KR20030019466A - Method and system of securely collecting, storing, and transmitting information - Google Patents

Abstract

A method and system are disclosed that facilitate transactions by enabling transactions between customers, merchants, automatic clearing houses, credit card processing centers, credit card companies, and financial institutions. The system of the present invention authenticates all parties, such as customers, merchants, gateways, etc., encrypts the transmitted information, and securely stores the information that needs attention.

Description

METHOD AND SYSTEM OF SECURELY COLLECTING, STORING, AND TRANSMITTING INFORMATION}

The number of consumers buying goods and services online is growing rapidly. In order to make online purchases, most consumers pay using conventional credit cards. Recently, as credit card purchases through computer lines have increased and online sales have increased rapidly, the focus has been on the lack of security in these transactions. The systems currently used to authenticate and authorize information sent online cannot detect and prevent credit card fraud and misuse.

In order to alleviate consumer concerns about the security of Internet purchases, a system has been developed to secure the security of certain parts of the transmission process. However, these systems do not secure the entire transaction process and cannot prevent the misuse or misuse of credit card information. Credit card companies must also take the necessary steps to protect consumers from liability for stolen or misused credit card information. Even with this system in place, consumers need to look carefully at their credit card statements and, if there is any obvious fraud, contact a credit card company to cancel the credit card and wait for a new credit card to be issued.

Information is misused in many ways that current technology cannot prevent. Increasingly, people obtain credit card information by disguising themselves as consumers or merchants. Computer hackers gain unauthorized information by illegally accessing computers. Although technological advances have made illegal access difficult, hackers gain access to both credit card companies and merchants' computer servers to misuse credit card numbers and other confidential information. The hackers steal money from merchants or credit card companies who sell illegal information to e-mail distribution companies or use numbers to pay hackers to prevent the distribution of fraudulent information.

Computer programs have been developed to misuse information. For example, programs have been developed that can find unprotected servers or download encrypted password files. Encryption for these files encrypts the entire dictionary and crosses the encrypted password against the encrypted words in the dictionary. Software that disguises itself as a chosen website has been developed that allows hackers to obtain information from consumers who are unaware of accessing the website. Some software can even extract passwords, credit card numbers, or even images from your computer. Other programs have the ability to "listen" to a particular computer data port and send data through that port to another computer. There are also programs that can "reverse engineer" a computer program to bypass the unlock key or to perform a different function than the purpose.

When accessing the website's name server, the hacker reroutes the merchant's website, so that a consumer who believes the credit card number and other information is being sent to the merchant's website is actually hackers. Can be sent to. The hacker can also access the merchant's server by sending an email to the merchant's webmaster and deploying a program that captures the webmaster's password and returns it to the hacker. Misuse of credit card or account information is an attractive offense, not only because it is punishable, but because criminals are rarely punished.

The prior art focuses on encryption of transmission data and authentication of merchants. As we have seen, these efforts do not provide adequate security. The data may not be encrypted or may be captured during transmission or after the unencrypted data. Hackers are also developing complex ways to make current technology obsolete, either by disguising as a merchant or focusing on merchant certification.

As you know, fraudulent use of credit cards or other consumer information is not limited to merchants using Internet sales. Conventional transactions also carry the risk of fraud that cannot be prevented by conventional techniques. Most merchants use their computers to access the Internet even if they do not sell through the Internet. In doing so, merchants allow data stored on computers to be attacked by online hackers. Even merchants who don't use a computer are at risk of misuse of their credit cards or other information by their employees.

A large number of US patents pointed out various aspects of the aforementioned problem in an attempt to alleviate some of these drawbacks. See the following US patents.

For example, US Pat. No. 6,029,150 discloses a payment method in which a consumer has an account with an agent. The consumer first contacts the merchant to find out the product to be ordered and the desired price. The consumer then contacts the agent and asks the agent to pay the merchant.

However, in the system described above the merchant can be fake and paid fraudulently. Thus, the 6,029,150 patent requires a certifying authority to authenticate both agents and merchants. Such an authentication system is inherently dangerous and undesirable. Moreover, consumers store secret personal and financial information on their computers, which can then be attacked by hackers. The system software also modifies all existing web browsers, and the setup asks the bank to open a specific account. Patented system software can only be used on one computer, which is undesirable because it is complex and expensive, and transaction data is not protected from theft.

Therefore, it is highly desirable to have a system and method that can facilitate transactions and ensure the security of data such as credit card information or checking account numbers stored and transmitted during such transactions.

The present invention relates to a method and apparatus for easily completing a transaction. The present invention particularly relates to electronic transactions and systems for securing the security of secret information transmitted through potentially insecure communication means.

1 is a block diagram of a system according to the present invention.

2 to 4 are flow charts of the method according to the invention.

5-7 are detailed flowcharts of gateway / encryption / decryption device communication in the method of FIGS. 2-4.

In accordance with the present invention, the plurality of servers includes a gateway system for securely receiving, storing and organizing account information used to conduct transactions with other system members. When an item of sensitive information is sent to the gateway system, the gateway system receives it in two or more parts through different connections.

When reception is complete, portions of each item of secret information are stored in different nodes of the gateway system. Two parts of the same item of information are never stored in the same gateway node. Each part of the information item is named and contains any information contained in the second part of the same item. If an information item is needed, the gateway system combines the item using the name and duplicate information.

Each of the plurality of connecting means used to transmit the information item is secured. The gateway processes the encryption scheme of each connection means by using a private key known only to the gateway. To further provide security, these connection means can be made of a shared network, telephone circuit, conventional letter, fax or a combination thereof.

The objects, features and effects of the present invention will be better understood from the following detailed description with reference to the accompanying drawings.

An overview of the method according to the invention is given by describing the invention using general terms.

A. System Elements

An embodiment of the present invention will be described with reference to FIG. 1. 1, a tamper resistant electronic authentication and transaction system 10 is shown, which is made in accordance with the present invention. Generally referred to as 10, the system identifies the customer and the information needed to complete the transaction between the customer and the online merchant 32, conventional merchant 34, or another customer (not shown) through a potentially insecure medium. It operates in conjunction with the customer computer 12 associated with the specific information stored in the gateway server 14 that stores. In some embodiments, the system 10 operates using a customer's portable personal identification device (PID) 16, such as a key or card, wherein the PID 16 is a PID 16 and a gateway server 14. A communication connection is made with the customer computer 12 via an integrated intermediate encryption / decryption device (EDD) 18 that handles communication therebetween.

Each customer has private information that he wants to use to do business with the other party. This information is distributed to a plurality of servers (for example, 21 and 23) of the gateway system server 14. Confidential information includes the financial information necessary to authorize payment and to process payments to merchants, where the gateway server 14 collects the secret information and processes it to a processing center or credit card clearing house for authorization and payment. (25). The clearing house 25 then communicates with one of the possible number of different credit card companies (e.g. 27, 29), depending on the credit card issuer of the customer.

When the customer signs for the system's services, the customer is given a PID 16 and an EDD 18. EDD 18 is connected to a free port on the customer's computer 18. Even if a customer is given both an EDD 18 and a PID 16, his PID can be used with any other EDD.

EDD 18 is used to process digital signals between gateway server 14 and PID 16. The EDD 18 includes a serial number and additional dynamic code unique to the device, and the PID 16 includes a serial number and additional dynamic code unique to the customer. The serial number and additional code are used to authenticate the PID user. Also in some embodiments, the customer will answer one or more random password questions or a final challenge question password based on information predefined by the customer. However, personal identification numbers, fixed passwords or other identifying information can be used instead of predefined questions.

If the transaction relates to the customer and the online merchant's computer 32, the customer's web browser and selection software stored on the computer 12, PID 16 and EDD 18 are used to communicate with the gateway server. You do not need to update your web browser. The online merchant only needs additional software with the usual size to communicate with the gateway server and provide the gateway server with the merchant identity, transaction information, and method of contact with the customer. When a transaction is made between a customer and a conventional merchant, such as a retailer 34, in one embodiment an EDD (with a digital display 38, a keypad 41, a printer (not shown) and an internet enabled communication device 43) 36) to process the transaction. In this case, the customer connects his PID 45 to the EDD 36, and the EDD connects directly to the gateway server 14 via the Internet service provider 47 to show the communication from the gateway to the indicator device. The customer then responds to the gateway server 14 request via the keypad 41 of the EDD 36. Once the gateway server authenticates the user and completes the transaction, the gateway server 14 sends the result via the EDD 36 to the conventional merchant. The conventional merchant's system only needs software of the normal size to provide transaction information and receive transaction results.

In another example of such a system, software for conducting transactions is installed on a conventional merchant's computer (not shown). In addition, EDD 36 may be connected to a serial port or other port of a merchant's computer (not shown) to communicate with gateway server 14 using the communications device of that computer. A conventional merchant computer display (not shown) or keyboard (not shown) is used to facilitate communication between the gateway server 14 and the customer. The result of the transaction is reported directly to the merchant's computer.

In another embodiment, the conventional merchant's PID may be connected to the same EDD or to another EDD.

Referring to Figure 1 will be described in general terms for the method according to the invention. When a customer orders a product or service from an online merchant, the customer accesses the merchant's website via the Internet and selects the product or service. The merchant then transmits a data packet containing transaction information to the gateway system using the Internet or some other form of communication. This transaction information includes merchant identification information, transaction amount and the customer's IP address.

The merchant connects to the gateway server via a hyperlink. Thereafter, among the gateway system servers 14, the secure transaction access server 56 transmits a request validation signal. The EDD 18 and secure transaction access server 56 of the client computer 12 handle the encryption of the transaction, and the EDD 18 acts as a conduit for the server to read and write the PID 16. do. The customer's PID includes a device identification number and an easily changeable dynamic transaction code. The transaction code and identification number are then sent to the transaction access server for authentication.

