WO2009083999A1 - Method and system for authenticating commercial transaction in a telecommunication network - Google Patents

Method and system for authenticating commercial transaction in a telecommunication network Download PDF

Info

Publication number
WO2009083999A1
WO2009083999A1 PCT/IN2007/000627 IN2007000627W WO2009083999A1 WO 2009083999 A1 WO2009083999 A1 WO 2009083999A1 IN 2007000627 W IN2007000627 W IN 2007000627W WO 2009083999 A1 WO2009083999 A1 WO 2009083999A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile device
transaction
coupon
message
authenticating
Prior art date
Application number
PCT/IN2007/000627
Other languages
French (fr)
Inventor
Kumar Jeevanani Suresh
Johri Gaurav
Kumar Mohapatra Tanmay
Koranapalli Nagaraju Rohith
Original Assignee
Onmobile Global Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Onmobile Global Limited filed Critical Onmobile Global Limited
Priority to PCT/IN2007/000627 priority Critical patent/WO2009083999A1/en
Publication of WO2009083999A1 publication Critical patent/WO2009083999A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising

Definitions

  • TITLE METHOD AND SYSTEM FOR AUTHENTICATING COMMERCIAL TRANSACTION IN A TELECOMMUNICATION NETWORK
  • the present invention relates to a system and a method for authenticating a transaction made by a customer. More particularly, the invention relates to a system and a method for authenticating a transaction made by a customer in a real-time manner using a mobile device.
  • Customer A person who intends to make, or has already made a transaction with a business entity.
  • the customer also has a mobile device.
  • Agent A person or an entity which asks the customer to authenticate her identity.
  • Coupon A document, printed or otherwise, that entitles the customer to certain goods, services, or discounts upon presentation.
  • the coupon is stored in the mobile device of the customer.
  • customers typically purchase coupons for events such as concerts, sports matches, performances, movie shows, plays etc., for traveling and for other commercial activities such as shopping.
  • customers may be given coupons by merchants under certain offers.
  • a shopping of INR 5000 might entitle a customer to get a coupon which can be redeemed for INR 500 on next shopping with the same merchant.
  • an air ticket booked from a certain travel agent might entitle a customer to get a coupon which is redeemable for another air ticket.
  • the customer might be given coupons if she is winner of a contest.
  • the coupons are provided to the customers in print form at merchant authorized outlets.
  • the customer collects the ticket or coupon from the authorized outlets possibly after making a corresponding payment.
  • the coupon might be delivered to a customer for a specified payment. This removes the problem of going and collecting the coupon.
  • Printed coupons might be lost or damaged due to reasons beyond the control of the customer which may render the coupon unusable.
  • Coupons can also be bought electronically from coupon outlets located in shopping malls, other commercial centers, or through the Internet.
  • a customer In order to purchase such a coupon, a customer first checks the availability of such a coupon. In case the coupon is available, the customer makes a payment and gets the printed coupon. The coupon may be booked over the internet, in which case the coupon is e-mailed to the customer.
  • the printed coupons usually have a barcode for unique identification of the coupon. The bar code is scanned at the venue of the event to identify the coupon.
  • Such a system still requires that an actual coupon must be printed at some point in the entire process. Further, such paper coupons may be transferred or re-sold to others.
  • Another way to provide coupons to customers is using a mobile device.
  • the mobile device include mobile phones, palm tops and laptops.
  • a coupon is authenticated with a bar code displayed on the screen of the mobile.
  • the distribution of coupons directly to mobile phones as messages including barcodes is a convenient way to distribute coupons. Such a system is easy for a customer to retrieve and present when asked for authentication.
  • a unique bar-coded ticket also containing the pre registered photograph of the ticket holder, is sent to the user mobile device.
  • a barcode reader authenticates the ticket by reading the ticket. But this system requires photograph of the ticket holder to be taken and transmitted to the system, which is cumbersome. Moreover, it also requires additional infrastructure such as a barcode reader.
  • a method for authenticating a transaction in a real-time manner using a mobile device includes receiving a request for a coupon corresponding to a transaction.
  • the request includes Unique Identity Identification (UII) of the mobile device.
  • the method includes sending the coupon to the mobile device based on one or more eligibility criteria.
