and especially for small amount payment, online client is designed to provide customer service timely with relatively low cost from clothes.
Payment processing system 10 converts card payment to and has increased transaction flow by hanging down volume cash and paying by check.This system also protection card payment system avoids from the entree of competing form of payment.In addition, in the card network, make the small amount payment that to gain become possibility.
With reference to figure 2, small amount payment processor 12 can be deployed as the software product that folk prescription has and moves in the payment processing system 10, and perhaps it can be used as outsourcing service in many ways.
Usually, the function that comprises of small amount payment processor 12 provides the small amount payment gateway to be transferred to the payment processing system 10 will pay from dealer.Payment processing system 10 also provides online client from clothes, and it can be independent of dealer's service interface of preexist and realize or be implemented in wherein.Payment processing system 10 also comprises a clients' accounts processor 16 and the account of a dealer processor 18, and their help to carry out the union operation merging of the transaction of single dealer (for example, from).In addition, processor 12,16 and 18 provides and has adjusted the function that merges parameter and allow dealer's actual optimization transaction cost, exchange qualification, cash flow and customer service.One or more in the processor 12,16 and 18 can also comprise the technology that merges by credit card issuer.
Dirigibility in the design of payment processing system 10 is that the realization in high capacity transaction storage and the processing environment is got ready.For example, the account of dealer processor 18 can be designed to provide dealer's account service for the processor of merchant bank and they.Consumer account's processor 16 can also provide service function for the processor of issuing bank and they.Payment processing system 10 can also be designed to make FSI to keep the control to distributed treatment by low-cost, safety, distributed audit.
The design of payment processing system 10 has solved design concepts such as extendability, reliability and security.For example, can with 1000 or bigger scale factor design penny ante processor 12 to handle the essential parts of penny ante economy.Be accompanied by extensibility, multilevel security can be implemented in the payment processing system 10 with the safety issue inside and outside the resolution system.By realizing extendible design, can introduce additional function afterwards to solve dealer and consumer's misgivings.
With reference to figure 3, comprised penny ante processor 12, consumer account's processor 16 and the account of dealer processor 18. in this configuration in each server 14,20 and 22, server 14,20 and 22 lays respectively at credit card issuer, receives the position outside single file and the dealer.But in other scheme, server and processor can be positioned at other place.In addition, in this scheme, wholesale payment processes machine 24 (following detailed description) is executed on the server 14.
Penny ante processor 12 is handled penny ante and the Payment Card gateway interface for authorizing, collect, sell, deposit in and Cancelling Transaction and provide traditional.Penny ante processor 12 is Financial Management and payment adjusting, customer service and the sales management storage penny ante data of dealer.Penny ante processor 12 also provides detailed in service interface for the consumer.Penny ante processor 12 can be designed to carry out on the position of dealer, and perhaps as shown in the figure, on behalf of a dealer, one group of dealer or a FSL, the penny ante processor can carry out by third party's processor.
Consumer account's processor 16 is merged into bigger transaction with one group of consumer account's penny ante.Consumer account's processor 16 is that the consumer enters the mouth from the initial interface of service and for customer service provides single beginning, and this inlet is assigned to suitable penny ante processor with the client to carry out from service.In this scheme, consumer account's processor 16 is executed on the server 20 of issuing bank.Perhaps, consumer account's processor 16 can be executed at the server that is positioned at third party's processor that is used for one a group of dealer or a FSI.
Each independent little transaction (they merge the big transaction of generation separately) is resolved in the payment that the account of dealer processor 18 will be concluded the business greatly.The account of dealer processor 18 provides the interface between the independent settlement system of the concentrated settlement system of financial circles and dealer.Similar with above-mentioned other processor, the account of dealer processor 18 can be carried out by third party's processor of the FSI that represents any type.But in this illustrative example, the account of dealer processor 18 is executed on the server 22 that is positioned at merchant bank.
Wholesale payment processes machine 24 is connected to third party's payment processes machine of handling the wholesale payment with consumer account's processor 16 and the account of dealer processor 18.In order to provide this interface, wholesale payment processes machine 24 becomes third party's payment processes machine to use data with message conversion one or more forms.For example, can First Data, Paymentech, Vital etc. be arranged for the conversion that third party's payment processes machine is realized.In this specific configuration, wholesale payment processes machine 24 is executed on the server 14 of carrying out penny ante processor 12.But wholesale payment processes machine 24 can be executed on the server that is positioned at other position (as being positioned at the dealer place) in some configurations.
With reference to figure 4, shown in structural drawing represent some functions that penny ante processor 12, consumer account's processor 16, the account of dealer processor 18 and wholesale payment processes machine 24 provide.In the fixed realization of this row, each processor comprises the assembly that some are similar.Especially, each in the processor 12,16,18 and 24 all comprises engine module, and it has realized distributed treatment application programming interfaces (API) for transaction processing.In addition, each processor all comprises user interface and report API assembly, and they provide transaction data and allow the interactive mode of system to use.
With reference to figure 5, shown in each the distributed treatment engine that all comprises 26. distributed treatment engine 26 in the processor 12,16,18 and 24 shown in the structural drawing presentation graphs 4 comprise extend markup language (XML) API 28 and be used for sending message or receiving the distributed transaction router of message from other processor to other processor.Distributed treatment engine 26 also comprises the merge module 32 that is used to merge a spot of down tick.Merge module 32 can help to calculate various dissimilar merging.For example, can merge penny ante based on the consumer.In order to help issuing bank, can merge down tick based on one or more dealer.Distributed treatment engine 26 also comprises the clearing and the accounting checking of transaction that assembly 34 helps are independent and/or the transaction that combines.In addition, engine 26 comprises that assembly 36 helps to check transaction and provides security to transaction with the data (for example, credit number, account number etc.) relevant with transaction.
With said modules, the distributed treatment engine of incorporating penny ante processor 12 into can comprise extra assembly.For example, can comprise that personalized payment assembly 38 provides the different methods of paying to the user.For example, the user can select from pre-payment, order, back prepayment, pay as you go and/or the methods of payment such as payment system based on loyalty.With penny ante processor 12, other processor in the payment processing system 10 can comprise extra assembly.For example, consumer account's processor 16 can comprise an assembly that allows the consumer to visit payment processing system 10. by visit is provided, the consumer can be directed to suitable penny ante processor to check one or more transaction.
Penny ante processor 12 is used as the Payment Card gateway and is integrated in dealer's shopping experience, has only very little variation (if any) in consumer's shopping is experienced.On certain point in the shopping of dealer is experienced, transaction is provided for the Payment Card gateway interface and authorizes and settle accounts (or refusal).When pointing to XML Payment Card gateway A PI, dealer sends identical payment card transaction information and receives in fact real-time small amount payment mandate and clearing (or refusal).For experiencing, consumer's shopping has virtually no tangible difference.
As the Payment Card gateway, penny ante processor 12 can be handled payment for various dissimilar business models.For example, payment processing system 10 allows consumers to do shopping with their the first-selected means of payment (as credit card, debit card, pay intermediary by Paypal etc., or the like).In addition, although payment processing system 10 provides unrivaled efficient processing for penny ante, this system can also handle the transaction of any scale.
By processor 12,16,18 and 24, payment processing system 10 is led into the information in the wholesale payment transaction proof procedure (checking, swindle inspection, 3D-safety verification as AVS, CVVS) in the small amount payment authorization control stream.Handle this information and continue operation in the same manner about dealer's software of dealer-level decision that whether should allow a particular consumer arm's length transaction.
Payment processing system 10 has extended the track of traditional production payment card system, the technology that provide opening, easily adopts, in fact this technology has moved to real-time small amount payment transaction processing network edge and has kept compatible fully with the production payment card system of today simultaneously.
Payment processing system 10 receives electric payment transaction from various dissimilar client software systems.For example, can receive transaction from the POS equipment that operates in people physical world point of sale on duty and be designed to have the card transaction to irritate existing card payment network.Operating in unwatched physical world point of sale and conduction has the retail kiosk equipment of card transaction that electric payment transaction can be provided.These equipment are supported complicated graphical user (comparing with POS equipment) usually, because retail kiosk equipment is designed to directly and the consumer is mutual, from cashier's on duty support seldom or do not have.Payment processing system 10 can also not have the internet site or webpage (or e-commerce system of other type) the reception electric payment transaction of card transaction from conduction.The mobile interface that conduction has card and do not have a Mobile business application of card transaction mixing can provide transaction.
For above-mentioned various types of clients, there is multiple architecture that dealer's application program for example is connected to payment processing system 10., for client terminal to customize, the service logic that makes the client adapt to payment processing system 10 can be encoded in client server or the server relevant with dealer.Can be able to and control on the intermediate server between the third party of this system and realize making the client adapt to the service logic of payment processing system 10 the client.Server-end the module (as card module) that can will make the client adapt to payment processing system to be embodied as payment processing system by dealer's plug-in unit.In addition, one or more in the processor 12,16,18 and 24 that comprises in the payment processing system 10 can be integrated in the system of existing payment processes machine pellucidly.Like this integrated can comprise the minimum change (perhaps reality does not just have) to the system of the dealer of the payment processes machine that has been pre-existing in use.Usually, the various types of API that comprise in the payment processing system 10 can realize one or more in these methods.
The personalization payment that payment processing system 10 provides selects to have realized usually 4 types payment mode: by using paying, pre-payment, order and back to pay.Payment processing system 10 is supported each in these patterns on single transaction processing platform.Payment processing system 10 can also be supported mixed mode, dealer's purchase method that simultaneously operation and consumer can the Dynamic Selection first-selections under one or more patterns in the mixed mode.
Personalized payment be chosen as dealer provide define one group they in business, be accepted as " type of account " of payment.Type of account can be that dealer is proprietary, and for example a dealer can define a pre-paid account for the air time, and another dealer can be prepaid account of music definition of downloading.Type of account has a basis " flat type ", and it is the flat type of such account balance, for example dollar, the number of minutes of air time, the number of minutes or the sugar of playtime.Extendible flat type collection allows the realization of loyalty currency.
The account is the example of type of account, is had by the consumer usually and is supported by " instrument ".Instrument is used for discerning the consumer, and can be the key foundation to the granted access account.The creditable card of the example of instrument, debit card, Gift Card, based on the smart card of RFID, based on mobile token or the website account identifier of RFID.Instrument is the source that wholesale disburses funds in the system, and in fact may be this account's of identification consumer's uniquely tagged.The consumer can have a registration (name, password), and should register with one or more instruments and be associated together with these instrument accounts associated.With reference to appendix A, show an exemplary information collection that can comprise among each account.
With reference to figure 6, flow process Figure 40 has provided the personalized payment of explanation and has selected and relate between dealer and the small amount payment processor 12 subsequently API-level mutual sequence of operations.In order to begin a typical transaction, the consumer can show instrument to dealer.Dealer passes to small amount payment processor 12 with this instrument.Small amount payment processor 12 is confirmed that this instrument is effective and is returned the personalization payment archives relevant with this instrument.This file specification be prescribed and of this instrument cooperation can expand how account's tabulation and definition add parameter from new account to these instrument archives.
Dealer uses the information in these archives to be given the business model that payment is experienced and dealer defines of this consumer's hobby customization to the consumer.The consumer finishes this purchase-transaction according to expectation, and dealer is determined from consumer's collection of funds according to selected disbursement account.Usually, API supports the mutual of two kinds of styles, for example single account's shopping of conformance with standard payment card transaction.In addition, can support shopping compound, many accounts.For example, many accounts shopping can be made up dollar transactions and loyalty count renewals, perhaps combination yen transaction and free coffee renewal.
Usually, each disbursement account common set of API of all supporting to do shopping.This makes that dealer can be to be independent of encode their transaction of mode that consumer payment selects.A typical shopping request list has been shown among the appendix B.
In " paying " pattern by using, each completed transaction of consumer payment.From the viewpoint of dealer, this pattern is favourable, because by using payment mode that higher relatively receptance is provided between the consumer.The product of the simple clause encourage consumer of this pattern dealer on probation and this are provided as dealer's product and have set up the unit value point.But, by using payment mode also to comprise some challenges to dealer.For example, if a consumer is " low amount " consumer, this relation is exactly nonprofit usually.What transaction cost was higher relatively and relation is normally anonymous.Except API shopping request, use pay account for pressing, payment processing system can also be supported two extra requests (illustrating) in appendix C.
In " pre-payment " pattern, the consumer buys one group of transaction in advance.From the viewpoint of dealer, this pattern may be favourable, because the consumer has promised to undertake a more than transaction to dealer, and may often exceed their initial promise.Because the consumer had before paid expense, so reduced risk to consumer's extended credit.Pre-payment comprises volume discount, Gift Card and account, minor account and reaches not have the supply of overstocking for the discount activity provides a platform.In addition, can regulate the upper limit amount of money of pre-expense in a lot of penny antes, to amortize tranaction costs.Be accompanied by benefit, the pre-payment pattern has also been brought challenge for dealer.For example, with the low receptance of paying and comparing, may need a large amount of sale to make great efforts to offset and pay by using by use.Another potential challenge is that some stimulations need be provided, as volume discount etc.The expense of issuing brand-name prepaid card is actual: at the hair fastener of point of sale and the about 2-3 dollar of cost that is installed, 15-40% is used to be published to the card cabinet of point of sale, 2% every transaction expense and consumer's support cost.Observing emerging rule (as unclaimed pre-payment fund is forced to confiscate by government) is another kind of challenge.Described in appendix D, except the shopping request, pre-paid account is supported additional requests.
In " reservation " pattern, consumer's promise is the time period of an appointment to buy one group of transaction in advance.From the angle of dealer, the benefit of this pattern has the consumer to agree to buy the promise (this can cause relation darker between dealer and the consumer) that means dealer's profound level by subscribing.The consumer can also become the continuous revenue source of dealer.Can reduce risk to consumer's extended credit.
The challenge that the reservation pattern is also brought for dealer.For example, the continuous finance meeting of promise reduces receptance.In order to improve receptance, dealer can adopt the true discount in supply of commodities.The reservation business pattern is not suitable for all product types.As shown in appendix D, prepaid account can use by the request of the request of using paying to be supported together with some addition type.
In " paying in the back " or " record keeping " pattern, dealer accepts consumer's transaction and does not obtain payment in advance.Dealer periodically is split into consumer's transaction bill rather than collects payment.From the angle of dealer, this pattern is favourable, because the consumer can often freely spend and carry out a large amount of transaction with this dealer.The consumer can become dealer's revenue source continuously.Dealer can expect some consumers can by highly the excitation with the account who keeps them have this pattern of place (for example Home Telephone or electrical power services) of extraordinary credit be modified to the service provide.
The back paying challenge of dealer comprises that the nonpayment risk dealer along with reality has born very big credit risk.But, can alleviate this risk than weak point relatively by keeping the back paying cycle that accounts.In addition, this pattern can't be operated a lot of product types.Back pay account support comprises some extra requests of enumerating among the appendix E by using all requests of paying and supporting.In addition, appendix F has provided by the multiple parameter of buying and account API uses.
With reference to figure 7, show structure Figure 42 mutual with explanation penny ante processor 44,46, consumer account's processor 48 and the wholesale payment processes machine 50 that in some embodiment of payment processing system 10, may comprise.As mentioned above, the transaction of relative small amount is merged to a kind of method that reduces transaction cost is provided in the big transaction.Usually, transaction merges and to comprise penny ante seldom is transformed into a block trade.By merging, the fixed cost relevant with block trade of processing can be dispersed on a plurality of penny antes.As shown in FIG., each transaction is all described by the three phases by dealer's experience: authorize or auth: checking holder's evidence for payment and reserving this exchange needs fund; Collect or capt: finish this transaction with the holder; And make financial institution cooperate the final statement message of the transaction of initiating by this payment.
In this example, penny ante processor 44,46 systems from dealer receive a series of Payment Card mandates, collect, sale, credit and cancellation penny ante.Although small amount transaction handler 44,46 can receive penny ante from a plurality of dealer in other scheme.Each penny ante processor 44,46 is cooperated penny ante is merged into quantity block trade still less with consumer account's processor 48 relevant with the specific payment card.Consumer account's processor 48 then will represent that with wholesale payment processes machine 50 data of block trade send to third party's payment network.In this specified scheme, the account of dealer processor is not included in the real-time deal stream.
The cost-benefit illustrative example that transaction merges as demonstration supposes that above-mentioned one is 5 penny antes that transaction is divided into every 0.99 dollar of charge.If other transaction processing expense of block trade level is 0.10 dollar of gateway, receives 0.10 dollar of single file, exchanges 0.10 dollar+2%, 5 0.99 dollar block trade will need 1.60 dollars transaction processing expense so, be the 32%. opposite of turnover, if these five transaction are provided for every transaction and collect 0.05 dollar payment processing system, the total expenses of five penny antes is 0.55 dollar, be 11% of turnover, saved 1.05 dollars, promptly 21%. of turnover
By realizing having incorporated the processor 44,46,48 and 50 that merges engine into, realized making the penny ante business model to become a possible group policy.By realizing merging, improved dealer's earning capacity thereby reduced transaction cost.But, be not only cost minimization, in some scheme, merge and realized in some way with the multiple factor of balance.For example, (by increasing the merging time) can balance relates to the factor that reduces the balance between the transaction cost and cash flow postpones and risk of fraud such as avoids at other factors.By optimize veritably between these factors balance (for example, solve the fund cost and the swindle ratio of dealer), can provide merge and do not have actual negative effect (for example, reduce cash flow postpone, to the exposure of danger transaction, increase of cost of customer service or the like).
Usually, association such as Visa and MasterCard requires their member merchant bank to change along with exchange sort to the expense of their member issuing bank payment.Exchange sort relates to a lot of rules.Visa and MasterCard have defined at least eight ten or more kinds of exchange classification with different rates and rule.Exchange classification quilt distributes based on transaction one by one, and may depend on several factors.For example, whether whether to have selling operation type (MCC code), dealer whether card business is arranged or do not have card transaction business, no card business be mail-order, telephone ordering or electronic transaction to some factors that relate to dealer, have unwatched sales environment and/or association this to be regarded as that special rate " emerging " market should be arranged.Another classification factor may relate to used consumer payment instrument (credit card, debit card, company's card, purchase card, special marking card, EBT card, from foreign issue person's card, or the like).The exchange hour details of transaction also may be a factor.For example, the debit VS password debit of effectively swiping the card, sign or sign is not arranged, whether the coupling or the security code coupling that have AVS coupling, CVV coupling or Visa to confirm, whether this transaction is enough little to specified time interval, and/or whether this transaction is had 1 dollar pre-authorization.Equally, details also can influence after the transaction of transaction.For example, between authorizing and collecting, collect and settle accounts between or authorize and clearing between the over and done with time, authorize number whether to equal to collect number, whether details such as customer service call number or station address perhaps are provided when clearing.
If satisfied all requirements of a dealer " best " switch type, this transaction is commonly called " qualified fully " so.If do not satisfy the requirement of this switch type, this trade fair is new " qualified substantially " exchange classification (current, i.e. VisaEIRF or MasterCard Merit 1) by lowering one's standard or status so.If there is not to satisfy the requirement of qualified substantially classification, this transaction is lowered one's standard or status is " defective " (the current Visa of being Standard or MasterCardStandard).Qualified substantially degradation classification in the middle of specific exchange classification can have (for example, if unique deficiency is to have lost the record of swiping the card in the transaction?, can lower one's standard or status earlier before Merit 1 is MasterCard Key Entry).
The complete qualified exchange classification of dealer is one group of input that help merges.The dealer of single service line has single exchange classification usually.Those dealer with complicated service more are according to which service line several classifications of having concluded the business, although these service lines have the different accounts of dealer usually.The merging ability of payment processing system 10 is used in merging and has been adapted to complicated service by allowing every kind of business to keep independent archives.
The cost advantage that merges is by the fundamental measurements domination-what they buy and how long they buy once to two of consumers shopping behavior.The shopping number can be expressed as P i, this is the amount of money that the consumer does shopping at every turn and spends; Do shopping and be expressed as T interval time i, this is the interval of particular consumer between twice shopping in particular Seller place.The consumer can be regarded as a series of amount of money and interval time in shopping behavior dealer there:
P 1…T 2…P 2…T 3…P 3…T 4…P 4…T 5…P 5
Merga pass is optimized the wholesale payment and wholesale is collected/balance between really having optimized the exchange classification and being placed on more penny antes in existing " merging window " of time limit between the wholesale clearing.In addition, merge the benefit of really having optimized merging at the implicit costs influence of exchange degradation.
With reference to appendix G, provide an explanation of tables dealer that the parameter that merges with control can be set.Payment processing system 10 has been optimized merging veritably based on transaction one by one under the parameter control that dealer is provided with.In some scheme, these parameters can be considered very complicatedly, but default setting can provide the amalgamation result of real optimization and do not need user learning or acquisition to be combined the understanding of parameter.Usually, payment processing system 10 carries out the merging that moves in association's consistance policy, keeps single dealer to merge and meets association's rule.
With reference to figure 8, by merging, payment processing system 52 can combine the penny ante that spreads all over a lot of consumers, dealer and/or payment provider.Payment processing system 52 is by transferring to the processor of distribution (as penny ante processor 54,56 with small amount payment processing in batch from the payment network core, consumer account's processor 58 and small amount payment processor 60) expanded the transaction merging, kept safe payment processing system simultaneously.
Payment processing system 52 can comprise cryptosecurities selection (CSS) modules that allow a large amount of distributions of payment processes, has kept safe centralized control simultaneously.In this scheme, the CSS module has been divided into system operation two-layer.Ground floor is a distributed real-time small amount payment processing layer, and wherein the consumer's micropayment transactions with dealer is recorded on the penny ante processor (for example, the penny ante processor 54).The second layer is wholesale payment and distributed key-course, and it moves in the non real-time mode and docks with existing payment network.
Usually, small amount payment is communicated by letter with wholesale payment layer.For example, the strategy (when needed) of control real-time deal is obtained and buffer memory by the small amount payment layer relevant with the penny ante processor.These strategies can authorize a plurality of small amount payment transaction as long as they have passed through real-time swindle inspection.Usually, the small amount payment layer is passed total settlement information back wholesale payment layer, and still, detailed small amount payment record is stored in the penny ante processor, and the there expense is lower.
In order to implement security control, payment processing system 52 selects module to realize the inspection agreement according to cryptosecurity.Use this agreement, wholesale payment layer can be checked the smaller subset of detailed penny ante and guarantee that reliably correct payment processes takes place on all penny antes.This has kept security to reduce cost simultaneously.
Payment processing system 52 is to design for operation extendible, high safety.Litigant's role and the operation that they carry out have conscientiously been divided in system.In some scheme, assembly by associating, based on the verification system validates of publicly-owned Ning key.When transmission and storage,, the information of needs checking is carried out digital signature to being designed to keep the information encryption of secret.This system closely controls voucher, limits their use, and can cancel process with lightweight and cancel voucher.
The cryptosecurity selection course is transferred to distributed penny ante processor (as penny ante processor 54 and 56) from the payment network center cost advantage is provided by calculating.Center processing payment in payment system needs real centralized calculating and quite expensive communication infrastructure usually.Can on the common hardware of considerably cheaper, carry out the payment processes on the penny ante processor, and communication is also local in e-commerce website.Adopt cryptosecurity to select module, payment processing system 52 provides the low cost that can handle a large amount of transaction at lower cost, extendible merging foundation structure.
Usually, dealer manages their business on the penny ante rank, because this is the rank of they and they customer interaction.It is that unit flows to dealer with in batch block trade that payment processing system 52 attempts to optimize the mutual so that fund of third party's payment network.The clearing of this system and accounting checking layer are mapped to single penny ante with cash flow from batch block trade.Clearing layers can be handled the various factors that comprises partial balance, and Visa has paid a subclass of the transaction of having closed in partial balance, and America Online's payment of having withheld.Also can handle reimbursement, for example the reimbursement when issuing bank can initiate the reimbursement process with the dealer relevant with the complaint of a particular consumer.Another factor of handling is fund cutting apart between one group of dealer of merchant bank's one-level and penny ante processor one-level.
Get back to Fig. 4, penny ante processor 12 comprises that inspection and control module 62 meet the dependency rule by the centralized payment processing system of association's operation to guarantee payment processing system 10.The consistance rule supposition of association's definition almost every payment is all checked by " third party's processor " of entrusting.Some conventional systems can be checked the block trade of relative vast scale, but conventional system is checked the penny ante of vast scale if desired, and the expense of handling penny ante will be identical with the expense of handling block trade, and dealer can not enter penny ante market.
Inspection and control module 62 are handled the confidence that height can be provided in the consistance in penny ante, and do not need the side of inspection to check every penny ante.The cryptosecurity that illustrates among Patent Cooperation Treaty (PCT) the application PCT/US02/12189 that inspection and control module 62 have realized submitting on April 17th, 2002 is selected, and introduces it at this by quoting.A copy of this PCT application is provided among the appendix H.Cryptosecurity select to allow to check in the mode that a kind of examiner can be extrapolated to the result complete or collected works reliably a subclass of penny ante.Inspection and 62 pairs of a part of expenses of control module provide the benefit of comprehensive consistance monitoring, have done about 95% work on small amount payment processor 12, and have done about 5% work in other place.
Check and control module 62 inspection variety of issues.For example, if ratified the transaction of each requirement, this module can check whether clearing add up in desired number or the batch whether have any repetition in batches.In addition, inspection and control module 62 can determine whether to have AVS coupling, the CVV coupling of the suitable degree that exchanges the classification request or the coupling of being verified by Visa in each penny ante.Can check other problem, as whether being the mandate in the boundary of exchange classification appointment, the time between collecting and settling accounts.Inspection and control module 62 are extendible and have considered the other problem that will check in the future.
With reference to figure 9, when submitting these transaction to by the transaction of signing them with the publicly-owned key signature that has timestamp, dealer just set up the starting condition of checking.Publicly-owned key signature needs a large amount of calculating.Merkle tree technology has more HashSize with 1 publicly-owned key signature, a 2*N-1 hash and each message *LgN byte replaced the uni-directional hash of a collection of N publicly-owned key signature and N safety.
With reference to this figure, in this example, shown in Merkle tree 64 (wherein N=8) showed one by the transaction of dealer's digital signature.For example, T 010And SIG m(T 010) equal same transaction T 010And the root SIG of Merkle tree m(v) together with the fraternal hashed value chain v in the Verkle tree 011, v 00, v 1, v.The recipient can check SIG m(v) and v=H (H (H (v 00, H (T 010), v 011)), v 1), it shows that this dealer has produced digital SIG m(T 010), if promptly they have produced Merkle tree signature, they may equally directly sign specific transaction such as T 010Share a signature SIG in all N object of Merkle tree technology in tree m(v),, assess the cost and probably reduced N doubly because cryptosecurity hash H is in fact cheap than calculating publicly-owned key signature.
Merkle tree technology need be that signature in the batch of N carries out batch processing to size usually.Payment processing system 10 provides in batch penny ante as its merging and the part of settlement method, so this technology is applicable to those environment natively and can change application behavior.Can individual inspiration Merkle the signature of each penny ante in the tree, and need not obtain other element in the tree.This technical spirit ground has reduced the quantity of publicly-owned key signature, but has kept the nearly all trust-scalability advantage of asymmetric cryptosystem.
From penny ante processor 12, collecting the time of penny ante T, the penny ante processor is used from { 0, unified each bit that obtains of 1} produces the random bit string R that length is n.Penny ante processor 12 will (T R) calculates Merkle leaf signature H to adding to j(T, Merkle tree R).Periodically settle accounts the penny ante of dealer on penny ante processor 12, stamp timestamp for the penny ante of dealer on the penny ante processor with the clearing timestamp that consumer account's processor and the account of dealer processor generate, the root of setting by the publicly-owned key signature signature Merkle with dealer produces and submits to a complete Merkle tree then.Top layer Merkle tree signature SIG m(v) be sent to consumer account's processor 16 and the account of dealer processor 18 together with footings.This Signature Confirmation each penny ante in this batch and be in the future inspection reality " lock " firmly they.
The subsequent examination of consumer account's processor 16 or the account of dealer processor 18 can comprise that arbitrary processor sends problem (for example, how many total values of certain appointed date Visa-card transaction is) checked in request with backspace answer to penny ante processor 12.Be accompanied by problem together, consumer account's processor 16 and/or the account of dealer processor 18 can be specified in the penny ante inspection set and should be returned that part of as the proof of penny ante processor result of calculation by penny ante processor 12.Consumer account's processor 16 and/or the account of dealer processor 18 can by provide will be applied to the choice criteria of the relevant random bit string R of each transaction to (mask match) tabulates and specifies this set.Choice criteria mask and match (shielding with coupling) are that length is the Bit String of n, just return a penny ante if equal match for the bit-level " AND " (with operating) of arbitrary standard R and mask in this tabulation.This mechanism allow to be selected supporting to check a part of p of true value in the penny ante of being checked, wherein corresponding a series of mask of 1 corresponding 1-amount of bits in the binary representation of the quantity that p can be by selecting the 1-bit and p and closely being similar to arbitrarily.
Penny ante processor 12 can be carried out the request of inspection and pass through to check the accurate answer of each the penny ante echo check problem on the processor, for example, and in the total value of the Visa-of appointed date card.Be accompanied by answer together, penny ante processor 12 can return the penny ante subclass of match selection standard, and this subclass can be used as the proof that the penny ante processor provides this answer.
Consumer account's processor 16 and/or the account of dealer processor 18 are verified the result of penny ante processor 12 through the following steps: (a) check Merkle signature on the penny ante of returning to guarantee that these transaction and result in the set that the transaction identical (b) of before having submitted to payment processing system 10 will be checked progressively increase 1/p and doubly also test precise results to check that whether these results return near penny ante processor 20.If it is not enough approximate approaching judging the check result that progressively increases, consumer account's processor 16 and/or the account of dealer processor 18 can repeat this inspection, send identical request with new check criteria.Can repeat this process up to satisfying consumer account's processor 16 and/or the account of dealer processor 18, perhaps decision must be overhauled the dealer of penny ante processor 12. for honesty, and statistics can be guaranteed reasonably satisfying consumer account's processor 16 and/or the account of dealer processor 18 with part inspection in the time quantum.
Payment processing system 10 is to design for operation extendible, high safety.Can carefully divide litigant's role and the operation that they carry out in system.Trusting alliance's assembly is the distributed proof mandate of payment processing system 10.It uses each assembly of role's verification system that publicly-owned key or other technology be endowed with it in payment processing system 10.Assembly by associating, based on the verification system validates of publicly-owned key.Usually, when transmission and storage, keep the information of secret to encrypt to needs.Therefore, the information that needs the leap regulatory boundary to verify has been carried out digital signature and has been checkable.Payment processing system 10 control vouchers, limit their use and can cancel process with lightweight and cancel all vouchers.
Usually, payment processing system 10 is not stored account, CVV code, Track-1 or Track-2 in penny ante processor 12, consumer account's processor 16 or the account of dealer processor 18.On the contrary, account's uni-directional hash is stored in the database.Uni-directional hash also is used as the basis that transaction merges.In payment processing system 10, can use account number near real-time at AUTH trading time period (or the AUTH of SALE transaction is in stage).If AUTH success does not just need account number to further large-amount payment system mutual (follow-up obtain, credited or or specify the specific AUTH that they are suitable for the REFID that AUTH returns) so.If AUTH is because certain reason is failed, the AUTH agreement of system will need caller to provide account number to attempt new AUTH once more so.
Server in the payment processing system 10 is not stored account, CVV code, Track-1 or Track-2 data usually in storer.In addition, these data are not written into database usually, are not write in any server log file with plaintext yet.In some scheme, payment processing system 10 is complementary by the safe one-way hash function with transaction and account and expiration date and merges transaction.The method that is used to calculate hash can realize functions such as SHA-1 cryptosecurity eap-message digest.