Transaction information is distributed to a secure transaction processing server (e.g. 21, 22) for storage. In a transaction involving payment for a product or service, the gateway system server compiles the entire transaction information, including the customer specific payment information stored in volatile memory (not shown), and in full form the credit card bill exchange 25 or Checks are sent to a clearing house, which in turn communicates with the appropriate credit card company (eg, 27), a bank or other financial institution. In another embodiment, the compiled transaction information and financial information are sent directly to a credit card company, bank or other financial institution. Eventually, the financial transaction is approved or denied. If an approval is made, a transaction confirmation signal is sent from the gateway system server 14 to the merchant computer 32 and the customer computer, indicating that the financial institution has confirmed.

B. The method of the present invention

1. Identify customers and system gateways

According to one embodiment, the customer logs on to the gateway website server and enters his name and address and sometimes an email address. The customer then receives the EDD and PID (if none). In system 10, EDD and PID are different hardware devices. However, the two may be combined to form a single device.

An activation code is sent to the customer on a day different from the day the PID and EDD are mailed. At this time, the customer does not know whether the system gateway server is forged, and the gateway does not know whether the customer is forged.

2. Certification of Customer and System Gateway

The customer receives the activation code and activation URL by mail. The customer logs on to the system gateway activation website server and fills in his activation code. The software on the gateway website displays the customer information screen and communicates with the EDD to verify the EDD serial number. The gateway website software initializes the encryption scheme to be used for this transaction. The encryption / decryption function is (hardwired) programmed into the EDD chip (not shown) with the serial number. If the gateway website server is forged, the EDD and gateway website server will not be able to communicate. If the EDD and the system gateway server succeed in establishing an encrypted link, the new transaction code is written to the EDD and stored in an internal secure nonvolatile memory (not shown).

The EDD then checks the gateway server and PID and initializes the transaction code. In one embodiment, EDD's light emitting diodes (LEDs) (not shown) indicate whether the customer is connected to a valid gateway server or other web server. The red LED serves as a guide and informs you that communication and encryption have been performed. The green LED illuminates continuously, indicating that the connection is successful. If the gateway server or website server is forged, the red LED flashes. Different LED codes may be used to inform other events or status. For example, a blinking red LED could be used to indicate that the gateway was forged, a blinking green LED could be used to indicate that the merchant was forged, and if both flashed to indicate a defective PID, If there is no LED, it can indicate a faulty EDD.

In this initialization phase, the mailing address is verified with the activation code, and the gateway server verifies the EDD. The PID is also verified by the EDD and the gateway server and the gateway server is verified by the EDD and the customer.

Using the EDD and PID enabled, the customer logs on to his account and fills in the following information: If the customer subsequently fails a series of question and answer pairs, random password questions that will be used later to generate a random password question that will be used instead of a fixed personal password, personal identification number (PIN), or fixed password. Examples include a series of question and answer pairs (final question passwords) to be used later, additional email addresses, part of the card number of a credit or debit card, part of a bank account number, and other secret information.

The customer will then be provided an email with a one-time password to call the phone number. The customer then calls the number and uses the telephone keypad to enter the rest of the one-time password, card and bank account number.

After the customer fills in the remaining account number data, the gateway server requests an address verification service (AVS) from the credit and debit card company to verify the customer's name, address and card account. Upon passing the AVS verification, the gateway verifies the bank account name, number and bank by charging the service to the customer's bank account. If the bank account is properly charged, the customer is considered verified.

3. Purchase

The present invention provides an improved purchase method, whether the purchase is online or through a conventional store.

a. Buy online

In one embodiment, after the customer selects the desired product or service from the merchant's website, the merchant connects to the gateway server and sends the merchant identification information, purchase amount and the customer's IP address. The merchant then connects the customer to the gateway system server 10 via a hyperlink and optionally passes its merchant information as command line parameters sent in the same data packet.

The gateway server communicates with the customer's EDD to build an encryption system for the current transaction. If the encryption system is not processed, the customer goes back to the merchant's website and clicks the "bad connection" link that tells the merchant that the gateway server has not authenticated. If the encryption system authenticates, the PID is verified and used to authenticate the customer.

Instead of a fixed password or personal identification number, the customer receives a question he remembered and a random question from the answer pool (eg, the third letter in the answer to "What is my mother's maiden name?"). The customer is then required to authenticate the merchant by verifying the information held by the gateway.

In one embodiment, a merchant may cancel a transaction based on a rating value provided by the gateway, which is obtained by dividing the customer's problematic transaction count by the total transaction count. The merchant account of the gateway server may predefine an authorized class to be used to determine whether to trade with the current customer.

In one embodiment, the merchant's rating is shown to the customer along with the transaction information. This class is the merchant's number of problematic transactions divided by the total number of transactions. If the customer decides not to authorize the transaction, the transaction does not continue and the merchant is notified from the gateway server. When the customer authorizes the transaction, the customer selects a payment method (check account, credit card, debit card, etc.). If the selected payment method fails, the customer is asked to select another payment method if there is a remaining method. The merchant is then authenticated using the merchant's IP address and (if possible) secure socket layer (SSL) authentication from a certificate authority. The merchant is notified of the result of the transaction after authentication. After successful payment authorization, the customer's predetermined or selected customer information is sent to the merchant.

b. Alternative embodiment-conventional purchase

In another embodiment, the transaction is completed in a conventional store or restaurant in accordance with the method of the present invention. After the customer selects the goods or services desired by the conventional merchant's sales method, the customer inserts his PID into the sales device of the store.

It is best to have a PID that the merchant or employee can also identify. The EDD is verified with the gateway server. This confirms the PID of the customer and the merchant.

The customer is asked a random password question after confirmation. If you succeed, you will be able to see the merchant and the amount. The transaction then proceeds and succeeds. If the claim is denied, the customer selects another possible payment method. The merchant is then notified of the success of the transaction.

C. System Protocol

Electronic authentication and trading systems that are difficult to use illegally operate according to the following protocols.

1. Between the customer and the gateway server

In one embodiment, the customer communicates with the gateway server through the gateway website using a PID and an EDD. The gateway server first authenticates the EDD by recognizing the serial number and transaction code. The EDD then authenticates the gateway server with the encryption scheme used by the gateway. Once the gateway server authenticates, the EDD and gateway server set up a new transaction code and new encryption scheme. The LEDs of the EDD serve as described in the embodiment for authenticating the customer and the system gateway.

The EDD then sends the PID's serial number and transaction code to the gateway, which uses the serial number and transaction code to identify and authenticate the customer. The customer is then required to answer one or more random password questions as in the above embodiment. In certain situations, such as reactivating a PID or if a device fails to properly authenticate, a final question consisting of special question and answer pairs is required. Alternatively, a personal identification number, fixed password, or biometric information may be used instead of the password question.

2. between customer and dealer

In one embodiment, a customer selects goods and services from an online merchant's website using a web browser. Online merchants and customers communicate using a web server connected to a network such as the Internet. Authentication of online merchants and customers occurs between online merchants and gateways, and between customers and gateways. In this embodiment, authentication of the conventional merchant and the customer is also performed between the conventional merchant and the gateway, and between the customer and the gateway. No special protocol is required between conventional merchants and customers.

3. Between the online merchant and the gateway server

In one embodiment, the online merchant communicates with the gateway via a web server connected to the Internet. The online merchant is authenticated by the gateway via his IP address and optionally SSL authentication from a certificate authority. The online merchant's IP address is obtained from the name server of the gateway system. The gateway is authenticated to the online merchant by the customer's EDD when the merchant is involved in a transaction with the customer. In contrast, the online merchant communicates with the gateway using PID and EDD, and the gateway is authenticated by the online merchant's EDD in the same way as the protocol between the customer and the gateway.

4. Traditional merchant and gateway server

In one embodiment, if a conventional merchant is involved in a transaction with a customer, the gateway is authenticated by the merchant's EDD in the same manner as the protocol between the customer and the gateway, and the customer authenticates the traditional merchant.

Unrelated to transactions with customers, conventional merchants use PID and EDD to communicate with the gateway. The gateway is authenticated by the conventional merchant's EDD in the same way as the protocol between the customer and the gateway. The traditional merchant is authenticated by his PID's serial number and transaction code.

5. Customers and customers

In one embodiment, each customer uses a PID and an EDD. Each customer's PID and EDD are authenticated by the gateway, and the gateway is authenticated in the same way as the protocol between the customer and the gateway. Optionally, customer to customer transactions can be performed using one EDD with two or more PID connectors.

D. Detailed description of system elements

1. Gateway

In this embodiment, the gateway server 14 is each a number of servers and databases storing online merchant information, conventional merchant information, customer information, PID serial number, PID transaction code, EDD serial number, EDD transaction code and all transaction information. Holds.

Each online merchant, conventional merchant and customer is assigned one or more accounts. One way to access an account is to use PID, EDD and random password questions. However, fixed passwords, personal identification numbers, or Biometric information may be used instead of random password questions.

Online merchant information and conventional merchant information include merchant name, billing address , bank information, merchant account information, email address, telephone and fax number, access name, secret information, password information and other necessary information. The secret information may include online merchant bank account information stored on another gateway server in the same manner as the customer secret information is stored, as described below.

The customer information stored in the gateway server includes personal information, secret information, random password question information, final question information and other password or personal identification number information. Personal information includes a customer's name, telephone number, email address, billing address, and other information provided by the customer. The random password question information includes a pair of questions and answers provided by the customer at the time of contracting or at any point when the customer accesses the account. The random password question information is used as part of the customer identification process. The final question information is a pair of questions and answers provided by the customer at the time of contracting, but the customer can access their personal gateway account and change these questions and answers at any time. The final password question is used as described above.

Confidential information includes a customer's credit and debit card number, bank account information, other payment or financial information, medical information or records, and other information that the customer does not want to share. Customer's confidential information is stored on more than one server and encrypted using a unique discontinuous encryption code to prevent fraudulent use. The customer provides each item of confidential information online or by telephone, mail and / or fax. Security can be maintained by separating each item of information separately using different transmission modes. Secret information received online is encrypted and stored in one or more servers. Confidential information received via the telephone using the telephone keypad or other means is encrypted and stored in separate servers or servers.

