[go: up one dir, main page]

TR202015804A2 - A VIRTUAL POS MANAGEMENT SYSTEM - Google Patents

A VIRTUAL POS MANAGEMENT SYSTEM Download PDF

Info

Publication number
TR202015804A2
TR202015804A2 TR2020/15804A TR202015804A TR202015804A2 TR 202015804 A2 TR202015804 A2 TR 202015804A2 TR 2020/15804 A TR2020/15804 A TR 2020/15804A TR 202015804 A TR202015804 A TR 202015804A TR 202015804 A2 TR202015804 A2 TR 202015804A2
Authority
TR
Turkey
Prior art keywords
bank server
information
database
website
virtual pos
Prior art date
Application number
TR2020/15804A
Other languages
Turkish (tr)
Inventor
Kantar Sabri̇
Cengi̇z Cem
Özyurt Çağatay
Original Assignee
Tuerkiye Garanti Bankasi Anonim Sirketi
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tuerkiye Garanti Bankasi Anonim Sirketi filed Critical Tuerkiye Garanti Bankasi Anonim Sirketi
Priority to TR2020/15804A priority Critical patent/TR202015804A2/en
Publication of TR202015804A2 publication Critical patent/TR202015804A2/en
Priority to PCT/TR2021/051005 priority patent/WO2022075951A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • G06Q30/0601Electronic shopping [e-shopping]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4016Transaction verification involving fraud or risk level assessment in transaction processing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/405Establishing or using transaction specific rules

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Finance (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Cash Registers Or Receiving Machines (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

Bu buluş, çevrimiçi alışveriş yoluyla ürün ya da hizmet sunan elektronik ticaret sitelerinde firmaların kredi kartı ve banka kartı ile ödeme alabilmelerini sağlayan sanal pos (point of sale – satış noktası) cihazları ile yapılan işlemlerin hangi web sitesi ve sunucu üzerinden yapıldığının tespit edilmesini ve yönetilmesini sağlayan bir sistem (1) ile ilgilidir.This invention enables companies to identify and manage transactions made with virtual pos (point of sale) devices that allow companies to receive payments with credit cards and debit cards on electronic commerce sites that offer products or services through online shopping. It relates to a system (1).

Description

TARIFNAME BIR SANAL POS YÖNETIM SISTEMI Teknik Alan Bu bulus, çevrimiçi alisveris yoluyla ürün ya da hizmet sunan elektronik ticaret sitelerinde firmalarin kredi karti ve banka karti ile ödeme alabilmelerini saglayan sanal pos (point of sale - satis noktasi) cihazlari ile yapilan islemlerin hangi web sitesi ve sunucu üzerinden yapildiginin tespit edilmesini ve yönetilmesini saglayan bir sistem ile ilgilidir. Önceki Teknik Sanal pos cihazlari çevrim içi (internet üzerinden) alisveris yolu ile ürün ya da hizmet sunan elektronik ticaret sitelerinde kredi karti veya banka karti ile ödeme yapilabilmesini saglayan cihazlardir. Sanal pos ile alisveris islemlerinde ödeme yapan kullanicilarin sahip olduklari kart bilgilerini çevrimiçi (online) ödeme ekranindan girmeleri ile kart bilgileri sanal posun bagli oldugu bankaya iletilir ve islem onayi alinarak ödeme gerçeklestirilir. Elektronik ticaret sitelerinde sanal pOS cihazlarinin kullanilabilmesi için bankalarin firmalara zorunlu tuttuklari çesitli güvenlik önlemleri bulunmaktadir. Bu güvenlik önlemlerinden bir tanesi sanal pos cihazinin kullanilacagi web sitelerinin güvenli oldugundan emin olunmasidir bunun için bankalar firmalar ile yaptiklari sözlesmelerde kullanilacak web sitelerini belirtmekte ve firmalarin farkli web siteleri ile islem yapmalarini engellemektedirler. Ancak elektronik ticaret alaninda hizmet veren çok sayida web S Itesi bulundugundan firmalarin sanal pos cihazini kullandiklari web sitelerin takibi zor olmaktadir. DESCRIPTION A VIRTUAL POS MANAGEMENT SYSTEM Technical Area This invention is an electronic commerce offering products or services through online shopping. It allows companies to receive payments by credit and debit cards on their websites. Which web page of transactions made with virtual pos (point of sale) devices It enables the detection and management of what is done through the site and server. relates to a system. Prior Art Virtual POS devices can be used to purchase products or services online (over the internet). Payment by credit card or debit card on e-commerce sites that offer services devices that allow it to be done. Payment in shopping transactions with virtual pos online payment of card information of users who By entering from the screen, the card information is transmitted to the bank to which the virtual POS is connected, and Payment is made upon receipt of the transaction confirmation. Virtual POS in electronic commerce sites There are various types of devices that banks make compulsory for companies to use their devices. There are security measures. One of these security measures is virtual pos It is to make sure that the websites where the device will be used are safe. for the banks to use the websites to be used in the contracts they have made with the companies. and allows companies to transact with different websites. they prevent. However, there are many websites serving in the field of electronic commerce. Monitoring of websites where companies use virtual pos device since there is an S Item it is difficult.

M evcutta sanal pos cihazlarinin firmalarla yapilan sözlesmelerde yer alan web sitesi adresleri disinda kullanilip kullanilmadiginin belirlenmesi için bankalar tarafindan internet ag taramalari ile yapilarak ag trafigi içerisindeki web siteleri kontrol edilmektedir. Söz konusu taramalar üçüncü parti yazilimlarla firmalar tarafindan gerçeklestirildiginden elektronik ticaret firmalarina ekstra hizmet bedelleri ortaya çikmaktadir. The current website of virtual pos devices in contracts with companies by banks to determine whether it is used outside of their addresses. Web sites in network traffic are checked with internet network scans. is being done. These scans are performed by companies with third-party software. Extra service fees are incurred for electronic commerce companies. is coming out.