For dealer's customer service purpose, payment processing system 10 can be with expressly keeping account's back 4 bit digital.The Customer Service Representative can see this last 4 transaction of also checking coupling those and other transaction feature.Payment processing system 10 also allows the exact-match lookup transaction of the Customer Service Representative of dealer with credit number.In inside, this database lookup is owing to the uni-directional hash of account number, because account number is not stored usually and can not recovers account number from uni-directional hash.
Wholesale payment processes machine 24 in the payment processing system 10 makes small amount payment handle service adaptation third party payment processes machine by the MPP plug-in unit.Support AUTH and CAPT process (only at AUTH time provide thus account number) when third party's payment processes machine, the MPP plug-in unit just moves as penny ante processor 12 and consumer account's processor 16.Especially, account number is delivered to payment processing system safely during AUTH, and can not be maintained in the storer usually.But some third party's payment processes machines need provide account number when each CAPT is mutual.In order to support such processor, card number and expiration date after the MPP plug-in unit of processor provides deciphering when when AUTH account number and expiration date being encrypted and collecting or depositing in again.
In some scheme, encrypt and key management by with hardware security module realization, for example n-Cipher n-Shield.This system can also use strong cipher such as AES-128.The card number of encrypting only keeps a period of time usually, can be defined as the time window between AUTH and the CAPT during this period of time.It is about 7 to 30 days that the current credit calliper then defines this window.After this stage, the account information that payment processing system 10 deletions are encrypted.Instrument safe in utilization (as the security tool that provides by hardware security module) managing keys.HSM provides the cipher key management procedures of multi-level safety and safety.
Usually, small amount payment takes place on point relatively at a low price relatively in large quantities.Payment processing system 10 height can be expanded and can be extended to the small amount payment processor that comprises thousands of height profile, consumer account's processor, the account of dealer processor, wholesale payment processes machine, issuing bank's server, merchant bank's server etc.Extensibility expansion payment processing system 10 that can also right>1000x, the extensibility of>1000x can progressively be expanded.For example, before bigger spreading factor (for example, 100-200x, 1000-2000x etc.) being expanded this system, can realize the spreading factor of 10-20x earlier.
By expansion, payment processing system 10 can be divided into the transaction processing process on thousands of the distributed servers pellucidly.This division can occur on a plurality of ranks.For example, function is divided, and payment processing system 10 is designed to different aspect that separate trading handles so that they can be carried out safely and effectively on independent server in function is divided.Can handle penny ante can separate with the block trade that is combined.Equally, can be from the block trade report separately with the penny ante report.The systemic-function that needs can be visited for a long time the cardholder data that needs encryption never needs the functional separation of this visit.This architecture can be separated the safety verification to the consumer for the customer service purpose from the penny ante record that comprises Customer Service Information.
Divide for organizational boundaries, the architecture of payment processing system 10 has considered to constitute the boundary between the different tissues of paying the ecosystem.These tissues comprise dealer's (having a plurality of positions), merchant bank, merchant bank processor, issuing bank, issuing bank processor and wish that they keep privately owned association each other at transaction separately.
Divide for load, a client's transaction is independent of another client's transaction usually, and for many purposes, the transaction of a specific payment instrument is independent of another means of payment.Therefore each means of payment tend to the transaction of relatively small amount, and the real-time processing to each consumer's transaction is not real real-time processing, and a large amount of potential concurrencys are arranged between different consumers' transaction.Dealer usually need be relevant with their business the comprehensive observing of transaction, and this can represent a large amount of transaction.Dealer expects the quickly information relevant with their business usually, but hard real-time information is then tended to limited requirement.
With reference to Figure 10, in some scheme, realize that the assembly that load is divided is distributed transaction router 66.Usually the most of functional modules (as penny ante processor, consumer account's processor, the account of dealer processor etc.) in the payment processing system 10 comprise one or more built-in router assemblies.Router is checked the message flow of all turnover.
Router 66 is finished the operation of various message, as to the quick check of XML, determine which node should handle a request etc.For example, AUTH message is divided by payment card number and dealer.After card number in finding AUTH and the dealer's sign symbol, router 66 checks that relevant routing table is to find the particular server that is fit to handle this request.The RefID that returns when in another example, CAPT message quilt is according to coupling AUTH divides.With a routing table RefID is mapped to suitable servers then.
May disclose transaction to the extra application layer analysis of message under some environment should be processed in the another location.Under the sort of situation, can resend this transaction, and router 66 is determined a new route.Route determines it is adaptive in some scheme, and route (for example 99% correct route is determined ratio) can both be suitably selected in the most of the time transaction like this.
Router 66 can also be fault-tolerant and can handle the node that enters and leave route set.Router 66 can be managed hot idle node, and may replace a node that breaks down with another node in the relatively short time (as 1 to 2 second).
Router 66 can also be handled geographical and the function division by the management one group domain name relevant with specific service.By management domain name, router 66 can relax the flow between the bigger IP address set that is mapped to those domain names.
With reference to Figure 11, showed the processing node 68 that an exemplary load is divided, it comprises a load equalizer (LB) 70. in this configuration, load equalizer 70 provides the HTTP/SSL load equalizer of " making mute " HTTP load balance.In this scheme, the node that comprises penny ante processor or consumer account's processor links to each other by the transaction router and finishes the application layer route and determine.Can divide single small amount payment processor or consumer account's processor data storehouse by payment card number, dealer's account number identifier and/or dealer's reference identifier according to specific engine transaction when initial.
Penny ante processor and/or the report of consumer account's processor and client carry out from the public database that is close to real time access usually from obeying node.Can divide penny ante processor and consumer account's processor report load by payment card number and/or dealer.Although can specify lower priority to this report.
In general, the tissue of realizing payment processing system 10 distributes specific role for their employee usually in this system.For example, the administrative all operations of being responsible in the shop (or other commercial facility), but be mainly used to leading subscriber.Usually, each shop has only among these users one.Customer Service Department can comprise complaint and the requesting users that processing is relevant with dealer's service.They can initiate and solve customer service in the data designated storehouse.Treasurer's department comprises the user who follows the tracks of the shop account, can revise and follow the tracks of transaction, settle accounts and pay.This user can also regulate the bank account payment record in this shop.
Be accompanied by single people together, can also specify specific process (realizing) to finish specific operation by tissue with software, hardware or software and hardware combining.For example, can realize concluding the business API to send the transaction request document to the small amount payment gateway.It is the secret in transaction source which SDK client of dealer of appointment can be arranged in each request XML document.
Another assignable process is inquiry API, can realize that it is to send data query to small amount payment gateway database.Usually, the inquiry api interface is used for dealer's operation system and payment processing system are integrated.But specific dealer's application program is specified in each the XML request from this assignment procedure.Another assignable process is an Administration API, can realize it with send server configuration and dealer's application program management document to the small amount payment gateway.But an operation can specifying specific dealer's application program and carry out on this dealer's application program from each XML request of this assignment procedure is for example to the adjusting of payment or be combined the adjusting of setting.
For and system interaction, user interface is provided.These user interface interaction ground help trading function, as showing final report, browsing trade detail and inquiry transaction.User interface also helps settlement function, settles accounts and browse settlement detail as clearing final report, inquiry.Also help the function relevant with payment with one or more user interfaces.For example, can provide and pay final report, inquiry payment, browse payment details and coordinate the relevant operation of payment.
User interface also can help to provide customer service message, and arguement/service message collection or inquiry arguement/service message are browsed in for example customer service final report, arguement/service message stream or help.Can also help the account management operation, produce account's report, produce and manage new account type, the effective account of inquiry and browse account details.Can also provide basic user's internal work with user interface.For example, user account login feature, user account number file administration function, the sub-Account Administration function of user, inspection User Activity state or the like.
Usually, inquiry API allows dealer that available identical information is carried out planned visit by user interface.Dealer and FSI interface are by mutual framework realization data query and system management flexibly.This framework system that makes can pass through several different methods, comprises the planned XML on web browser and the HTTP API, visits public inquiry and management code.
Usually, these API can comprise the business logic components of being made up of inquiry and data management realization.These API can also comprise the tool assembly that constitutes workflow, (for example OO data access and relational database management system visit) and data base portability become possible data access interface to make database access.
The business that operation can be gained on penny ante stream is given and has all been brought huge pressure aspect business operation a lot.For example, mutual each incident of customer service may spend 5 to 10 dollars, and total customer service is born average every transaction and can be reached 0.5 dollar even higher in a lot of business.Payment processing system 10 has been realized obeying to reduce cost certainly based on the client of penny ante processor.In addition, payment processing system 10 provides online bill, and it has listed the each shopping in the shop of dealer in detail.Online presenting with solution to disputes by integrated bill from clothes improved customer satisfaction and reduced cost of customer service.
Every penny ante in the bill under the dealer control comprises the robotization solution to disputes software guide that can solve particular problem (as downloading again that a head had bought but the song that deletes because of carelessness).This guide can also be collected the information relevant with other problem and this information is forwarded to the customer service personnel of dealer and be solved.In addition, this guide can be by issuing credit card, solving problem by strategy under dealer's control and the strategy that changes according to the history of consumer before controversial transaction.
In some scheme, payment processing system 10 can be realized the interface of consumer and one or more consumer account's processor and the butt joint of penny ante processor.The financial instrument account number that the interface relevant with the penny ante processor can allow the consumer to check transaction record, initiate and resolve a dispute and manage and produce dealer's regulation.
With reference to Figure 12, payment processing system 10 can realize that diverse ways is used for providing security to the client based on web from clothes.For example, can provide secure log by requiring to use information on the credit card payment table that prints to obtain visit.In other is realized safely, can be by the application program control login based on web relevant with dealer.
For example, in order to use the information registration on the statement of account that prints, the consumer checks his or her credit card payment table.Dealer on the charge line item provides the identifier of 8 or 9 characters behind the name.In this example, the string that comprises in the charge from the one $26.41 of " MYSTORE " is " Z12A782G ".This character string can be used for signing in in the graphic user interface (GUI) 74 by credit card user.Especially, for to based on the interface identification of web themselves, this character string is imported in the field that is designated as " login number " (Log innumber).In addition, transaction account is imported in the field that is designated as " total transaction amount " (Transaction total).In this example, 26.41 dollars expense is transfused to " total transaction amount ", selects to be designated as " continuation " graphic button (go) then.
Adopt in a like fashion, the graphic user interface relevant with consumer's account number processor allows the consumer to visit relevant information.With GUI 74 similar can being used for from the information security ground of the statement of account that prints sign consumer.Except character string and total transaction amount, can also obtain visit with out of Memory from the statement of account that prints.For example, can with the information security of last 4 or other similar type of trade date, consumer credit card number visit is provided.
The consumer can conduct interviews by various inlets.For example, the consumer can conduct interviews by his or she computer system (or other digital device, as cell phone, personal digital assistant PDA etc.).Perhaps, the consumer can be by the system login of dealer.
In dealer in some cases empirical tests the consumer, and be ready to allow this consumer visit the penny ante billing record and do not require further checking.The API that payment processing system 10 is presented voucher by the bill in limited time of having created dealer and can passing to this consumer supports this visit.This voucher is " expense URL " (Charges URL), and is effective for the time quantum of the appointment of the penny ante record keeping activity that shows them to the consumer.Visit designated fee that this expense URL (selecting or the compulsory browser of dealer is redirected by the consumer) can present them to the consumer with and need further not verify by the consumer.
Usually, expense URL only to the limited time (normally 30 minutes or still less) effectively.If expense URL is expired, but that dealer does not also have consumer's checking is expired, can have a kind of mechanism the extra time to refresh expense URL for the consumer by requiring vendor system.If the consumer no longer is verified as very by dealer, the consumer can login and obtain a new expense URL again.
With reference to Figure 13, when obtaining visit, can present GUI 76 to the consumer, it comprises the penny ante tabulation that is merged into a block trade.The user can select every penny ante to obtain more information.
With reference to Figure 14, the GUI 78 of demonstration has presented the relevant supplementary information of the penny ante of selecting in the line item that comprises from GUI 76.
Every penny ante in the bill can comprise an automatic solution to disputes guide under the control of dealer, it can solve specific user-dependent problem (for example, descending song of having bought but having deleted because of carelessness of spoon-feed again).This guide can be collected the information relevant with other problem and this information is forwarded to the customer service personnel of dealer and be solved.In addition, this guide can also be dealt with problems with credit by giving the consumer.The strategy that is used to deal with problems can be controlled by dealer, also can be driven by the anti-swindle technology that comprises in the payment processing system 10.
With reference to figure 15-17, a series of GUI 80,82 and 84 have showed some typical user interactions.With reference to Figure 15, the consumer has selected " customer support request " link and has presented the tabulation that may ask among the GUI 80 of dealer's regulation in front.With reference to Figure 16, in this example,, show GUI 82 by selecting the link of " I lost this song ", it makes the user can send the customer support request.With reference to Figure 17, demonstrate GUI 84. this customer support personnel relevant in face of (may be relevant) customer support personnel and can solve the problem relevant with this request with the problem of determining by GUI 82 with dealer.After solution, to this consumer's send Email.In addition, can upgrade consumer's online bill.
With reference to Figure 18, if the transaction of single dealer is combined, the penny ante in the corresponding block trade just dealer with identical is relevant.Those transaction can be remembered in that dealer under one's name.As mentioned above, can cross over one group of dealer and merge penny ante.Therefore, can merge penny ante between a consumer and a plurality of dealer.In addition, can merge a plurality of penny antes between single dealer and the consumer.By merging these many penny antes, can present the transaction that combine relevant to the consumer with different dealer.For example, as shown in the statement of account 86 that prints, by the third party, can be according to the merging of the penny ante relevant to a plurality of dealer (as " SmallTab.com " or " Bank SmallPayment Service ") rank with the consumer.
Be accompanied by provide the pooled data of crossing over a plurality of dealer, statement of account 86 also to comprise can be with the identification number that visits the third party website.For example, by access websites (as Http:// smalltab.com) and import this identification number (as, 1875766), can demonstrate customer service GUI 88. in this example, GUI 88 has shown a plurality of dealer that comprise in the statement of account 86 and the tabulation of their corresponding subtotal.By selecting specific link relevant, can show the tabulation of each transaction relevant with this dealer with one of them dealer.
Multiple realization has been described.But, will be understood that and can carry out various improvement.Therefore, other is realized also within the scope of the appended claims.
Appendix A
Information Explanation
Account ID Unique ID of this account
Instrument The means of payment relevant with this account
Dealer The dealer relevant with this account be not if this is " all merging " account
Type of account How sign operates (processor of face as follows) to this account
Account data The account's who uses by penny ante group plug-in unit expanding data
The Ppcn data The inside expanding data relevant with the account
State Account's state: PENDING, ACTIVE, EXPIRED, DISABLED or SUSPENDED (un-activation, effective, expired, forbid or suspend)
The open mandate The sets of authorizations of having confirmed but also not collected at remaining sum
Authorize remaining sum Open operation remaining sum of authorizing the amount of money on this account
Last trade The date of last transaction among the account
Transaction Payment transaction among this account
Account's incident Not payment transaction among the account
Appendix B-buys request
AUTH Requests verification to possible purchase
CAPTURE Confirm actual purchase according to existing AUTH
SALE AUTH that combines and CAPTURE
VOID Nearest CAPTURE is return, and on this client's bill, do not show any transaction
CREDIT CAPTURE is more early return, on client's bill, separately show two transactions
INQU About inquiry to the early stage request of this account
Appendix C-by using the paying additional request
SETSTATUS Between Enabled, Disabled, Valid, Pending (activation, forbidding, effective, wait), change the state that uses pay account of pressing
TRANSFER Transfer to a different credit card (if its card needs when stolen or expired) with existing by the use pay account
Appendix D-subscribes additional request
CREATE Create new reservation and use the cross charging of its lower floor's house account is provided with funds
CANCEL Cancel uncompleted reservation, and any indign income is returned to lower floor's house account
RENEW Prolong the existing reservation cycle.For pre-payment (charge on time) reservation, produce cross charging immediately to the account of lower floor
ADJUST Regulate the reservation cycle and do not produce any cross charging
SETSTATUS The variation of the state of prepaid account between Enabled, Disabled, Valid, Pending (activation, forbidding, effective, wait)
TRANSFER Existing prepaid account is transferred to a different credit card (if its card needs when stolen or expired)
The additional request of paying behind the appendix E-
CREATE Create a new back pay account
BILL Back paying expense on this account is remembered on the bill payment instrument
ADJUST Regulate the clause of back pay account, comprise changing the bill payment instrument
SETSTATUS Between Enabled, Disabled, Valid, Pending (activation, forbidding, effective, wait), change Account Status
TRANSFER Convert existing back pay account to different account
Appendix F-API parameter
Element Explanation
ACCT The credit/debit card account number
ACCTCLASS Account's classification: by using pay (default), pre-payment, reservation, back to pay
ACCTDATA The container of dealer's specified account data.These data also can be used by client-side program and server by the storage of Peppercoin system.
ACCTENDDATE The account is with no longer valid (unless delayed) after this date
ACCTID This account's inside ID; Return by account query, and with in the request afterwards
ACCTINFO The groups elements information relevant with the account; An inquiry response can comprise the ACCTINFO element of any amount
ACCTSTARTDATE Account's effective date
ACCTSTATUS Account's state; Must one of ACTV, PNDG, EXPD, DISA in V3
ACCTTYPE Type of account.Type of account can pass through the API Dynamic Definition
ACCTTYPELABEL The label of type of account-may present to the user
AMT The amount of money
AMTDUE For by the account who use to pay, verified but the amount of money also do not collected
AUTHBALANCE For the account of pre-payment and limited reservation, verified but the amount of funds also do not collected
AUTHEXP Expiration date/the time of authorizing
AVSRESP The AVS address response only is suggestion
BALANCE For pre-payment and prepaid account, (defining) amount of funds that can collect with any unit
charGE The complex element of definition flow of payments behavior
CITY City, holder place
COMMENT1 Only be used for Objective of Report user defined value
COMMENT2 Only be used for Objective of Report user defined value
COUNTRY Holder's 3 character country codes
CURRENCY The currency of the amount of money
CVV From credit card just/the 3-position or the 4-position CVV/CVC code of reverse side
CVVRESP The CVV response only is suggestion
DEBIT Be used for showing that balance adjustment must be debit card but not default credit card
DEPOSIT The complex element of the resource Flow Behavior that definition is subscribed
EDGEID Submit the ID of the Edge of this AUTH to
EMAIL Holder's email address
EXPDATE The expiration date of credit card
GATEWAYRESPONSE Optional, illustrate in greater detail the processor proprietary data that AUTH fails
IMAGE Can be for the commodity in the order from the URL of Internet visit
INQURESPONSE The XML object that comprises the RESPONSE object of the transaction of being inquired about
MACCT The account name that has PPCN of dealer
NAME The name of commodity in the order
NAMEONCARD Cardholder name on the card
OFFSET The time span before the charge end cycle is ordered in definition, will attempt to collect extra charge and think to order and provide with funds when ordering the charge end cycle
OPERATOR External application can be used for discerning the identification character who has submitted this transaction to
ORDER The top layer element of Order (order) message
ORDERINFO Comprise with Order transaction in the relevant information of article bought
PERIOD Upgrade the cycle of order and payment or resources allocation
POSMODE Use the pattern of point of sale (POS) equipment
POSTAL 5 to 9 postcodes of holder
PPCNDATA By Peppercoin definition and the mark that provides by Peppercoin
The container of the account data that accurate processor is supported
PRODUCTKEY Product category
QUERYID The ID of dealer of this request.If this provides in account query (ACTQ), it will be returned in response
QUERY-PARAM Have the empty element of value for the optional attribute RESPONSE of " BRIEF " or " FULL ".If there is no, response will be BRIEF.
REFID Index ID is used to collect, cancels, inquires about transaction and buys (or sell) on credit the loan transaction
REQUEST Main message from the client transmission; Normally highest, but can be contained among the ORDER
REQUESTID The ID of dealer of this request
RESPAMT Authorize the amount of money of credit card
RESPMSG The message of the response code that description provides
RESPONSE To the concord of request (or ORDER), normally highest, but can be contained among the INQURESPONSE
RESULT The main code that echoes is represented successfully or is failed
SERVERID Sign is as the account of the vendor server in transaction source
SERVERKEY The key/secret of vendor server as the transaction source
STATE The code of state-two, a U.S. holder place character
STATUS Account Status: one of ACTIVE|PENDING|EXPIRED|DISABLED
STREET1 Holder's street address (for example, the 12nd main road)
STREET2 Second row (optional) of holder's street address
TRACK1 Card swipe from Track1
TRACK2 Card swipe from Track2
TRXTYPE Type of transaction; The operation that sign will be carried out, and determine that impliedly it is effective and/or essential also having which element
Appendix G-merges parameter
Intelligence merges parameter Parameter declaration
Business model The business model of this certain accounts: by using paying, pre-payment, order, back to pay
The means of payment of accepting These professional means of payment of accepting: Visa, MasterCard, American Express, Discover
Visa and Mastercard exchange sort Tell complete qualified Visa and the MasterCard exchange classification of intelligent combination system to this professional dealer.Suppose that qualified fully transaction will will exchange automatic consideration transaction grade problem in the qualification in optimization with the processed intelligent merging of the speed of selected classification.Intelligence merges the service level exchange qualification problem of can't see; Here specify wrong classification will can not influence the classification of block trade, but will cause incorrect merging optimization.
Receipts list person and processor's expense to Visa and MasterCard Pay and be the not receipts list person of the transaction payment of merging and total disposal cost of processor.These expenses are except that the clearing expense of Visa and MasterCard.
American Express/Discover disposal cost Tell intelligent combination system to American Express, Discover and other dealer's disposal cost based on non-exchange system
Cost of fund Annual cost of fund.This numerical value is used for estimating monetary effect, and for example expansion merges the cost of investment of window
Rate of fraud Be expected to be the desired proportion of the transaction of rogue
The customer service rate Estimate the desired proportion of the transaction of triggering customer service request
Authorize amount of money strategy The strategy of the mandate amount of money that calculates every transaction is set.Option comprises: by the definite close end of dealer; By in dealer's business or at the definite dynamic amount of money of the average buying behavior of specific products classification; Based on the dynamic amount of money of past from the customer buying behavior's of this dealer analysis; Perhaps based on the dynamic amount of money to this customer buying behavior of past in other business coarse analysis.Exchange sort is considered to limit this amount of money, and total upper limit of dealer's regulation has also limited this amount of money.
Authorize maximized window length plan The plan of the fate in the merging window that calculates every transaction is set
Slightly Slightly.This calculates at exchange sort optimization considers the observed behavior of balance.The option of determining window size comprises: by the definite regular length of dealer; By in dealer's business or at the definite distance to go of the average buying behavior of specific products classification; Based on the distance to go of past from the customer buying behavior's of this dealer analysis; Perhaps based on distance to go to this customer buying behavior of past in other business coarse analysis.The proprietary exchange sort of consumer's the means of payment is considered to change calculating parameter, and total upper limit of dealer's regulation also is like this.
Consumer's strategy first Set handling is consumer's strategy first.Strategy comprises: nonjoinder is the consumer first, and perhaps message person is used as low liveness, middle liveness or high liveness consumer first.
Merge exchange classification strategy If whether the control consolidation strategy is determined exchange sort and is allowed strategy to change exchange sort when not being the most effective.Deposit by degradation must surpass the gate pole efficient amount of money.Option comprises forces merging to rest in the qualified fully exchange classification, allow to be downgraded to medium qualified classification, perhaps allow to be downgraded to underproof classification.
The maximum dealing money that merges A upper limit is set for the maximum dollar amount of the block trade that is merged into
The maximum penny ante amount of money The maximum dollar amount of a penny ante in the block trade that is merged into
Maximum penny ante quantity The maximum quantity of penny ante in block trade that is merged into
The maximum window size that merges The maximum number of days of merging time.There is multiple factor can reduce the actual merging time, comprises: the frequency of consumers shopping; Restriction based on exchange sort; Dynamic cost/income analysis; And other factors.
Periodically merging window finishes On periodic border, finish to merge every day for example, a particular day weekly, perhaps specific one day of every month
Merge and select to add/withdraw from Allow the consumer to select to add or withdraw from merging.Control is selected to add or selected to withdraw from is default option.
Means of payment authentication policy Before merging, guarantee that consumer's the means of payment are effective.Come the validation of payment instrument with the mandate of target being collected the amount of money or 1 dollar.This is provided with the behavior that main influence does not need the consolidation strategy of authorizing in advance
The checking duration The continuous days of previous means of payment checking.If system has the just checking of upgrading than this fate no longer again of authorization information
The AVS strategy Whether control needs the AVS coupling in every transaction
The CVV strategy Whether control must provide effective CVV code to every transaction
Maximum penny ante speed The person of curbing consumption can only carry out the transaction of specified quantity in the speed proof cycle.If this quantity is less than or equal to zero, just do not check speed.
The speed proof cycle Check the transactions velocity in the designated period: or per hour with the skew every day of appointment
The swindle record merges cut off The swindle record can not merged greater than the transaction of this numeral
Customer service record merges cut off Customer service record can not merged greater than the transaction of this numeral
Appendix H
PCT applies for US02/12189
Be used for small amount payment transaction method and system
Cross reference to related application
The application advocates the right of priority of following application: 1) the U.S. Provisional Application sequence number 60/287,251, is entitled as " being used for small amount payment transaction method and system ", and submit to April 27 calendar year 2001; 2) the U.S. Provisional Application sequence number 60/306,257, is entitled as " being used for small amount payment transaction method and system ", the submission in July 18 calendar year 2001; 3) the U.S. Provisional Application sequence number 60/344,025, is entitled as " being used for small amount payment transaction method and system ", and submit to Dec 26 calendar year 2001; Here, will fully set forth below by all these applications of reference introducing in full.
Background technology
The growth of e-commerce system has caused crossing over the quick growth of the financial transaction quantity that electric network takes place.By the method for providing convenience for financial online small amount service (as information acquisition services), small amount payment has brought the novel electronic business transaction.The value of small amount payment may be very low, in some cases even less than 1 cent, but may be carried out very in large quantities.For example, information service provider may wish to come service charge to them with very little surplus.Can pay each webpage of visit or flow to user's per minute music or video with small amount payment.
A kind of electronic payment mode of simple form is an eCheck.ECheck is made up of the check of digital signature rather than signing by hand.Digital signature can allow the recipient of check check signatory's authenticity and the integrality of check content (for example, the date of check and the amount of money).Document about publicly-owned secret key encryption provides a lot of methods to be used to realize digital signature, Communications of the ACM for example, Vol.21, No.2,1978, S.120-126, Rivest, R.L., Shamir, A., and Adleman, L.A. shows illustrated RSA method in " A method for obtaining digitalsignatures and public-key cryptosystems ".As everyone knows, the each side of publicly-owned key cryptographic system uses unique pair of secret keys.Every pair comprises a publicly-owned key and corresponding privately owned (or a maintaining secrecy) key.Although publicly-owned key is known to the public, corresponding private cipher key has only the owner just to know and visit, and the owner keeps it also to keep its confidentiality.Can not obtain private cipher key by calculating from the information or the discovery of corresponding publicly-owned key.Therefore, publicly-owned key openly can not be threatened the safety of the private cipher key that is complementary.Because never anyone can visit private cipher key except the owner, to compare with the system of sharing secret key between each side, the security of publicly-owned secret key encryption system is higher.
In publicly-owned secret key encryption system, wish that the sender that safety sends message obtains recipient's publicly-owned key and comes encrypting messages with it.After receiving encrypting messages, the recipient with his private cipher key that is complementary with it deciphering and read raw information.Needn't visit the private cipher key that is complementary, just can enabling decryption of encrypted message by calculating.
In publicly-owned key digital endorsement method, the signatory of message is applied to message by the private cipher key with him and creates his digital signature.The digital signature that produces thus to message and the private cipher key that is used for producing this digital signature all be unique.Anyone who has this message and this digital signature can both be with the authenticity of publicly-owned this digital signature of key authentication of signatory.
In a lot of publicly-owned key digital endorsement methods, also used hash function.Hash function is a kind of algorithm, when being applied to a message, produces the numeral " fingerprint " of this message with the form of " hashed value " that have regular length usually." unidirectional anti-collision " (or safety) hash function is the hash function that can obtain origination message from the hashed value of message even can find two message with same Hash value.The hash of message thereby can play the effect of identification message " fingerprint " is because if carried out any change to message, even the slightest change, also a message that obtains to have different hashed values surely.
Usually in digital signature method, use hash function in " hash and signature " mode.In order to produce digital signature by this way, the sender of message is applied to message with hash function, thereby has calculated eap-message digest or hashed value for this message.The sender is applied to this hashed value to obtain his digital signature to this message with his private cipher key then.
Can be with sender's publicly-owned key and be used for producing the authenticity of hash function check figures signature of signature and the integrality of message content.The recipient uses with this hashed value and sender's publicly-owned key then by the hashed value that recomputates this message just can verify as the proof procedure of input whether this message is to be signed by the sender really.For example, the publicly-owned key that this proof procedure can be used the sender is just accepted this message for effective as decruption key if deciphering has obtained the hashed value that recalculates of this message.If be proved to be successful, the recipient just can confirm that the sender has signed this message really and this message was not changed after it is signed.
In typical electronic paying by check method, the user provides digital signature and pays this transaction to dealer by the blocks of data to a transaction of sign.Wherein these data can identifying user, user's account No., dealer, the amount of money that will pay, exchange hour and/or the information of having bought, service or commodity.Usually, dealer sends to bank by the eCheck that he is received from the user and stores this check.
Digital signature function in the eCheck method can be by the digital certificate support.Digital certificate is the most general electronic document, it show a specific individuality hold with certificate in the corresponding private cipher key of publicly-owned key that provides.In other words, certificate is associated together a key pair with a specific side.Because certificate self is by the signature of the mechanism that trusted, digital certificate is believed that usually designated parties has the evidence that the publicly-owned key listed in the certificate and designated parties are controlled corresponding private cipher key alone really.Digital certificate shows that also the litigant is authorized to sign eCheck or carries out other specified activities.
After having checked the digital signature on the eCheck, bank can deposit the suitable amount of money in for dealer, and deducts the suitable amount of money from the user.Bank can also collect tranaction costs or other expense arbitrarily.
Electronic fare payment system especially in specific small amount payment system, is faced with a lot of challenges.The basic problem of small amount payment is the disposal cost of bank to small amount payment.Usually, the expense of bank's processing small amount payment transaction is doubly a lot of greater than the value of small amount payment self.For example, handle credit card trade about 25 minutes of cost usually, and typical small amount payment may only be worth 1 fen even still less.Thereby need special efficient so that the payment small amount payment; Otherwise the cost of payments mechanism can substantially exceed the value of payment.
Small amount payment scheme thereby attempt by a lot of small amount payments are merged into still less but bigger payment reduces the disposal cost of bank.There are a lot of cooperation policy to use.Some small amount payment scheme has session-level to merge: all payments between user during given " session " and dealer all are merged into bigger payment.Another strategy is that the overall situation merges: cross over all user/dealer and be combined payment.Overall situation merging can provide greater flexibility and bigger expense to save.
Existing multiple small amount payment scheme can find summary, in the literature for example at PeterWayner, in Academic Press 1996 " Digital Cash:Commerce on the Net ".The small amount payment scheme that it is now know that comprises and (is published in Fourth Cambridge Workshop on Security Protocols at Ronald L.Rivest and Adishamir, explanation among " the PayWord and MicroMint:Two simplemicropayment schemes " of SpringerVerlag Apr.1996) payment word (PayWord) and (RonaldL.Rivest is at Proceedings of FinanCial Cryptography 97, vol.1318 ofLecture Notes in Computer SCience.pp.307-314 illustrates among the Springer 1997) " electronic lottery scheme " (electronic lottery scheme).Other known small amount payment scheme includes but not limited to " Millicent " of manasse etc., " MicroMint " of Rivest and Shamir, " NetCard " of Anderson, " PayTree " of Jutla and Yung, " MicroiKP " of Hauser etc., the probability polling scheme of Jarecki and Odlyzko (probabilistic polling scheme), Wheeler is to " using the transaction of bets ", the similar justice of carrying of Pedersen, and Lipton and Ostrovsky are to the relevant justice of carrying of the small amount payment by effective coin-upset.Jarecki/Odlyzko probability polling scheme is at U.S. Patent number 5,999,919, is entitled as in " EffiCient Micropayment System " openly, and is distributed to Stanislaw Jarecki and Andrew M.Odlyzko on Dec 7th, 1999.