The PID serial number, encrypted PID transaction code, EDD serial number, and encrypted EDD transaction code are also stored in the gateway server. The software on the gateway server validates the PID using the PID transaction code encrypted using the PID serial number, and identifies and authenticates the customer. The software on the gateway server uses the EDD serial number and the encrypted EDD transaction code to identify the device and identify the model of the device. To distinguish between models of the EDD, the gateway is updated with new devices while maintaining the ability to communicate with the old model.

The stored information is encrypted by a private cryptographic system that distinguishes each customer, EDD, PID and merchant. With this encryption, if some of the information is attacked, the rest of the information is still protected. The software used on the gateway can also be distributed or chained over one or more locations, requiring one or more programs to complete the transaction. One program of reverse engineering does not provide the information needed to decrypt the stored data or locate the stored data.

One or more software programs residing on gateway server 14 perform certain unique tasks. One or more software programs maintain communication between the gateway server and the merchant, and between the gateway and the customer computer. One or more software programs authenticate the identification of customers, online merchants and conventional merchants. One or more software programs receive a merchant identification number, transaction information, customer IP address and other necessary information from the merchant, access the customer IP address, and display the transaction information and merchant identity to the customer for approval. When a transaction involves payment for a product or service, one or more software programs aggregate the customer's confidential information into volatile memory and collect this information for credit card processing companies, credit card companies, and automatic clearinghouses for payment verification and authentication. Automated Clearing House, banks or other financial institutions. One or more software programs re-inform the customer and the merchant of the results received from the credit card processing company or the automatic clearing house. One or more software programs receive and provide personal information selected by the customer to the merchant, and transmit the personal information and transaction results to the merchant. Alternatively, if the credit card company or other financial institution wants to completely erase the credit or debit card number or the bank account number exposed by the Internet transaction and use the number system devised by the gateway, the gateway server may This designed number is used instead of a debit card number or bank account number.

2. Online merchant

In this embodiment, an online merchant is a merchant who owns or shares a network server that can be connected to a network such as the Internet, provides access to a website, and provides goods or services to other operators or customers.

The online merchant's website also owns software, such as a "shopping cart," which allows them to conduct transactions with the customer and allow the customer to select the merchant's goods or services.

The online merchant software has additional code that allows the merchant's website to transact with the gateway. The software sends the merchant's identity, transaction information and customer IP address to the gateway. After the customer completes the transaction with the gateway, the software receives and remembers the delivery from the gateway containing the transaction results.

The online merchant also owns one or more PIDs and EDDs that allow the employees of the online merchant to access the online merchant account on the gateway website.

3. Conventional merchant

In this embodiment, a traditional merchant is typically a conventional retailer that provides goods or services to other businesses or customers in a physical location instead of a website. This conventional merchant has a communication device 43 or conventional accounting software.

If the EDD does not own add-ons (for example, display devices, keypads, printers, or communication devices), the EDD connects to a computer (not shown) by accessing a port existing on the computer of a conventional merchant. It communicates with the gateway because it uses a communication device installed in the network.

Traditional merchant computer screens and keyboards are used for communication between the gateway and customers. The additional software is implemented inside the accounting software of the conventional merchant to transmit the merchant identity 26 and transaction information, and record the transaction results. The conventional merchant also owns one or more EDDs to allow his employees to access merchant accounts on the gateway website.

4. customer

The customer may be an individual, a business operator, or another entity.

a. Personal customer-personal account

In this embodiment, a personal customer contracts with a gateway to a personal account, provides account setup information and receives a unique PID and EDD as described above. Customers use PID and EDD to update their accounts and trade with online merchants, conventional merchants and others. The PID works with any EDD.

More than one customer will be able to use one personal account. This is accomplished by assigning one or more PID serial numbers and transaction codes to a personal account. An individual who sets up an account can be given access, control access, and deny access to information on the personal account.

b. Business customer-business account

In the case of a carrier account, the person (signer) authorized to sign checks and charge items for the carrier credit account must apply for the carrier account to the gateway system 10. This person shall provide evidence of the carrier's general information, confidential information, random password question information, final question password questions, and evidence from the operator authorizing the person to open the gateway account and authorizing the use of the secret information for the operator. do. When the signer wants a personal account, the random password question and final question password for the pair of signer personal account and the operator gateway account may be the same. However, the signer has access to view or update the random password question or the final question password question information.

General information includes, but is not limited to, a business name, address, telephone number, fax number and email address. The section of the business account allows the signer to list the names of additional employees who are easy to see the transaction history and generate one or more question and answer pairs while the employee is granted access and the employee is active.

In this embodiment, one PID may possess one or more PID serial numbers and PID transaction codes that may be assigned to one or more individual and / or business customer accounts. Each account may also have different access classes and different areas defined by the assigned PID serial number. Accordingly, the signer may access the employee's account, including what items of confidential information are available to him, the limit on the total amount of the billable or payable amount, and what general information items may be assigned to the employee. Can be updated and whether or not the transaction information can be viewed by the employee.

The PID and EDD may be mailed to the signer corresponding to each employee selected by the signer. Employee is granted and initialized access to the business account in one of two ways. If the employee already has a personal account, the employee can insert his PID into an EDD, access his personal account, and request the addition of another account. The employee is then assigned to the signer by the gateway when the signer adds the employee. Entry of an activation code is required. Once the activation code is entered, the gateway matches the name on the personal account with the name of the employee present on the operator account and authorized by the signer. If the name on the personal account does not match the employee's name on the business account, the activation code is canceled and the transaction is rejected. If the name on the personal account matches the employee's name on the business account, then the question generated by the signer is thrown to the PID holder. If the PID holder's response is correct, an additional PID serial number and transaction code are written to the PID and assigned to the operator account.

If the employee authorized by the signer does not yet have a personal account, the signer uses his PID and EDD to access the business account through two PID connections (not shown) and "activate an employee. employee) "screen. In this "Employee Activation" screen, the inactive PID is connected to the EDD simultaneously with the signer's PID. The signer then enters the employee's name to activate the submit button and presses the submit button. The active employee's name must match the name of the employee to whom the signer has already authorized to gain access. If the name matches, the new PID serial number and transaction code are written to the inactive PID and the signer is given an activation code. The signer then delivers this PID to the authorized employee.

To complete the activation of the employee, the employee must log on to the gateway using the PID given by the signer, enter the activation code and answer the question generated by the signer. If the activation code or answer fails, the activation code and activation process are canceled, and the employee PID's serial number and transaction code are also cancelled. If the activation code passes and the employee properly answers the signer's question, the employee is required to provide a random password question and final question password information along with his general information. Once this information is entered, the employee is allowed to create personal information by adding personal and secret information using the previously described personal account creation process. If the employee wishes, additional new PID serial numbers and transaction codes are written to the PID and assigned to the personal account.

Activation of the new PID serial number and transaction code follows a personal account creation procedure that requires the activation code to be sent to the employee's personal billing address. When a personal account is activated, the employee is guaranteed access to his personal and business accounts in a manner authorized by the signer. If there are no more employees and even no signers, no access is made to view or update the provided random password question information and the final question password information.

The Signer may at any time simply refuse to use the Company's Confidential Information by Employee by modifying the Guaranteed Access to Employee in the Gateway Operator Account. In addition, the signer is authorized You can enter a list of shipping addresses. Finally, the signer can add or remove employees at any time.

Once the signer on the account has finished working, the new signer is given a new and unique PID serial number and transaction code. This new PID serial number and transaction code is assigned to the account as a new signer and the previous serializer's PID serial number and transaction code are revoked. The previous signer's serial number and transaction code can be revoked at any time, even before the new signer's serial number and transaction code are activated. If the previous signer's PID serial number and transaction code are revoked before the new signer's PID serial number and transaction code is activated, a legally proved legal proof that the new signer denies or refuses to be accessed. The employee who is guaranteed access by the previous signer retains guaranteed access until the business operator faxes it to one or more employees. The new employee is guaranteed access by the active signer.

The operator should preferably fax the recorded request, preferably the authenticated request, to a gateway authorized to activate, correct or cancel the operator account. This authority consists of legal documents from the operator identifying the party's authority to activate, modify or revoke.

5. PID and EDD

In this embodiment, in the simplest form, the PID is an electronic device having a memory capable of reading and writing, and does not require power supply to hold data. This embodiment includes a key, card or other portable configuration.

The PID, such as device 16, has at least one serial number and at least one encrypted transaction code, but can store other information as needed or desired. In this embodiment, the PID 16 is a passive device that requires an EDD to read and write.

EDDs include microcontrollers (not shown), nonvolatile memory (not shown), modems, digital subscriber line (DSL) modems or routers, cable modems, satellite devices And may include cellular devices or other communication devices. The unique serial number and initialization code are "hard-coded" in the microcontroller. Once written, this serial number and initialization code can be changed. In this embodiment, the nonvolatile memory is a physical part of the microcontroller but may exist as a separate device.

An EDD, such as element 18, communicates with the gateway, authenticates the gateway, and encrypts or decrypts the transaction according to a private key system known only to the EDD and gateway software. The secret encryption key is changed with each access of the EDD using a discontinuous key-hopping system known only to the EDD and the gateway. This EDD reads from the PID and writes to the PID according to the instruction from the gateway.

In other embodiments, the EDDs and PIDs are combined and only require connection with a computer or other Internet capable device to perform the functions of these EDDs and PIDs.

The EDD may also include digital displays, keypads, printers, and communication devices as previously described. If this EDD comprises a keypad, a digital display device and preferably a communication device, this EDD can act as an access control device when attached to the security system.

The EDD may be connected to a serial port or other port on a computer or present in another internet capable device. The EDD includes a light emitting diode (LED) indicating success or failure of authentication of the gateway or success or failure of PID authentication. Additional LED indicators may be used as described above.

The EDD may also be configured to accommodate multiple PIDs, requiring more than one valid PID to enable transactions. For example, an employee's PID should be requested from a conventional merchant before the customer's PID is available. Alternatively, the signer's PID may be required to activate the employee's PID.