Bu sebeple mevcut teknikte bulunan çalismalar ve eksiklikler göz önünde bulunduruldugunda sanal pos cihazi kullanimlarinda ödeme islemine gelmeden önce (yani alisveris akisi içerisinde sanal pos cihazina gelmeden önce) islem yapilan web site adresinin tespit edilerek bankada tanimli olan bir site olup olmadiginin belirlenmesini saglayan bir sisteme ihtiyaç duyuldugu anlasilmaktadir. dokümaninda, ürün ve hizmet karti uyumlu çevrimiçi satis servisi sunulmasini saglayan bir yöntemden bahsedilmektedir. Söz konusu bulustaki yöntem, çevrimiçi satis sitesinin bankacilik agi ile baglantisinin kurulmasi, ürün ve hizmet saglayicilarinin çevrimiçi satis sitesinde listelenmesini ve seçilen ürün ve servislerin bankacilik agi üzerinden satin alinmasi islemlerini yürütmektedir. For this reason, the studies and deficiencies in the current technique should be taken into consideration. before coming to the payment process in virtual POS device usage before (i.e. before coming to the virtual pos device in the shopping flow) the transaction It is a site defined in the bank by determining the web site address made. It is understood that there is a need for a system that enables the determination of In the document, product and service card compatible online sales service is provided. a method is mentioned. The method in the present invention is online Establishing the connection of the sales site with the banking network, product and service suppliers are listed on the online sales site and selected products and carries out the purchase of services over the banking network.

Bulusun Kisa Açiklamasi Bu bulusun amaci, elektronik ticaret sitelerinde sanal pos cihazlari ile gerçeklestirilen ödemelerde provizyon islemi sirasinda istek gelen web sitesi adresi (domain) bilgisinin otomatik olarak tespit edilmesini saglayan bir sistem gerçeklestirmektir. Brief Description of the Invention The aim of this invention is to use virtual pos devices in electronic commerce sites. Website address requested during the provisioning process for payments made A system that automatically detects (domain) information is to perform.

Bu bulusun baska bir amaci, elektronik ticaret sitelerinde sanal pos cihazlari ile gerçeklestirilen ödemelerde islem akisi sanal pos cihazina gelmeden, provizyon islemi sirasinda istek gelen web sitesinin banka tarafindan elektronik ticaret firmasi ile önceden yapilan anlasma dogrultusunda izin verilen bir web sitesi olup olmadiginin tespit edilmesini saglayan bir sistem gerçeklestirmektir. Another purpose of this invention is to use virtual pos devices in electronic commerce sites. In the payments made, provision is made before the transaction flow comes to the virtual POS device. During the process, the electronic commerce company of the requested website by the bank is a permitted website in accordance with a prior agreement with It is to implement a system that allows it to be detected.

Bulusun Ayrintili Açiklamasi Bu bulusun amacina ulasmak için gerçeklestirilen “B ir Sanal Pos Yönetim Sistemi” ekli sekilde gösterilmis olup, bu sekil; Sekil 1 Bulus konusu sistemin sematik görünüsüdür. Detailed Description of the Invention “A Virtual POS Management System” implemented to achieve the purpose of this invention shown in the attached figure, this figure; Figure 1 is the schematic view of the system that is the subject of the invention.