PayWord is based on the small amount payment system of publicly-owned key digital signature scheme and one-way hash function.In the PayWord system, the user receives a digital certificate from bank, and this certificate granting user produces the hashed value chain, or " payment word " (payword) w iThese payment words can be brought back in the mode of money from bank by dealer.I payment word passes through relational expression: w i=h (w I+1) relevant with i+1 payment word, wherein h is an one-way hash function.Thereby can not be from h (w by calculating I+1) acquisition w I+1By at w I+1Last operation hash function, dealer can verify i+1 payment word w with i payment word I+1In the PayWord scheme, the user calculates a hashed value chain, w 0, w 1..., w n, and send to dealer by the digital value with root w0 and submit whole chain to.After this, the user is by disclosing payment word (w successively continuously 0, w 1..., w n) and carry out each successful payment to dealer.By moving hash function on each the continuous value in this chain to check whether it is hashed to the previous value of paying in the word chain, and dealer can verify each the continuous value in this chain.
PayWord allows dealer to merge buyer's payment easily.After having carried out k small amount payment, can constitute an enough big wholesale payment if dealer's sensation combines this k small amount payment with them, dealer can once deposit k branch (the perhaps suitable pecuniary unit of every small amount payment of other expression) in to bank.Supplier is only to two values of bank statement w k, and w 0User's signature.The checking w of bank 0User's signature, and on wk, repeat hash function k time to verify this operation generation w really 0After checking, bank pays the k branch to supplier's account, and collects the k branch from user's account, collects other tranaction costs according to the judgement of oneself then.
PayWord is limited by this shortcoming of small amount payment that dealer can not merge different user.This is that each user must set up his hashed value chain with dealer, and can not merge different hashed value chains because in PayWord.A lot of other small amount payment suggestions as Millicent, have also run into this and can not cross over the problem that different users/dealer merges small amount payment.That is to say that PayWord only provides the merging of session level, rather than the overall situation merges.
The electronic lottery method of Rivest provides another kind of merging small amount payment to reduce the method for transaction cost.This method is based on the selection ratio of each small amount payment or select probability (0<s<1): average, have only a selected actual delivery of carrying out in every 1/s small amount payment.Selection ratio s is known, predictable and fixing.For every the small amount payment that offers dealer, dealer at first verifies the root w of PayWord chain 0On user's signature and the hashed value w that provided of checking kCarried out repeatedly whether producing w after k hash 0If dealer just accepts the small amount payment from the user.Dealer then with the user by predetermined interaction protocol so that determine the whether selected bank that deposits in of this small amount payment.The check of not choosing can not be deposited in, thereby is nugatory to dealer; Therefore abandoned by dealer.Have only (passing through interaction protocol) selected small amount payment just can really be offered bank to receive payment by dealer.Like this, bank needn't handle each small amount payment, but on average only handles one in 1/s small amount payment.Greatly reduce the processing cost of bank thus.In order to make this process to dealer's justice, for every small amount payment of choosing, the payment that dealer obtains all than the big 1/s of small amount payment volume of initial appointment doubly.In other words, bank is that the face amount of this small amount payment is amplified the number of 1/s after doubly to dealer payment.
Except advantage, the problem that the electronic lottery method runs into is that user and dealer are necessary for every small amount payment alternately so that determine whether to select a specific small amount payment to store.This requirement greatly reduces the speed of electronic fare payment system, makes that in some cases this scheme is unrealistic.
Because the reason of front needs a kind of noninteractive Petty paying method and system, it is minimum so that bank's processing cost is reduced to that it can carry out overall situation merging to small amount payment, but its does not need the mutual of user-dealer simultaneously in the small amount payment selection course.
In addition, wish time restriction is incorporated in the small amount payment system.For example, comprise that in payment system it is favourable that requirement dealer deposits any in-clearing (promptly suitably being chosen the small amount payment of storing) in so that receive payment from bank in the rational time period in bank.Like this, just can not cross and lately collect the charges, promptly when the opportunity cost of transaction is not in the budget the user, just collect to the user to the user.Whether such restriction is returned the consumer and has been brought extra stimulation accurate with the temporal information on the checking check C, the security that has improved system thus.
Except the poor efficiency of being brought alternately by user-dealer in the selection course, another problem of probability small amount payment scheme inherence is the risk that exceeds his actual cost to the expense that the user collects.User in the probability small amount payment scheme must deal with when not too being in luck in some cases him may have to pay the expense (though probability is not high) of Duoing than his actual cost.This situation is more rare, reduces the quantity of carrying out small amount payment greatly but this rare situation relative influences meeting.In addition, the exceed the quata probability (though very little) collected can constitute strong the obstruction to accepting extensively of this scheme.This is because domestic consumer is unaccustomed to managing risk usually.
Because the reason of front, need a kind of Petty paying method and system not only bank's processing cost to be reduced to and minimumly can also guarantee that the user is collected the expense above his actual cost never.
At last, attempt to improve the small amount payment system of their efficient and only just ask bank to take action usually, but these payments have only constituted the sub-fraction of payment amount usually at those checks of being selected to pay by dealer.But this payment system does not provide any dirigibility or the control of paying on the selection course to bank.This control helps the bank management risk.
Therefore wish to have a kind of small amount payment scheme not only to reduce and transfer to bank or dealer, also provide dirigibility or control on the payment selection course to bank from the user to the mutual needs of user-dealer in the selection course and with the risk of excessive payment.
Summary of the invention
The present invention relates to the probability payment scheme, they allow user U (or other payer, after this be called " U " or " user ") to set up payment at least one transaction T to dealer's (or other payee, after this be called " M " or " dealer ").Usually, the value T of T vVery low, but the distinctive scheme of the present invention is applicable to the T of arbitrary value vThe distinctive small amount payment scheme of the present invention will be used to handle this small amount payment, and that essential cost reduces to is minimum, has improved the efficient of system thus greatly.A plurality of extra advantages also are provided, will have described below.
In the first embodiment of the present invention, a kind of small amount payment agreement is provided, it allows dealer needn't just can determine immediately whether this transaction should selectedly pay with user interactions after receiving check at once.Unlike the probability small amount payment scheme of prior art, the small amount payment agreement among this embodiment does not need to pay to be determined to be deferred to mutual selection agreement and takes place between dealer and user.
In the second embodiment of the present invention, small amount payment scheme of the present invention has been incorporated into time restriction in the system and with particular form and has used them.These time restrictions require to pay so that this check is selected providing information relevant with time of concluding the business and/or date and the temporal information on the check to satisfy preassigned on the check.
In the third embodiment of the present invention, provide selectivity to deposit agreement in, it has reduced the expense that the user collected and has exceeded any risk of actual cost.
At last, agreement is selected in the distinctive delay of the fourth embodiment of the present invention, and it provides control and the dirigibility on the payment process to bank's (or other third party or procurator, after this be called " bank ").
In the small amount payment scheme according to first embodiment of the invention, user U uses the record that relates to the T that concludes the business so that produce the serial data C relevant with T.C creates the eCheck that the digital signature of T is signed by the privacy key that uses the user.The user makes dealer receive check C.After receiving C, dealer associates C and the complete uncertain data item V of user.Dealer can use has only security information SI that dealer knows so that V and C are associated.For example, V can be the digital signature of dealer to C, by SIG M(C) expression, and by the secret signature key generation of dealer with dealer in the publicly-owned key digital signature scheme.
Dealer determines then whether V satisfies attribute P.In a preferred form, attribute P can be relevant with the selected probability of paying of given check C (0<s<1).If dealer determines the data item V that obtains from eCheck C and does not satisfy attribute P that dealer just simply abandons check C, and bank can't see check C forever.If specified data item V (for example, the SIG of dealer M(C)) satisfy attribute P, dealer just allows bank receive to allow bank can verify also whether V satisfies the information I of P.For example, I can be the publicly-owned key that (perhaps can comprise) dealer is used for digital signature scheme, and the private cipher key that is used for creating V with dealer is corresponding.After receiving I, bank sets about individual authentication V and whether satisfies attribute P.If bank confirms that in fact V satisfies attribute P, bank just allows dealer or the four directions except that dealer, user or bank receive amount of money A so.Amount of money A is usually greater than T v, and in one form can with T vRelevant with the product of the inverse of probability s.Amount of money A can be by A=[T v *1/s] provide.
Comprise the communication channel that is used for transmission electronic data between first party (user or other side), second party (dealer or other side), third party (bank or other side) and four directions according to the first embodiment of the present invention for the system that transaction T sets up payment.This system comprises can be by the first party operation to import and to store from the device of the serial data C of T acquisition.This system also comprises the device that can be used to import the relevant and complete uncertain data item V of first party of at least a portion with storage and C by second party operation and response C.This system also comprises by second party selectivity operation when V satisfies P allows the third party can verify whether V satisfies the device of the information of P so that the third party receives.This system also comprises and can be operated so that the four directions receives the device of amount of money A by third party's selectivity when V satisfies P.
In the second embodiment of the present invention, time restriction has been introduced in the above-mentioned nonreciprocal small amount payment agreement.In this embodiment, the user can set up payment to dealer for the transaction T that is partly characterized by time t.Usually, time t represent to conclude the business when taking place in the daytime and/or the date.The user creates the serial data C relevant with T.In this embodiment, C must comprise the information relevant with the time t of T.The user causes that dealer receives C or comprises that part of of the information that relates to t at least among the C.Dealer is associated C (or part of the C that receives) with the complete uncertain data item V of user.Data item V is the function of the temporal information on the C, for example (creates) the dealer's digital signature that comprises at least a portion of temporal information among the C with the private privacy key of dealer.V can also be the digital signature of G (C), wherein the algorithm of the function of G (C) expression C or use C.For example, G (C) can be time/date and time information of returning C (for example, identical time/date and time information of C, the perhaps time/date and time information after " on round "), perhaps time/date and time information of the transaction T that relates to of C.Dealer determines then whether V satisfies attribute P.If V satisfies P, dealer allows bank's reception make bank can verify whether V satisfies the attribute information I of P (can comprise the corresponding publicly-owned key of private cipher key that is used for creating V with dealer) at time t '.
In the second embodiment of the present invention, in order to allow bank make the four directions receive amount of money A, t '-t must be less than preset time at interval.This is except requiring V to satisfy another requirement the P.In other words, bank only during the in-clearing in dealer provides time (time the when T takes place) restriction at the appointed time that is comprised ability money is deposited in the account of dealer.For example, if transaction T took place at i days, can require dealer to deposit corresponding check C in before i days or i+1 days or i+n days finish, wherein n is the integer of being scheduled to.Thereby the time restriction in the agreement requires in time to deposit in.Require in time to deposit in by guaranteeing that the user can not be crossed the collection of charges in evening and bring benefit; It also allows bank to control the risk of other form, for example from those risks of overdue check.
In the third embodiment of the present invention, provide selectivity to deposit agreement in, it determines that the user can not collected the expense that exceeds actual cost.For one or more transaction Ti (i=1 ..., in n) every, the user obtains the payment that face amount is TVi/small check Ci (may only be worth the part that bank handles the essential cost of the such transaction of Ti) according to the probability payment scheme on basis.
In the third embodiment of the present invention, each check Ci comprises one preferably since 1 progressive sequence number Si.Sequence number Si preferably represents check Ci position with respect to other check in the check sequence orderly by the time of user's acquisition.In the 3rd embodiment, user's the total payoff amount of money is guaranteed never the total charge greater than the actual cost of user, for simplicity by TV AggExpression.Usually, when the user signs his i check, total charge TV AggThe total charge of check by him provides, i.e. TV Agg=TV 1+ TV 2+ ... + TV i
For example, if C iBe first check of dealing with of being found, D iBe the corresponding payment amount of money, the distinctive small amount payment scheme of the third embodiment of the present invention is forced D iBe not more than TV Agg=TV 1+ TV 2+ ... + TV iThis assurance realizes by a kind of agreement, the sequence number of its check of receiving from dealer of bank tracks in this agreement.Before collecting the charges to the user, bank must determine the sequence number Smax on last check in orderly check sequence, pay according to it.In an illustrative example, All Activity is worth and all equals TV.In this case, if C iBe next in-clearing, bank is just to the user D that charges i=(S i-S Max) * TV.Amount of money D iThereby only depend on the quantity of the check that the user has signed after paying last time, and total toll amount is guaranteed to be not more than S i *TV.
At last, in the fourth embodiment of the present invention, provide to postpone to select agreement, it provides control and the dirigibility bigger to payment process to bank.As previous embodiments of the present invention, the user is for being worth TV iOne or more transaction in each transaction obtain a serial data or " check " C i, and make dealer receive C i
In the fourth embodiment of the present invention, the check C that dealer has received him uniquely iBe divided into m tabulation L k, k=1 wherein ..., m.Each L that tabulates kComprise serial data C k 1... C k Lk, altogether middle l kRepresent given tabulation L kThe total quantity of middle check.Thereby, if n is the total quantity of check in all m the tabulations, then ∑ m k= 1l k=n.
Dealer is by being each L kCalculate and submit CM to kAnd m tabulation of submission L k(k=1 ..., m).Submit CM to kHashed value H (L preferably k), wherein H is an one-way hash function.Dealer receives bank and submits CM to k(k=1 ..., m).
Receiving CM k(k=1 ..., m) after, bank is by selecting one or more integer index i 1, i 2..., i rRealize the distinctive delay selection of fourth embodiment of the present invention agreement.The value of r is any, depends on bank.Bank makes dealer receive selected index i 1, i 2..., i r
Receiving selected index i 1, i 2..., i rAfterwards, dealer reclaims CM I1, CM I2..., CM Ir, thus to having disclosed L for third party (as bank) I1..., L IrThe 5th side (can be bank or the entity except that bank) receives four directions (can be the entity outside dealer or the dealer) and deposits amount of money CR in.The 5th side makes the user by amount deducted D.
Preferably, deposit amount of money CR and V in kRelevant, and V kExpression particular list L kIn the total value of all checks of comprising, i.e. V k=TV k 1+ ... + TV k LkDepositing amount of money CR in can be provided by the total value of all checks that comprise in all m the tabulations, i.e. CR=V 1+ ... + V k+ ... + V m=∑ m K=1V kIn this case, as the submission CM that provides tabulation iThe time, to value V iSubmission may be provided for bank; From tabulation, select some all values V afterwards by the index of specifying them in bank so iAll be recovered.
Perhaps, depositing amount of money CR in can be relevant with the total value of all checks of comprising in the tabulation that those index are chosen by bank.This deposit in amount of money CR can by an amplification factor (as m/r, wherein integer m with mentioned above r is) relevant with the total value of just having mentioned so that the fact of the r/m part of check is only seen by reflection bank.
Can obtain corresponding amount deducted D with one of multiple mode; The selection of obtaining the method for D can be relevant with the method for calculating CR or irrelevant.For example, value D can be chosen and be transmitted to the total value V of all checks that comprise in the tabulation of dealer with those index by bank I1+ V I2+ ... + V IrRelevant; For example this and value can be amplified according to a factor (as m/r).Perhaps, can be from depositing the amount of money CR value of obtaining D in; For example, it can equal to deposit in amount of money CR.Perhaps, the sequence number acquisition value D on the check that can from the tabulation of selecting in the mode that illustrates previously, comprise.In great majority are used, a plurality of different users will be arranged, in any case and all will depend on those checks of this user's signature in the selected tabulation to the amount of money that each user collects.Calculate the amount deducted D of each user U UMethod for optimizing be to use the sequence number of the check of being signed based on user U.
Description of drawings
Can understand the present invention more up hill and dale with reference to following detailed description in conjunction with the accompanying drawings, in the accompanying drawings:
Fig. 1 provides general survey according to the small amount payment method of commerce of the first embodiment of the present invention with the form of schematic flow diagram;
Fig. 2 provides a schematic configuration diagram, shows according to the first embodiment of the present invention to be used to transaction to set up the assembly of the small amount payment system of payment;
Fig. 3 provides general survey according to the small amount payment method of commerce of the second embodiment of the present invention with the process flow diagram form;
Fig. 4 provides general survey according to the small amount payment method of commerce of the third embodiment of the present invention with the process flow diagram form, and this method comprises that selectivity deposits agreement in, and it has eliminated the risk that the amount of money of collecting to the user exceeds actual cost;
Fig. 5 provides a schematic configuration diagram, shows according to the third embodiment of the present invention to be used to transaction to set up the assembly of the small amount payment system of payment;
Fig. 6 provides general survey according to the small amount payment method of commerce of the fourth embodiment of the present invention with the process flow diagram form;
Fig. 7 provides a schematic configuration diagram, shows according to the fourth embodiment of the present invention to be used to transaction to set up the assembly of the small amount payment system of payment.
Embodiment
In the present invention, the efficient of raising small amount payment scheme and the method and system of dirigibility are provided.
In the present invention, small amount payment system relates to first party, second party and third party at least.In a kind of form of the present invention, first party can be represented the payer, for example buyer or user.Second party can be represented the payee, for example the dealer of commodity or service providers.The third party can represent commission merchant or bank.Also may relate to more in many ways.In some cases, single entity may be played the part of a more than side's role: for example, and second party and third-party role.For example wish that the user bank to him carries out the situation of small amount payment.Perhaps, single entity can be played the part of the role in second party and four directions.
For the purpose of quoting conveniently, we use term " user " acute pyogenic infection of finger tip " first party " respectively hereinafter, and with term " dealer " acute pyogenic infection of finger tip second party, " bank " acts on behalf of the third party with term.But, will be understood that first party needn't be the user, second party also needn't be a dealer, the third party is not necessarily commission merchant or bank also.
At last, in according to small amount payment scheme of the present invention, can also relate to more in many ways.For example, the third party can make four directions (may be corresponding with second party) receive payment.For example, first party can be the payment devices by the driver of charge station, and second party is the equipment of charge station, and the third party is driver's a bank, and the four directions is the entity of charge.In this case, the driver can provide small amount payment to charge station's equipment, if felicity condition can be paid to collection entity by driver's bank.Again such as, can relate to the 5th side: the third party can make the 5th direction four directions or second party pay.For example, describe the example of front in detail, the third party can be the manufacturer or the control of payment devices or the entity of hiring out this payment devices, and the 5th can be to be driver's bank, and it finally pays the four directions.The 5th identical side or third party or another the 6th can be collected the charges to first party or the opposing party so that the reality representative is own.
I. nonreciprocal small amount payment scheme
In the first embodiment of the present invention, the small amount payment scheme that provides eliminated dealer and user interactions so that determine whether select the needs of a specific payment.In this embodiment, when the user wished to pay, the user created an electronic document or " check ", and made dealer receive this check.In this embodiment, dealer can determine whether immediately after receiving check that this check should select to offer bank, so that can take place the suitable deduction and suitably the depositing in of the account of dealer of user account.Dealer needn't can carry out such judgement with user interactions.Unlike electronic lottery payment scheme of the prior art, do not need that this judgement is deferred to mutual selection agreement and between user and dealer, take place.Improved the efficient of small amount payment process like this, greatly.
In the first embodiment of the present invention, the user is usually because a transaction T or a series of such transaction T and need be to dealer's defrayment.Transaction is usually by transaction value T vCharacterize T vMay be very low, for example one minute even part are divided.If bank will be every independent transaction processing payment, therefore bank will bear the processing cost more much bigger than transaction value self.
Fig. 1 provides general survey according to the small amount payment method of commerce of the first embodiment of the present invention with the exemplary flow diagram form.When the user wished to pay in according to payment scheme of the present invention, the user created a serial data or " eCheck " C, and C is sent to dealer, perhaps made dealer receive C.Check C normally obtains from the record T that concludes the business.For example, can be by using user's privacy key to be transaction creation digital signature SIG U(T) create check C; This signature by the checking user of dealer.User's signature SIG U(T) can comprise or follow the enough information relevant can carry out to guarantee this checking with T.The user can also make dealer receive or introduce the digital certificate of the digital signature that makes it possible to verify him-for example in C, specifies the digital certificate of digital signature of the U of the digital signature that is used for verifying U.Selected probability of paying of each check C or selection ratio are s (0<s<1).
Dealer is associated the actual uncertain data item V who produces with the private cipher key of dealer of check C and user, for example the digital signature of C.Dealer determines then whether V satisfies specific attribute P.In a preferred embodiment of the invention, the V probability that satisfies P equals selection ratio s.If dealer finds V and satisfy P really, dealer just makes bank receive to make bank can verify also whether V satisfies the information I of P.Otherwise dealer abandons check C.After receiving I, if user's signature is arranged on the check C, bank can verify this signature, if signature does not just abandon this check by checking.Bank can carry out other test, for example with the user in those relevant tests of the account's of bank state, for example determine whether the account has well-deserved reputation (for example, whether having cancelled associated user's digital signature); If not by such test, dishonor check is selected by bank.Bank verifies then whether V satisfies P really, and only bank makes dealer receive amount of money summation when V satisfies P.
Each element that now relates to distinctive small amount payment scheme among the present invention in more detail causes that in the present invention " transaction " of payment covered the large-scale possibility situation that the user must pay to dealer.For example, the user can pay to buy service or information or physics commodity to dealer.Perhaps, the user can be just pays and does not carry out any purchase to dealer, for example in order to donate to dealer.The example of typical transaction T includes but not limited to webpage of webpage of user (independent transaction of the Web page representative of each visit) accessing information site, and perhaps audio/video material is transferred to the user one minute one minute (per minute transmission audio/video material represent an independent transaction T).
The record T of transaction can be the serial data that comprises the explanation details of transaction.For example, record T can specify one or more in following: the amount of money that pay; The explanation of the commodity of buying; The identity of user and/or dealer; The publicly-owned key of user and/or dealer; The digital certificate of user and/or dealer; The date and time of transaction; Any relevant third-party sign, for example bank and financial service supplier, and the required extraneous information of identification user account.Transaction represents according to the record T of expression transaction that hereinafter promptly term " transaction T " will be used to refer to the record T of representative transaction.
The serial data C ordinary representation eCheck that the user obtains (be also referred to as payment sometimes and submit book to), it comprises that the user is to being the submission of transaction payment specified amount.Usually, the nominal face amount of check C is the transaction value T of transaction T vAlso can comprise out of Memory among the check C.For example, C can comprise transaction T, or at least a portion of transaction T, or the indication of transaction T.In a preferred embodiment of the invention, at least a portion that serial data or electronics are propped up mark C or C is verified.As be known in the art such, checking can be carried out with several different methods.For example, can verify check C by digital signature or by Message Authentication Code or by in the session of verifying, sending.This verification method wishes to carry out to be particularly useful in the anonymous environment of buying the user.Any other checking well known in the prior art also within the scope of the invention.
The user when creating check C, can use the user the people know but the ignorant private information of dealer.Usually, for the people who does not know this security information, can not create check C by calculating.In a preferred embodiment of the invention, the process of creating check C relates to the user and create digital signature in publicly-owned key digital signature system, and the private information that the user is used for creating C is its secret signature key in this system.In this embodiment, serial data C comprises user's digital signature to transaction T in this system, by SIG U(T) expression.SIG U(T) be that the user creates with his privacy key.The user can create his digital signature with any one of digital signature scheme well known in the prior art.Especially, user's digital signature scheme can include but not limited to following scheme: the determinacy signature scheme; The stochastic signature scheme; The signature scheme that Shamir proposes based on identity; The on-line signature scheme; The off-line signature scheme; Specific authentication person's scheme.Serial data C can also comprise out of Memory, for example with the relevant information of transaction T.
After having created eCheck C, the user makes dealer receive C.The user makes dealer receive C multiple mode.The user can send to dealer with check C simply.Perhaps, the user can ask the opposing party that check C is sent to dealer.The user can make dealer receive or visit the different piece of check C in the different time.For example, before transaction T took place, the user can make dealer shift to an earlier date the publicly-owned key of calling party.Subsequently, the number signature that the user can make dealer receive or visit C in the time after a while, or the part of C, or a quantity relevant with T (or its part).
Dealer can determine whether check C can accept, and promptly whether check C is signed by this user, and whether the content of check C is truly complete really.In order to finish this point, dealer can check the distinctive publicly-owned authorization information of user of creating check C.For example, the proprietary publicly-owned authorization information of this user can be to create the corresponding publicly-owned key of private cipher key that C uses with the user, and the proof user that perhaps more generally says so is authorized to carry out the digital certificate that small amount payment thereby his small amount payment can be cashed.Identical digital certificate can be used for two purposes, shows that promptly the user is authorized to carry out small amount payment and given publicly-owned key and should be used to verify in the small amount payment check his digital signature.Dealer can use user's publicly-owned key to verify whether the digital signature on the check C is credible, promptly whether created by the user really.If the user has used the digital signature scheme based on identity, this publicly-owned authorization information can comprise the explanation of user identity.The proprietary publicly-owned authorization information of this user can directly be obtained from the user by dealer.Perhaps, this publicly-owned authorization information can be obtained from digital signature by dealer, perhaps from obtaining, perhaps from the information that the user sends with check C or as the part of check C, obtain with subscriber-related open information available (for example Fa Bu publicly-owned key handbook).Should " the proprietary publicly-owned authorization information of user " needn't can use the general public; It only needs can use dealer and bank.
The authenticity of the proprietary publicly-owned authorization information of user that dealer can take steps to check that he obtains.These steps include but not limited to: verify digital signature or other authorization information relevant with the proprietary publicly-owned authorization information of user; Signature on the checking digital certificate; The expiration date of check dight certificate; And whether definite digital certificate is cancelled.Dealer can also confirm that the user is authorized to sign eCheck C really from digital certificate; This may relate to the further inspection to the amount of money among the check C, account number, sequence number or out of Memory.
Dealer is associated together each check C and the complete uncertain data item V of user that he receives.For example, the user can not predicted data item V be that promptly the user need carry out the value that unpractical calculated amount just can obtain data item V because the user can not obtain V from C by calculating fully.In an embodiment of the present invention, have only with dealer and know but the ignorant security information SI of user could obtain data item V from C.In one embodiment, security information SI can be the privacy key of dealer in publicly-owned key digital signature scheme.
In one form, dealer can be the digital signature of dealer to C with it data item V that is associated with C, for simplicity by SIG M(C) expression is created with the private cipher key in the publicly-owned key digital signature scheme by dealer.The used digital signature scheme of dealer needn't be necessarily to be used for creating the signature scheme of C identical with the user, and be likely the signature scheme of the signature scheme that is different from the user.In this case, if C equals or comprises SIG U(T), data item V can be by V=SIG so M(C) provide.Therefore, SIG M(C) be uncertain amount to the user, because the user must not know the privately owned signature password of dealer.Therefore, even the user can control check C with any way that he wants, for example by the specific transaction T of selection, but with regard to related user, SIG M(C) come down to " at random ".In another form of the present invention, V can be MAC (Message Authentication Code) value, by dealer with privately owned MAC cipher key calculation; This MAC key can be known by dealer and bank but can not allow the user as can be known.In forms more of the present invention, the dealer signature that can analyze C is with the signature that comprises dealer or a part of the having only C (date or time among the C for example, a random train that comprises among the C, the perhaps sequence number that comprises among the C) MAC or the MAC of a quantity relevant with C.
The step of computational data item V needn't necessarily be followed after receiving the step of C from the user in time.For example, the data item V dealer's digital signature of date and time information of T that can relate to conclude the business.Dealer may calculate this digital signature before receiving C.
In current embodiment, which should be paid by " selection " in the check that dealer uses a selection course to determine that it has received.Dealer only will " choose " check to send to bank, and not send any not selected check to bank.Concerning the user, can not when creating check, the user determine whether this check will be chosen by dealer by calculating.In fact, the user may know even may not know that dealer uses a selection course and an a part of check with this user to send to bank, although the user finally knows such selection course probably.
As the part of this selection course, dealer determines whether the data item V relevant with C satisfies attribute P.In a preferred embodiment of the invention, determine whether to select check C to pay and depend on whether V satisfies P.
In a preferred form, the used selection course of dealer makes it possible to each check of choosing is estimated its selected selection ratio of paying or " probability ".Especially, estimate that this selection course may be to select a part fixing in all checks.Like this, attribute P can be relevant with constant s, 0<s<1, and s is the selected probability that carries out actual delivery of specific small amount payment, and this probability be fix with known.Perhaps, V can satisfy P with a probability, and this probability can obtain from a serial data C or its part, perhaps obtains from a record T or its part, and perhaps the combination from serial data C and record T obtains.In other words, the ratio of selected check depends on the parameter that the user provides among the check C.For example, it may depend on the amount of money of check.Perhaps, value s can specify user's publicly-owned key bindings in user's customer digital certificate.Perhaps, can guarantee that attribute P is true to the fixed part of the value of data item V.Perhaps, can guarantee that attribute P is true to the specific part F of V, part F can obtain from a serial data C or its part, perhaps obtains from a record T or its part, perhaps obtains with the combination of record T from serial data C.Perhaps, dealer can obtain to be used for determining the information of s and/or attribute P from bank.
Can shift to an earlier date specified attribute P, promptly before transaction T takes place and obtains check C from T.The example of such attribute P has " last 10 bits of V are corresponding to a number less than x, and x is a constant ".Perhaps, can in transaction T, check C or their combination, specify or obtain attribute P from it.The example of such attribute P has " last 10 pairing numbers of bit of V are less than last 10 pairing numbers of bit of C ".The mode of determining selection ratio s may relate to conspicuous their combination of variant of said method or those skilled in the art.
In one form, dealer can use the security information SI that has only dealer to know, to determine whether V satisfies P.This security information S can comprise private cipher key or the dealer's private cipher key in the publicly-owned secret key encryption system or the dealer's private cipher key in the publicly-owned key digital encipherment scheme of dealer in the publicly-owned key digital signature scheme.Preferably, the Digital Signature Algorithm of dealer can be deterministic.
In an embodiment of the present invention, attribute P adopts following form:
F(V)=F(SIG M(C))<s (1)
F () represents any Bit String as the publicly-owned function of importing and return the number between 0 and 1, s is less than 1 constant and representative (or definite at least) small amount payment Scheme Selection ratio, the selected probability of paying of promptly given check C greater than 0.For example, F can add the front that decimal of zero-sum operates input string V, and the result is expressed as binary number.In this example, if V is input string " 011 ", F will operate V and produce " 0.011 ", and it will be interpreted as decimal fraction 3/8.Because SIG as mentioned above M(C) come down to (uncertain) number at random, so F (SIG M(C)) also be between 0 and 1 at random and sufficiently long number.Therefore, F (SIG M(C)) less than ratio s, so attribute P is satisfied, and in fact the user makes dealer receive s part among all check C.In another embodiment, function F is earlier used a hash function or other determinacy function to its input, then by add in front as previously mentioned 0 and radix point continue, and the result is expressed as binary number.In another embodiment, attribute P can adopt following form:
F(V)=F(SIG M(G(C)))<s (1’)
Here G () expression is applied on the check to produce the function of a serial data.For example, function G can only be returned the sequence number of check C.
Should emphasize that dealer does not need whether should selectedly to pay with definite check with user interactions.If determine attribute P according to equation (1), see easily dealer can verify immediately whether check C should pay: dealer can obtain F (SIG easily with his privately owned signature key M(C)), F (SIG and relatively MAnd selection ratio s (C)).Key is F (SIG M(C)) be uncertain fully to the user; It also should be an enough accurate number.For in fact rational selection percentage (for example 1/128 or 1/1024), 10 bit long are to SIG M(C) and F (SIG M(C)) just enough.And typical digital signature is hundreds of bit long, has therefore seemed too much.