In alternative embodiments, different levels of access to information may be available to owners of other PIDs. For example, when a doctor urgently needs to access a client's medical record and the client is unable to approve a transaction, an EDD with two PID connections allows both activations at the same time. In this embodiment, the doctor is once guaranteed limited access to this area, which includes medical record information and is a protected area of the customer's personal account, but no access to the area containing financial information. Both the customer's gateway account and the doctor's gateway account reflect the doctor's access to the transaction history. EDD, which allows multiple PID connections, also allows transactions using only one PID.

6. Version control

EDD has an EDD serial number. The software of the gateway server 14 uses this serial number to determine which EDD model to use. The software then determines how to communicate with the model to complete the transaction. Some features or capabilities may be available only in some devices.

7. Cross platform note

One embodiment used software on a customer's computer, but not necessarily. Communication between the gateway and the EDD may be via HTTP and Java. The HTTP protocol and Java applications, if not all, can run on most commercially available customer computers that can browse the Internet. However, HTTP and Java may not work properly in some applications. Thus, EDD can be integrated into such applications or connected to the RS-232 port to encrypt data or secure transmissions.

E. Installation and Initialization

1. Personal Account Setup / Initialization

In one embodiment, as shown in Figures 2-4, the customer enters some of the personal information online into the personal gateway account setup. Personal information submitted at this time may include, but is not limited to, one or more of a name, address, telephone number and fax number, and e-mail address. The activation code is then provided to the customer. If the customer does not already have a PID and an EDD, mail the device separately.

The customer then accesses the gate signup website with his EDD installed. The EDD serial number is verified against the gateway's EDD database. EDD and gateway server 14, such as device 18, negotiate an encryption system to be used only for the transaction using a secret key encryption system known only to the EDD and gateway server. The LED indicates a negotiated state as described above. If the negotiation is successful, the secret key stored in the EDD's nonvolatile memory is updated with a non-sequential secret key to be used for the next transaction.

The customer immediately connects his PID to the EDD and the gateway verifies the serial number and encrypted transaction code stored in that PID. If the serial number / transaction code information pairs do not match, the serial number of the PID is disabled and the customer must obtain a new PID. Most of them require new devices because of hardware defects and tampering. The system cannot reuse the PID under any circumstances. In contrast, the customer is instructed to log in to the Technical Support site, where the PID can be completely erased and reinitialized.

If the PID is verified, the newly encrypted transaction code is written to the PID's nonvolatile memory for use in the next transaction. The transaction code is encrypted using a non-continuous secret key encryption system known only to the gateway server.

The customer then uses the one-time account activation code to log in to the account to activate the PID. If the PID is not activated, a new activation code is delivered to the customer and assigned to the customer's account. If the PID is enabled, the customer is required to provide password information. There are four possible password types: random password question, ultimate challenge question password question, fixed password, and personal identification number.

If you use a random password question, the customer fills out a random password question form. The random password question form consists of fields that allow customers to enter multiple question and answer pairs. This question / response pair is used to confirm the customer's access as described above.

If you use the final password question, the customer fills out the final password form. This form consists of fields where the customer can enter three or more questions and corresponding responses.

The customer's random password question and final password question can be entered into the gateway server online via mail, fax or phone. If a random password question and / or a final password question are entered online, one or more web browser windows can be opened to enter the question and corresponding responses in different windows stored on different servers and later collected if necessary. Password question and response pairs can be entered at any time during the signup process.

The customer is asked to enter secret information in the manner described above. The system may require input of some of the credit card, debit card, and bank account information using one or more methods. On-line, the customer has a credit card, debit card and bank account, the corresponding financial institution, credit card and / or bank account form, the first 12 digits of the credit or debit card, and routing number and bank account. Enter the first seven characters of the number.

After entering the first part of the secret information online, the customer receives a one-time password and one of a telephone number, mail address or fax number. If the customer uses phone number entry, they must enter the one-time password provided by the gateway using the telephone keypad. If the gateway confirms the password, the customer can say or enter his or her name to confirm that it matches the one-time password. If the customer enters the appropriate one-time password and the gateway verifies the customer, the customer uses the telephone keypad to enter all remaining credit and debit cards and the remaining digits of the bank account number.

To better identify whether the customer signing up for the account is the true owner or holder of the secret information, the one-time account activation password and / or PID and EDD may be used as the billing address for one or more secret information items. Send by mail. If the delivery address requested by the customer does not match the potential billing address associated with the confidential information, the customer wishes to deliver one-time account activation password or PID and EDD to one of the financial institutions to which the billing address is to be changed. You must be asked to connect to or change the requested delivery address.

Others may be authenticated to access certain information about the account. For example, a parent may want a child to use the secret information contained in their personal account. In the manner described below with respect to the sales account, the parent may select the item of secret information available to the child and limit the amount of money that can be used and / or the time limit for the amount of money available.

2. Set up a business account

In one embodiment, a credit card, debit card or bank account issued by a business operator (signatory) may sign up a business account at the gateway.

The first steps in setting up a business account include providing general information about the business, providing random password question information for the signer, providing password questions for the final test question for the signer, and providing secret information for the business. At least four steps are involved.

The signer provides general information about the business, including items such as the name, address, telephone and fax numbers, and email address of the business. The operator must send, by fax, e-mail or other means, legally documented documents that enable the business account to be established and authenticated by the signer using the business secrets. This verification process is also necessary to change and cancel a business account or to change the signer for that account.

Next, the activation code is delivered to the signer. Unless the signer already has a personal account, the EDD and PID are delivered separately from the activation code. Unlike the EDD delivered for a personal account, the EDD delivered to the signer is preferably configured to connect two PIDs simultaneously.

After receiving the new PID and EDD, the signer must access the gateway signup with the EDD installed. The EDD serial number is ratified and the encryption system negotiated as described above. The LED on the EDD indicates a negotiated state as described above. If the negotiation is successful, the transaction code stored in the nonvolatile memory of the EDD is updated with a non-continuous transaction code for use in the next transaction.

Next, the signer's PID is ratified. If the device rejects the ratification or succeeds, it is treated as described above. The signer then uses the one-time account activation password to log in to the operator's account on the gateway website to activate the PID. In addition to providing a one time account activation password, the signer may be asked to enter his name and the name of the business operator. Alternatively, the signer may generate questions and responses that are currently submitted for validation during the first phase of the setup process. If the one-time password, the name of the signer or the name of the business operator do not match, the PID is not activated for the business account and a new activation code is delivered to the signer and assigned to that business account.

If the PID is enabled, the signer is asked to provide random password question and final test question information. No one other than the signer who is issued the PID may view or update the random password question or the final test question password information.

The signer then enters the secret information of the business. In the area of these accounts, the signer enters credit card information, debit card information, bank account information, and other information that the operator wishes to send or secretly store.

In this step, the signer enters the financial institution, credit card form or bank account form, the first 12 digits of each credit card, the routing number and the first seven digits of each bank account number. The signer then accesses the gateway using the one time password and enters the remaining credit / debit card and bank account number information as described above.

At any point during or after the on-line setup described above, the signer may allow other employees to use confidential information or view transaction details. If the signer wishes other employees to use confidential information or view transaction details, he or she may list the names of other employees in the appropriate section of the business account. The signer also has access to the business account for each employee, including which items of confidential information will be used, the upper limit of the total amount to be charged or paid, which items of general information will be updated by the employee, and whether the transaction can be viewed. You can choose how you can.

The PID and EDD are delivered to the carrier's billing address for each employee listed by the signer, unless the signer indicates that it already has a PID and EDD deactivated for another employee. The employee is authenticated and initiates access to the business account using two methods, one as a customer and a business account, as shown in FIG. 4A.

3. merchant setup

In one embodiment, the merchant account setup consists of five steps. The first step is similar to setting up a customer carrier account. The signer of the authorized merchant is asked to provide general information, secret information, random password information and final password question information in the same way as the signer of the client account. The merchant's credit or debit card information and checking account is optional, but the signer must provide bank transaction information for the gateway to process the transaction with the customer and pay the merchant.

The merchant's signer first provides the merchant's general information, including the merchant's name, address, telephone number, and fax number and e-mail address. The remaining steps of setting up a merchant account are the same as those described above in setting up a merchant account, and the merchant's operator performs all the steps previously performed by the merchant's merchant.

The merchant's signer also enters the merchant's secret information. In this account area, the merchant's operator has the choice of credit card information, debit card information, bank account information (checking or savings) and other confidential information that the merchant wishes to send or secretly store. It is more important for the merchant's signer to enter the merchant's credit card, debit card information and bank account information (checking accounts, savings or merchant bank transactions) as described above. The setting of another employee for the merchant account is the same as for the setting of another employee for the client account.

The second step in setting up an account is to authorize the gateway to process the merchant's credit card, debit card and bank account transactions. The merchant must accept and provide to the gateway a sales agreement on the gateway's website. In addition, the merchant must provide a copy of the legal document certifying the merchant, such as a business card, federal tax identification number, or similar document.

The third step in setting up an account involves collecting gateway software on an online shopping card or, if necessary, linking it with a traditional merchant's account software.

Such software is meant to allow communication between gateways, on-line merchants, conventional merchants and / or customers. If the gateway software is collected on a merchant's shopping card online, the software includes code that must be inserted into the shopping card application. Gateway software is used to authenticate merchants online and to send and receive communications between merchants and gateways. In one embodiment, the merchant online may store data received from the gateway website in a comma delimited file format or other file format in the merchant's account software. If the merchant chooses to have the gateway manage his customer, he needs to gather the merchant's software. In this case, the merchant presets the product service page stored in the gateway. The merchant hyperlinks the customer to the page so that the gateway can process the transaction on behalf of the merchant.

If the traditional merchant's account software requires additional gateway software to allow communication between the merchant, gateway, and customer, the gateway, customer, and merchant must install the appropriate gateway software for the application software. When processing transactions, no additional gateway software is needed. Standard EDDs may include keypads, digital displays, printers, communication devices, and other options. The conventional merchant also has the option to download transaction details from the gateway website in a comma delimited file format or other file format, and the data can be stored in the merchant's account software.