Sekilde yer alan parçalar tek tek numaralandirilmis olup, bu numaralarin karsiliklari asagida verilmistir: Sistem Elektronik cihaz Elektronik ticaret uygulamasi Veri tabani Banka sunucusu Elektronik ticaret sitelerinde sanal pos cihazlari ile yapilan islemlerin hangi web sitesi ve sunucu üzerinden yapildiginin tespit edilmesini ve yönetilmesini saglayan bulus konusu sistem (1); -herhangi bir uzak iletisim protokolünü kullanarak veri alisverisi gerçeklestirmek ve üzerinde en azindan bir uygulama yürütmek üzere yapilandirilan en az bir elektronik cihaz (2), -elektronik cihaz (2) üzerinde yürütülen ve en azindan kullanicilarin kart bilgilerini girerek ürün satin alma talebi iletebilmelerini saglamak üzere yapilandirilan en az bir elektronik ticaret uygulamasi (3), -içerisinde sanal pos kullanicisi firmalarin sanal pos saglayicisi kurumlara sanal pos kullanmak için beyan ettikleri web Site adres bilgilerini ve kullandiklari sunucu cihazlarin IP (internet protokolü) numaralarini kayit altinda tutmak üzere yapilandirilan en az bir veri tabani (4] ve -herhangi bir uzak iletisim protokolünü kullanarak elektronik cihaz (2) ile iletisim kurabilen, elektronik cihaz (2) ile kurulan iletisim üzerinden elektronik ticaret uygulamasi (3) ile veri alisverisi gerçeklestiren, veri tabani (4) ile iletisim halinde ve veri tabanini (4) yöneten, bir kullanici tarafindan elektronik ticaret uygulamasi (3) üzerinden bir satin alma talebi iletildiginde tetiklenerek kullanicilarin elektronik ticaret uygulamasina (3) erisim sagladiklari web tarayicisi üzerinde sanal pos yönlendirme sayfasinin açilmasini ve açilan yönlendirme sayfasi araciligi ile sanal pos cihazi kullanicisi firmanin daha Önce belirledigi yönlendirme sayfasi açilis kurallari bilgisini almak, yönlendirme sayfasi açildigi anda firmanin web Site adresi bilgisini almak ve elde edilen web sitesi adresi bilgisi üzerinde filtreleme uygulayarak web Site adresini sadece alan adi kalacak sekilde düzenlemek ve provizyon (ön ödeme onayi) islemine ait bilgilerle birlikte veri tabanina (4] kaydetmek, belirli periyotlarla veri tabanina (4) baglanarak sanal pos kullanicisi bir firma için kayitli web sitesi alan adi ve IP adresleri bilgileri ile tespit edilen web Sitesi alan adi ve IP adresleri bilgilerini karsilastirmak, karsilastirina sonucunda farkli kayitlar tespit ederse bir alarm üretmek ve ilgili birimlere iletmek üzere yapilandirilan en az bir banka sunucusu (5) içermektedir. The parts in the figure are numbered one by one and the corresponding numbers are given below: System electronic device Electronic commerce application Database bank server Which web page of transactions made with virtual pos devices on electronic commerce sites It enables the detection and management of what is done through the site and server. the inventive system (1); -Exchanging data using any remote communication protocol and at least one that is configured to run at least one application on it. electronic device (2), - at least the card information of the users executed on the electronic device (2) at least configured to enable them to enter a product purchase request an electronic commerce application (3), -Virtual pos provider companies of virtual pos user companies in virtual pos the website address information they declare to use and the server they use. to record the IP (internet protocol) numbers of the devices configured at least one database (4] and -communicate with electronic device (2) using any remote communication protocol electronic commerce through the communication established with the electronic device (2) in communication with the database (4), which performs data exchange with the application (3) and electronic commerce application by a user that manages the database (4) (3) it is triggered when a purchase request is sent over the users' electronic virtual pos on the web browser from which they access the commerce application (3) the opening of the redirect page and the virtual The pos device user is opening the forwarding page that the company previously determined. To get information about the rules of the company, the web site address of the company as soon as the redirect page is opened. get information and filter on the obtained website address information to edit the website address so that only the domain name remains, and to the database together with the information about the provision (prepayment confirmation) process (4] to save the virtual pos user by connecting to the database (4) at certain periods. registered website domain name and IP address information for a company. Comparing the site domain name and IP address information, as a result of the comparison If it detects different records, it will generate an alarm and forward it to the relevant units. contains at least one bank server (5) configured.

Bulus konusu sistemde (1) yer alan elektronik cihaz (2), üzerinde en az bir elektronik ticaret uygulamasi (3) yürütmek üzere yapilandirilan akilli telefon, tablet bilgisayar, masa üstü bilgisayar veya tasinabilir bilgisayar seklinde bir cihazdir. Söz konusu elektronik cihaz (2) tus veya dokunmatik ekran seklindeki bir girdi birimine sahiptir. Elektronik cihaz (2), teknigin bilinen durumunda yer alan herhangi bir uzak iletisim protokolünü kullanarak banka sunucusu (5) ile baglanti kurmak ve kurulan bu baglanti üzerinden elektronik ticaret uygulamasi (3) ve banka Sunucusu (5) arasinda veri alisverisi gerçeklesmesini saglamak üzere yapilandirilmaktadir. The electronic device (2) in the system (1), which is the subject of the invention, must have at least one smartphone, tablet configured to run an electronic commerce application (3) A computer is a device in the form of a desktop computer or a portable computer. Promise The electronic device (2) is connected to an input unit in the form of a button or a touch screen. has. Electronic device (2) is any device in the state of the art. to establish a connection with the bank server (5) using the remote communication protocol and Electronic commerce application (3) and bank Server over this connection It is configured to enable data exchange between (5).

Bulusun tercih edilen uygulamasinda elektronik cihaz (2) banka sunucusu (5) ile Internet seklindeki bir veri yolu kullanarak veri alisverisi gerçeklestirmek üzere yapilandirilmaktadir. In the preferred embodiment of the invention, the electronic device (2) is connected to the bank server (5). To exchange data using a data bus in the form of the Internet is being configured.

Bulus konusu sistemde yer alan elektronik ticaret uygulamasi (3) elektronik cihaz (2) üzerinde yürütülmekte olup elektronik cihaz (2) ve banka sunucusu (5) arasinda kurulan iletisim üzerinden banka sunucusu (5) ile veri alisverisi gerçeklestirmek üzere yapilandirilmaktadir. Söz konusu elektronik ticaret uygulamasi (3), en azindan kullanicilarin kart bilgisi seklindeki ödeme bilgilerini girerek bir satin alma talebi olusturabilmelerini saglamak üzere yapilandirilmaktadir. Bulusun tercih edilen düzenlemesinde elektronik ticaret uygulamasi (3), elektronik cihaz (2) üzerinde yürütülen bir web uygulamasidir, Bulus konusu sistemde (1) yer alan veri tabani (4) banka sunucusu (5] ile iletisim halinde Olup banka sunucusu (5) tarafindan yönetilmek üzere yapilandirilmaktadir. Electronic commerce application (3) electronic device in the system that is the subject of the invention (2) and between the electronic device (2) and the bank server (5). to exchange data with the bank server (5) over the established communication is configured to. The mentioned electronic commerce application (3) is the most At least, users can make a purchase by entering their payment information in the form of card information. are structured to enable them to create demand. Find your choice electronic commerce application (3), electronic device (2) It is a web application that runs on Communication with the database (4) bank server (5) in the system (1) which is the subject of the invention and is configured to be managed by the bank server (5).