In this embodiment of the present invention, in case the specified data item V (SIG for example of dealer oneself M(C) satisfy attribute P, dealer just makes the visit information I of bank, and information I makes bank can verify also whether V satisfies P.In example embodiment of the present invention, information I can comprise with dealer and is used for creating SIG MThe publicly-owned key of private cipher key correspondence (C), perhaps dealer's certificate of that publicly-owned key.Information I can also comprise dealer's digital signature of C, i.e. V or SIG M(C).Dealer even can before generating C, the part of information I be had access to by bank.For example, dealer may give bank its certificate in the past, and bank may preserve this certificate.If dealer determines not satisfy attribute P from the data item V that eCheck C obtains, dealer just abandons C simply.C will not see in bank.But,, pay the commodity that dealer will normally provide this payment to buy to the user if check is correctly created even without selected.Those checks C that has only (relevant with C) V to satisfy attribute P is selected to pay by dealer, and is forwarded to bank, and the part of the small amount payment that bank thereby only be requested carries out the user is taken action.
Because a part of s in the check of being created and being received by dealer by the user has only seen in bank, need carry out the adjusting of payment was solved with (at least approx) value of " losing " (unchecked) check.In carrying out a kind of method of this adjusting, be transmitted to 1/s " the wholesale payment " doubly of every check that bank deposits in appointment face amount Tv that to produce its value be this check C.Here s is variable, and the s that is suitable for is and the relevant s of process that is used for selecting C.For example, if s is 1/1000, transaction value Tv is 1 minute, in so average 1000 small amount payments 1 selected paying is arranged, and has 999 to be dropped in 1000 small amount payments.Like this, on average only can introduce the single disposal cost, cause a large amount of savings of disposal cost 1000 small amount payments.
Whether really bank uses information I (for example publicly-owned key of dealer in the digital signature scheme of dealer) to each check verification check C of receiving from dealer selected paying.In other words, to each the check C that receives from dealer, sell and verify also with information I whether V satisfies attribute P.If bank confirms V and satisfies attribute P really, bank just allow dealer or except that dealer, user or bank the four directions of appointment receive the corresponding amount of money summation of paying with this wholesale of value.Bank will pay the bill usually and take out the account in the four directions of the account that deposits dealer in or some appointments from user's account.
Bank under given conditions can be according to the judgement of oneself and/or according to its strategy refusal to pay payment, for example when the user account debt, carried out certain when swindling when user's certificate is cancelled or when dealer or user are under a cloud.For example, bank can take steps to confirm whether dealer submits identical check twice to, and payment at most only is carried out once like this.Bank can refuse to pay the check of before having handled.Bank can also select to suspend and the payment of check has been deposited in enough funds among the account at him up to the user bear this check.
Distinctive small amount payment scheme may relate to the four directions in the first embodiment of the present invention, first party, second party, third party and four directions, and all four directions are all different fully here.For example, first party is the user through charge station, and second party is the equipment that is positioned at charge station, and the third party is user's a bank, and the four directions is the highway owner.Perhaps, first party is the user of download song, and second party is the supplier of song, and the third party is user's a bank, and the four directions is the song publisher.Perhaps, the third party is the bank of first party (being the user), and the four directions is the bank of second party (being dealer).Like this, for the interests of second party, second party makes user's bank pay to the bank of second party.In small amount payment scheme of the present invention, also may relate to and remove first, second, third and other side in four directions.For example, first party (user) sends to second party with check C, and second party is an equipment, and it is transmitted to the third party with data item V (if attribute P is true to V), and the third party is user's a bank.The four directions is given in user's bank (third party) payment, and the four directions is payee's a bank, and for payee's interests, the payee is the 5th side.
Payment amount depends on the nominal face amount and the selected estimated probability of paying of check of check.Being taken out the payment amount deposited in the account of dealer then from user account number, can to equal the nominal plane of check on duty with the reciprocal of the selected estimated probability of check and then add any suitable bank's disposal cost that goes to bank respectively and to collect to user and dealer.
As previously mentioned, the small amount payment scheme is very useful for the purchase that can carry out low value commodity (as network article or webpage).In the prior art, be extensive use of booking method so that the user can buy the low value commodity.For example, by the subscribe service, in fact the user has merged to a lot of following low value transaction in the single wholesale payment.But this may not be optimum concerning the user, because if the user at present to particular commodity interested but uncertain he will think maybe to need to visit following commodity, the price of Ding Gouing may be higher than the user and wants the price paid so.Therefore, supplier may lose some business, because the user may determine not order (that is, " shifting to an earlier date " carries out small amount payment), and may abandon the commodity that he wants.
Can be following by ordering and single sale links together and expands the distinctive probability small amount payment of first embodiment of the present invention scheme.Dealer can provide two options to the user: 1) allow the user (for example obtain a lot of goods order in specified time interval, order can provide in 1 year visit to all webpages of dealer to the buyer) and 2) particular commodity bought according to inventory.The user can only buy particular commodity according to the price Tv decision of being stated.The user is the probability check of Tv to dealer's payment face amount, and dealer will provide the commodity of wanting to the user.But if this probability check should be selected, this payment receives the much higher amount of money with the actual dealer that makes, for example A=Tv*1/s, s=1/1000 here when single check is selected when paying probability is 1/1000.The amount of money A that dealer receives has surpassed the price of the subscribed services of dealer.Like this, the user is rewarded free acquisition order.If the expense of ordering is higher than A, can be by rewarding the user as obtaining A at the credit side that buys the expense of ordering from dealer.
The above-mentioned method that links together with single sale of will ordering provides some extra excitations to the user.For the sake of simplicity, suppose that all commodity all have identical price (for example, 1 minute), subscription fee is 10 dollars, probability prop up par value be 1 minute but when selected paying 10 dollars of actual cost users because the selection probability of lower floor's mechanism is 1/1000.Then, the user will see that average 1000 his checks have only one to become in-clearing, and he has also freely obtained an order when 10 dollars of his actual deliveries.Therefore, the user must determine him should buy an order never in some sense, perhaps should select some commodity by inventory: the user can always go to buy by inventory, because he always or freely obtains commodity, perhaps pay these commodity but then freely obtain an order of giving as an addition.Like this, even this user had just carried out one 10 dollars payment for a long time before carrying out 1000 purchases of 1 minute, this small amount payment system always shows fairly to the user and is attractive.This process also is attractive in dealer, because otherwise he may lose the client that some never consider to buy order.If it is too much preferential that dealer feels that the user is obtaining, can also be with unit price Tv to raising a bit to comprise the apportioned charges of order.
The schematic construction that Fig. 2 provides illustrates the assembly of setting up the small amount payment system 100 of payment according to one embodiment of the present of invention for transaction T.System 100 comprises that communicator 110 allows user, dealer and bank transmission electronic data even payment between them.Electronic data comprises the serial data of representing eCheck or the word string of representing message.In one embodiment, communicator 110 can allow to visit remote server.Communicator 110 comprises modulator-demodular unit, one or more known Network Interface Units of prior art, includes but not limited to network interface unit.Communicator 110 comprises that permission transmits the bus of data, for example address bus 114 and data bus 115. between the heterogeneous networks node
System 110 comprises that also first treating apparatus 105 and second treating apparatus, 106. first and second treating apparatus can be computer systems, for example moves the digital machine of DOS or Windows operating system, and links to each other with data bus 115 with address bus 114.Treating apparatus 105 and 106 usually all comprises the memory storage 121 that is used to store data separately, is used to import the input media 122 of data and the CPU (central processing unit) (CPU) that realizes system command.Memory storage 121 comprises data storage devices such as computer memory, hard disk, CD-ROM.Input media 122 can be any input equipment well known in the prior art, for example conventional keyboard.
First treating apparatus 105 can be used to obtain, import and store the serial data C relevant with the T that concludes the business by the first party operation.Second treating apparatus 106 is associated together at least a portion of data item V and C by second party operation and response C.Second treating apparatus 106 can be used to also determine whether V satisfies attribute P.For example, can instruct so that CPU obtains and the relevant data item V of C (or part of C) for one group to the CPU of second treating apparatus 106 123 inputs, and make CPU 123 determine whether V satisfy attribute P.This is the necessary condition that must satisfy, so that carry out next step by CPU 123, i.e. the information I that order will make the third party can verify whether V satisfies P is sent to third party (bank).Can be to CPU 123 programmings when V satisfies P, to operate selectively so that information I is transferred to the third party.
System 100 also comprises device 140, is operated so that amount of money summation is accepted in the four directions by the third party when V satisfies P.Device 140 also can be a computer system, has to be programmed the CPU that with order payment is sent to four directions to move selectively when V satisfies P.
In a word, the distinctive small amount payment scheme of the first embodiment of the present invention is in a period of time that a large amount of relatively small amount payments takes place, disposal cost is reduced to minimum, eliminated mutual needs simultaneously, allow each side to pay approx simultaneously or receive correct expectation value user-dealer.
II. the small amount payment system that has comprised time restriction
In the nonreciprocal framework that in above-mentioned first embodiment, provides different restrictions can be arranged.Especially, in the second embodiment of the present invention, can introduce time restriction.As above a joint is described, and this small amount payment scheme allows dealer to deposit the check of dealing with at any time in.But, under many circumstances, represent that this check is not the just refusal that provides deposits payment in to the account of dealer a ability if concerning bank, advantageously have the temporal information of dealing with (promptly suitably selecting) check that dealer provides in the predetermined time interval when relationship trading takes place.
In the second embodiment of the present invention, provide the small amount payment scheme that permits a user to the transaction T foundation payment that partly characterizes by time t.Time and/or date when usually, time t represents to conclude the business the T generation.Fig. 3 provides general survey according to the small amount payment method of commerce of the second embodiment of the present invention with the process flow diagram form.The user obtains a serial data or eCheck C from T.In a second embodiment, the transaction T of check C or C indication must comprise with the transaction T the relevant information IN of time t.
The user makes dealer receive a part that comprises IN among the C at least.Dealer is associated the complete uncertain data item V of C and user after receiving this part of C.In this embodiment of the present invention, this complete uncertain data item V is according to the time t of T definition.For example, can create V with the dealer's private cipher key in the publicly-owned key digital signature scheme, and by SIG M(C) provide, promptly dealer is to comprising that a part of digital signature of the information that relates to t among C or the C.In one situation of back, more accurate V=SIG M(G (C)), G is the function of C here, returns the temporal information relevant with C.
Can also operation parameter s in this small amount payment scheme and function F and G determine the attribute P that V should satisfy.Regulation s, the F mode similar with G that the mode that satisfies the mode of s and function F and G and regulation attribute P can be used explanation in the joint changes.For example, check C (the perhaps transaction T of C indication) can directly stipulate the attribute P that use with the suitable value V that is associated with C.For example, function F can be determined attribute P, and P is by F (V)=F (SIG here M(C))<and s provides, and s is the number between 0 and 1, and represents the selected probability of paying of given check C in this scheme.
In the second embodiment of the present invention, the signature of dealer can only be applied to the function G of C, rather than is applied to the whole of C.That is to say that attribute P can be by F (V)=F (SIG MG (C)))<s provides.In addition, can be with one of some modes specified function G.For example, it can be fixed, or is specified by C, is perhaps specified by corresponding transaction T, or is specified by (dealer or the user's) certificate, and perhaps the out of Memory that is provided by bank is specified.
Useful especially function G can be to return the function of the temporal information IN of C.Like this, (user is uncertain fully) data item V mainly is the function of the time t of transaction T, so attribute P depends primarily on the time t of transaction T.The temporal information that attention is extracted by G can be relevant with t but needn't be conformed to t.For example, t can specify T date, hour and minute, and G can return varigrained time representation, for example, it can specify t self, but only to day (or day and hour but do not have minute), perhaps next hour after the t.In the second embodiment of the present invention, should always be interpreted into by the value G (C) of dealer signature and to comprise temporal information.
After having determined that V satisfies P (satisfying in the situation of P at V) and check and passed through other test (for example, if there is the user's signature whether true), dealer makes bank receive some or all of the information IN relevant with the time t of T at time t '.Dealer can provide the whole of C or is that part that comprises IN among the check C at least to bank.Dealer also makes bank receive to make bank can individual authentication V whether to satisfy the information I of P.Dealer can make bank at V even just do not received the part of I before calculating.After receiving the appropriate section of IN, bank can determine that whether t ' (being the time that dealer offers check bank) is enough near t.If the over and done with time | t '-t| is greater than predetermined numerical value, and bank can abandon C.If satisfy other condition, for example the user's signature on the C can not be checked or user's account has that debt or user and/or dealer are under a cloud a swindle, and bank can also be at random or according to its strategy refusal or delay in payment.
Bank uses I to verify that independently V satisfies P.Only when all pass through, bank just makes dealer (or other four directions) reception amount of money summation when V satisfies P and all other tests (for example, test | t '-t| is greater than predetermined time interval) really.Preset time at interval can be one day, a week even several hrs.
For example, if check C indication transaction T took place at i days, small amount payment system can require dealer before i days finish or before finishing in i+1 days or before finishing in i+n days check to be deposited in, and n is the expression fate here, and dealer deposits check in and conforms with commercial reason within n days.Such requirement has brought extra excitation to verify the time precision of the check that he receives to dealer, and this provides extra security interests for dealer.
In one form, dealer is received comprise among the C that part of time of IN if t1 represents the user, if time t1 not in the preset time restriction dealer can refuse to carry out." commodity " of being asked (commodity, service or information) can be refused to provide by dealer in this case.In time deposit in also to have guaranteed can not cross and lately collect the charges, promptly when possible expense is not in the budget the user to the user.
Talk G (C) in more detail, G (C) returns the date of transaction T of date of C and/or time or C indication and/or the function of time.For example, if such date is 2001.01.01, V can be by SIG so M(2001.01.01) constitute.If never signed such date before the dealer, this is uncertain fully concerning the user for this.Like this, the V attribute P that must satisfy comprises SIG M(2001.01.01) and F (SIG M(2001.01.01)) part, some functions of C or the predetermined constant with C, C compares.For example, such attribute P can be expressed as: SIG MWhether selected m bit substring (2001.01.01) mates the selected m bit substring of C.
Should notice that the above-mentioned method that V and C are associated has multiple advantage.Especially, dealer can in addition before the user obtains C, calculate SIG in January 1 calendar year 2001 M(2001.01.01).Therefore, in case receive C that day, dealer can verify fasterly whether P satisfies required attribute P.For example, if P by F (SIG M(2001.01.01))<and the s formation, to the s of some fixed numbers, P only limits certainly in V so, rather than check.Thereby dealer can determine whether P once set up and all set up in the past to all dates even in January 1 calendar year 2001.If P sets up, dealer can all be forwarded to all checks that he received in that day bank and pays and do not carry out any further checking so.If P is false, he will abandon all checks that he receives in that day and not carry out any further checking.Like this, the quantity of the signature that dealer must be finished has been reduced to minimum.
Perhaps, attribute P can be by SIG MSpecific m bit (as 10 bits) 10 Bit Strings whether match user comprises in C (2001.01.01).Like this, even this attribute depends on V and check C, determine whether P sets up also always to finish at once.In fact, even the calculating of digital signature is may be quite complicated, dealer only need January 1 calendar year 2001 those or sky calculating SIG M(2001.01.01) once, and store this signature (or any given m bit wherein).Like this, the workload of the dealer that each check is needed simply relatively constituting only by two 10 Bit Strings.This makes dealer can make bank receive the whole of information I, and information I makes bank even can be with regard to the selected given check of paying of individual authentication before check is received.For example, dealer can or even send SIG in the beginning in January 1 calendar year 2001 before it M(2001.01.01), only send and all relevant checks of January 1 calendar year 2001 then to bank.Although convenient, this is careful inadequately concerning dealer, because if a spiteful user will obtain SIG during January 1 calendar year 2001 M(2001.01.01), he can sign the check that will not selectedly pay in that day.This method has the known variant of a lot of those skilled in the relevant art (for example using the time granularity of hour rather than a day).
In one form, second embodiment of the present invention dealer is by obtaining a series of value VLi, with on the check time/data item of date and time information association (user fully can not be foreseeable).Dealer obtains and a series of time t i(i=1 ..., n) relevant a series of value VLi, have at least in these a series of times one relevant with given way with the time t of transaction T.For example, for some day, at least one is greater than the 1 integer m less than n, | t-t m| less than scheduled volume.Perhaps, at least one 1 and n between integer m, t-t mOr (t m-t) for just and be not more than one day.The user receives dealer to have comprised at least among the C that part of of the information relevant with the time t of transaction T.
Dealer determines that then P is at that part of of C and value VL mBetween or C that part of and depending on and t mRelevant value VL mQuantity Q between whether set up.If set up, dealer receives bank bank can be verified whether satisfy attribute P so that bank can carry out the suitable information I that deposits in and take out.
In one form, dealer can be by generating a hashed value chain, with the date and time information of C (user fully can not be foreseeable) data item V is associated with check C.In this form, dealer's generation value chain: w 0, w 1..., w n, w here i=h (w I+1), wherein h is an one-way function, and with w 0Be placed in his public documents, perhaps it carried out digital signature, perhaps that it is open.Dealer thereby with w I+1Be associated with an i date unit.Even open all data item relevant of dealer with the chronomere of front, relevant data item w I+1Be uncertain.Although preceding i such data may be issued w by the i of chronomere I+1Remain uncertain fully, because can not only know w i=h (w I+1) just can calculate w I+1Dealer with it be associated with have time/the uncertain data item V of check C of date and time information i is w I+1, i.e. i hash counter-rotating of date/temporal information.Attribute P can form with multiple mode.For example, if w iPreceding 10 bits 10 bits equaling to select among the C just satisfy P.Dealer is by the I=w that simply releases news iCan make bank can verify whether P sets up.Bank passes through w iCarry out i hash and check the result whether with the w of dealer 0Coupling can be verified w i, verified immediately whether P sets up.
Should note if dealer uses and the relevant uncertain data item V of date information on the check, preferably hidingly concerning dealer so cancel the relevant any information of its those checks that deposit in he has abandoned in given date unit those checks and he.Otherwise, spiteful user discovery value prematurely V, and obtain interests with this information, for example generate he know can be not selected check.Concerning dealer, preferably cancel in the given date unit all " selecting " but the check check sends to bank with all checks of selecting when finishing in this date unit then.Like this, even can not colluding with the user, spiteful bank make him can cheat dealer.Can also allow the user be difficult to or can not freely generate and test a large amount of checks selected smart card of paying, cell phone or miscellaneous equipment to be strengthened security by requiring the user to use with definite which check.
III. comprised that the selectivity of eliminating consumer's risk deposits the small amount payment system of agreement in
The feature of probability check scheme is that the user does not know in advance and which check that can not control him is paid selected.In an embodiment of the present invention, as described thus far, the user may be taken place deducted the amount of money above his actual cost, promptly exceed the amount of money of the face amount summation of all checks that he has signed.In traditional probability payment scheme, if being chosen with probability s, check Ci pays, so usually the deducted trading value TV that surpasses of user i: in a lot of probability arrangement, his the deducted amount of money is (TV i *1/s).Thereby, if every transaction T iIdentical face amount TV is all arranged i=TV, and unfortunately in user's preceding 1/s the check two or more (not being 1) individual in-clearings that become are arranged, the user will be deducted the amount of money that doubles actual cost at least so.When s was big, expection all can this thing happens to about 1/4 user.
In the third embodiment of the present invention, provide a kind of selectivity to deposit agreement in, it has solved the consumer's risk problem, and promptly the user is collected the possibility of the amount of money of the total face amount of check of having signed above him unfortunately.The consumer's risk problem is an intrinsic problem in the probability small amount payment scheme, for example disclosed small amount payment system in the chapters and sections of the electronic lottery scheme of Rivest and front.For example, even the selection ratio of probability arrangement is 1/1000, can take place when misfortune has 5 rather than 1 selected paying in preceding 1000 payments of user.The probability of collecting the charges to the user although exceed the quata is very little, and the quantity of the small amount payment that carries out greatly reduces the relative influence of consumer's risk, and consumer's risk may constitute strong obstacle to accepting extensively of probability small amount payment scheme.This is because managing risk is got used to by domestic consumer unlike bigger mechanism (such as bank).Therefore, the scheme that the 3rd embodiment that the following describes is invented has been improved basic probability payment scheme.
Fig. 4 provides general survey according to small amount payment method of commerce of the present invention with the process flow diagram form, and this method comprises that the selectivity of having eliminated user's excess disbursement risk deposits agreement in.In this embodiment, the characteristics of the method and system that is provided are to use the family can be a series of transaction T i(i=1 ..., n) set up payment.Each T that concludes the business iUsually by low-down transaction value TV iCharacterize, for example 1 minute or part branch.If bank will handle every transaction separately, therefore bank will bear than transaction value TV iThe processing cost that self is much higher.
Therefore probability small amount payment scheme (for example, the lottery ticket scheme of Rivest, perhaps one of scheme of setting forth in the previous section) can be used for being each T by the user iGenerate a check/small check C i, C iBe used as transaction T iPayment send to dealer.So, perhaps mutual by user and dealer in the picture lottery ticket scheme of Rivest perhaps do not carry out the mutual mode of determining separately by the dealer in the described scheme of the chapters and sections of front, with greater than 0 less than 1 probability, determines C iSelected paying whether.
As seen from Figure 4, for each C i(i=1 ..., n), the user makes dealer receive C iEach C that receives for dealer i, dealer is according to probability arrangement and to stop the user to predict that in advance which check determines check C with selected mode of paying iWhether selected (that is, dealing with).For example, the probability arrangement on basis can be a scheme described in top the 1st joint, and dealer will be by with data item V in this case iWith C iBe associated and definite V iWhether satisfy attribute P and determine probability.If dealer determines C iShould not pay, dealer just abandons C iIf dealer determines C iShould pay, dealer just makes bank receive information I i, information I iMake bank can verify selected check C iWhether should pay.Bank uses I iChecking C iShould pay.And if only if C iIn the time of should paying, bank just makes dealer receive and deposits amount of money CR in i, and the user will be by amount deducted D i
In the third embodiment of the present invention, bank must guarantee D iFeasible total charge D=D to user's deduction 1+ D 2+ ... + D iBe not more than total face amount T of the payment that the user signed Agg=TV 1+ TV 2+ ... + TV 1In other words, for any integer i that makes 1<=i<=n, after having participated in i transaction, the user must never surpass the user from the transaction T of dealer's purchase to the total charge of user's deduction 1..., T iTotal value.
In a preferred form, bank guarantees D=D by using from the sequence number of check 1+ D 2+ ... + D iBe not more than T AggMode determine D iIn this form, a plurality of check C that the user produces in basic probability payment scheme i(i=1 ..., n) in each check all comprises a sequence number S iThese sequence numbers S iPreferably since 1 continuous integral number.In addition, i sequence number preferably represented transaction T iWith check C iIn time with respect to other transaction (T 1..., T I-1And T I+1..., T n) and other check (C 1..., C I-1And C I+1..., C n) order.
Sequence number S iProvide and transaction T iAnd/or check C iThe indication of relevant index i.But, can also use orderly but discontinuous sequence number.For example, after specific several P, i check and i prime number can be associated together.To for simplicity, every transaction T will be described earlier iThe all identical TV=TV of transaction value iSituation.The 3rd embodiment also comprises transaction T iValue TV iDifferent situations, the back is explained in more detail.
Bank (or another the 5th side) follows the tracks of the sequence number of selected check of paying.In order to determine in-clearing C iAmount deducted D i, the 3rd/the 5th side's use value S Max, S here MaxRepresent the sequence number on the already provided so far nearest check that will pay.If sequence number is used in order value S since 1 MaxBe initialized to 0. because the sequence number on the check is sorted S successively MaxMaximal value in the sequence number that occurs on already provided payable any check before being.In addition, because the order of sequence number is orderly, S MaxLess than current in-clearing C iSequence number S iAs shown in Figure 4, the amount of money to this check user (by the 5th side) deduction is:
D i=(S i-S max)*TV(1)
It has satisfied the deducted total charge D of all check users that the user has been signed is S i *TV.If used discontinuous sequence number, can define D i=# (S i-S Max) * TV, # (S here i-S Max) expression S iAnd S MaxBetween the quantity of sequence number (comprise S iBut do not comprise S Max).
Amount of money D=D 1+ D 2+ ... D MaxThe total value of all checks that the expression user has sent.Because signed i open check after D never greater than i *TV, thereby eliminated the risk of the excessive payment of user.In order to handle small amount payment in the future, bank is with S MaxValue reset to S i, it is the payable nearest check that bank finds so far as mentioned above.Equation (1) shows that also the expense of finally collecting to the user does not depend on which check is payable, and only depends on the quantity of the check that the user has signed; The check that the user has been signed is collected suitable expense to the user at last.
The 5th can be so that the four directions (can be dealer, or the entity except that dealer) receive and deposit amount of money CRi in, it is provided by following formula usually:
CR i=TV*(1/s)(2)
If a selection ratio s is arranged, in method and system of the present invention,, has only 1 selected paying of energy in about every 1/s check so when mean time on a large amount of small amount payments in the probability payment scheme on basis.Therefore, when mean time on a large amount of small amount payments, depositing the amount of money in also is fair concerning dealer, because it is the complete total value of 1/s check, and dealer has received the correct amount of money at last.But the scheme that obtains at last is much fair concerning the user, has been forwarded to bank because carry out the risk of excessive payment from the user.For example, if selection ratio is s=1/1000, dealer handles 1,000 small amount payment, and each was worth 1 fen, estimated to have only one with selected in this 1,000 payment so, but selected this will make dealer receive the 1/s=1000 branch, promptly 10 dollars.If (in 1,000 small amount payment) has a more than small amount payment selected, bank will must repeatedly pay 10 dollars unfortunately so.According to above-mentioned sequence number deduction scheme, bank is deferred to the user by the payment that will pay dealer and amounts to and paid enough money and give dealer with the payment of all previous checks of bearing this check and having selected to pay with some risk transfers.
In this 3rd embodiment of the present invention, the user has preferably obtained to authorize this user at his certificate at account's signature check of bank from bank.This certificate can designated user publicly-owned key; It can also specify out of Memory, for example user's maximum sequence number of being authorized to use, and/or the maximum dollar amount (if check can have variable face amount) of payment.The user sends this certificate with his every check of signature, perhaps only it is offered recently and does not send the dealer of this certificate to it.By allowing dealer's cache user certificate in certain period of time can save some bandwidth.
In another variant of this embodiment of the present invention, can specify and to specify to particular Seller that to authorize the length of a series of Y small amount payment be the mode of the hash chain of Y with being similar to the PayWord certificate, by the maximum sequence number Y that uses length to come designated user to be authorized to use as the hash chain of Y.But like this, the check that has the sequence number of mandate can be given any dealer by signature.The user can provide i element in certificate and the hash chain to be authorized to sequence number i signature check to prove him to dealer.(i element in the hash chain is defined as being produced for i time by continuous hash in the hash chain element of the root of hash chain).
Also can there be digital certificate in dealer, and according to the agreement of using which version, the user can maybe cannot get access to it during payment arrangement.If payment arrangement is a nonreciprocal, the user just is difficult to obtain this certificate.On the other hand, this agreement is dispensable concerning payment arrangement.For example, user's check can comprise employing " this check only when and the valid certificate of the publicly-owned key of dealer when being deposited in together just effectively " or the statement of similar type, dealer can be when it deposits check in provides its certificate to bank.
For several reasons, preferably the risk of excessive payment is transferred to bank or dealer from the user.At first, it is very little to open the probability of selecting many checks the check from 1/s.Thereby the excessive payment of bank is also rare.In any case the amount of money of the excessive payment that each is such is all very common.Bank can also take some strategies (for example collect fixing expense to the user, such as with the proportional expense of 1/s) to deal with such variation when opening an account.And the excessive payment risk of the common amount of money can perplex unique user, and hinders their the probability small amount payment scheme (example as disclosed in the present invention) of contracting, and such risk can not perplex bank usually.Reason is that real risk is got used to managing by bank.Just give an example, the risk of bank's daily management is the risk that the borrower is in arrears with their loaning bill.Thereby bank is fit on system support payment system that wherein they are gained by acceptance and managing risk.
Equally, dealer's ordinary practice is in a large amount of transaction of management, and every here transaction all has some relevant risks, and for example commodity will be return or user's payment is not implemented.Therefore, accepting some risks in the small amount payment scheme also is acceptable concerning dealer.Bank and dealer thereby can agree that selected small amount payment check of paying will be can be given dealer till user account has comprised enough funds by actual delivery.Each selected check of paying will be maintained in " waiting list " of bank, till user's payment (depending on above-mentioned sequence number scheme) is enough to support the check of this check and all previous queuings.
The second, as long as bank is that a tip usefulness is collected in every transaction, how little regardless of having, it is more and more littler that the probability of excessive payment will become in the long run, and promptly risk reduces along with the growth of small amount payment number of transaction.Thereby, to compare with the probability of domestic consumer, the probability of excessive payment is littler concerning bank, will experience much more transaction usually because compare bank with unique user.
Except the risk of eliminating the excessive payment of user, the third embodiment of the present invention also makes bank can punish fraudulent party, perhaps before they can make any substantive harm they is gone out system clearly.To illustrate in greater detail below, and the present invention includes some characteristics and allow bank to prevent malicious user and/or the deception of malice dealer.For example, if noticing a new check, bank identical sequence number is arranged with a check of previous mistake, if perhaps the sequence number and the time of new check are unordered with respect to the check of first pre-treatment for a certain reason, if perhaps the amount of money of check is too high, if perhaps there is the situation of other bank's regulation to take place, this check can be refused to cash by bank.Bank even can impose a fine to the user, and/or take other punitive measure, if it is thought fit.For example, bank can keep statistics and cause the user of above-mentioned any problem to go out system clearly its in-clearing, for example, if use certificate can cancel their certificate.For example,, perhaps belong to the user that those its checks should be paid more continually than expection, just can be dropped if the date is numbered and/or marked to check inconsistently.Equally, bank can drive the dealer of misconduct out of system, for example receives the dealer that has the problems referred to above or go up the check that should be paid more continually of expection than statistics.
In the third embodiment of the present invention, the user is required the sequence number that uses in order, and repetition can not be arranged.For example, sequence number 1 should be used for first check, and sequence number 2 should be used for second check, or the like.As mentioned above, the user will not be collected the money that exceeds his fee payable like this.Usually, in the given time, in the end behind in-clearing, he will sign other several checks for extra transaction, and these checks can selectedly not paid.Therefore, at least temporarily the money of collecting to the user is less than the cost of his reality, and he can just in time be collected the amount of money that should deduct once in a while, promptly when last check should be paid.
But dishonest user may attempt to play with sequence number to find the mode that makes amount deducted be less than actual cost.A kind of method is repeatedly to reuse a sequence number.If he so does, compare with actual value, will reduce S i-S MaxAnd by (S i-S Max) *The amount of money that TV provides.But such deception is not very useful, with a check of first pre-treatment identical sequence number is arranged because if bank notices a check of dealing with, and bank can take punitive measures to stop this deception.For example, if bank has run into the sequence number of a repetition in the in-clearing, bank can be authorized to collect a sufficiently high amount of money so that the user cheats no longer in this way to user cheating.
Should be noted that in the distinctive small amount payment scheme of the third embodiment of the present invention user can not predict thereby can not which be controlled his check will become in-clearing.Thereby he generates when having two checks of same sequence number at every turn, though probability is very little, they all will become in-clearing.Can fine that deception is carried out is fixed as enough highly to make it surpass the user to wish the income obtained by deception.
The deception of some forms relates to check " back side-date " or the like.Thereby concerning dealer and bank, importantly check any two check C and the C ' that sees from same subscriber, and see the sequence number of the sequence number of C whether less than C ', the date of C is before the date of C '.
If the user is not informed that by dealer his which check becomes in-clearing behind payment transaction, the above-mentioned mechanism works of catching the user who is cheating gets better at once.In fact, from this angle, preferably make the user not know that his which check has become in-clearing as far as possible.In principle, in fact the user can accurately monitor him and sign how many checks, thereby can be not disputable to proper fund deduction.But,, will expect to provide ability by the evidence of amount deducted (sequence number that comprises in-clearing) if dispute will occur.
If select check C iThe standard of paying only depends on sequence number S i, can improve the above-mentioned mechanism that is used to find and expel fraudulent user.Like this, if check is an in-clearing, also all deal with any other check that same sequence number produces by deception so.For example, if the probability payment system on basis as last joint is disclosed, be used for (by attribute P) determine when payable quantity V of check i(user is unpredictable) can be simply only by S iDealer signature constitute, perhaps also have user's account and/or name rather than whole C iDealer signature.