The fourth step relates to a merchant accessing his bank and setting up a sales service at the gateway, accessing his bank or switching the gateway service. Most of the steps are performed between merchants and banks, and between banks and gateways.

The fifth step of the online merchant account activation process relates to changing the name server address of the online merchant to the name server address of the gateway. If the merchant's name server address is replaced with a gateway, the account is activated and the gateway can take orders on behalf of the online merchant.

F. System Operation

1. Transactions between customers and online merchants

In an embodiment, as shown in Figures 5-7, the customer must select the desired product or service and then press the checkout link on the online merchant's website prior to the transaction. Two different checkout buttons can exist on the online merchant's website, one for the person with the PID and the other for the person who does not have the PID and deals with the usual method of handling the gateway. For those who want to.

When a customer with a PID presses the PID checkout button, the gateway software integrated into the online customer's shopping cart encodes the transaction amount, the match of the product or service of the customer's choice, the match of the merchant, and the customer's IP address into a packet. The packet is then sent to the gateway. The gateway authenticates the merchant by checking the merchant's IP address and name server address. The certification process still applies even if no merchant has installed the software.

The customer connects to the gateway server via a hyperlink to the gateway website. The customer may be an individual, a business or another entity. Once in contact with the customer, the gateway server attempts to identify and authenticate the customer.

The gateway server uses the customer and connects to EDD to request an EDD serial number. This number is authenticated in the EDD database, and the gateway requests that EDD transmit its transaction code using the current encryption scheme. If the encryption scheme is correct, EDD calculates the next transaction code, encrypts it using the next scheme, and sends it along with the current transaction code using the current encryption scheme. The gateway calculates the next scheme and uses it to decrypt the next transaction code. If the next transaction code does not match, the transaction ends and the EDD is flagged as invalid in the EDD database. In an embodiment, the LED on the EDD indicates to the customer whether he is connected to a valid gateway server. The LED indicator encodes the function as described above.

The PID is inserted into the EDD at the request of the gateway server. The EDD then reads the PID serial number and the PID encrypted transaction code, encrypts the serial number and the encrypted transaction code, and sends both to the gateway server. The gateway receives the encrypted serial number and the encrypted transaction code and decrypts it. The gateway first locates the PID serial number in the PID database and then authenticates the transaction code stored in the PID. If no matching PID serial number is found or the transaction code is not confirmed, the transaction is canceled and the customer and online merchant are notified. Once the transaction code is verified, the gateway server calculates the next non-consecutive transaction code, encrypts it and writes it to the PID. The transaction code is reread and verified before continuing the transaction.

If the PID encryption code is not verified, the previous encryption code is compared with the current encryption code. If they match and the gateway server's PID serial number database has not yet been flagged, the transaction continues and the database is flagged indicating a double PID encryption code. If the database has already been flagged, the PID is marked invalid in the database. In another embodiment, the customer may be given an opportunity to reactivate the PID by having the customer answer the final question from the final question pair entered at the time of payment, as follows. If the customer fails to answer the final question or any question already asked, the customer's account is flagged and no further transactions are allowed and the online merchant is notified.

When deactivated, the activation code and URL address are sent to the billing address for that PID. To reactivate the account, the customer must access the URL's gateway website, insert the PID into the EDD, provide an activation code, and answer the final question. If the activation code is correct and the final question is answered correctly, the new serial number and transaction code are recorded in the customer's PID.

When verifying the PID encryption code, the customer is required to answer one or more random password questions as described above. If the customer does not answer the random question correctly, the customer is asked for one or more additional random password questions. If the customer does not answer correctly with the second question pair, the serial number and transaction code associated with the PID are flagged to prevent further transactions. It also notifies the online merchant of failure. The activation code is then sent to the customer's billing address for the PID. In order to reactivate an account, the customer must follow the account reactivation process described above. In another embodiment, the customer may be asked the final question as described above to proceed with the transaction.

If the customer responds to a random password question, the gateway uses the information provided by the online merchant and asks the customer to verify the transaction information and the merchant. If the customer has verified the merchant, the merchant can give the merchant the option to cancel the transaction based on the percentage of the transaction in question with the customer divided by the total number of transactions. The online merchant sets a percentage acceptable to the gateway merchant account. If the customer does not accept the transaction information or cancels the transaction, the customer goes back to the merchant's website. If the customer approves the transaction information and chooses to complete the transaction, the merchant is asked what account to use if he has more than one account, and what type of payment method to use if there is more than one payment method. The gateway then collects the merchant's payment method and online merchant's bank information in a secure volatile memory on the server, depending on the transaction volume, and sends it to the appropriate company or financial institution for payment authentication or processing. When authenticating or processing payments, customers and merchants are notified through their IP addresses. If the payment is declined or not verified, ask the customer to choose another payment method or cancel the transaction. When canceling a transaction, the online merchant is notified using the IP address. If you choose a new payment method, the gateway repeats the attempt to obtain authentication or payment. If no payment method is implemented, the gateway cancels the transaction and notifies both the customer and the merchant through their respective IP address.

2. Deal with conventional merchants and customers

In an embodiment, the customer must select the goods or services he wants and request payment for them prior to the transaction. Next, the transaction information and the customer's payment method enter the point of sale (POS) system of a conventional merchant. If the transaction contains cash, the customer gives cash to the employee and the sale is completed. If the transaction involves checking a debit or credit card or payment account, the accounting software asks the customer whether to use a PID or some other payment method.

If the customer wants to use the PID, the accounting software causes the EDD to connect to the gateway server through the communication device either inside or outside the EDD and inside or outside the hardware device hosting the accounting software. If the EDD is connected to a gateway server, the server attempts to authenticate the device.

The gateway server contacts the EDD and requests the device's serial number and transaction code using a predefined encryption scheme. If the encryption scheme is correct, the device and the gateway exchange transaction codes as described above. In addition, the LED on the EDD functions as described above.

The EDD and gateway then read, exchange and verify the PID serial number and PID encrypted transaction code as described above. If the PID encryption code is not valid, the gateway server processes the transaction in the same way as an online merchant transaction as described above. However, the customer sees and responds to random passwords and final challenge questions through the merchant's EDD. In addition, customers and merchants provide transaction information and receive transaction results via the EDD interface instead of the website.

3. Customer to customer deal

If one gateway customer wants to trade with another gateway customer, the customer can log in to his account and specify the amount to transfer from his check account to another customer's check account. Each customer is assigned a customer ID number during initial customer account setup. The ID number of the receiving customer is specified to identify the sending recipient.

If the transaction involves the transfer of the goods, the customer to pay may choose to transfer the charges from his check account to the gateway's escrow account, from which he arrives at the warehouse where the goods are attached or meets some other conditions. If you do, pay the price. Another option is to deposit funds in the holding account until the paying customer authorizes the release upon completion of the specific event, such as a shipping receipt.

In both cases, the gateway server may collect each customer's bank account information in volatile memory according to the transaction volume, and send the information to the relevant company or financial institution for authentication or processing (the gateway itself authenticates and / or transactions). If so, then both are notified of the results via their accounts and optionally via email.

G. Customer Account

1. Account Type

When a customer joins system 10, an account is created on the server of FIG. This account contains the following information: Customers can log in and review or change the information whenever they want.

In order to review or change a customer's account, an EDD and PID are required for authentication as described above. The following is an example of a storage format of customer account information.

□ Name

□ Company

□ Department

□ address

□ city

□ state

□ Zip (zip)

□ Country

□ daytime phone number

□ dinner phone number

□ Email Address 1

□ Email Address 2

□ Email address 3

□ Fax Number

The customer can mark information items available to merchants in checkboxes.

Card:

Visa name on Visa 1 card 4711 2013

Visa name on Visa 2 card 4690 1390

Master card name on MC1 card 1103 1111

Discover1 card 3333.Discovery name on 1212

American Express on Amex1 Card 4567.100

(The above card names (underlined) are user-defined names)

□ Recurring billing available

If recurring billing is checked:

Recurring or delayed billing is licensed to the following companies:

Check required for each transaction verification.

□ ABC Company

$ 19.95

medal

For 12 months

□ DEF company

$ 29.95

Once after October 04, 2000

$ 25.00 Max Shipping

$ 2.90 max tax

□ CHI Company

$ 2500.00

1 time since

Upon shipment notice

2. Transaction history

The customer can review the transaction history in order from newest to oldest. The initial screen display appears in the form of a hyperlinked summary to review the details of each transaction. An option to download the statement is also available. The download format may be compatible with conventional accounting packages.

H. Merchant Account

1. Account Type

When a merchant joins system 10, an account is created on the server of FIG. This account maintains the following information: Merchants can log in and review or change the information whenever they wish. To review or change a merchant account, you need an EDD and PID for authentication. The following is an example of the storage format of merchant account information.

□ Connection Name

□ Company

□ Department

□ address

□ city

□ Note

□ ZIP code

□ Country

□ daytime phone number

□ dinner phone number

□ Email Address 1

□ Email Address 2

□ Email address 3

□ Fax Number

Merchants can mark information items available to customers in checkboxes.

2. Transaction history

The merchant can review the transaction history. The initial screen display appears in a hyperlinked summary to review the details of each transaction. An option to download the statement is also available. The download format may be compatible with conventional accounting packages.

3. Authentication process

An information packet is received from a merchant. After connecting directly with the customer, the server looks for the attached EDD and connects to it.

After the serial number of the EDD is verified, the transaction code is read and verified. The serial number is a static, code-protected read-only number built into the microcontroller (not shown) of the EDD of FIG. The transaction code is stored in nonvolatile memory as an encrypted random variable that identifies the previous transaction. If the serial number does not exist in the EDD database, the transaction is rejected. The previous transaction identified in the transaction code is queried to confirm that the current EDD serial number is the same as that previously identified. If it is not the same, the customer who received the EDD will be notified by email and the customer will reply to replace it. Unsuccessful transactions will be notified to customers and merchants. Once both the serial number and transaction code are verified, a new key is calculated and negotiated between the gateway and the EDD. This key will be used to encrypt all information used throughout the current transaction.