  • the coupon facilitates the generation of an authentication request from the mobile device.
  • the method also includes authenticating the UII of the mobile device when the authentication request is received. Further, the method includes sending a transaction authentication message at real-time to the mobile device when the UII of the mobile device is authenticated.
  • UAI Unique Identity Identification
  • a system for authenticating a transaction in a real-time manner using a mobile device includes a database for storing a plurality of transaction details.
  • the system also includes a receiving module for receiving an authentication request for authenticating a coupon.
  • the authentication request is generated from the mobile device.
  • the system includes a verification module for authenticating UII of the mobile device.
  • the system includes a sending module for sending a transaction authentication message at real-time to the mobile device.
  • FIG. 1 is a schematic depicting an exemplary telecommunication network
  • FIG. 2 is a schematic illustrating an exemplary Value Added Services (VAS) system in accordance with an embodiment of the invention
  • FIG. 3 is a flow diagram illustrating a method for executing a transaction in accordance with an embodiment of the invention
  • FIG. 4 is a flow diagram illustrating a method for authenticating the transaction in accordance with an embodiment of the invention.
  • FIG. 5 is a flow diagram illustrating a method for verifying a coupon in accordance with an embodiment of the invention.
  • FIG. 1 illustrates a telecommunication network according to an embodiment of the invention.
  • the telecommunication network includes a mobile device 102 and a telecommunication infrastructure 104.
  • Mobile device 102 belongs to a customer.
  • Telecommunication infrastructure 104 includes a Mobile Switching Center (MSC) 106, a Home Location Register (HLR) 108 and a Value Added Services (VAS) system 110.
  • MSC Mobile Switching Center
  • HLR Home Location Register
  • VAS Value Added Services
  • a telecommunication service provider enables a connection between mobile device 102 and telecommunication infrastructure 104.
  • mobile device 102 may be a communication device like a mobile phone, pocket computer, laptop, palmtop, personal digital assistant etc. connected to telecommunication infrastructure 104.
  • MSC 106 enables a network connection between the customer and the destination.
  • the telecommunication network is a Global System for Mobile Communications (GSM) network.
  • GSM Global System for Mobile Communications
  • data information including mobile phone number, text, voice etc
  • MSC 106 At MSC 106, this information is decoded into an analog signal.
  • Telecommunication infrastructure 104 further includes an information storage module used to store subscription information related to subscribers of the telecommunication service.
  • An example of the information storage module is Home Location register (HLR) 108.
  • HLR 108 contains details of customers authorized to use the GSM network.
  • HLR 108 also stores details of every SIM card issued by the mobile device operator. More specifically, HLR 108 stores , telephone numbers, current location and other relevant details of the customers.
  • VAS system 110 in the telecommunication infrastructure 104 authenticates a transaction made by a customer.
  • VAS system 110 has been described in detail below in conjunction with FIG. 2.
  • VAS system 110 is connected to web server 112.
  • Web server 112 accepts Hypertext Transfer Protocol (HTTP) requests from clients, for example, web browsers and serves them HTTP responses along with optional data contents. Examples of optional data content may be web pages such as Hypertext Markup Language (HTML) documents and linked objects such as images.
  • HTTP Hypertext Transfer Protocol
  • FIG. 2 is a schematic illustrating an exemplary VAS System 110 in accordance with an embodiment of the invention.
  • VAS system 110 includes an application server 202 and a database 218.
  • Application server 202 includes a receiving module 204, a decision module 206, a transaction module 208, a coupon generating module 210, a sending module 212, a verification module 214 and a message generating module 216.
  • Receiving module 204 receives a request for transaction (RT) and a request for authentication of transaction (RAT) from mobile device 102 of the customer.
  • the customer may send the request for transaction using any mode, for example, mobile device, internet, cash transaction and a cheque.
  • the request of transaction may also be sent by a third party on the customer's behalf.
  • Sending module 208 sends coupons and messages such as coupon non eligibility message (CNEM) and transaction authentication message (TAM) at real-time to mobile device 102.
  • CNEM coupon non eligibility message
  • TAM transaction authentication message