The mode that another kind of user attempts few payment is to use one not according to the sequence number in the service time orderly sequence.For example, in case a malicious user is confirmed S 00Be the minimum sequence number of in-clearing, he may plan to reuse from S 1To S 99Sequence number, can selectedly not pay by used check to guarantee him, and do not worry that simultaneously he can be caught the identical sequence number of twice use.But even adopt this strategy, malicious user still is booked probably.Reason is if (promptly using C after him 100Afterwards) still reuse sequence number between 1 to 99, he just can't avoid illegal check to become in-clearing.This situation has certain probability of happening, if take place, bank will notify C 100With respect to the time be t 100Transaction T 100For in-clearing and user were later than t for the time afterwards 100Transaction generated sequence number less than S 100Check.In addition, the sanction of bank can make the user to reach in this way and swindle purpose.In order to allow this strobe utility work smoothly, preferably every check all carries the time of the transaction that it pays and those carried wrong time marking in dealer before selection course begins check is considered as invalid cheques.
In order to support this anti-fraudulent policies better, for instance, bank can require dealer to use design to be used for not only comprising the selection course that the part that only depends on the check sequence number also comprises the part that only depends on the time.In essence, two or more selection courses can be arranged, if any is determined check and can selectedly just can choose this check in these selection courses.This variation will be readily apparent to persons skilled in the art.
Malicious user U ' can also collude with the M ' of malice dealer to guarantee by U ' signature and to be the check that commodity/information was spent that provides of M ' in-clearing always.Like this, fixed each payoff of letter is 1 minute for the sake of simplicity, U ' will be always only by bank's deduction 1 minute, and M ' will be always by payment 1/s branch (that is, 10 dollars, if s=1/1000).U ' and M ' can share their illicit income then: in fact, if U ' he oneself be set to dealer's (may be to use assumed name), U ' can be same individual with M '.
In addition, U ' and M ' may only obtain a spot of illegal income: improve their illegal income if they attempt repeatedly to repeat said method, just the system of being ejected out probably.This is very high cost, if particularly M ' also also has legal income all the more so in system.If user who is ejected away and dealer can not get back in the system easily, for example use new identity, if the cost (for example, obtaining the cost of initial certificate) that perhaps enters system first is enough high, unlawful activities will be lacked.Even the user also had negative repayment, related expense can be confiscated easily by bank.
In any case, by allowing first party hardware safe in utilization can eliminate such swindle.For example, this part that can not distort can be responsible for correctly increasing sequence number when producing new check at every turn, and the signature section that can be responsible for protecting privately owned signature key and produce new check.If thereby malicious user attempts to produce the dealer confederate's that pay him check, he must also increase sequence number when each the trial.Thereby in case produced an in-clearing, dealer will be paid the specific amount of money, but the user also will be by the corresponding appropriate amount of deduction.Should note one can and/or being required that hardware safe in utilization is to carry out its operation of at least a portion Anywhere with use of the present disclosure.This secure hardware can be included in smart card or the cell phone.
The probability that honest subscriber's meter reveals malice is very little, because after he has signed n and opens check, just have greatly more than n in them by accident *S opens check has become in-clearing.Like this, he can be ejected away.Adopt suitable parameter setting, such user will be considerably less.In addition, can cause the user of bank's loss to exchange unintentionally with these.For example, bank can show to these users has unusual a large amount of check to be found to be the information of in-clearing in the check that shows them.Thereby these users may be received under the different conditions and stay in the small amount payment system, for example will bear therein by the user of amount deducted greater than the probability small amount payment system of the risk of reality cost as the user.Such transformation also can be used as the automatic function in the initiation protocol between user and the bank and introduces.
As previously mentioned, receive enough funds and bear this check (and the user therefrom selects all previous checks of paying) by selected check of paying being deferred to bank from the user, bank can arrive dealer with some risk transfers relevant with statistics variations, and can also arrive dealer with more user-dependent risk transfers of implementing swindle now.According to the invention described above, the quantity system ground of the check that bank will sign according to the user receives fund from the user, and bank will receive check from the selected dealer that pays.When the user is honest user and when frequently signing check, dealer needn't wait as long for the payment from bank in this scheme.In addition, if bank does not have to every check of dealer's full-payout, but having beaten a little discounts a little, should be that user's account has been detained (or almost detaining light) so usually, because the frequency of user's payment can surpass the frequency of cash in banks to a certain extent.Dealer should expect to pay off immediately or pay off in short time in this case.May be especially effectively to stop user and dealer to attempt to conspire to swindle the mode of bank with risk transfer to dealer by this way because bank no longer because supposition to the payment of user's selected check of paying greater than running any risk from user's receipt.If adopted this to change, bank identifies " unsettled, unpaid " check relevant with user account number in user's certificate total charge is of great use, so that user's the excessive check of the amount of money can be refused to accept by dealer.
The method and system of the third embodiment of the present invention can also be handled the small amount payment of ununified fixing trading value.A kind of method is that to be worth with one that check that v divides clearly is used as be v the zoarium with 1 fen check of continuous sequence number.More efficient methods is to allow the user sign individual by a sequence number section [S, S+v-1] (comprising two end points S and S+v-1) rather than the check that characterized by single sequence number.If this check becomes in-clearing, the user will be by deduction S+v-1-S MaxDivide, and new S MaxBe S+v-1.
In the third embodiment of the present invention, when supporting the check of variable face amount, determine that check is the face amount that the process of in-clearing can depend on check.That is to say, do not use single selection probability s, but have one to select probability S greater than zero integer v each v, and these probability can be different.This process can be used simply " step function ", form is: if v is less than 100, the check that v divides is that the probability of payable check is 1/100, if v is 100 or bigger then probability is 1, if v is 1000 then probability is 1. in addition at least, can use " step function ": if v is at most 1000, then check is that the probability of in-clearing is v/1000, if v is 1000 at least, then probability is 1. still, the use of these schemes may have adverse effect to the ability of the various forms of swindles of bank examination, thus should careful use they.For example, the only given maximum sequence number of seeing, bank no longer can predict the amount of money of having paid dealer so far so easily.For this reason, wish to keep selecting probability to fix.On this direction, a kind of attractive side's 1 method is that bank issues two or more certificates of user, and each certificate indicates the sequence number set of its permission, its maximum amount paid, and its selection probability s.In fact, the user has just had a different set of " check book ", and each " check book " has its parameter and restriction, but each all has its selection probability s.
Illustrate in greater detail the situation that does not wait trading value, the third embodiment of the present invention permits a user to n transaction T 1, T 2..., T nSet up payment, here each transaction T iBy integer index i and transaction value TV iPart characterizes, and each T iNeedn't be equivalent, but each TV iCan be characterized as being the multiple of public unit value UV.For example, UV can be 1 minute.Like this, each serial data C iComprise integer index i and T iValue TV iInformation.The value that the form that this information adopts is made up of check " initial sequence number " and " finally sequence number " is to (S i, S i+ v i-1).For 1 and n between all i, S iBe orderly successively progressive sequence number, and represent C iWith respect to orderly continuous data string C j(j=1 ..., n) the position.v iBe integer and the expression T that depends on i iValue TV i, by v i=TV i/ (UV) provide.
The check C of dealer from receiving j(among 1<=j<=n) to prevent which check C the consumer from predicting in advance iThe mode that is selected as in-clearing is selected those payable checks.A kind of form is that dealer can use method described in the I joint, is about to a data item V j(for example the dealer of the private cipher key generation of usefulness dealer is to C jDigital signature) and C jBe associated, this data item is that the user is inscrutable fully.Dealer receives the third party can to make this third-party authentication demonstrate,prove the information I that selected check is an in-clearing jThe third party is receiving I jVerify selected check C afterwards iReally be in-clearing.And if only if C jBe in-clearing, perhaps when also satisfying some other conditions, the 5th side determines S MaxAnd v MaxValue.S MaxThe final sequence number of the maximum of the up to the present selected any check of paying of expression, max is more than or equal to 1 integer smaller or equal to n here, and v Max=TV Max/ (UV).The 5th side makes four directions (it is the payee, may be dealer or the opposing party) receive then and deposits amount of money CR in.The 5th side is deducted and D first party iRelevant amount deducted, D here iEqual:
(S i+V i-1-S max)*UV
S MaxBe set to S immediately i+ V i-1.
With with fixing transaction value situation under similarly method arrest and handle fraud under the non-simple transaction value situation.For example, two in-clearings represented 1 fen and were represented by a sequence number S ' between S and the S+v-1 that another expression v divides and represented by sequence number interval [S, S+v-1], in this case these two evidences that check will be regarded as swindling for one.The too high check of v value is unallowed, promptly always is rejected payment.Otherwise malicious user can add payment system, signs a big volume check, does not have selected paying if the result is this check, just will never produce second check.Can also handle this problem by when the user sets up the account, collecting " initiation fee ", for example go into expense and can be high enough to cover the maximum of that user's expection " is floated " to each user.Here " float " and be that the user has signed but expection maximum value in the check that bank is not seen as yet.Fa Ming some forms hereto, max cap. of this check that can be calculated as user's signature of floating multiply by the inverse of a check with selected probability of paying.Bank can also be as previously mentioned cashes these checks (and the user is signature and also selected previous check of paying) and stops swindle by selected check of paying being deferred to enough funds that bank received from the user.
Under a kind of form, can realize guaranteeing that the user will never be collected the method and system above the 3rd embodiment of the amount of money of his actual cost with the probability payment scheme on the basis that has illustrated in the I joint.Like this, receiving transaction T i(i=1 ..., n) check Ci after, dealer is with check C iWith the fully impossible data predicted item V of a user iBe associated together, for example V iBe that the dealer created with the private cipher key of dealer is to C iOr C iThe digital signature SIG of a part M(C i).Dealer determines V then iWhether satisfy specific attribute P i, for example descend Column Properties:
F(SIG M(C i))<s
Here F is the function of operating in the bit and returning the number between 0 and 1, and s is the ratio (0<s<1) that awaits the reply.
If dealer finds V iReally satisfy P i, dealer just makes bank's reception make bank also can verify V iWhether satisfy P iInformation I i, for example be used for producing V iThe relevant publicly-owned key of dealer of dealer's private cipher key.If V iDo not satisfy P i, dealer just abandons check C iAnd if only if, and bank finds V iReally satisfy P iAnd possible V iAlso satisfy other definite condition of bank at one's discretion, the 5th side (can be the entity outside bank or the bank) can make four directions (can be the entity outside dealer or the dealer) receive and deposit amount of money CR in iThe 5th side also makes the user deducted amount deducted D i
In the 3rd embodiment, the amount of money CR that the amount of money Di that collects to the user not necessarily receives with dealer's (or other entity) iIdentical.But, generally speaking, by signing his check, by optionally depositing agreement in (it guarantees the deducted amount of money D of user comprising iNever greater than user's actual cost), the method for the 3rd embodiment is different from the probability payment scheme on basis.In other words, guarantee that the user will not be collected the amount of money that exceeds its actual cost.
The schematic configuration diagram that Fig. 5 provides has illustrated and has been used for being transaction T according to the third embodiment of the present invention iSet up the assembly of the small amount payment system 200 of payment.System 200 comprises that permission user, dealer and bank can comprise the serial data of representing eCheck or the string of representing message at communicator 210. electronic data of transmission electronic data even payment between them.In one embodiment, communicator 210 allows the visit remote server.Communicator 210 can comprise modulator-demodular unit and one or more Network Interface Unit as known in the art, includes but not limited to network interface unit.Can provide one or more buses (for example address bus 214 and data bus 215) so that the data transmission of permission between the heterogeneous networks node.
System 200 comprises that also first treating apparatus 205 and second treating apparatus, 206. these first and second treating apparatus can be computer systems, for example move the digital machine of DOS or Windows operating system, and link to each other with data bus 215 with address bus 214.Treating apparatus 205 and 206 usually comprises all that separately the memory storage 221 that is used to store data, CPU (central processing unit) (CPU) 223. memory storages 221 that are used to import the input media 222 of data and realize system command can comprise data storage devices such as computer memory and hard disk, CD-ROM.Input media 222 can be any input equipment as known in the art, for example conventional keyboard.
First treating apparatus can be operated the T that obtains, imports and store and conclude the business by the user i(i=1 ..., n) serial data C i, at serial data C iIn comprise check Ci with respect to orderly continuous check Cj (j=1 ..., n) the progressive sequence number Si of the position of other check in.Second treating apparatus 106 can be by selling operating operation and responding Ci so that data item Vi is associated with Ci.Second treating apparatus 106 can be used to also determine whether Vi satisfies attribute Pi.For example, can import one group of instruction to the CPU223 of second treating apparatus 206 so that CPU obtains the data item Vi relevant with Ci (or part of Ci) and makes CPU223 determine whether Vi satisfies attribute Pi.This is the necessary condition that must satisfy, so that next step (promptly to the making bank can verify whether Vi satisfies the ordering of the information Ij of Pi to the transmission of bank) of being carried out by CPU223 in 206.Can be to the programming of the CPU223 in the treating apparatus 106 when Vi satisfies Pi, to move to send information Ij to bank.
System 200 also comprises device 240, is moved so that four directions (can be a dealer or an other entity) receives the summation of money by bank (or other the 5th side) when Vi satisfies Pi.Device 240 can also be a computer system, its CPU can be programmed with when Vi satisfies Pi, moved with: 1) determine the value of Smax, Smax is the sequence number maximal value of the sequence number on any check that bank pays (thereby offer at present) of last check when paying; 2) to the transmission ordering of the amount of money CR in four directions payment; 3) make the user by amount deducted D.
Generally speaking, the small amount payment system of the third embodiment of the present invention and method provide and have guaranteed that the user can not collected the mechanism that exceeds its actual cost amount of money.Like this, the system and method that provides among the 3rd embodiment has improved the user greatly and has received degree, and this is the key factor of accepting extensively that causes small amount payment system.
IV. comprised the small amount payment system of selecting agreement by the delay of bank's control
The characteristic of the fourth embodiment of the present invention is to have comprised the probability small amount payment scheme that postpones to select agreement, till the payment selection course is delayed to bank and receives submission to one or more checks from dealer in this scheme.The some kinds of methods that realize this delay selection agreement are arranged.First (also being first-selected) method is as follows: the user create one that obtain from small amount payment transaction T and serial data or " eCheck " C to the indication of exchange hour t are provided, when the user wants to pay, C is sent to dealer.Dealer receives him in given interval (for example, given a day) from one or more users check C i(i=1 ..., n) be divided into m tabulation L k, k=1 wherein ..., m.Here m is arbitrarily, for example can be the integer that equals or be approximately equal to 1/s, and s is the selection probability of expectation.Preferably, each tabulation comprises and just in time satisfies m mutual exclusion attribute P 1..., P mOne of all checks.For example, if m=1024, each L that tabulates k(k=1 ..., m) comprise all checks of the 10-bit-binary expansion that preceding 10 bits that produce after by hash according to determinacy function H that receive that day are integer k-1.Each L that tabulates k(k=1 ..., m) comprise l kIndividual check C k 1..., C kl k, l kExpression tabulation L kThe quantity of middle serial data.When in m tabulation, suing for peace, l kNaturally the total n that adds up to the check that equals to receive, promptly
l 1+…+l k+…l m=n
Dealer is by being L kCalculate submission and submit each tabulation L to k, and bank is received
CM k(k=1,…,m)。
Be known in the art, the submission scheme is to make direction the opposing party delivery of messages and the content that do not disclose message is loyal to this protocol of messages simultaneously.This agreement allows each side's simulation to deliver the process of message in " having gone up the box of lock ", transmit leg (in this example for dealer) can prevent that take over party's (being bank in this example) from knowing anything relevant with the message in the box thus, when having given the key of take over party's box in the future.The take over party can prevent that transmit leg from changing it afterwards in the message that the take over party has received in the box.The submission scheme is made up of two stages usually: in phase one (" the presentation stage ") simulation transmission of box of lock.When this stage finished, the take over party did not also know message, but transmit leg can not be made any change again.The transmission of subordinate phase (" recovery stage ") simulation key.The take over party can see that now the message in the box that message and checking open is that transmit leg oneself is submitted to really.
In a preferred form, L kSubmission CM kCan be a hashed value H (L k), H is unidirectional collision resistant Hash function.Therefore, can not be by calculating from CM kObtain L k, and on calculating, can not produce two different string L 1 kAnd L 2 kMake H (L 1 k)=H (L 2 k).。
Select to determine specific check C in the agreement in the distinctive delay of the fourth embodiment of the present invention iThe payment selection course that whether should selectedly pay is delayed to bank and receives dealer to tabulation L kSubmission CM k(k=1 ..., m) till.This is the distinguished characteristic of small amount payment scheme that illustrates in the fourth embodiment of the present invention.Receiving CM k(k=1 ..., m) after, bank with dealer and the unpredictable mode of user select 1 and m between an index k.For example, bank can (for example, 2001.01.01) carry out digital signature, select with preceding 10 bits of this signature then the date of discussing.This signature can be carried out hash before these preceding ten bits are extracted.The signature of bank can be published (for example, be placed on online), and to make everyone to verify be the index that bank was selected in that day really.Selected index k is the payment index.Dealer passes through CM kBe recycled into original check tabulation L kAnd respond.Perhaps, bank can be calculated as index k dealer to tabulation L kSubmission CM kFunction.For example, can be from the signature CM of bank 1CM kOr H (CM 1CM m) extracting k, H is an one-way hash function; Perhaps at given function f from f (CM 1CM m) extraction k.
Bank checks subsequently whether all are all correct.For example, the check in the tabulation that bank's checking is reclaimed is relevant with that day of discussing really, do not have the check of repetition in this tabulation, and all checks in this tabulation all satisfies attribute P kIf, there is the user's signature user's signature effective, or the like.If do not satisfy any one in these conditions, punitive measures be imposed a fine or be taked in bank can to dealer (or user, for example bank finds that the user has signed two checks with same sequence number).Otherwise bank will pay L kThe m of middle check total value doubly.If perhaps inspection has successfully been passed through in the tabulation of being checked, bank can pay the total charge of all checks in all tabulations to dealer.As previously mentioned, there are not some to be postponed if there are enough funds to bear in these payments of these checks among user's the account.
Its check belongs to L subsequently kThose users by with some kinds one of may modes the corresponding amount of money of deduction.For example, the user can perhaps be deducted the corresponding amount of money (in the 3rd embodiment) according to the sequence number of their selected checks by m times (in first embodiment) of their a selected par value of deduction.The mode that bank can carry out predicting among sifting or the embodiment with the front is punished.Bank can also require dealer to reclaim extra tabulation to verify whether all are correct, perhaps selects a more than payment index.In the latter, bank can pay L to dealer kThe m/r of middle check total value times, r is the quantity of selected tabulation of paying.Like this, selecting probability is r/m, rather than 1/m.Perhaps, bank can check two or more relevant total charges of all checks in all tabulations of the Zhi Fuyu of dealer subsequently of tabulating also.
Note submitting to and can in sending out scope of the present invention, be recycled.For example, dealer does not send tabulation L to bank k(k=1 ..., submission CM m) k(k=1 ..., m), but to the submission of bank's transmission to this m submission.For example, dealer can send single value C=H (CM to bank 1CM m), H is an one-way hash function.After (or a plurality of) index k had selected in bank, dealer can reclaim C earlier so that disclose CM kWhat is, as preceding, reclaims CM by disclosing corresponding check tabulation then kFor example, if C=H is (CM 1CM m), dealer can submit CM to by disclosing all m 1CM mAnd disclose correct value.Bank can carry out uni-directional hash to this m value and produce identical value C=H (CM with inspection 1CM m), obtain k then and submit to so that isolated CM kCertainly, dealer can also submit to m to submit CM to by send a plurality of submissions rather than single submission C to bank 1CM mFor example, dealer can send CM 1CM 10Submission, to CM 10CM 20Second submission.
Usually, in order (for example to pass through the V=h (V of certain one-way hash function by single value V 1..., V m)) submit to m to be worth V 1..., V mMust all V of announcement/transmission 1..., V nOnly to reclaim V iIf m is very big and/or V iVery big, so just infeasible.Being used in the system of being invented submitting a kind of especially easily method to is generalized M erkle tree.By " generalized M erkle tree ", be meant submission to m value, this submission makes it possible to only reclaim in these values and needn't reclaim all other values.
The well-known Merkle tree submission scheme of explanation is introduced into by reference at this in the U.S. Patent number 4,309,569 that the specific example of generalized M erkle tree is Merkle.A kind of mode that realizes the Merkle tree is the value that storage will be submitted in figure G that may be undirected, some limits of figure G can be oriented so that produce the subgraph G ' (preferably having identical node with G) of other than ring type (normally tree-like), use the one-way hash function (for example, by using commutative uni-directional hash) on one or more bases so that storage is depended on the descendants of that node in G ' and gone up the value of storage and a value of possible added value in each node then based on the one-way hash function on basis.Like this, the value of storing at least one in the change original value or the one or more root nodes of a plurality of G of causing ' also changes with inundatory probability thereupon, unless had been found that the conflict in one of basic one-way hash function.Use this method, the value of storing on the root node has constituted the submission to the original value of storing in the figure node.Also have some in addition and just where can be stored in the drawings relative restrictions (later on can by bank examination) in submitted value.Under any circumstance, dealer can submit CM to generalized M erkle tree 1CM mIn addition, can set Hash list L with generalized M erkle kGenerate and submit CM to kAny aspect of submission can take place to use in the present invention in the use of generalized M erkle tree.
Notice that dealer can find together with submission value CM 1CM m(possible they self submitted to by one or more submission C) sends and tabulation L to bank together 1L mOther relevant quantity (for example total charge or the check quantity in each tabulation in these tabulations) can be helpful.These other quantity can be transmitted outside any submission.For example, dealer can send CM to bank 1CM mQ 1..Q m, Q iExpression L iClean amount.For example, this bank needn't further be reclaimed just can be in the hope of the total charge sum of each tabulation.
Also have other correlation technique to be used to realize comprising the probability small amount payment scheme that postpones to select agreement.In these methods, the payment selection course is delayed to bank and receives till the submission of one or more checks that dealer has been received from a plurality of users from dealer.Bank determines that subsequently liberally, randomly the check of which submission should be an in-clearing.The delay of the fourth embodiment of the present invention selects agreement also to allow bank punish/to eliminate fraudulent party before fraudulent party produces any essence harm.
Fig. 6 provides schematic overview according to the small amount payment method of commerce of fourth embodiment of the invention with the process flow diagram form.The user creates serial data or " eCheck " C that obtains from small amount payment transaction T, and the user sends to dealer with C when wanting to pay then.Shown in the embodiments of the invention, related to a plurality of transaction T i(i=1 ..., n).The user is every transaction T iObtain check C i, make dealer receive check C then i(i=1 ..., n).
Dealer has received him from the user check C i(i=1 ..., n) be divided into m tabulation L k, k=1 wherein ..., m.Each L that tabulates k(k=1 ..., m) comprise l kIndividual check C k1 ..., C kl k, l kExpression tabulation L kThe quantity of middle serial data.When in m tabulation, suing for peace, l kNaturally the total n that adds up to the check that equals to receive, promptly
l 1+…+l k+…l m=n
Dealer is by being L kCalculate submission and submit each tabulation L to k, and bank is received
CM k(k=1,…,m)。
Can finish according to an ad hoc rules of dealer and bank's agreement check is grouped into tabulation.For example, check C can be placed in tabulation L iIn, L iCan be calculated as the function of C, for example extract some bits or from the hash of C, extract some bits by the sequence number of use C or from C.
Every transaction T iPreferably by trading value TV iCharacterize.In addition, each serial data C iPreferably include expression and (obtain C from it i) transaction T iTrading value TV iData.Dealer thereby can be each L that tabulates kDetermine total value V k, V kProvide by following formula:
V k=TV k 1+…+TV kl k
In other words, V kExpression tabulation L kIn all serial data C k 1..., C kl kTotal value.In this case, dealer is worth L except submission kOutside can also select submission value V kThat is to say that dealer can be to value list (V 1, V 2..., V m) provide to add and submit CV=H (V to 1, V 2..., V m), H is an one-way hash function.By reclaiming CV, dealer thereby disclosed tabulation (V 1, V 2..., V m).
Select in the agreement in the peculiar delay of the 4th embodiment, be used for determining that payment selection course that whether specific check Ci should selectedly pay is delayed to bank and receives dealer to tabulation L kSubmission CM k(k=1 ..., m), and if selected the CV option also to be delayed to bank to receive to value V kSubmission CV.This delay is the distinguished characteristic of small amount payment scheme that illustrates among the 4th embodiment.Receiving CM k(k=1 ..., m) after (and optional submission CV), one or more integer index i select in bank 1, i 2..., i r, and make dealer receive selected index i 1, i 2..., i rIn the fourth embodiment of the present invention, bank is to integer i 1, i 2..., i rSelection represent to determine whether selected selection course of paying of a check.
The value that should note r is arbitrarily, depends on bank.When the index of the swindle of a plurality of trials, perhaps when suspecting particular Seller, can use bigger r value.In some cases, bank even all submissions that can require dealer to reclaim him (that is to say, r=m).Recommend to select r>1, so that have an opportunity to arrest two checks that have same sequence number from same subscriber, rather than afterwards according to the such user of statistic evidence expulsion.
Receiving index i 1, i 2..., i rAfter, dealer reclaims those its index and index i that he has received 1, i 2..., i rCorresponding submission CM kIn other words, dealer reclaims CM I1, CM I2..., CM Ir, promptly dealer makes bank receive CM I1, CM I2..., CM IrIn each recovery string.If each CM k=H (L k) dealer disclosed L to bank thus I1, L I2... L IrIf, submit to CV before to be given bank, dealer just discloses tabulation (V to bank 1..., V r).Those tabulations of the particular index coupling of having selected for its index and bank, the serial data that comprises in these tabulations can be seen by bank, therefore also can see corresponding total trading value.If CV also is recovered, total trading value that dealer requires for all tabulations has just been seen by bank, and is not selected tabulation.Bank can recomputate total trading value of the tabulation of recovery, and compares the recovery of these values and CV so that check the swindle of representing dealer.Such inspection can also relate to checks that each tabulation only comprises the check that is fit to be included in that tabulation and inspection and appears at check in the more than tabulation.
Final step in distinctive Petty paying method of the fourth embodiment of the present invention and system, the 5th side (can be the entity outside bank or the bank) finishes this payment process, that is, four directions (can be the entity outside dealer or the dealer) is received and deposit amount of money CR in.In some cases, this action can be delayed to satisfies specified conditions, for example in the account relevant with the founder of this check enough funds is arranged.The 5th side also makes its check belong to selected tabulation L I1, L I2..., L IrThe user by amount deducted D.
In a preferred form, dealer's (or other cubic entity) receives deposits the total value V of all checks that amount of money CR preferably comprises in all m tabulations in, promptly
CR=V=V 1+…+V k+…V m
For the method that realizes that this determines CR, should use optional submission CV, so that can calculate CR from the value the recovery of CR.By bank (or other the 5th side) pay the amount of money CR of dealer thereby be dealer receive and be divided into m the tabulation L k(k=1 ..., whole total values of all checks m).
In a kind of form of the present invention, the amount deducted D that collects to user U UThe relevant value of the total value of all these users' that comprise in the corresponding tabulation of being selected by its index and bank of index check provides.For example, doubly can the value of determining D by this total value is amplified m/r (promptly selecting the inverse of probability s=r/m) U:
DU=(V i1 U+V i2 U+…+V ir U)*(m/r)
V k UBe tabulation L kIn the total value of the user U that comprises.
In another version of the fourth embodiment of the present invention, each check C iComprise and relate to sequence number S iInformation.Preferably, S iBe that (concerning each user) is orderly since 1 order by the progressive sequence number of user's issue of creating check, and representative transaction T iOther transaction T that has participated in about that user with this dealer 1..., T I-1And T I+1..., T nTime sequencing.
In this form of the present invention, amount deducted D UBe to use by bank to choose the sequence number S in each check of comprising in those tabulations of paying iDetermine.If every transaction has equal value TV, with single check C iThe corresponding amount of money of drawing is provided by following formula:
(SN i-SN max,U) *TV
S Max, UBe illustrated in from producing C iUser U and processed and selected nearest check of paying on the sequence number that occurs.About using the sequence number elimination user on the check to be collected the risk that exceeds its actual cost, provided more detailed description in the III joint in front.In other words, suppose that relevant selection probability is understood that r/m, in case in this 4th embodiment, selected the check of r tabulation to pay, can be with being similar to these checks of the single processing of mode of handling check in the third embodiment of the present invention.
Fig. 7 shows and is used to n value to be TV iTransaction T 1, T 2..., T i..., T n300. systems 300 of system that set up payment comprise the communicator that is used for transmission data between user, dealer, bank and four directions.System 300 comprises that also first treating apparatus 310, second treating apparatus 320, the 3rd treating apparatus 330 and the manage device 340. all four treating apparatus everywhere and all comprise the memory storage 351 that is used to store data usually, be used to import the input media 352 of data and the CPU353. that realizes system command
First treating apparatus 310 can be by user's operation to obtain, to import and to store every transaction T iSerial data C i(1<=i<=n).Second treating apparatus 320 can and receive C by dealer's operation i(i=1 ..., be used for uniquely with described serial data C after n) i(i=1 ..., n) be divided into m tabulation L k(k=1 ..., m) and be used for input and store described tabulation L k(k=1 ..., m).Each L that tabulates kComprise serial data C k 1..., C k Lk, and ∑ m k= 1l k=n.Second treating apparatus also can be operated land used by dealer and calculate each L kSubmission CM k, and be used for input and storage submission CM k(k=1 ..., m).
The 3rd treating apparatus 330 can be operated in to receive by bank submits CM to kSelect one or more integer index i afterwards 1, i 2..., i rAnd make second party reception hint i 1, i 2..., i r, to all r, 1<=ir<=m.Manages device 340 everywhere can be operated in by dealer and receive index i 1, i 2..., i rReclaim CM afterwards, disclose L to bank thus I1..., L Ir
In each embodiment that is proposed of the present invention, can use anti-interference hardware such as smart card in the cell phone or processor that security is provided.
In a word, the peculiar method and system of the present invention, 1) eliminated in the payment selection course the mutual needs of user-sale; 2) in system, introduced time restriction; 3) provide selectivity to deposit agreement in, eliminated risk the excessive charge of user; With 4) provide delay to select agreement, the dirigibility and the control of payment process are provided to bank.
Although with reference to specific preferred embodiment special exhibition and the present invention has been described, only it should be appreciated by those skilled in the art otherwise the spirit and scope of the present invention stipulated of claims just can be carried out modification on various form and the details therein partially.
Claim (appendix H)
1, for transaction T sets up a kind of method of payment, this method comprises:
A. first party is obtained a serial data C relevant with T from T, and makes second party receive at least a portion of described serial data C;
B. second party is associated together described at least a portion and a data item of C, and wherein V is that first party is uncertain fully;
C. second party determines whether V satisfies attribute P, if satisfy, second party receives the third party to make the third party can verify whether V satisfies the information I of described attribute P;
D. the third party verifies after receiving I whether V satisfies described attribute P; And
E. only when V satisfies described attribute P, the third party makes the four directions receive amount of money A.
2, according to the process of claim 1 wherein that at least a portion of described serial data C has been carried out checking.
3, according to the process of claim 1 wherein not mutual between needs second party and the first party of step that second party determines whether V satisfy attribute P.
4, according to the method for claim 2, the described part of wherein said serial data is represented the first party checking by the 5th side.
5, according to the process of claim 1 wherein that step that first party is obtained serial data C from T comprises that first party uses the step of the privacy key of first party as at least a portion establishment digital signature of T.
6, according to the method for claim 5, the described digital signature of wherein said first party comprises at least one in following:
(a) determinacy signature;
(b) randomness signature;
(c) off-line signature;
(d) on-line signature;
(e) based on the signature of identity.
7, according to the process of claim 1 wherein that the step that second party is associated together data item V and C comprises that second party is the step of at least a portion establishment digital signature of C with the privacy key of second party.
8, according to the method for claim 7, the described digital signature of wherein said second party is the determinacy signature.
9, according to the process of claim 1 wherein that described serial data C comprises at least one in following:
I) be the digital signature of at least a portion of described transaction T, wherein said digital signature is that the privacy key with first party calculates;
Ii) Message Authentication Code, wherein said Message Authentication Code are that the privacy key with first party calculates;
Iii) eCheck
10, according to the process of claim 1 wherein that described data item V comprises at least one in following:
A) digital signature of C, wherein said digital signature are that the privacy key with second party calculates;
B) Message Authentication Code value, wherein said Message Authentication Code value are to calculate with the known privacy key of second party.
11, according to the process of claim 1 wherein that step that described second party makes described third party receive described information I comprises at least one in following:
A) second party sends to the third party with I;
B) second party request the 5th side sends to the third party with I; And
C) second party with I note in a file and described third party obtain I from described file.
12,, comprise that also second party checks the step of the authenticity and integrity of C after receiving C according to the method for claim 1.
13, according to the method for claim 12, wherein the second party utilization publicly-owned authorization information relevant with first party is so that check the authenticity and integrity of C.
14, according to the method for claim 13, wherein said publicly-owned authorization information comprises the publicly-owned key of first party corresponding with the privacy key of first party in the publicly-owned key digital signature scheme.
15, according to the method for claim 13, wherein second party utilizes the step of described publicly-owned authorization information to comprise in following at least one:
(a) second party obtains described publicly-owned authorization information from first party;
(b) second party obtains described publicly-owned authorization information from the information that sends with the related first party of described serial data C;
(c) second party obtains described publicly-owned authorization information from digital certificate;
(d) second party obtains described publicly-owned authorization information from the relevant obtainable publicly-owned information of first party.