EDD reads the PID information and sends it to the server. The server verifies the PID serial number and the transaction code, and rejects the transaction if the serial number is not confirmed. If the transaction code is not confirmed, the gateway processes the aforementioned transaction.

The customer is then given the opportunity to activate the new PID by answering a reactivation question among the personal questions entered at the time of signup. If the customer does not answer the question or if all of the questions have already been requested, the customer is notified that the subscription process must be redone. If the customer responds correctly, the new serial number and transaction code are recorded in the PID.

The customer then receives a random password question randomly derived from the personal information provided at the time of subscription. The random password question is not selected from the set of questions already used for reactivation. If the customer fails the random password question twice, his PID will stop working and he will have to reactivate the PID as described above.

4. The merchant packet includes the following (example).

Merchant id

Customer's IP address or recurring billing code

Transaction description

Trading account

Shipment & Handling

Sales tax

tariff

Transaction Type: P or N (Priority or Normal)

The customer's on-screen window displays (example).

Trader's name

Merchant's address

Merchant's phone number

Merchant's E-mail Address

Transaction description

Trading volume

Shipment

Sales tax

tariff

□ Recurring Billing

□ (date) □ times since

□ weekly

□ every other week

□ monthly

□ every year

Maximum tax

Max shipment

□ Authorization only upon notification of shipment

□ According to the required additional approval

comment:

--------------------------------------------------

--------------------------------------------------

--------------------------------------------------

--------------------------------------------------

Use card:

□ Visa 1

□ Visa 2

□ MC1

□ Discover1

□ American Express 1

□ Yes, I approve

□ No, this is not what I agree with.

□ I have never heard of this merchant.

I. Recurring Billing

If the merchant wishes to initiate periodic billing to the customer, the merchant connects to the transaction server (Figure 1), changes the IP address to reflect the appropriate periodic billing code and sends the merchant packet. If the customer specified to allow recurring billing, the transaction is processed and a confirmation email is sent to the customer.

If the customer chooses not to allow recurring billing, the authorization request is emailed to the customer. Before it can be processed, the customer must connect to the server and approve the transaction. The merchant then accepts the customer and the card company responds if appropriate.

J. Other Applications

The random password question portion of system 10 may be replaced with other identification techniques. For example, bionic (sometimes called biometric) identification systems may be used, such as fingerprints, retinal scans or other biological identifiers.

K. Non-Financial Information Exchange

The customer pre-populates the personal information and instructs the participating websites that the customer browses to automatically use certain portions when the websites participating in the gateway request user input. Instead of filling out a specific form, the customer simply clicks a button or link, and the gateway provides the information to the website. The customer account on the gateway can also store specific logins and passwords for websites that customers frequently visit. A link to the gateway on the website can provide the customer's IP address to the gateway, which can identify the customer and automatically log the customer into the website.

Claims (89)