Söz konusu veri tabani (4) içerisinde, sanal pos sahibi bir isletmenin sanal pos kullanimi için beyan ettigi web site adres bilgilerini ve sunucu IP bilgilerini kayit altinda tutmak üzere yapilandirilmaktadir. Veri tabani (4), firmalarin belirttigi web Site bilgilerini sadece domain (alan adi) kalacak sekilde filtrelenmis olarak kayit altinda tutmak üzere yapilandirilmaktadir. Veri tabani (4) ayrica içerisinde, banka sunucusu (5) tarafindan tespit edilen, sanal pos kullanilan web sitesi adresi ve sunucu bilgilerini kayit altinda tutmak üzere yapilandirilmaktadir. Veri tabani (4), sanal posun kullanildigi web sitesi bilgilerini sadece domain (alan adi) kalacak sekilde filtrelenmis olarak kayit altinda tutmak üzere yapilandirilmaktadir. In the database (4) in question, the virtual pos of an enterprise with a virtual pos recording the website address information and server IP information that it has declared for its use. It is configured to keep it under. The database (4) is the web site specified by the companies. Registering site information filtered so that only the domain (domain name) remains It is configured to keep it under. The database (4) also includes The website address where the virtual pos is used, determined by the server (5), and It is configured to record server information. database (4), Only the domain (domain name) will remain in the website information where the virtual POS is used. It is configured to record as filtered in this way.

Bulus konusu sistemde (1) yer alan ban ka sunucusu (5 l, teknigin bilinen durumunda yer alan herhangi bir uzak iletisim protokolünü kullanarak elektronik cihaz (2] ile iletisim kurmak ve kurulan bu iletisim üzerinden elektronik cihaz (2) üzerinde yürütülen elektronik ticaret uygulamasi (3] ile veri alisverisi gerçeklestirmek üzere yapilandirilmaktadir. Bulusun tercih edilen uygulamasinda banka sunucusu (5) elektronik cihaz (2) ile Internet seklindeki bir veri sebekesi üzerinden iletisim kurmak üzere yapilandirilmaktadir. Söz konusu banka sunucusu (5), veri tabani (4) içerisine yeni veri kaydi yapilmasi, veri tabani (4) içerisindeki kayitli verilerin silinmesi veya güncellenmesi seklindeki islemlerle veri tabanini (4) yönetmek üzere yapilandirilmaktadir. Bulusun tercih edilen düzenlemesinde banka sunucusu (5), bir firma sanal pos cihazi kullanim talebi olusturdugunda firma tarafindan beyan edilen ve bankanin onay verdigi web site adres bilgilerini ve Iirmalarin kullandiklari sunucu IP adresi bilgilerini alarak veri tabanina (4) kaydetmek üzere yapilandirilmaktadir. Banka sunucusu (5), firmalarin beyan ettigi web Sitesi adres bilgisindeki URL (Uniform Resource Loader - Tekdüzen Kaynak Bulucu) içerisinde yer alan protokol adi, subdomain (alt-alan adi), sorgu parametresi, url uzantilari ve url parametrelerini kuralli ifadeler metodu ile çikararak filtrelemek ve filtrelenen web sitesi adresini veri tabanina (4) kaydetmek üzere yapilandirilmaktadir. Bulusun tercih edilen düzenlemesinde banka sunucusu (5), elektronik ticaret uygulamasi (3) üzerinden bir satin alma talebi iletildiginde tetiklenerek kullanicilarin elektronik ticaret uygulamasina (3) erisim sagladiklari web tarayicisi üzerinde sanal pos yönlendirme sayfasinin açilmasini ve açilan yönlendirme sayfasi araciligi ile sanal pos cihazi kullanicisi firmanin daha önce belirledigi yönlendirme sayfasi açilis kurallari bilgilerini (yeni bir sekmede açma, mevcut sekmede açma, iframe (sayfaya yerlestirilen çerçeve) içerisinde açma ve pop-up (sayfa içerisinde küçük pencere) içerisinde açma) almak üzere yapilandirilmaktadir. Söz konusu banka sunucusu (5), açilan yönlendirme sayfasi araciligi ile sanal pos cihazinin kullanilacagi firina web site adresi bilgisini almak ve elde edilen web Sitesi adresi bilgisindeki URL içerisinde yer alan protokol adi, subdomain (alt-alan adi), sorgu parametresi, url uzantilari ve url parametrelerini kuralli ifadeler metodu ile çikararak filtrelemek ve filtrelenen web sitesi adresini provizyon islemine ait bilgilerle birlikte veri tabanina (4) kaydetmek üzere yapilandirilmaktadir. Banka sunucusu (5]I belirli periyotlarla veri tabanina (4) baglanarak sanal pos kullanicisi bir firma için kayitli web sitesi alan adi ve IP adresleri bilgilerini almak ve söz konusu bilgiler ile tespit edilen web sitesi alan adi ve IP adresleri bilgilerini karsilastirmak üzere yapilandirilmaktadir. Banka sunucusu (5) karsilastirma sunucunda eslesineyen web sitesi adresi ve [P bilgisi oldugunu tespit ederse söz konusu firma için bir rapor olusturmak ve ilgili birimlere iletmek üzere yapilandirilmaktadir. Banka sunucusu (5), kayitli IP ve web sitesi adresi ile tespit edilen IP ve web sitesi adresi eslesmeyen firmalara kullanilan web sitesi ve IP`lerden ne kadarlik islem geçtigine iliskin bir rapor olusturmak üzere yapilandirilmaktadir. Söz konusu banka sunucusu (5) olusturulan raporu sanal pos kullanicisi firmaya bildirmek ve islemlerin ilgili IP ve web sitelerinden yapilip yapilmadiginin kontrolünü saglayarak web sitesinin banka tarafindan elektronik ticaret firmasi ile önceden yapilan anlasma dogrultusunda izin verilen bir web sitesi olup olmadigini tespit etmek üzere yapilandirilmaktadir. Bank server (5 l, in the state of the art) in the system (1) which is the subject of the invention with electronic device (2] using any remote communication protocol to communicate and over the electronic device (2) through this established communication. to perform data exchange with the electronic commerce application (3]. is being configured. Bank server (5) in the preferred embodiment of the invention communication with the electronic device (2) over a data network in the form of the Internet is configured to install. The said bank server (5), database (4) recording new data in the database (4) to manage the database (4) with operations such as deleting or updating is being configured. In the preferred embodiment of the invention, the bank server (5) is a When the company creates a virtual POS device usage request, it is declared by the company. and the web site address information approved by the bank and the information used by the companies. to save the server IP address information in the database (4) is being configured. Bank server (5), website address declared by companies URL in info (Uniform Resource Loader) protocol name, subdomain (sub-domain), query parameter, url filtering out extensions and url parameters with the regular expressions method, and to save the filtered website address in the database (4) is being configured. In the preferred embodiment of the invention, the bank server (5), When a purchase request is submitted via the electronic commerce application (3) by triggering that users access the electronic commerce application (3). Opening the virtual pos redirect page on the web browser and opening the Via the redirect page, the user of the virtual pos device has previously the redirect page opening rules information (opening in a new tab, open in current tab, open in iframe (frame placed on page), and about to receive a pop-up (opening in a small window within the page) is being configured. The bank server (5) in question is the redirect page that opens Receiving the website address information of the company where the virtual POS device will be used. and the protocol name in the URL in the obtained website address information, subdomain (sub-domain), query parameter, url extensions and url parameters filtering and filtering the filtered website address with the regular expressions method to save in the database (4) together with the information about the provisioning process. is being configured. Bank server (5]I periodically to database (4) The registered website domain name and IP address for a virtual pos user company by connecting address information and the website domain name determined with the said information. and IP addresses are configured to compare information. Bank server (5) matched website address on the comparison server and [P information to create a report for the company in question and inform the relevant units. is configured to transmit. Bank server (5), registered IP and website Web address used by companies whose IP address and website address do not match to generate a report on how many transactions were processed from the site and IPs. is being configured. The bank server (5) in question created the report virtual pos Notifying the user to the company and ensuring that the transactions are made from the relevant IP and websites. electronically by the bank by checking that the website is not a website permitted under prior agreement with the trading firm It is configured to detect whether