16, according to the process of claim 1 wherein that second party is identical with the four directions.
17, according to the process of claim 1 wherein that described second party is identical with described third party.
18, according to the method for claim 1, altogether in only when F (V)<s V satisfy P, wherein F is a function, s is a constant.
19, according to the method for claim 18,0<s<1 wherein.
20, according to the process of claim 1 wherein F be adopt any Bit String as input and return one greater than 0 less than 1 number function as output.
21, according to the process of claim 1 wherein that described transaction T is partly characterized by trading value Tv.
22, according to the method for claim 21, the amount of money that wherein said four directions receives is greater than Tv.
23, according to the method for claim 20, wherein said transaction T is partly characterized by trading value TV, and the described amount of money that wherein said four directions receives equals (Tv*1/s).
24, according to the method for claim 1,
(a) wherein said data item V comprises the digital signature of the described second party that relates to described serial data C; And
(b) if wherein F (V) is less than s, V just satisfies P, F represent to operate Bit String and return between 0 and 1 a number as output publicly-owned function.
25, according to the process of claim 1 wherein that described serial data C comprises the information that relates to T, described information comprises at least one in following:
A) identity of first party;
B) Jiao Yi time;
C) Jiao Yi date.
26, user U is that trading value is a kind of method of the transaction T of Tv to the M of dealer foundation payment, and this method comprises:
A. this user is that first digital signature scheme is set up publicly-owned key and corresponding privacy key, and obtains a serial data C=SI from T U(T) comprise the eCheck of C with establishment, wherein SIG U(T) represent user U digital signature to transaction T in described first digital signature scheme;
B. this user makes this dealer receive described serial data C;
C. this dealer is that second digital signature scheme is set up publicly-owned key and corresponding privacy key, and with described serial data C and a data item V=SIG M(C) be associated together, wherein SIG M(C) represent the M of dealer digital signature to described serial data C in described second digital signature scheme.
D. the calculated value F of this dealer (V)=F (SIG M(C)), F represents that an operation Bit String is to export the publicly-owned function of the number between 0 and 1;
E. this dealer compares F (SIG M(C)) and constant s to determine whether F (V)<s, if just make bank obtain the described public keys of this dealer;
F. bank verifies F (SIG with the described public keys of this dealer M(C))<s; And
G. only as F (SIG M(C))<during s, bank makes this dealer receive amount of money A=[Tv*1/s]; Wherein s is greater than 0 less than a constant of 1, and represents the selected probability of submitting to bank of this eCheck.
27, be used to transaction T to set up a kind of system of payment, this system comprises:
A. communicator is used for transmitting data between first party, second party, third party and four directions;
B. first treating apparatus is used to obtain, import the serial data C relevant with T with storage by the first party operation;
C. second treating apparatus is used at least a portion with a data item and C by second party response C operation and is associated together and determines whether V satisfies attribute P; Wherein V can not be predicted by first party fully;
D. optionally being operated so that the third party receives by second party when V satisfies P makes the third party can verify whether V satisfies the device of the information I of P; With
E. when satisfying P, selectively operates so that the four directions receives the device of the amount of money A V by the third party.
28, be used to transaction T to set up a kind of method of payment, this method comprises:
A. first party receives at least a portion of serial data C from second party, and wherein said serial data C is relevant with T;
B. first party is associated together described at least a portion and a data item V of C, and wherein V can not be predicted by second party fully; With
C. first party determines whether V satisfies P, and only first party receives the third party to make the third party can verify whether V satisfies the information I of described attribute P, make the third party can allow the four directions receive amount of money A thus after definite V satisfies P when V satisfies P.
29, for transaction T sets up a kind of method of payment, this method comprises:
A. first party receives from second party and makes first party can verification msg item V whether satisfy the information I of attribute P; Wherein said data item is associated from least a portion of the serial data C of T acquisition with the third party, and wherein V fully can not be by described third party's prediction;
B. first party verifies after receiving V whether V satisfies described attribute P; With
C. only when V satisfies attribute P, first party makes the four directions receive amount of money A.
30, set up a kind of method of payment for the transaction T that is partly characterized by time t, this method comprises:
A. first party is obtained the serial data C relevant with T from T, and wherein C comprises the relevant information IN with described time t;
B. first party makes second party receive at least a portion of described serial data C, and wherein described at least a portion of C comprises information IN;
C. second party is associated together described at least a portion and a data item of C, and wherein V can not be predicted by first party fully;
D. second party determines whether V satisfies attribute P, makes the third party receive information IN and make the third party can verify whether V satisfies the information I of described attribute P if V satisfies attribute P second party at time t ';
E. the third party verifies after receiving I whether V satisfies attribute P; With
F. only work as: a) V satisfies attribute P, and b) | t '-t| during less than predetermined time interval the third party make the four directions receive amount of money A.
31, according to the method for claim 30, wherein said predetermined time interval | t '-t| is n days, and n is a nonzero integer of from 1 to 7.
32, according to the method for claim 30, wherein said predetermined time interval | t '-t| is m hour at least, and m is a nonzero integer of from 1 to 24.
33, according to the method for claim 30, wherein first party makes second party receive the described part of C at time t '>t in step B, and if wherein | t '-t| be not less than the predetermined quantity second party just refusal accept C as payment.
34, according to the method for claim 30, wherein said serial data C comprises the digital signature of creating with the privacy key of first party at least a portion of T.
35, according to the method for claim 30, wherein only when at least a portion coupling of V and C V just satisfy P.
36, according to the method for claim 30, wherein said attribute depends on V rather than C.
37, according to the method for claim 30, wherein only when F (V)<s V just satisfy P, wherein F is a function, s is a constant and 0<s<1.
38, according to the method for claim 37, wherein the value F of function F (V) is that first party is inscrutable fully.
39,, wherein in C, specified at least one among described function F and the described constant s according to the method for claim 39.
40, according to the method for claim 37, wherein F is one of following:
(a) Gu Ding publicly-owned function;
(b) with any Bit String as input and return one greater than 0 less than 1 number as the publicly-owned functions of exporting.
41, according to the method for claim 30, wherein V comprises the digital signature of the C that the privacy key with second party calculates, is expressed as SIG M(C).
42, according to the method for claim 30, after the four directions receives the step of amount of money A, also comprise the third party make first party receive by second party provide to one or more transaction TS i(i=1 ..., the step of order n), prerequisite be to all i (i=1 ..., n), described transaction TS iBy time ts iPart characterize and | ts i-t| is less than scheduled volume.
43, according to the method for claim 30, wherein said V comprise following at least one digital signature:
(a) relevant with T and be comprised in date and time information among the C;
(b) sequence number that comprises among the C;
(c) string that comprises among the C;
(d) the random train part among the C; With
(e) depend on the amount of C.
44, according to the method for claim 30, wherein said data item V comprises the digital signature of G (C), at least one in G representative function and the algorithm.
45, according to the method for claim 44, wherein only work as F (V)=F (SIG M(G (C)))<described data item V just satisfies P during s; Wherein F represents a function; Wherein s represents a constant and 0<s<1; And its intermediate value F (V) can not be predicted by first party fully.
46, according to the method for claim 44, wherein G (C) is specified among T and the C at least one.
47, according to the method for claim 44, wherein G (C) comprises at least one in following:
(a) T substring;
(b) with the transaction T the relevant information F of time t;
(c) the relevant information of date that takes place with transaction T; With
(d) the string W that selects by first party.
48, according to the method for claim 47, wherein said string W is unique to T, and selects at random.
49, according to the method for claim 47, V=SIG wherein M(G (C)) is fit to be calculated before receiving at least a portion of described C by second party.
50, according to the method for claim 44, if V=SIG wherein MAt least some bits of at least some bits match C of (G (C)) then satisfy described attribute P.
51, according to the method for claim 44, if wherein at V=SIG MThe m-bit of selecting among the m-bits match C that (G (C)) selects then satisfies described attribute P, and wherein m is the positive integer of being scheduled to.
52, according to the method for claim 51, wherein m is about 10.
53, for transaction T sets up a kind of method of payment, this method comprises:
A. first party is obtained the serial data C relevant with T from T, and makes at least a portion of the serial data C that second party receives;
B. second party determines whether P sets up, and wherein Q can not be predicted by first party fully between described at least a portion of C and an amount Q who depends on C, if set up, second party receives the third party to make the third party can verify the information I that satisfies described attribute P;
C. the third party verifies after receiving I whether card satisfies described attribute P; With
D. only when the stating attribute P and set up between the described at least a portion of C and Q of checking, the third party makes the four directions receive amount of money A.
54, according to the method for claim 53, wherein said amount Q can be represented as G (C), and wherein G is at least one in function and the algorithm.
55, according to the method for claim 54, wherein G (C) comprise relate to following at least one information:
Time t when (a) transaction T takes place and
Date d when (b) transaction T takes place.
56, according to the method for claim 55, at least some bits of wherein only working as C equal SIG MDescribed attribute P just sets up SIG during at least some bits of (G (C)) M(G (C)) represents the digital signature with the G (C) of the privacy key establishment of second party.
57, set up a kind of method of payment for the transaction T that is partly characterized by time t, this method comprises:
A. first party obtains the serial data C relevant with T from T;
B. second party is obtained and a series of time t i(i=1 ..., n) relevant a series of value VL, wherein at least one greater than 1 integer m less than n, | t-t m| less than a scheduled volume.
C. first party makes second party receive at least a portion of described serial data C, and wherein said part comprises the relevant information of time t with described transaction T;
D. second party is determined described part and and the t of P at C mRelevant described value VL mAnd depend on VL mA quantity Q in one between whether set up;
If receiving the third party, E. P establishment, second party make the third party can verify the information I that whether satisfies described attribute P;
F. the third party verifies after receiving I whether Q satisfies P; And
G. only when Q satisfies described attribute P, the third party makes the four directions receive amount of money A.
58, according to the method for claim 57, wherein said quantity Q is provided by Q=F (SIGM (Vm)), and F represents a function, and SIGM (Vm) represents the digital signature of the Vm that creates with the privacy key of second party.
59, set up a kind of method of payment for the transaction T that is partly characterized by exchange hour t, this method comprises:
A. first party is obtained the serial data C relevant with T from T, and wherein C comprises the information relevant with t;
B. second party is obtained and a series of t of chronomere i(i=1 ..., n) relevant a series of value V iEvery couple of adjacent t of chronomere wherein I+1And t iDefined a time interval Δ t i=t I+1-t iAnd wherein at least one greater than 1 integer m less than n, described time t is at time interval Δ t mWithin;
C. at described time interval Δ t mBeginning, second party is obtained and V mRelevant value Q m, Q wherein mCan not predict by first party fully;
D. at time interval Δ t mIn:
A) first party makes second party receive at least a portion of C;
B) second party is determined described part and the Q at C mBetween attribute P whether set up, if set up, second party receives the third party to make the third party can verify the information I whether described attribute P is satisfied;
E. the third party is after receiving I, and whether checking Q satisfies P; And
F. only after Q satisfies described attribute P, the third party makes the four directions receive amount of money A.
60, according to the method for claim 59, wherein step C occurs in before the step B, and wherein only just satisfies described attribute P when at least some bits of at least some bits match C of Q.
61, according to the method for claim 59, Q wherein iBy Q i=F (SIG M(V i)) provide, F represents a function, SIG M(V i) V that creates of the privacy key of second party iDigital signature.
62, according to the method for claim 59, wherein for all i=0,1 ..., n, time interval Δ t i=| t I+1-t i| be predetermined time interval.
63, according to the method for claim 62, wherein said constant predetermined amount is one day.
64, set up a kind of method of payment for the transaction T that is partly characterized by time t, this method comprises:
A. first party is obtained the serial data C relevant with T from T, and wherein C comprises the information F relevant with t;
B. second party is obtained and a series of t of chronomere i(i=1 ..., n) relevant a series of value x i(i=1 ..., n), and x0 is open; Wherein to i=0,1 ..., n-1, x i=H (x I+1), H is an one-way hash function; Every couple of adjacent t of chronomere wherein I+1And t iDefined a time interval Δ t i=t I+1-t iAnd wherein at least one greater than 1 integer m less than n, described time t is at time interval Δ t mWithin;
C. at described time interval Δ t mIn, first party makes second party receive at least a portion of C, and wherein said part comprises F; Second party is obtained and V mRelevant value Q m, Q wherein mCan not predict by first party fully;
D. at described time interval Δ t mIn: second party is determined at Q mWhether set up with the described part attribute P of C, if set up, second party receives the third party to make the third party can verify the information I whether described attribute P is satisfied;
E. the third party is after receiving I, and whether checking Q satisfies P; And
F. only after Q satisfies described attribute P, the third party makes the four directions receive amount of money A.
65, according to the method for claim 64, wherein second party is with x 0Disclosed step comprises at least one in following:
A) with x 0Be placed in the publicly-owned file;
B) use the privacy key of second party to x 0Carry out digital signature, and corresponding publicly-owned key is placed in the publicly-owned handbook;
66, according to the method for claim 64, wherein said time interval Δ t i=t I+1-t iTo all i=1 ..., n is a constant.
67, set up a kind of system of payment for the transaction T that is partly characterized by time t, this system comprises:
A. the communicator that is used for transmission data between first party, second party, third party and four directions;
B. first treating apparatus can be used to obtain, import the serial data C relevant with T with storage by the first party operation, and wherein C comprises the information F relevant with time t;
C. second treating apparatus can be used at least a portion with data item V and C by second party operation and response C and be associated together and determine whether V satisfies attribute P; Wherein V can not be predicted by first party fully;
D. when V satisfies P by second party selectivity operation so that the third party receive F and make the third party can verify V whether satisfy P and | whether t '-t| less than the device of a predetermined quantity;
E. when V satisfy P and | t '-t| during less than a predetermined quantity by the operation of third party's selectivity so that the four directions receives the device of amount of money A.
68, set up a kind of method of payment for the transaction T that is partly characterized by time t, this method comprises:
A. first party receives from second party at time t ' and makes first party can verification msg V whether satisfy the information I of attribute P; Wherein said data item V and third party obtain and have comprised relevant news of at least a portion of the serial data C of the information relevant with t from T; And wherein V can not be predicted by described third party fully;
B. first party verifies after receiving I whether V satisfies described attribute P; And
C. only work as a) that V satisfies described attribute P, and b) | t '-t| during less than a predetermined quantity first party make the four directions receive amount of money A.
69, set up a kind of method of payment for the transaction T that is partly characterized by time t, this method comprises:
A. first party receives at least a portion of serial data C from second party, and wherein said serial data C is relevant with T, and the described part of C has comprised the information relevant with t;
B. first party is associated together described at least a portion and a data item of C, and wherein V can not be predicted by second party fully;
C. first party determines whether V satisfies P, if, first party receives the third party at time t ' to make the third party can verify whether V satisfies the information I of P, makes the third party satisfy described attribute P at a) V thus, and b) | t '-t| can make the four directions receive amount of money A during less than a predetermined quantity.
70, be n a large amount of transaction T 1, T 2... T j... T nSet up a kind of method of payment, wherein 1 and n between index i can with each T that concludes the business iBe associated, and wherein each the transaction T iBy trading value TV iPart characterizes, and this method comprises:
A. first party is every transaction T with the probability method of payment iProduce a check C iAnd make second party receive described C i, C wherein iComprise the indication of index i;
B. second party is to allow first party can not predict which check C in advance jA kind of mode that is selected to in-clearing is selected payable check C j(1<=j<=n);
C. second party receives the third party to make the third party can verify selected check C jPayable information I whether j
D. the third party is receiving I jAfter, verify selected check C jWhether should be paid;
E. only work as C jIn the time of should be paid, first party receives the four directions and deposits amount of money CR in j, and make first party by amount deducted D i, like this to 1 and n between all index, and any selection of counterpart expenditure check, D=D 1+ D 2+ ... + D jBe not more than TV Agg=TV 1+ TV 2+ ... + TV j
71, according to the method for claim 70, all index j between 1 to n wherein, each amount deducted D jTo small part by TV jAnd C jOne of the decision.
72, according to the method for claim 70, each amount deducted D wherein jBe called as and T jRelevant described index j.
73, according to the method for claim 72, wherein each amount deducted Dj also depends on a previous amount deducted Dk (1<=k<j<=n) and deducted a previous index 1 (one of 1<=1<j<=n) of amount of money D1 for it.
74,, comprise that also it is the selected the check C that pays that described the 5th side makes according to the method for claim 70 jThe step of the indication of storage index j.
75, according to the method for claim 74, in-clearing C wherein jEach amount deducted D jThe index k that depends on any previous check that the discovery of last storage should be paid.
76, according to the method for claim 70, wherein second party makes the third party receive information I jStep comprise in following at least one:
A) second party is with I jSend to the third party;
B) second party request the 5th side is with I jSend to the third party; With
C) second party is with I jBe placed in the file, described third party obtains I from described file j
77, be n a large amount of transaction T 1, T 2... T iT nSet up a kind of method of payment, wherein 1 and n between index i can be associated with each Ti, T wherein concludes the business iBy trading value TV iPart characterizes, and this method comprises:
A. first party is from each T that concludes the business iObtain one and T iRelevant serial data C i, and make second party receive described serial data C i
B. second party is with each serial data C iWith a data item V iBe associated together, wherein V iCan not be predicted by first party fully;
C. second party is determined V iWhether satisfy attribute P i, if second party receives the third party to make the third party can verify V iWhether satisfy attribute P iInformation I i
D. the third party is receiving I iVerify V afterwards iWhether satisfy attribute P iWith
E. only work as V iSatisfy attribute P iThe time, the 5th side receives the four directions and deposits amount of money CR in i, and make first party by amount deducted D iWherein said amount deducted D iBe less than or equal to the described amount of money CR that deposits in i
78, according to the method for claim 77, wherein to 1 and n between all index, D 1+ D 2+ ... + D iBe less than or equal to TV 1+ TV 2+ ... + TV i
79, according to the method for claim 77, wherein to 1 and n between all index, each amount deducted D iTo small part by TV iAnd C iOne of determine.
80, according to the method for claim 77, each serial data C wherein iComprise and T iRelevant described index iIndication.
81,0 method, wherein each amount deducted D according to Claim 8 iDepend on and T iRelevant described index i.
82,1 method, wherein each amount deducted D according to Claim 8 iAlso depend on a previous amount deducted D jAnd deducted amount of money D for it kA previous index k in one.
83,2 method according to Claim 8, wherein to 1 and n between all index, D 1+ D 2+ ... + D iBe less than or equal to TV 1+ TV 2+ ... + TV i
84,, also comprise as long as V according to the method for claim 77 iSatisfy attribute P iDescribed the 5th side just facilitates and is each serial data C iCanned data SN iStep.
85,4 method, wherein SN according to Claim 8 iBe the described serial data C of representative iProgressive sequence number with respect to the order of other serial data.
86,4 method, wherein each amount deducted D according to Claim 8 iBe to use SN iDetermine.
87,4 method according to Claim 8, wherein to 1 and n between all index, D 1+ D 2+ ... + D iBe less than or equal to TV 1+ TV 2+ ... + TV i
88,4 method, wherein each amount deducted D according to Claim 8 iBe to use SN iDetermine.
89, be all equivalence transaction T of TV of a plurality of value i, T 2... T iT nSet up a kind of method of payment, this method comprises:
A. first party is from each T that concludes the business iObtain and T iRelevant serial data C i, and make second party receive described serial data C iEach serial data C wherein iComprise a progressive sequence number S i, described progressive sequence number S iSince 1 successively in order and represent C iWith respect to orderly serial data sequence C j(j=1 ..., n) in the position of other serial data
B. second party is with C iWith a data item V iBe associated together, wherein V iCan not be predicted by first party;
C. second party is determined at C iAnd V iBetween attribute P iWhether set up, if set up, second party receives the third party to make the third party can verify V iWhether satisfy P iInformation I i
D. third-party authentication V iWhether satisfy P iAnd and if only if V iSatisfy P iThe time:
A) the 5th side determines S MaxValue, S wherein MaxRepresent C kIn the maximal value of any sequence number of comprising, to C k:
i)1<k<n;
Ii) C kBe to receive C iReceived by second party before;
Iii) the third party empirical tests V kSatisfy P kAnd
Iv) described first party has been deducted non-fractionl amount D k
B) described the 5th side receives the four directions and deposits amount of money CR in; And
C) described the 5th side makes first party by amount deducted D i, Di=(S i-S Max) * TV.
90,9 method according to Claim 8 is wherein only as F (V iV during)<s iJust satisfy P i, s is a number, F is a Bit String of operation and the function that returns a number.
91, according to the method for claim 90, wherein be proportional to TV and 1/s by the described amount of money CR that deposits in that described four directions receives.
92, according to the method for claim 90, wherein F operates a Bit String to export the function of a number between 0 and 1, and wherein s is the number between 0 and 1.
93, user U is that trading value is TV i(i=1 ..., a plurality of transaction T n) i(i=1 ..., n) set up a kind of method of paying to the M of dealer, this method comprises:
A. user U is that first digital signature scheme is set up publicly-owned key and corresponding privacy key, from each T iObtain a serial data C i=SIG U(T i) and create one and comprise C iWith sequence number S iECheck CH i
SIG wherein U(T i) representative described first digital signature scheme in user U iTo transaction T iDigital signature;
S wherein iBe a progressive sequence number, represent described serial data C iThe orderly serial data sequence C of obtaining with respect to described first party j(j=1 ..., position n);
B. user U receives the M of dealer to comprise C iAnd S iDescribed eCheck CH i
C. the M of dealer is that second digital signature scheme is set up publicly-owned key and corresponding privacy key, and with described serial data C iWith a data item V i=SIG M(C i) be associated together SIG wherein M(C i) represent the M of dealer in described second digital signature scheme to described serial data C iDigital signature;
D. the M of dealer calculated value F (V i)=F (SIG M(C i)), Bit String of F representative operation is to export the publicly-owned function of the number between 0 and 1;
E. the M of dealer compares F (SIG M(C i)) and a constant s (0<s<1) to determine whether F (V i)<s is if just make bank obtain the described publicly-owned key of the M of dealer;
F. bank is with the publicly-owned key authentication of dealer F (SIG whether M(C i))<s; And
G. only as F (SIG M(C i))<during s:
A) the 5th side determines S MaxValue, S wherein MaxRepresentative is according to any CH in its described ordered sequence of paying jIn the maximum sequence number S that comprises j
B) described the 5th side receives the four directions and deposits amount of money CR in; And
C) described the 5th side makes first party by amount deducted Di.
94, according to the method for claim 93, each transaction T wherein i(i=1 ..., be equivalent n), so to all i=1 ..., n, TV i=TV, and D altogether i=(S i-S Max) * TV, wherein CR=TV* (1/s).
95, be used to a large amount of n transaction T 1, T 2..., T i..., T nSet up a kind of system of payment, wherein 1 and n between index i can with each T iBe associated, and wherein each the transaction T iBy trading value TV iPart characterizes, and this system comprises:
A. the communicator that is used for transmission data between first party, second party, third party and four directions;
B. first treating apparatus can be used to obtain, imports and store serial data C by the first party operation i( iSmaller or equal to n and more than or equal to 1), C wherein iWith transaction T iRelevant, and C wherein iComprise progressive sequence number S i, S iRepresent check C iAt orderly check order C j(j=1 ..., the n) position of other check in;
C. second treating apparatus can and respond C by the second party operation iBe used for data item V iWith C iAt least a portion be associated together and determine V iWhether satisfy attribute P i, V wherein iCan not be predicted by first party fully; And wherein said second treating apparatus is at V iSatisfy P iThe time made the third party can verify V by the second party selective operation so that the third party receives iWhether satisfy P iInformation I i
D. work as V iSatisfy P iThe time by the device of third party's selective operation, be used for determining S MaxValue, make the four directions receive amount of money CR i, and make first party by amount deducted D i, wherein to 1 and n between all index, D 1+ D 2+ ... + D iBe not more than TV 1+ TV 2+ ... + TV i
96, be used to a large amount of n transaction T 1, T 2..., T i..., T nSet up a kind of method of payment, wherein 1 and n between index i can with each T iBe associated, and wherein each the transaction T iBy trading value TV iPart characterizes, and this method comprises:
A. first party receives each C from second party iSerial data C iAt least a portion, each serial data C wherein iBe from T with the probability payment scheme iGenerate, and each C wherein iComprise the indication of index i;
B. second party is to allow first party can't predict which check C in advance jThe mode that is chosen as in-clearing is selected check C j(j is smaller or equal to n and more than or equal to 0) is in-clearing;
C. for each selected check C j, first party receives the third party to make the third party can verify selected check C jReally the information I that should be paid j, make the third party verify C thus jShould after the payment four directions be received and be deposited in amount of money CR jAnd second party is by amount deducted D iSo, for 1 and n between all index j and counterpart expenditure check C jAny selection, D=D 1+ D 2+ ... + D jBe not more than TV Agg=TV 1+ TV 2+ ... + TV j
97, be used to a large amount of n transaction T 1, T 2..., T i..., T nSet up a kind of method of payment, wherein 1 and n between index i can with each T iBe associated, and wherein each the transaction T iBy trading value TV iPart characterizes, and this method comprises:
A. first party receives from second party and makes first party can verify check C jThe information I that whether should be paid jWherein said check C jBy second party from by the third party from described a large amount of transaction T i(i=1 ..., n) the middle a large amount of corresponding check C that obtain i(i=1 ..., select in n); And wherein to described check C jSelection be that described third party fully can not be foreseeable;
B. first party is receiving I jVerify C afterwards jWhether should be paid really; With
C. first party makes the four directions receive amount of money CR iAnd make the third party by amount deducted D i
98, be used to a large amount of n transaction T 1, T 2..., T i..., T nSet up a kind of method of payment, wherein each transaction T iBy trading value TV iPart characterizes the multiple that TVi is unit value TV, and this method comprises:
A. first party is from each T that concludes the business iObtain and T iCorresponding serial data C i, and make second party receive described serial data C iEach serial data C wherein iWith vector (S i, S i+ v i-1) form comprises and described integer index i and T iDescribed value TV iRelevant information; Wherein to 1 and n between all i, S iBe a progressive sequence number S i, represent C iWith respect to orderly serial data sequence C j(j=1 ..., n) in the position of other serial data; And v wherein iBe integer and the expression T that depends on i iValue TV i, v i=TV i/ (UV);
B. second party is to allow first party can't predict which check C in advance jThe mode that is chosen as in-clearing is selected check C j(j is smaller or equal to n and more than or equal to 0) is in-clearing;
C. second party receives the third party to make the third party can verify V iWhether satisfy P iInformation I i
D. the third party is receiving I jVerify selected C afterwards jWhether should be paid;
E. only work as C jIn the time of should be paid:
A) the 5th side determines S MaxValue, wherein max is an integer, satisfies 1<=max<=n, and V Max=TV Max/ (UV); And S wherein MaxRepresent C k(maximal value of any sequence number that comprises among 1<k<n) is to C k:
Ii) C kBe to receive C iReceived by second party before;
Iii) the third party empirical tests V kSatisfy P kAnd
Iv) described first party has been deducted non-fractionl amount D k
B) described the 5th side receives the four directions and deposits amount of money CR in; And
C) described the 5th side makes first party by amount deducted D i, Di=(S i+ v i-1-S Max) * TV
99, be used to a large amount of n transaction T 1, T 2..., T i..., T nSet up a kind of method of payment, wherein 1 and n between index i can with each T iBe associated, and wherein each the transaction T iBy trading value TV iPart characterizes, TV iBe the multiple of unit value UV, this method comprises:
A. first party is from each T that concludes the business iObtain and T iCorresponding serial data C i, and make second party receive described serial data C iEach serial data C wherein iWith vector (S i, S i+ v i-1) form comprises and described integer index i and T iDescribed value TV iRelevant information; Wherein to 1 and n between all i, S iBe a progressive sequence number S i, represent C iWith respect to orderly serial data sequence C j(j=1 ..., n) in the position of other serial data; And v wherein iBe integer and the expression T that depends on i iValue TV i, v i=TV i/ (UV);
B. second party is with C iWith a data item V iAssociate, wherein V iCan not be predicted by first party fully;
C. second party is determined at C iAnd V iBetween attribute P whether set up, if second party receives the third party to make the third party can verify V iWhether satisfy P iInformation I i
D. third-party authentication V iWhether satisfy P i
E. only work as V iSatisfy P iThe time:
A) the 5th side determines S MaxValue, wherein max is an integer, satisfies 1<=max<=n, and V Max=TV Max/ (UV); And S wherein MaxRepresent C k(maximal value of any sequence number that comprises among 1<k<n) is to C k:
Ii) C kBe to receive C iReceived by second party before;
Iii) the third party empirical tests V kSatisfy P kAnd
Iv) described first party has been deducted non-fractionl amount D k
B) described the 5th side receives the four directions and deposits amount of money CR in; And
C) described the 5th side makes first party by amount deducted D i, Di=(S i+ v i-1-S Max) * TV
100, be a large amount of n transaction T i(i=1 ..., n) set up a kind of method of paying, each T that concludes the business iValue be TV i, this method comprises:
A. first party is from each T iObtain correspondence and T iA relevant serial data C i, and make second party receive described serial data C i
B. second party is uniquely with described serial data C i(i=1 ..., n) be divided into m tabulation L k, k=1 ..., m; Wherein each the tabulation L kComprise serial data C k 1..., C k 1kAnd ∑ wherein m k= 1l k=n;
C. second party is by being each L kCalculate and submit CM to kAnd submission L k(k=1 ..., m), and make the third party receive CM k(k=1 ..., m);
D. the third party is receiving CM k(k=1 ..., m) afterwards, select one or more integer index i 1, i 2... i r, and make second party receive described index i 1, i 2... i r, 1<=i wherein r<=m;
E. receive i 1, i 2... i rAfterwards, second party reclaims CM I1, CM I2... CM Ir, disclosed L to the third party thus I1..., L IrAnd
F. the 5th side receives the four directions and deposits amount of money CR in, and makes first party by amount deducted D.
101, according to the method for claim 100, wherein to L kDescribed submission CM kBe hashed value H (L k), wherein H is an one-way hash function.
102, according to the method for claim 100, each serial data C wherein iComprise the described trading value TV of representative iOne or more bits.
103, according to the method for claim 102, in step (b) afterwards, comprise that also second party will be worth V accordingly kWith each tabulation L kThe step that is associated together, wherein the serial data C among the Vk representative tabulation Lk k 1..., C k 1kTotal value, V wherein k=TV k 1+ ... + TV k 1k
104, according to the method for claim 102, after step (c), comprise that also second party is value list (V 1..., V m) calculate the step of submitting CV to, wherein said submission is submitted (V to second party 1..., V m), wherein CV is hashed value H (V 1..., V m); And wherein H is an one-way hash function, so second party can disclose (V to the third party by reclaiming CV 1..., V m).
105, according to the method for claim 100, wherein the described amount of money CR that deposits in that receives of four directions is provided by form down:
V=V 1+…+V k+…V m=∑ m k=1V k
106, according to the method for claim 100, wherein said amount deducted D is provided by following formula:
D=V I1+ V I2+ ... + V IrMultiply by an amplification factor
107, according to the method for claim 106, wherein said amplification factor is m/r.
108, according to the method for claim 100, wherein said each serial data C iComprise and represent integer SN iInformation, SN wherein iBe one since the orderly sequence number gradually time of 1 order, and SN iRepresent described transaction T iWith respect to described a large amount of n transaction T i(i=1 ..., n) other transaction T in 1..., T I-1And T I+1..., T nTime sequencing.
109, according to the method for claim 100, wherein first party is from T iObtain described serial data C iStep comprise that first party is T with the privacy key of first party iAt least a portion create the step of digital signature.
110, according to the method for claim 100, C wherein iAt least a portion be carried out checking.
111, according to the method for claim 100, C wherein iComprise at least one in following:
A) digital signature of at least a portion of T;
B) Message Authentication Code; With
C) eCheck.
112, according to the method for claim 100, wherein said the 5th side is identical with described third party.
113, according to the method for claim 100, wherein said second party, described third party are identical with described the 5th side.
114, according to the method for claim 100, wherein said second party is identical with described third party.
115, be a large amount of n transaction T i(i=1 ..., n) set up a kind of method of paying, each T that concludes the business iValue be TV i, this method comprises:
A. for each Ti, first party receives from T from second party iA serial data C who obtains i, and make second party receive described serial data C i
B. first party is uniquely with described serial data C i(i=1 ..., n) be divided into m tabulation L k, k=1 ..., m; Wherein each the tabulation L kComprise serial data C k 1..., C k 1kAnd ∑ wherein m k= 1l k=n;
C. first party is by being each L kCalculate and submit CM to kAnd submission L k(k=1 ..., m), and make the third party receive CM k(k=1 ..., m), make the third party can select one or more integer index i thus 1, i 2... i r1<=i wherein r<=m;
D. receive i 1, i 2... i rAfterwards, first party reclaims CM I1, CM I2... CM Ir, disclosed L to the third party thus I1..., L Ir, and make the third party that the four directions is received to deposit amount of money CR in and make second party by amount deducted D.
116, be a large amount of n transaction T i(i=1 ..., n) set up a kind of method of paying, each T that concludes the business iValue be TV i, and each transaction T iCan be by from T iA corresponding serial data C who obtains iRepresentative, and wherein said serial data C i(i=1 ..., n) can be divided into m tabulation L uniquely k(k=1 ..., m), each L that tabulates kComprise serial data C k 1..., C K1k(∑ m K=1l k=n), this method comprises:
A. first party receives m tabulation L from second party k(k=1 ..., m) in the submission CM of each tabulation k
B. first party is receiving CM k(k=1 ..., m) select one or more integer index i afterwards 1, i 2... i r, 1<=i wherein r<=m, and make second party receive described index i 1, i 2... i r, make second party can reclaim CM thus I1, CM I2CM IrSo that disclose L to first party I1..., L Ir
C. first party receives the third party to deposit amount of money CR in, make the four directions by amount deducted D.
117, be used to and have value TV separately iA large amount of n the transaction T 1, T 2..., T i..., T nSet up a kind of system of payment, this system comprises:
A. the communicator that is used for transmission data between first party, second party, third party and four directions;
B. first treating apparatus is used to each T by the first party operation iObtain, import and store a serial data C i
C. second treating apparatus is receiving C by second party iThe back operation is used for described serial data C i(i=1 ..., n) unique be divided into k the tabulation L k(k=1 ..., m) and input and store the described L that more shows k(k=1 ..., m); Wherein each the tabulation L kComprise serial data C k 1..., C k 1kAnd ∑ wherein m K=1l k=n;
Described second treating apparatus also is used to each L by the second party operation kCalculate and submit CM to kAnd be used for input and store described submission CM k(k=1 ..., m);
D. the 3rd treating apparatus can receive described submission CM by the third party kOperation afterwards is used to select one or more integer index i 1, i 2... i rAnd make second party receive described index i 1, i 2... i r, wherein all r are had 1<=i r<=m;
E. manage device everywhere, can receive described index i by second party 1, i 2... i rOperation afterwards is used to reclaim CM, discloses to the third party thus; And
F. disclosing L by the third party I1..., L I2Cao Zuo device afterwards is used for first party by amount deducted D and the four directions is received deposit amount of money CR in.
Figure A20058002868101071
Figure A20058002868101091
Figure A20058002868101121
Figure A20058002868101131