Collecting information securely, Encrypting the information securely, Memorizing information securely, Transmitting information securely, Verifying an online merchant participating in a transaction with a customer, Authenticating an online merchant and a traditional merchant accessing the merchant account on the gateway server, Verifying a traditional merchant participating in a transaction with a customer, Authenticating a customer participating in a transaction with an online merchant or a conventional merchant or accessing a customer account on the gateway server, Authenticating the gateway that the merchant or customer is accessing or participating in the transaction, Validating the transaction according to the identification of the merchant and the customer, Validating the transaction based on the identification of the customer and other customers, Authorizing the use of confidential and financial information by the customers and merchants with limited authority; and Allowing the customer and the merchant to distribute personal, confidential and financial information within a predetermined range; Method and apparatus for secure collection, storage and transmission of information for easily completing a transaction comprising a. In claim 1, Safely collecting the information Collecting information through two or more secure transmissions between authorized customers or merchants and authorized gateways; and By accessing and receiving the entire information, no one can access the single gateway server and discover the entire information. How to include. In claim 2, Safely collecting the information Scantron system that collects online information through a web browser window connected to the gateway server, collects information by dialing the gateway server over a telephone line, provides information using the phone's keypad, or scans the gateway server. system) to collect information by mail or fax, Collects other online information through another web browser window connected to another gateway server, collects other information by dialing to another gateway server over a telephone line, and provides other information using the keypad of the phone, or Collecting other information by mail or fax using a scantron system scanning another gateway server How to include. In claim 2, And wherein said customer is able to identify each piece of information by naming said collected information and, if necessary, to store it in a secure volatile memory in a gateway server. In claim 2, And the collected information includes information included in other information, and can identify the order of the information stored in the gateway server. In claim 1, Encrypting the information securely Encrypting each of the received information using a different secret key encryption scheme that only the gateway knows about. In claim 1, The step of safely storing the information Receiving the encrypted information directly through two or more separate gateway servers in the form of separate pieces; and Do not store encrypted information of a single item together on the same storage medium. How to include. In claim 1, Safely transmitting the information Authenticating with the customer, merchant and gateway during the transfer. In claim 1, The step of authenticating the online merchant participating in the transaction with the customer is Verifying the merchant's IP address, Validating the merchant IP address on the gateway's name server, Validating the merchant ID, and Customer validates merchant How to include. In claim 9, Validating the merchant's IP address Before sending the secret data during transmission, comparing the merchant's IP address with the merchant's IP address stored at the gateway server. In claim 9, Validating the merchant IP address on the name server of the gateway Storing a merchant IP address in a gateway's name server, and prior to transmission the gateway searching the name server to verify that the merchant's IP address still remains in the gateway's name server. In claim 9, Validating the merchant ID (validation) Confirming that the merchant ID transmitted from the merchant's software is a valid merchant ID stored in the server of the gateway; and Verifying that the merchant ID is the same person as the merchant having the merchant IP address previously identified How to include. In claim 9, The step of validating the merchant (customer) The gateway identifying the merchant's gateway account using the merchant's ID and the merchant's IP address, Providing the customer's name and other general information from the merchant's gateway account to the customer so that the customer identifies and validates that the merchant matches the merchant he or she wishes to trade. How to include. In claim 1, Authenticating the online merchant and the conventional merchant accessing the merchant account of the gateway server Identifying and validating the signer or employee's personal identification device of the merchant and an encryption / decryption device, and Receiving a random password question based on information provided in advance and a response from the merchant's signer or employee to a final password question How to include. The method of claim 14, Identifying and validating the encryption / decryption device An encryption / decryption device connected to one terminal of a computer with a communication device or an encryption / decryption device with a communication device, Transmitting, by the encryption / decryption device, a hard-coded unique serial number to the gateway server through the communication device; Identifying and validating a serial number of the encryption / decryption device by the gateway server; Identifying and validating, by the gateway server, a change encryption scheme used by the encryption / decryption device; Transmitting, by the encryption / decryption device, a change transaction code securely stored in its nonvolatile memory to the gateway server through the communication device; and Identifying and validating a transaction code of the encryption / decryption device by the gateway server How to include. The method of claim 14, Identifying and validating the merchant's signer or employee's personal identification device A personal identification device coupled to the encryption / decryption device, the personal identification device including one or more personal identification device connectors, a keypad, a display device, LEDs, and other add-on devices; Packaging, by the encryption / decryption device, a unique serial number and a change transaction code of the personal identification device; Encrypting the packaging by the encryption / decryption device; Transmitting, by the encryption / decryption device, the encrypted packaging to the gateway server; Decrypting, by the gateway server, the package; The gateway server identifying and validating a unique serial number of the personal identification device, and The gateway server identifying and validating a change transaction code of the personal identification device Including, Each of these steps is unique to each of the merchant's signers or employees. The method of claim 14, Receiving an answer to the random password question and the final password question The gateway accessing the merchant's signer or employee's account and displaying a random password question or a final password question based on pre-provided questions and answers to the signer or employee of the merchant during setup or after a period of time, And Analyzing the response and comparing it with the questions and answers of the signer or employee of the merchant stored in the gateway server How to include. The method of claim 17, The correct answer to the random password question is one or more letter responses to the gateway's question (eg, what is the first and last letter of the answer to the following question? If last name is Bower, the answer is "br"). The method of claim 17, The final password question includes a question that asks for a complete word, phrase, or sentence under certain critical circumstances. In claim 1, The step of authenticating a conventional merchant participating in the transaction with the customer, Identifying and validating the identity of the conventional merchant, Identifying and validating the conventional merchant, Identification and validation of a conventional merchant's encryption / decryption device, Identifying and validating a personal identification device of a conventional merchant, and Receiving a random password question and a response from a conventional merchant's signer or employee based on a previously provided information How to include. The method of claim 20, Identifying and validating the ID of the conventional merchant Identifying and validating a merchant ID of a merchant database of the gateway server. The method of claim 20, Wherein the customer identifies and validates a conventional merchant The gateway using the merchant ID to display merchant information to the customer and confirming that the conventional merchant is the merchant to which the customer himself wishes to trade. The method of claim 20, Identification and validation of the encryption / decryption device of the conventional merchant is An encryption / decryption device connected to one terminal of a computer with a communication device or an encryption / decryption device with a communication device, The encryption / decryption device transmitting a hard-coded unique serial number to the gateway server through the communication device; Identifying and validating a serial number of the encryption / decryption device by the gateway server; Identifying and validating, by the gateway server, a change encryption scheme used by the encryption / decryption device; Transmitting, by the encryption / decryption device, a change transaction code securely stored in its nonvolatile memory to the gateway server through the communication device; and Identifying and validating a transaction code of the encryption / decryption device by the gateway server How to include. The method of claim 20, Identifying and validating the merchant's signer or employee's personal identification device A personal identification device coupled to the encryption / decryption device, the personal identification device including one or more personal identification device connectors, a keypad, a display device, LEDs, and other add-on devices; Packaging, by the encryption / decryption device, a unique serial number and a change transaction code of the personal identification device; Encrypting the packaging by the encryption / decryption device; Transmitting, by the encryption / decryption device, the encrypted packaging to the gateway server; Decrypting, by the gateway server, the package; The gateway server identifying and validating a unique serial number of the personal identification device, and The gateway server identifying and validating a change transaction code of the personal identification device Including, Each of these steps is unique to each of the merchant's signers or employees. The method of claim 20, Receiving a response to the random password question and one-time final password question The gateway accessing the merchant's signer or employee's account and displaying a random password question or a final password question based on pre-provided questions and answers to the signer or employee of the merchant during setup or after a period of time, And Analyzing the response and comparing it with the questions and answers of the signer or employee of the merchant stored in the gateway server How to include. The method of claim 25, The correct answer to the random password question is one or more letter responses to the gateway's question (eg, what is the first and last letter of the answer to the following question? If last name is Bower, the answer is "br"). The method of claim 25, The final password question includes a question that asks for a complete word, phrase, or sentence under certain critical circumstances. In claim 1, The step of authenticating a customer participating in a transaction with the online merchant or a conventional merchant or accessing a customer account of a gateway server, Identifying and validating an encryption / decryption device, Identifying and validating the customer's personal identification device, and Receiving a response to a random password question and a final password question How to include. The method of claim 28, Identifying and validating the encryption / decryption device An encryption / decryption device connected to one terminal of a computer with a communication device or an encryption / decryption device with a communication device, Sending, by the encryption / decryption device, a hard-coded unique serial number to the gateway server through the communication device; Identifying and validating a serial number of the encryption / decryption device by the gateway server; Identifying and validating, by the gateway server, a change encryption scheme used by the encryption / decryption device; Transmitting, by the encryption / decryption device, a change transaction code securely stored in its nonvolatile memory to the gateway server through the communication device; and The gateway server identifying and validating a change transaction code of the encryption / decryption device How to include. The method of claim 28, Identifying and validating the customer's personal identification device A personal identification device coupled to the encryption / decryption device, the personal identification device including one or more personal identification device connectors, a keypad, a display device, LEDs, and other add-on devices; Packaging, by the encryption / decryption device, a unique serial number and a change transaction code of the personal identification device; Encrypting the packaging by the encryption / decryption device; Transmitting, by the encryption / decryption device, the encrypted packaging to the gateway server; Decrypting, by the gateway server, the package; The gateway server identifying and validating a unique serial number of the personal identification device, and The gateway server identifying and validating a change transaction code of the personal identification device Including, Each of these steps is unique to the merchant's signer or employee. The method of claim 28, Receiving a response to the random password question and one-time final password question The gateway accessing the customer's account during the setup or after a certain time, displaying to the customer a random password question or a final password question based on a question and correct answer provided by the customer in advance, and Analyzing the response and comparing it with the customer's questions and answers stored in the gateway server How to include. The method of claim 31, The response to the random password question is one or more letter responses to the gateway's question (eg, what is the first and last letter of the correct answer to the following question? What is the last name of my mother's virginity? If the last name is Bower, the answer is "br"). The method of claim 31, The final password question includes a question that asks for a complete single word, phrase, or sentence under certain critical circumstances. In claim 1, Authenticating the gateway that the merchant and customer are accessing or participating in the transaction The encryption / decryption device authenticating through an encryption scheme in use at the gateway communicating with the encryption / decryption device If the wrong encryption scheme is used, the encryption / decryption device does not allow communication and a light emitting diode (LED) on the encryption / decryption device notifies the customer or merchant that the gateway is invalid, If the encryption link between the gateway and encryption and decryption and the device is successful, another LED on the encryption / decryption device indicating that the gateway is authenticated How to include. In claim 1, Validating the transaction according to the identification of the merchant and the customer Means for transmitting transaction information and merchant ID to the gateway, Means for the gateway to connect with the customer, Means for the customer to verify transaction information with the merchant, Means for identifying, by the gateway, a customer account assigned to the customer; Means for allowing the customer to select which customer gateway account to use; Means for allowing the customer to select which payment method to use; Means for allowing the merchant to cancel a transaction based on a problem transaction history with the customer, Means for allowing the customer to cancel a transaction with the merchant based on a problem transaction history with the merchant; Means for the customer to securely transfer data from his computer to the merchant, Means for causing the gateway to perform the payment method selected by the customer; Means for the gateway to report transaction results to the merchant and the customer, and Means for the gateway to prevent the merchant from charging more than or double the transaction price Method comprising a system comprising a. The method of claim 35, Means for transmitting the transaction information and the merchant ID included in the system to the gateway Means for the customer to select goods or services from a merchant, Means for ordering by said customer, A series of transaction information sent from the merchant's software to the gateway, and A series of transaction information sent from the hyperlink of the merchant's website to the gateway via the customer's web browser How to include. The method of claim 36, The series of transaction information sent from the merchant's software to the gateway includes a merchant ID, transaction volume, transaction item, and the customer's IP address. The method of claim 36, The series of transaction information sent to the gateway through the customer's web browser in a hyperlink of the merchant's website includes a merchant ID, a trade volume, a trade item, and an IP address of a customer versus a customer and a merchant versus a merchant. The method of claim 36, Means for transmitting the transaction information and the merchant ID included in the system to the gateway Means for a gateway to receive a series of information directly from the merchant's software in an online transaction, and Means for the gateway to receive a set of information via hyperlinks to the online merchant's website and the customer's web browser, Means for comparing the two separate information How to include. The method of claim 35, Means for the gateway that the system includes to contact the customer Means for an online merchant to send a customer's IP address to a gateway in an online transaction, and Means for the gateway to create a new browser window on the customer's computer using the customer's IP address How to include. The method of claim 35, Means for the gateway that the system includes to contact the customer An encryption / decryption device having one or two personal identification device connectors provided by the conventional merchant in a transaction with the conventional merchant; and Means for the gateway to contact the customer via the same device as the encryption / decryption device How to include. The method of claim 35, Means for the customer to verify the transaction information with the merchant that the system includes, Means for securely transmitting the merchant's name, transaction amount, transaction item, and any additional information about the merchant previously determined by the merchant from the gateway to the customer's computer, the conventional merchant's computer, or the encryption / decryption device of the conventional merchant; and Means for the customer to approve or reject the transaction information to the gateway How to include. The method of claim 35, Means for identifying a customer account assigned to the customer by the gateway that the system includes An encryption / decryption device for the customer that transmits all unique serial numbers of the personal identification device to the gateway upon initial connection with the gateway; Means for identifying each unique serial number of the personal identification device by matching the unique serial number of the gateway server, and then identifying an account associated with each unique serial number How to include. The method of claim 35, Means for allowing the customer to select which customer gateway account to use, Means for the customer to own one or more gateway accounts at the