Bulus konusu sistem (1) sayesinde, elektronik ticaret sitelerinde sanal pos cihazlari ile gerçeklestirilen ödemelerde islem akisi sanal pos cihazina gelmeden, provizyon islemi sirasinda istek gelen web sitesinin banka tarafindan elektronik ticaret firmasi ile önceden yapilan anlasma dogrultusunda izin verilen bir web sitesi olup olmadiginin tespit edilmesi ve böylece kaçak sanal pos kullanimlarinin önüne geçilmesi saglanmaktadir. Thanks to the system (1), which is the subject of the invention, virtual pos devices in electronic commerce sites In the payments made with the transaction flow, the provision is made before the virtual POS device arrives. During the process, the electronic commerce company of the requested website by the bank is a permitted website in accordance with a prior agreement with detecting that there is no virtual POS, thus preventing illegal virtual POS usages. passing is provided.

Bu temel kavramlar etrafinda, bulus konusu “Bir Sanal Pos Yönetim Sistemi (1 )” ile ilgili çok çesitli uygulamalarin gelistirilmesi mümkün olup, bulus burada açiklanan örneklerle sinirlandirilamaz, esas olarak istemlerde belirtildigi gibidir. Around these basic concepts, the subject of the invention is “A Virtual POS Management System (1)” It is possible to develop a wide variety of applications related to not limited to the examples described, essentially as claimed in the claims.

Claims (1)