  • receiving module 204 may include an SMS module, an Unstructured Supplementary Service Data (USSD) module, a Wireless Application Protocol (WAP) module, a Multimedia Messaging Service (MMS) module, a Hypertext Transfer Protocol (HTTP) module, and a voice module.
  • USSD module receives the authentication request in the form of a USSD message from mobile device 102 of the customer. Typically, a USSD message starts with a * followed by digits which indicate an action to be performed. Each group of digits is separated by a *, and the message is terminated with a #. The USSD message can contain a maximum of 182 alphanumeric characters. USSD allows interactive services between the mobile device and applications hosted by the telecommunication service provider.
  • the SMS module receives the authentication request from mobile device 102 in the form of an SMS to a specified number.
  • the specified number might belong to a telecommunication service provider, an agent or a merchant who wishes to authenticate the transaction made by the customer. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5.
  • the voice module receives the authentication request from mobile device 102 in the form of a voice call or video call.
  • HTTP module and WAP module receive the authentication request from mobile device 102 in the form of an HTTP message and a WAP message respectively, to a specified number.
  • the specified number might belong to a telecommunication service provider, an agent or a merchant who wishes to authenticate the transaction made by the customer. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5.
  • decision module 206 checks one or more eligibility criteria of the customer to send the RCT. This can be explained in conjunction with the following example.
  • a club X might open membership only for customers over the age of 25 and having annual income of at least INR 1000000.
  • Decision module 206 receives the customer information such as age and annual income from receiving module 204 and checks for the eligibility criteria. Thus a customer with the age of 30 but annual income of INR 600000 is not eligible for membership of the club X.
  • Another example may be a theatre with a seating capacity of 200. Thus, when 200 seats have been booked, no further RCT can be entertained. Further details regarding the process are described in conjunction with FIG. 3 and FIG. 5.
  • transaction module 208 executes the requested transaction that satisfies the eligibility criteria.
  • the transaction is executed when appropriate amount is deducted from the bank account or credit card of the customers.
  • the transaction is also executed when cash or cheque is accepted from the customer or a third party.
  • the transaction details (TD) such as UII of the mobile device and any additional information that accompanies the RCT is stored in database 218.
  • coupon generating module 210 generates a coupon based on the transaction executed by transaction module 208.
  • the coupon may include information such as Transaction Record Number (TRN), value, benefits and validity period of the transaction.
  • message generating module 216 generates a CNEM.
  • the CNEM may include information such as the reason why the customer is not eligible for the coupon.
  • Verification module 214 authenticates the UII of mobile device 102. According to an embodiment, verification module 214 checks whether UII of mobile device 102 sending the RAT is registered in database 218. Further, verification module 214 also searches for TD in database 218.
  • Message generating module 216 generates a message depending on the result of the verification by verification module 214.
  • the message may be generated, for example, as a USSD message, an HTTP message, an MMS, an encrypted SMS, a voice call, a video call, and a WAP message.
  • the generated SMS might state "CTRN 45/2345 is valid". Further details regarding the verification process are described in conjunction with FIG. 5.
  • sending module 208 includes at least one of a USSD module, HTTP module, WAP module, an SMS module, a MMS module and a voice module.
  • Sending module 208 sends coupons generated by coupon generating module 210 and messages generated by message generating module 216, such as CNEM and TAM 1, at real-time to mobile device 102 of the customer.
  • USSD module is used when a USSD message is sent.
  • SMS module and MMS module are used when the communication is through an encrypted SMS and an MMS respectively.
  • voice module and WAP module are used when communication is through a call or a WAP message respectively. Further details regarding the process are described in conjunction with FIG. 3 and FIG. 4.
  • Database 218 stores information regarding customer subscriptions to telecommunication services and is accessible by application server 202.