gateway, and to receive requests from the gateway through the customer computer; and A conventional merchant's computer or conventional merchant's encryption / decryption device for selecting an account the customer wishes to use when trading with a traditional merchant. How to include. The method of claim 35, Means for allowing the customer to select which payment method to use, Means for the gateway to display on the customer's computer a payment method available to the customer from the customer's account; Conventional merchant's computer or conventional merchant's encryption / decryption device, and Means for selecting a payment method for the customer to use for the transaction How to include. The method of claim 35, Means for allowing the merchant that the system includes to cancel a transaction based on a problem transaction history with the customer Means for allowing the gateway to select whether to cancel the transaction from its gateway account, according to a percentage value of the number of problem transactions with the customer divided by the total number of transactions, and Means for the gateway to cancel the transaction if the merchant selects a percentage value and the customer wishes to trade more than the selected percentage value How to include. The method of claim 35, Means for allowing the customer that the system includes to cancel a transaction with the merchant based on a problem transaction history with the merchant Means for the customer to receive from the gateway with transaction information a percentage value of the number of problem transactions with the merchant divided by the total number of transactions, and Means for sending to the gateway that the customer wishes to cancel the transaction based on the percentage value How to include. The method of claim 35, Means for the customer to securely transfer data from the customer's computer to the merchant that the system includes Means for an authorized customer to upload data from his computer to the authorized gateway, Means for identifying a merchant ID of a merchant to which the customer wishes to transmit his data; Means for the gateway to associate data uploaded to the server of the gateway with a merchant's account assigned to the merchant ID identified by the customer; Means for the gateway to notify the merchant via the email and merchant account that the customer has transmitted data; Means for an authorized merchant to contact an authorized gateway, Means for the merchant to access his merchant account, and Means for the merchant to download the transmitted data How to include. The method of claim 35, Means for causing the gateway included in the system to perform the payment method selected by the customer The gateway collects the financial transaction information selected by the customer among the financial transaction information stored together with the transaction information in the secure volatile memory of the plurality of servers of the gateway and transmits the collected information to the financial institution for authentication or processing. Means comprising means. The method of claim 35, Means for the gateway that the system includes to report the transaction results to the merchants and customers Means for the gateway to authenticate the merchant and send transaction results to the merchant's software, and Means for the gateway to send the transaction results to the customer via the customer's computer, the conventional merchant's computer, or the conventional merchant's encryption / decryption device. How to include. The method of claim 35, Means for preventing the merchant from charging the merchant above or double the transaction price included in the system includes Means for causing the gateway to process only the transaction amount verified by the customer; Means for the gateway to never transmit the customer's financial information to the merchant How to include. In claim 1, Validating the transaction in response to the identification of the customer and the other customer is Means for the Client and other Clients to securely transmit transaction information to each other, to verify transaction information sent from the other party and to approve, modify or cancel the transaction, Means for a customer to pay another customer during a deal with another customer, Means for a customer to securely transfer money to another customer, Means for preventing the gateway from being paid or transmitted from the customer to another customer over an authorized amount, and Means for customers to securely transfer data to other customers Method comprising a system comprising a. 53. The method of claim 52, Means for the customer and the other customer included in the system to securely transmit the transaction information to each other, to verify the transaction information sent from the other party and to approve, modify or cancel the transaction. Means for the authenticated customer to enter transaction information in the "Transaction with another gateway customer" field of his gateway account; Means for the customer to identify another customer's ID at the gateway server, Means for the customer to present transaction information and the ID of another customer, Means for transmitting, by the gateway, transaction information presented by the customer to the gateway account of the other customer based on the ID of the other customer presented by the customer; Means for the gateway to assign a unique transaction ID to the transaction information sent by the customer; Means for the gateway to inform the other customer via e-mail and the account of the other customer that the customer has presented a transaction; and Means by which the other authenticated customer accesses his gateway account of the authenticated gateway to verify the transaction information presented by the customer and to approve, modify or cancel the transaction. How to include. 54. The method of claim 53, The modification of the transaction information uses the same transaction ID during the exchange of the modified transaction information, and uses the customer ID different from the customer ID to identify the customer and other customers during the transmission of the transaction information until the transaction is finally approved or cancelled. How to. 53. The method of claim 52, Means for the customer to pay another customer during a transaction with another customer Means for approving the transaction by the customer, If the customer owns multiple accounts, the means for the gateway to ask the customer which account to choose, Means for selecting an account for the customer to use, If the customer has multiple financial items available, the means for inquiring about which payment method the gateway will use, Means for the customer to select a payment method, If another customer has multiple gateway accounts or bank accounts, the gateway will contact the other customer through the gateway account of the other customer about which gateway's account and bank account they will deposit their payments to. Means, Means for other customers to select a gateway account and bank account, Means for the gateway to securely collect financial information selected by the customer and other customers, and to transmit the financial information and transaction information to one or more financial institutions or financial companies for processing; Means for the Gateway to report transaction results to customers and other customers through email and the transaction history of the customer and other customer's gateway accounts. How to include. The method of claim 55, Means to ensure that your goods or services and other customers' payments are secure at the same time Means for replacing the financial information of another customer with the financial information of the gateway when the gateway collects financial and transaction information; Means for the gateway to transmit financial and transaction information of both the gateway and the customer to one or more financial institutions or financial companies for processing; The means by which the gateway receives payment from the customer's financial company, Means by which the gateway receives the goods or services of another customer, or a confirmation through which an authorized party (customer or merchant) received the goods or services of another customer and is ready to be delivered to the customer , Means for the gateway to collect financial information and financial information of the gateway selected by other customers and to transmit the financial information and transaction information to one or more financial institutions or financial companies for processing; Means by which the gateway delivers the goods or services to the customer or to an authorized party for delivering the goods or services to the customer How to include. 53. The method of claim 52, Means for the customer to securely transfer money to another customer Means for authenticated customers to select the "money transfer" portion of their gateway account, If the customer has multiple gateway accounts or multiple financial information items, the means for selecting which gateway account the customer will use and which financial information to use, Means for the customer to select a payment amount, Means for a customer to identify another customer through another customer's customer ID, Means for customers to present transaction information, Means for the gateway to notify other customers via email and other customer accounts that the customer has presented a remittance notice; Means for another authenticated customer to access his / her gateway customer account of the authenticated gateway, If the other customer has multiple gateway accounts or bank accounts, a means for the gateway to contact the other customer about which gateway account and bank account the other customer will deposit the customer's payment to, Means for other customers to select a gateway account and bank account, Means for the gateway to securely collect financial information of the customer and other customers and transmit the financial information and transaction information to one or more financial institutions or financial companies for processing; and Means for the Gateway to report transaction results to customers and other customers through email and the transaction history of the customer's and other customers' gateway accounts. How to include. 53. The method of claim 52, Means for preventing the gateway from being paid or transmitted from the customer to another customer over an authorized amount Means for a gateway to never transmit financial information of the customer to the other customer; and Means for a gateway to never transmit financial information of the other customer to the customer How to include. 53. The method of claim 52, Means for the customer to securely transfer data to another customer Means for an authorized customer to upload data from his computer to the authorized gateway, Means for the customer to identify another customer's ID, Means for the gateway to associate data uploaded to the server of the gateway with an account of another customer assigned to the ID of another customer identified by the customer; Means for the gateway to inform the other customer that the data has been sent to the other customer via email and another customer's account, Means for connecting another authorized customer to an authorized gateway, Means for said other customers to access their other customer accounts, and Means for said other customer to download said transmitted data How to include. In claim 1, Authorizing the use of confidential and financial information by the customer and the merchant with limited authority Means for allowing said customer and merchant to grant access to said customer or merchant's account only to specific parties; Means for controlling, by the customer and the merchant, what information in each customer or merchant account to which access is permitted, and Means for controlling, by the customer and the merchant, how each party to which access is granted may use the customer or merchant information Method comprising a system comprising a. The method of claim 60, Means for allowing the customer and the merchant included in the system to grant access to the account of the customer or merchant only to a specific party Means for authenticating the customer or merchant by the gateway, Means for the customer or merchant to access his account, and Means for granting said person or merchant access to said account How to include. 62. The method of claim 61, Means for the customer or merchant to grant the party access to their account Means for the customer or merchant to generate questions and answers to be used as a one-time password from the authorized party, Means for the gateway to provide an access code for a party to the customer or merchant, and Means for the customer or merchant to send the access code, question and answer to the party concerned How to include. 62. The method of claim 61, Means for the customer or merchant to grant the party access to their account Means for connecting said gateway to a gateway, Means for said party to access their account and request another account using an encryption / decryption device and an active personal identification device, Means for requesting the party to join an account using an encryption / decryption device and a passive personal identification device; Means for the party to use the access code, Means for the gateway to ask questions and answers provided by customers or merchants, Means for the party to respond to the question and the correct answer, and Means for granting said party access to said customer or merchant account How to include. The method of claim 60, Means for allowing the customer and merchant to grant access to the account of the customer or merchant only to specific parties Means for allowing said customer or merchant to deny or regain access to said customer or merchant account of said party at any time. The method of claim 60, Means for controlling the customer and the merchant included in the system to control what information of each customer or merchant account to which the authorized person has access Means for authorized customers or merchants to access their accounts, Means for the customer or merchant to access or create a profile in the account of the interested party, and Means for the customer or merchant to select what information in the account the person may view or use How to include. The method of claim 60, Means for controlling how the customer and merchant included in the system can use the customer or merchant information for each authorized party to access Means for authorized customers or merchants to access their accounts, Means for the customer or merchant to access a profile in the account of the party, and Means for establishing a time limit for access or use of the information by the customer or merchant, an amount limit for the use of financial information, or other restrictions on the use of the customer or merchant information How to include. In claim 1, The step of allowing the customer and merchant to distribute personal information, confidential information and financial information within a predetermined range Means for allowing the customer to select what information of his customer account to distribute to authorized merchants during the transaction, Means for the merchant to choose what information in his merchant account to distribute to authorized customers during a transaction, Means for the customer to determine how the merchant can use the information he distributes, and Means for forcing the gateway to use the merchant to use the distributed information How to include. The method of claim 67, The means by which a customer selects which information in his or her client account will be distributed to an authorized merchant during the transaction Means for checking a check box in its gateway account to specify information that the customer will authorize distribution to a merchant during a transaction. The method of claim 67, Means for the merchant to select which information of the merchant account to distribute to authorized customers during the transaction Means for checking a check box in its gateway account to specify information that the merchant will authorize distribution to a customer during a transaction. The method of claim 67, Means for allowing the customer to determine how the merchant can use the information he distributes A statement prepared by the customer in his gateway account, the statement indicating how the merchant can use the distribution information of the customer, and means for sending the statement along with the transaction result to the authorized merchant Way. The method of claim 67, Means for forcing the gateway to use the merchant to use the distributed information Means for the gateway to find a fixed or increased amount of a customer; and Suspend the customer's account or cancel the merchant's account at the request of the customer when the merchant used the customer's distribution information contrary to the customer's approved usage method or did not remember the customer's distribution information for the customer to access. Means How to include. Identifying a merchant to participate in the transaction, Identifying customers to participate in the transaction, and Validating the transaction in response to the identification of both the merchant and the customer A method for easily closing a transaction comprising a. 73. The identification step of the merchant Transmitting identification information and transaction information to the merchant; Sending address information to the customer How to include. 74. The method of claim 73, The identification step of the customer Sending an IP address to the customer; and Transmitting transaction verification information to the merchant. How to include. 75. The method of claim 74, Sending the various personal identification numbers to the customer includes transmitting the identification number and various non-consecutive transaction codes for each transaction. 78. A personal identification number sent to the customer and transaction verification information sent to the merchant are encrypted differently for each transaction. 77. The method of claim 76, Individually storing a plurality of different pieces of transaction information for security purposes; and Compiling Complete Transaction Information How to include more. 78. The system of claim 77 wherein Sending complete transaction information including the customer's credit card information to validate a transaction for which credit card processing is required. 79. The method of claim 78, Receiving a response packet indicating the approval or rejection of the transaction. The method of claim 79, Identifying the transaction further comprises receiving a response packet indicating a transaction approval. Means for identifying the merchant to participate in the transaction, Means for identifying customers to participate in the transaction, and Means for validating a transaction in response to identification of both the merchant and the customer Apparatus for easily closing a transaction comprising a. 82. The method of claim 81, The merchant's identification means Means for transmitting identification information, transaction information to the merchant and Sending IP address information to the customer. 83. The system of claim 82, The means for identifying the customer Means for sending an IP address to the customer and Means for sending transaction verification information to the merchant. 84. The method of claim 83, Means for sending an IP address to the customer comprises means for sending a randomly generated transaction code and identification number for each transaction. 85. The method of claim 84, The customer's transaction code, merchant and transaction verification information is encrypted differently for each transaction. 86. The system of claim 85, Means for separately storing a plurality of different portions of transaction information for security purposes and means for compiling complete transaction information. 87. The method of claim 86, And means for sending complete transaction information, including customer credit card information, to validate the transaction information. 88. The method of claim 87, Means for receiving a response packet indicating the approval or rejection of the transaction. 89. The method of claim 88, Means for confirming the transaction further comprises means for receiving a response packet indicating a transaction approval.