ISTEMLER . Elektronik ticaret sitelerinde sanal pos cihazlari ile yapilan islemlerin hangi web sitesi ve sunucu üzerinden yapildiginin teSpit edilmesini ve yönetilmesini saglayan; -herhangi bir uzak iletisim protokolünü kullanarak veri alisverisi gerçeklestirmek ve üzerinde en azindan bir uygulama yürütmek üzere yapilandirilan en az bir elektronik cihaz (2), -elektronik cihaz (2) üzerinde yürütülen ve en azindan kullanicilarin kart bilgilerini girerek ürün satin alma talebi iletebilmelerini saglamak üzere yapilandirilan en az bir elektronik ticaret uygulamasi (3), -içerisinde sanal pos kullanicisi firinalarin sanal pos saglayicisi kurumlara sanal pos kullanmak için beyan ettikleri web site adres bilgilerini ve kullandiklari sunucu cihazlarin IP (internet protokolü) numaralarini kayit altinda tutmak üzere yapilandirilan en az bir veri tabani (4) içeren ve -herhangi bir uzak iletisim protokolünü kullanarak elektronik cihaz (2) ile iletisim kurabilen, elektronik cihaz (2) ile kurulan iletisim üzerinden elektronik ticaret uygulamasi (3) ile veri alisverisi gerçeklestiren, veri tabani (4) ile iletisim halinde ve veri tabanini (4) yöneten, bir kullanici tarafindan elektron ik ticaret uygulamasi (3) üzerinden bir satin alma talebi iletildiginde tetiklenerek kullanicilarin elektronik ticaret uygulamasina (3) erisim sagladiklari web tarayicisi üzerinde sanal pos yönlendirme sayfasinin açilmasini ve açilan yönlendirme sayfasi araciligi ile sanal pos cihazi kullanicisi firmanin daha önce belirledigi yönlendirme sayfasi açilis kurallari bilgisini almak, yönlendirine sayfasi açildigi anda firmanin web site adresi bilgisini almak ve elde edilen web sitesi adresi bilgisi üzerinde filtreleme uygulayarak web site adresini sadece alan adi kalacak sekilde düzenlemek ve provizyon (ön ödeme onayi) islemine ait bilgilerle birlikte veri tabanina (4) kaydetmek, belirli periyotlarla veri tabanina (4) baglanarak sanal pos kullanicisi bir firma için kayitli web sitesi alan adi ve bilgilerini karsilastirmak, karsilastirma sonucunda farkli kayitlar tespit ederse bir alarm üretmek ve ilgili birimlere iletmek üzere yapilandirilan en az bir banka sunucusu (5) ile karakterize edilen bir sistem (1). . Üzerinde en az bir elektronik ticaret uygulamasi (3) yürütmek üzere yapilandirilan akilli telefon, tablet bilgisayar, masa üstü bilgisayar veya tasinabilir bilgisayar seklinde bir cihaz olan elektronik cihaz (2) ile karakterize edilen istem 1'deki gibi bir Sistem (ll. . Tus veya dokunmatik ekran seklindeki bir girdi birimine sahip olan elektronik cihaz (2) ile karakterize edilen Istem 1 veya ?deki gibi bir sistem . Herhangi bir uzak iletisim protokolünü kullanarak banka sunucusu (5) ile baglanti kurmak ve kurulan bu baglanti üzerinden elektronik ticaret uygulamasi (3) ve banka sunucusu (5) arasinda veri alisverisi gerçeklesmesini saglamak üzere yapilandirilan elektronik cihaz (2) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem . Banka sunucusu (5) ile Internet seklindeki bir veri yolu kullanarak veri alisverisi gerçeklestirmek üzere yapilandirilan elektronik cihaz (2) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem . Elektronik Cihaz (2) üzerinde yürütülen, elektronik cihaz (2) ve banka sunucusu (5) arasinda kurulan iletisim üzerinden banka sunucusu (5) ile veri alisverisi gerçeklestirmek üzere yapilandirilan elektronik ticaret uygulainasi (3] ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir En azindan kullanicilarin kart bilgisi seklindeki ödeme bilgilerini girerek bir satin alma talebi olusturabilmelerini saglamak üzere yapilandirilan elektronik ticaret uygulamasi (3) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Elektronik cihaz (2) üzerinde yürütülen bir web uygulamasi olan elektronik ticaret uygulamasi (3) Ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Banka sunucusu (5] ile iletisim halinde olup banka sunucusu (5) tarafindan yönetilmek üzere yapilandirilan veri tabani (4) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Içerisinde, sanal pos sahibi bir isletmenin sanal pos kullanimi için beyan ettigi web site adres bilgilerini ve sunucu IP bilgilerini kayit altinda tutmak üzere yapilandirilan veri tabani (4) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Firmalarin belirttigi web site bilgilerini sadece domain bilgisi kalacak sekilde Iiltrelenmis olarak kayit altinda tutmak üzere yapilandirilan veri tabani (4) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Içerisinde, banka sunucusu (5) tarafindan tespit edilen, sanal pos kullanilan web sitesi adresi ve sunucu bilgilerini kayit altinda tutmak üzere yapilandirilan veri tabani (4) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Sanal posun kullanildigi web sitesi bilgilerini sadece domain bilgisi kalacak sekilde filtrelenmis olarak kayit altinda tutmak üzere yapilandirilan veri tabani (4) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Herhangi bir uzak iletisim protokolünü kullanarak elektronik cihaz (Zl ile iletisim kurmak ve kurulan bu iletisim üzerinden elektronik cihaz (2) üzerinde yürütülen elektronik ticaret uygulamasi (3) ile veri alisverisi gerçeklestirmek üzere yapilandirilan banka sunucusu (5) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Elektronik cihaz (2) ile Internet seklindeki bir veri sebekesi üzerinden iletisim kurmak üzere yapilandirilan banka sunucusu (5) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Veri tabani (4) içerisine yeni veri kaydi yapilmasi, veri tabani (4) içerisindeki kayitli verilerin silinmesi veya güncellenmesi seklindeki islemlerle veri tabanini (4) yönetmek üzere yapilandirilan banka sunucusu (5] Ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir Bir firma sanal pos cihazi kullanim talebi olusturdugunda firma tarafindan beyan edilen ve bankanin onay verdigi web Site adres bilgilerini ve Iirmalarin kullandiklari sunucu IP adresi bilgilerini alarak veri tabanina (4) kaydetmek üzere yapilandirilan banka sunucusu (5) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Firmalarin beyan ettigi web sitesi adres bilgisindeki URL içerisinde yer alan protokol adi, subdomain, sorgu parametresi, url uzantilari ve url parametrelerini kuralli ifadeler metodu ile çikararak tiltrelemek ve Iiltrelenen web sitesi adresini veri tabanina (4) kaydetmek üzere yapilandirilan banka sunucusu (5) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Elektronik ticaret uygulamasi (3) üzerinden bir satin alma talebi iletildiginde tetiklenerek kullanicilarin elektronik ticaret uygulamasina (3) erisim sagladiklari web tarayicisi üzerinde sanal pos yönlendirme sayfasinin açilmasini ve açilan yönlendirme sayfasi araciligi ile sanal pos cihazi kullanicisi firmanin daha önce belirledigi yönlendirme sayfasi açilis kurallari bilgilerini almak üzere yapilandirilan banka sunucusu (5] Ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem Açilan yönlendirme sayfasi araciligi ile sanal pos cihazinin kullanilacagi firma web site adresi bilgisini almak ve elde edilen web sitesi adresi bilgisindeki URL içerisinde yer alan protokol adi, subdomain, sorgu parametresi, url uzantilari ve url parametrelerini kuralli ifadeler metodu ile çikararak filtrelemek ve filtrelenen web sitesi adresini provizyon islemine ait bilgilerle birlikte veri tabanina (4) kaydetmek üzere yapilandirilan banka sunucusu (5) ile karakterize edilen yukaridaki istemlerden herhangi Belirli periyotlarla veri tabanina (4) baglanarak sanal pos kullanicisi bir firma için kayitli web sitesi alan adi ve IP adresleri bilgilerini almak ve söz konusu bilgiler ile tespit edilen web sitesi alan adi ve IP adresleri bilgilerini karsilastirmak üzere yapilandirilan banka sunucusu (5) ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Karsilastirma sunucunda eslesmeyen web sitesi adresi ve lP bilgisi oldugunu tespit ederse söz konusu Iirma için bir rapor olusturmak ve ilgili birimlere iletmek üzere yapilandirilan banka sunucusu (5] ile karakterize edilen yukaridaki istemlerden herhangi birindeki gibi bir sistem (1). Kayitli IP ve web sitesi adresi ile tespit edilen IP ve web sitesi adresi eslesmeyen firmalar kullanilan web sitesi ve IP'lerden ne kadarlik islem geçtigine iliskin bir rapor olusturmak üzere yapilandirilan banka sunucusu (5) ile karakterize edilen Istem 22rdeki gibi bir sistem (1). Olusturulan raporu sanal pos kullanicisi firmaya bildirmek ve islemlerin ilgili IP ve web sitelerinden yapilip yapilmadiginin kontrolü saglayarak web sitesinin banka tarafindan elektronik ticaret firmasi ile önceden yapilan anlasma dogrultusunda izin verilen bir web sitesi olup olmadigini tespit