Claims (36)

1, a kind of payment processing system comprises:
First transaction handler, it be configured to merge with consumer and dealer between the relevant cost data of split sale transaction, the data of the cost data after this first transaction handler also is configured to will representative merge send to the receipts list financial entity relevant with this dealer;
Second transaction handler, it is configured to store the data of representing each independent split sale transaction, and wherein the data of being stored can be by at least one financial entity visit relevant with this dealer.
2, the payment processing system of claim 1, wherein this second transaction handler is positioned at the place away from consumer and dealer.
3, the payment processing system of claim 1, wherein this first transaction handler also be configured to merge with this dealer and at least two consumers between the relevant cost data of split sale transaction.
4, the payment processing system of claim 1, wherein this first transaction handler also is configured to merge the correlative charges data of the split sale transaction relevant with at least two dealer, and wherein these dealer are correlated with identical financial entity.
5, the payment processing system of claim 1, wherein the consumer is based on paying to dealer's payment split sale transaction by using.
6, the payment processing system of claim 1, wherein the consumer concludes the business to dealer's payment split sale based on pre-payment.
7, the payment processing system of claim 1, wherein the consumer is based on ordering the payment split sale transaction to dealer.
8, the payment processing system of claim 1, wherein the consumer pays to dealer's payment split sale transaction based on the back.
9, the payment processing system of claim 1, wherein the data of each independent split sale transaction of the representative of being stored can be by the single financial entity visit of described receipts.
10, the payment processing system of claim 1, wherein the data of each independent split sale transaction of the representative of being stored can be by the hair fastener financial entity visit relevant with this consumer.
11, the payment processing system of claim 1, wherein the data of each independent split sale transaction of the representative of being stored can be visited by the consumer.
12, the payment processing system of claim 1, wherein said first transaction handler also are configured to forward consumer's request to described second transaction handler and serve so that the consumer to be provided.
13, the payment processing system of claim 1, wherein said first transaction handler is positioned at the hair fastener financial entity relevant with this consumer.
14, the payment processing system of claim 1 also comprises:
The 3rd transaction handler is configured to follow the tracks of at least one the payment in the split sale transaction is checked.
15, the payment processing system of claim 14, wherein said the 3rd transaction handler are positioned at receives single financial entity.
16, the payment processing system of claim 1 also comprises:
The 4th transaction handler is configured to the total expenses data-switching is become third-party form.
17, the payment processing system of claim 16, wherein the 4th transaction handler is arranged in the server that comprises this first transaction handler.
18, the payment processing system of claim 1, wherein the data of each independent split sale of the representative of being stored transaction comprise with conclude the business in the uni-directional hash of at least one relevant account number.
19, the payment processing system of claim 1, wherein the data of being stored are decrypted in order to visit.
20, the payment processing system of claim 1 has at least one to occur in retail kiosk equipment in the split sale transaction wherein.
21, the payment processing system of claim 1 also comprises:
The 3rd transaction handler, be configured to merge with described consumer and second dealer between the relevant cost data of split sale transaction.
22, the payment processing system of claim 1, wherein said dealer provides priority processing with the future transaction of encouragement with this dealer to the consumer.
23, a kind of method of handling payment comprises:
Receive the data of representing first split sale transaction between first consumer and first dealer;
The expense of this first split sale transaction and the expense of second split sale transaction between this consumer and this dealer are combined;
Store data relevant so that this data can be had access to by at least one financial entity that is associated with this dealer with this first split sale transaction; And
The data of this total expenses of expression are sent at least one that be associated with this dealer receive single financial entity.
24, the method for claim 23 also comprises:
The expense of the expense of the split sale transaction that will be associated with first consumer and the split sale transaction that is associated with second consumer combines.
25, the method for claim 23 also comprises:
The expense of the expense of the split sale that will be associated with first dealer transaction and the split sale transaction that is associated with second dealer combines, and wherein these first and second dealer receive single financial entity with this and are associated.
26, the method for claim 23, the data that are associated with this first split sale transaction of wherein being stored can be received single financial entity visit by this.
27, the method for claim 23, the hair fastener financial entity visit that the data that are associated with this first split sale transaction of wherein being stored can be associated with this consumer.
28, the method for claim 23, the data that are associated with this first split sale transaction of wherein being stored can be had access to by this consumer.
29, the method for claim 21 is wherein stored the data that are associated with first split sale transaction and is comprised the account number application uni-directional hash that is associated to this first split sale transaction.
30, a kind of computer program that resides on the computer-readable medium has a large amount of instructions that are stored on this computer-readable medium, makes processor when described instruction is carried out by processor:
Receive the data of representing first split sale transaction between first consumer and first dealer;
The expense of this first split sale transaction and the expense of second split sale transaction between this consumer and this dealer are combined;
Store data relevant so that this data can be had access to by at least one financial entity that is associated with this dealer with this first split sale transaction; And
The data of this total expenses of expression are sent at least one that be associated with this dealer receive single financial entity.
31, the computer program of claim 30, also comprise instruction with:
The expense of the expense of the split sale transaction that will be associated with first consumer and the split sale transaction that is associated with second consumer combines.
32, the computer program of claim 30, also comprise instruction with:
The expense of the expense of the split sale that will be associated with first dealer transaction and the split sale transaction that is associated with second dealer combines, and wherein these first and second dealer receive single financial entity with this and are associated.
33, the computer program of claim 30, the data that are associated with this first split sale transaction of wherein being stored can be received single financial entity visit by this.
34, the computer program of claim 30, the data that are associated with this first split sale transaction of wherein being stored can be had access to by the hair fastener financial entity that is associated with this consumer.
35, the computer program of claim 30, the data that are associated with this first split sale transaction of wherein being stored can be had access to by this consumer.
36, the computer program of claim 30 is wherein stored the data that are associated with first split sale transaction and is comprised the account number application uni-directional hash that is associated to this first split sale transaction.
CNA2005800286811A 2004-06-25 2005-06-27 Payment processing method and system Pending CN101010690A (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US58301004P 2004-06-25 2004-06-25
US60/583,010 2004-06-25
US60/648,789 2005-02-01