  • the information stored in database 218 includes TD, such as UII of mobile device of the customer, coupon related information such as transaction record number (TRN), and value, benefits and validity period of the coupons.
  • the UII may include, for example, mobile number and International Mobile Equipment Identity (IMEI) number of mobile device 102. Further details are described in conjunction with FIG. 3 and FIG. 4.
  • FIG. 3 is a flow diagram illustrating a method for executing a transaction in accordance with an embodiment of the invention.
  • VAS system 110 receives an RCT.
  • decision module 206 checks the eligibility criteria of the customer making the request for transaction. In case the customer satisfies the eligibility criteria, step 306 is executed, otherwise step 314 is executed.
  • VAS system 110 stores UII of the mobile device and other TD in database 218 when the customer satisfies the eligibility criteria.
  • transaction module 208 executes the transaction. Based on the transaction executed, at step 310, coupon generating module generates a coupon or a plurality of coupons.
  • sending module 212 sends the coupon or coupons at real-time to mobile device 102 of the customer.
  • step 314 is executed when the customer making the RCT doesn't satisfy the eligibility criteria at step 304.
  • message generating module 216 generates a coupon non eligibility message (CNEM).
  • sending module 212 sends the CNEM at real-time to mobile device 102 of the customer.
  • CNEM coupon non eligibility message
  • FIG. 4 is a flow diagram illustrating a method for authenticating the transaction according to an embodiment of the invention.
  • the method of FIG. 4 is executed when the request for transaction sent by mobile device 102 of the customer satisfies the eligibility criteria.
  • VAS system 110 sends a coupon or coupons to mobile device 102 of the customer.
  • VAS system 110 receives a request for authentication of transaction (RAT) from mobile device 102 of the customer.
  • RAT request for authentication of transaction
  • the RACT can be made in different formats such as USSD message, SMS, voice call, video call and click on a WAP link.
  • relevant module of receiving module 204 handles the RAT. For example, in case the customer sends the RAT as a USSD message, USSD module handles it.
  • verification module 214 checks whether UII of the mobile device sending the RAT is registered in database 218. Further, verification module 214 also searches for the TD. The verification process is described in detail in FIG. 5.
  • message generating module 216 generates a transaction authentication message (TAM) depending on the result of the verification of the RACT by verification module 214.
  • the TAM may be sent to one or more of the agent, customer or merchant's mobile device.
  • the TAM may be in the form of at least one USSD message, an HTTP message, an MMS, an encrypted SMS, a voice call, a video call, and a WAP message.
  • the TAM might be a USSD message stating "The CTRN A45/23T5 is invalid" when the verification result is negative.
  • sending module 212 sends the TAM at real-time to mobile device 102 of the customer. The authentication is successful when mobile device 102 from which RAT is sent matches with the corresponding information in database 218.
  • FIG. 5 is a flow diagram illustrating a method for verifying a coupon in accordance with an embodiment of the invention.
  • the verification process begins when the VAS system 110 receives an RAT from mobile device 102 of the customer at step 402.
  • verification module 214 checks whether the customer has already used the coupon earlier.
  • Step 506 is executed when no prior use of the coupon by the customer is detected.
  • verification module 214 checks whether the coupon can currently be used by the customer when prior use of the coupon is determined at step 502. Further, at step 506, verification module 214 checks whether the coupon can be used at that particular time.
  • the authentication of the transaction is successful when it is determined that the coupon can be used at the particular time.
  • message generating module 216 generates a successful TAM when the transaction is successful. Similarly, an unsuccessful TAM is generated by message generating module 216 when the authentication is unsuccessful.
  • a travel agent gives a coupon to a customer to avail three free air tickets between 7 th August, 2007 and 15 th September, 2007.
  • the attempt of the customer to use the coupon is verified by checking if the coupon has been used earlier and if the coupon can be used again.
  • Verification module 214 also checks whether the time of using the coupon is valid i.e. between 7 th August, 2007 and 15 th September, 2007.
  • VAS system 110 keeps a count of the number of times the coupon has been used by the customer. Further, the system checks if the coupon usage has exceeded three times and if the validity period of the coupon has lapsed.
  • the TAM is then sent at real-time to mobile device 102 of the customer.