etmek üzere yapilandirilan banka sunucusu (5) ile karakterize edilen Istem 23'teki gibi bir sistem (1).REQUESTS . It enables the determination and management of the transactions made with virtual pos devices on electronic commerce sites, through which website and server; - at least one electronic device (2) configured to exchange data using any remote communication protocol and run at least one application on it, at least one configured electronic commerce application (3), -at least one data structured to record the website address information of the virtual pos user companies to use virtual pos providers to use virtual pos and the IP (internet protocol) numbers of the server devices they use In communication with the database (4), which contains the base (4) and can communicate with the electronic device (2) using any remote communication protocol, which performs data exchange with the electronic commerce application (3) through the communication established with the electronic device (2) and handled by a user who manages the database (4) When a purchase request is sent via the ktron ik trade application (3), it triggers the opening of the virtual pos routing page on the web browser where the users access the electronic commerce application (3), and the routing page opening rules information that the virtual pos device user has previously determined by the company through the opened routing page. to receive the website address information of the company as soon as the referral page is opened, and by filtering the website address information obtained, to edit the website address so that only the domain name remains, and to save it in the database (4) together with the information regarding the provision (prepayment confirmation) process, It is characterized by at least one bank server (5) configured to connect the virtual pos user to the database (4) periodically, to compare the registered website domain name and information for a company, to generate an alarm if different records are detected as a result of the comparison, and to forward it to the relevant units. a system (1). . A System as in Claim 1, characterized by an electronic device (2), which is a device in the form of a smartphone, tablet computer, desktop computer or portable computer, which is configured to run at least one electronic commerce application (3) on it. A system as in Claim 1 or , which is characterized by an electronic device (2) with an input unit in the form of a touch screen To establish a connection with the bank server (5) using any remote communication protocol and to implement an electronic commerce application through this connection (3) a system as in any of the above claims, characterized by an electronic device (2) configured to enable data exchange between the bank server (5) and the bank server (5) Electronic device (2) configured to perform data exchange using a data bus in the form of Internet with the bank server (5) A system as in any one of the above claims, characterized by An Encryption Device as in any of the above claims, characterized by an electronic commerce application (3] configured to exchange data with the bank server (5) over the communication established between the electronic device (2) and the bank server (5), executed on the Electronic Device (2). A system (1) as in any of the above claims, characterized by an electronic commerce application (3), which is configured to at least enable users to create a purchase request by entering payment information in the form of card information. A system (1) as in any one of the above claims, characterized by the electronic commerce application (3), which is a web application executed on the electronic device (2). A system (1) as in any of the above requests, characterized by the database (4) that is in communication with the bank server (5) and is configured to be managed by the bank server (5). A system (1) as in any of the above requests, characterized by a database (4) configured to record website address information and server IP information. A system (1) as in any one of the above claims, characterized by a database (4), characterized by a database (4) that is configured to record the website address and server information determined by the bank server (5), where virtual pos is used. A system as in any of the above claims (1). A system (1) as in any one of the above claims, characterized by a database (4) that is configured to record the information of the website where the POS is used, filtered so that only the domain information remains. As in any of the above claims, characterized by the bank server (5) configured to communicate with the electronic device (Zl) using any remote communication protocol and to exchange data with the electronic commerce application (3) executed on the electronic device (2) over this communication. a system (1) A system (1) as in any of the above claims, characterized by a bank server (5) configured to communicate with an electronic device (2) over a data network in the form of the Internet. As in any of the above requests, characterized by a bank server (5) that is configured to manage the database (4) with operations such as deleting or updating the registered data in the database (4). Web Site address information approved by the bank A system (1) as in any of the above claims, characterized by the bank server (5) configured to receive the IP address information of the companies and the server they use and save them in the database (4). Characterized by the bank server (5), which is configured to filter the protocol name, subdomain, query parameter, url extensions and url parameters in the URL in the website address information declared by the companies by extracting them with the regular expressions method and to save the filtered website address in the database (4). A system (1) as in any one of the preceding claims. When a purchase request is sent through the electronic commerce application (3), it is triggered to open the virtual pos redirect page on the web browser where the users access the electronic commerce application (3) and to receive the information about the routing page opening rules that the virtual pos device user has previously determined by the company through the opened routing page. A system like any of the above prompts, characterized by the bank server (5], which is configured to receive the company website address information where the virtual POS device will be used, and the protocol name, subdomain, query parameter in the URL in the obtained website address information. , url extensions and url parameters by extracting them with the method of regular expressions, and the bank server (5) is configured to save the filtered website address in the database (4) together with the information about the provisioning process. Any of the above requests The bank server (5), which is configured to connect to the database (4) at certain intervals, to receive the registered website domain name and IP address information for a virtual POS user company, and to compare the information in question with the website domain name and IP address information determined. A system (1) as in any one of the above claims, characterized by. A system (1) as in any of the above prompts, characterized by the bank server (5), which is configured to generate a report for the said enterprise and forward it to the relevant units if it detects that the comparison server has mismatched website address and LP information. A system as in Claim 22 (1), which is characterized by the bank server (5) configured to generate a report on how many transactions were processed from the websites used and IPs detected by the companies whose IP and website addresses do not match. A system as in Claim 23, which is characterized by the bank server (5), which is configured to notify and to determine whether the website is a website allowed by the bank in accordance with the previous agreement with the electronic commerce company by controlling whether the transactions are made from the relevant IP and websites. (one).
TR2020/15804A 2020-10-05 2020-10-05 A VIRTUAL POS MANAGEMENT SYSTEM TR202015804A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TR2020/15804A TR202015804A2 (en) 2020-10-05 2020-10-05 A VIRTUAL POS MANAGEMENT SYSTEM
PCT/TR2021/051005 WO2022075951A1 (en) 2020-10-05 2021-10-04 A virtual pos management system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TR2020/15804A TR202015804A2 (en) 2020-10-05 2020-10-05 A VIRTUAL POS MANAGEMENT SYSTEM