Publications (1)

Publication Number Publication Date
CN101010690A true CN101010690A (en) 2007-08-01

Family

ID=38698126

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2005800286811A Pending CN101010690A (en) 2004-06-25 2005-06-27 Payment processing method and system

Country Status (1)

Country Link
CN (1) CN101010690A (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105245327A (en) * 2015-08-21 2016-01-13 北京比特大陆科技有限公司 Method, device and circuit for bitcoin workload proof hash calculation chip optimization
CN105590378A (en) * 2015-11-24 2016-05-18 中国银联股份有限公司 POS terminal and testing method by using the same
CN106503996A (en) * 2015-09-08 2017-03-15 Sk普兰尼特有限公司 Payment transaction based on web provides equipment, method and system
CN107533701A (en) * 2015-05-11 2018-01-02 万事达卡亚太私人有限公司 The method and system of consumer is rewarded in tokenized payment transaction
CN107578235A (en) * 2009-12-14 2018-01-12 Visa欧洲有限公司 Portable payment device
CN108476207A (en) * 2015-11-16 2018-08-31 万事达卡国际股份有限公司 System and method for certification internet message
CN109493507A (en) * 2017-09-11 2019-03-19 K·L·埃斯灵格 Automatic tip jars that generate reward behavior
CN110062374A (en) * 2019-05-31 2019-07-26 贵阳朗玛通信科技有限公司 The distribution method and device of a kind of number and SIM card
CN110310413A (en) * 2019-06-14 2019-10-08 北京未来购电子商务有限公司 The exempting from of a kind of self-service device pays application method and self-service device
CN111986411A (en) * 2020-09-10 2020-11-24 珠海优特物联科技有限公司 Settlement method and system
CN112884586A (en) * 2021-04-28 2021-06-01 支付宝(杭州)信息技术有限公司 Transaction execution method and block link point
CN112926763A (en) * 2021-01-15 2021-06-08 远光软件股份有限公司 Payment application scheduling method and device, storage medium and server
CN114971644A (en) * 2022-05-31 2022-08-30 中信百信银行股份有限公司 Automatic parallel payment method and system based on payment system
CN116797331A (en) * 2022-11-04 2023-09-22 武汉旻一数字科技有限公司 Bank card reader reading data acquisition management system based on big data

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107578235A (en) * 2009-12-14 2018-01-12 Visa欧洲有限公司 Portable payment device
CN107533701A (en) * 2015-05-11 2018-01-02 万事达卡亚太私人有限公司 The method and system of consumer is rewarded in tokenized payment transaction
CN105245327A (en) * 2015-08-21 2016-01-13 北京比特大陆科技有限公司 Method, device and circuit for bitcoin workload proof hash calculation chip optimization
CN106503996A (en) * 2015-09-08 2017-03-15 Sk普兰尼特有限公司 Payment transaction based on web provides equipment, method and system
CN108476207B (en) * 2015-11-16 2021-02-02 万事达卡国际股份有限公司 System and method for authenticating network messages
CN108476207A (en) * 2015-11-16 2018-08-31 万事达卡国际股份有限公司 System and method for certification internet message
CN105590378A (en) * 2015-11-24 2016-05-18 中国银联股份有限公司 POS terminal and testing method by using the same
CN109493507A (en) * 2017-09-11 2019-03-19 K·L·埃斯灵格 Automatic tip jars that generate reward behavior
CN110062374A (en) * 2019-05-31 2019-07-26 贵阳朗玛通信科技有限公司 The distribution method and device of a kind of number and SIM card
CN110062374B (en) * 2019-05-31 2022-06-07 贵阳朗玛通信科技有限公司 Method and device for distributing numbers and SIM cards
CN110310413A (en) * 2019-06-14 2019-10-08 北京未来购电子商务有限公司 The exempting from of a kind of self-service device pays application method and self-service device
CN111986411A (en) * 2020-09-10 2020-11-24 珠海优特物联科技有限公司 Settlement method and system
CN111986411B (en) * 2020-09-10 2022-11-25 珠海优特物联科技有限公司 Settlement method and system
CN112926763A (en) * 2021-01-15 2021-06-08 远光软件股份有限公司 Payment application scheduling method and device, storage medium and server
CN112884586A (en) * 2021-04-28 2021-06-01 支付宝(杭州)信息技术有限公司 Transaction execution method and block link point
CN112884586B (en) * 2021-04-28 2021-08-03 支付宝(杭州)信息技术有限公司 Transaction execution method and block link point
CN114971644A (en) * 2022-05-31 2022-08-30 中信百信银行股份有限公司 Automatic parallel payment method and system based on payment system
CN116797331A (en) * 2022-11-04 2023-09-22 武汉旻一数字科技有限公司 Bank card reader reading data acquisition management system based on big data
CN116797331B (en) * 2022-11-04 2024-05-28 重庆市奉节县兴农融资担保有限责任公司 Bank card reader reading data acquisition management system based on big data

Similar Documents

Publication Publication Date Title
US11887077B2 (en) Generating exchange item utilization solutions in an exchange item marketplace network
US11164228B2 (en) Method and medium for determining exchange item compliance in an exchange item marketplace network
KR20070034603A (en) Payment processing method and system
KR101961899B1 (en) Method for providing auto-payment service considering exchange rate between virtual and flat money
JP2000509859A (en) Apparatus and method for issuing and executing guaranteed securities to prepare for foreign exchange losses
CN103858141A (en) Payment device with integrated chip
KR20200078940A (en) Method for providing crypto currency payment and exchange service based on blockchain and apparatus therefor
CN101010690A (en) Payment processing method and system
US20230125124A1 (en) Obtaining conditions data for utilizing an exchange item
KR20090002050A (en) Method and system for operating a multi-account linked card and program recording medium therefor
KR101933658B1 (en) Method for providing service for managing risk of cryptocurrency investement
KR20080104404A (en) Method and system for processing trade receivables using merchant account and recording media therefor
KR20090002052A (en) Multiple payment approval processing method and system using account
KR20090120129A (en) Virtual wallet charging and payment system and its method
KR20090036160A (en) Value management method and system accumulated in online account linkage multifunction card and recording medium for it
KR20210001915A (en) Crowd funding platform for research goods based on block chain
KR20090057193A (en) Loan amount calculation server through store accounting information for each deposit path
HK1110674A (en) Payment processing method and system
JP2010113737A (en) Transaction information processing system
KR20090002056A (en) Customized account management method and system and recording medium therefor
KR20090002049A (en) Account Linked Coupon Registration Method and System
KR20090002060A (en) Discount Coupon and Fund Support Complex Payment Approval Process and System and Program Record Medium
KR20090036162A (en) Method and system for charging children's allowance using online account and recording medium
Ruiz-Martínez et al. Combination of a Smartcard E-Purse and E-Coin to Make Electronic Payments on the Internet.
KR20090085559A (en) How to use a multi-account linked card

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
REG Reference to a national code

Ref country code: HK

Ref legal event code: DE

Ref document number: 1110674

Country of ref document: HK

ASS Succession or assignment of patent right

Owner name: ROCK WEDGE CO., LTD.

Free format text: FORMER OWNER: PEIPERL COIN COMPANY

Effective date: 20081114

C41 Transfer of patent application or patent right or utility model
TA01 Transfer of patent application right

Effective date of registration: 20081114

Address after: oregon

Applicant after: Rock wedge company

Address before: Massachusetts

Applicant before: Peppercoin Inc.

C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication

Open date: 20070801