Publications (1)

Publication Number Publication Date
TR202015804A2 true TR202015804A2 (en) 2021-01-21

Family

ID=75575861

Family Applications (1)

Application Number Title Priority Date Filing Date
TR2020/15804A TR202015804A2 (en) 2020-10-05 2020-10-05 A VIRTUAL POS MANAGEMENT SYSTEM

Country Status (2)

Country Link
TR (1) TR202015804A2 (en)
WO (1) WO2022075951A1 (en)

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8600880B2 (en) * 2004-03-12 2013-12-03 American Express Travel Related Services Company, Inc. Method and system for providing point of sale services
US20160277412A1 (en) * 2010-11-17 2016-09-22 Invysta Technology Group Methodology for identifying local/mobile client computing devices using a network based database containing records of hashed distinctive hardware, software, and user provided biometric makers for authorization of electronic transactions and right of entry to secure locations
CN104504562B (en) * 2014-12-22 2018-08-07 张文 A kind of method of mobile payment and system

Also Published As

Publication number Publication date
WO2022075951A1 (en) 2022-04-14

Similar Documents

Publication Publication Date Title
TWI576719B (en) Secure service for receiving sensitive information through nested iframes
CA2690090C (en) Methods and computer-readable media for enabling secure online transactions with simplified user experience
US9348896B2 (en) Dynamic network analytics system
CN102194177A (en) System for risk control over online payment
JP2001306864A (en) Agent purchase method, agent purchase system and recording medium with transaction management program recorded therein
KR20020038584A (en) System for handling network transactions
US20140258106A1 (en) Payment system, purchasing system, and method for performing a plurality of payment processes
CN101639884B (en) System and method for managing customer address information in electronic commerce using the internet
US20220044245A1 (en) Methods for payment and merchant systems
CA2689072C (en) Methods and computer-readable media for facilitating forensic investigations of online transactions
US20160180299A1 (en) Payment unification service
Patro et al. Security issues over E-commerce and their solutions
JP2002063524A (en) Credit guarantee method in electronic commerce, transaction authentication server, store server and member management server to which this method is applied
JP2018032081A (en) Bank service system and bank service method
US11514449B2 (en) Pre-authorization of non-activated payment instruments at specific merchants
TR202015804A2 (en) A VIRTUAL POS MANAGEMENT SYSTEM
KR20170092516A (en) Cyber bigdata trade system and method
KR20180047353A (en) A method and system for providing a scraping cloud service
KR100351473B1 (en) Billing portal service system and method thereof
KR20020085295A (en) An electronic commercial banking system of enterprise using the internet
KR19990083849A (en) Electronic Fund Transfer System for Commercial Transactions of Internet
WO2002065362A1 (en) Electronic commerce settling method and system
TR2021005124A1 (en) A SECURE SHOPPING PAYMENT SYSTEM
JP2001265972A (en) Agent system in transaction on internet
TWI693569B (en) A method and system for authenticating a user with service providers using a universal one time password