Abstract

A method and system for authenticating a transaction using a mobile device in a telecommunication network is disclosed. A transaction is made for the customer when certain eligibility criteria are satisfied. The system stores the unique identity information (UII) of the mobile device of the customer and the transaction details (TD). The system sends a coupon on the mobile device when the transaction is made. A request for authentication of transaction (RAT) may be sent from the mobile device of the customer. A transaction authentication message (TAM) is sent at real¬ time to the mobile device authenticating the transaction.

Description

TITLE: METHOD AND SYSTEM FOR AUTHENTICATING COMMERCIAL TRANSACTION IN A TELECOMMUNICATION NETWORK
FIELD OF THE INVENTION:
The present invention relates to a system and a method for authenticating a transaction made by a customer. More particularly, the invention relates to a system and a method for authenticating a transaction made by a customer in a real-time manner using a mobile device.
DEFINITIONS:
Customer: A person who intends to make, or has already made a transaction with a business entity. The customer also has a mobile device.
Merchant: A business entity from which the customer purchases a product or registers for a service.
Agent: A person or an entity which asks the customer to authenticate her identity.
Coupon: A document, printed or otherwise, that entitles the customer to certain goods, services, or discounts upon presentation. The coupon is stored in the mobile device of the customer.
BACKGROUND:
Customers typically purchase coupons for events such as concerts, sports matches, performances, movie shows, plays etc., for traveling and for other commercial activities such as shopping. At times, customers may be given coupons by merchants under certain offers. For example, a shopping of INR 5000 might entitle a customer to get a coupon which can be redeemed for INR 500 on next shopping with the same merchant. Similarly, an air ticket booked from a certain travel agent might entitle a customer to get a coupon which is redeemable for another air ticket. Similarly, the customer might be given coupons if she is winner of a contest.
Typically, the coupons are provided to the customers in print form at merchant authorized outlets. The customer collects the ticket or coupon from the authorized outlets possibly after making a corresponding payment. Sometimes, the coupon might be delivered to a customer for a specified payment. This removes the problem of going and collecting the coupon. However there exists a drawback associated with printed coupons. Printed coupons might be lost or damaged due to reasons beyond the control of the customer which may render the coupon unusable.
Coupons can also be bought electronically from coupon outlets located in shopping malls, other commercial centers, or through the Internet. In order to purchase such a coupon, a customer first checks the availability of such a coupon. In case the coupon is available, the customer makes a payment and gets the printed coupon. The coupon may be booked over the internet, in which case the coupon is e-mailed to the customer. The printed coupons usually have a barcode for unique identification of the coupon. The bar code is scanned at the venue of the event to identify the coupon. However, such a system still requires that an actual coupon must be printed at some point in the entire process. Further, such paper coupons may be transferred or re-sold to others.
Several techniques are employed to prevent the transfer, duplication and reselling of paper coupons. All such techniques aim to ensure that the coupon is used by the original purchaser. Such techniques include providing a photo ID, such as a passport, and the credit or debit card that was made to make the original purchase. For example, if a customer purchases movie tickets over the internet using a credit card, she is asked to produce the same credit card when she goes to watch the movie. All of the abovementioned techniques have had limited success in easing the manual inspection of the coupon.
Another way to provide coupons to customers is using a mobile device. Examples of the mobile device include mobile phones, palm tops and laptops. In a conventional electronic coupon issuing method using a mobile phone, a coupon is authenticated with a bar code displayed on the screen of the mobile. The distribution of coupons directly to mobile phones as messages including barcodes is a convenient way to distribute coupons. Such a system is easy for a customer to retrieve and present when asked for authentication.
Such a system and method is disclosed in United States Patent No. 7044362, titled "Electronic ticketing system and method". The patent application discloses a method and a system for purchasing, downloading and authenticating an electronic ticket. The electronic ticket is displayed in the user mobile device. In the authentication process, a ticket receiving unit reads the bar code of the ticket. This invention requires additional infrastructure in the form of the ticket receiving system. Moreover, such mobile coupons still suffer from the problems identified above in relation to paper coupons. Barcodes can be forged or the electronic ticket could be forwarded to other mobile device users resulting in duplication. Another publication WO/2006/114613, titled "Mobile Ticket Authentication", discloses a system and method for authentication of mobile tickets using image of the ticket buyer. A unique bar-coded ticket, also containing the pre registered photograph of the ticket holder, is sent to the user mobile device. A barcode reader authenticates the ticket by reading the ticket. But this system requires photograph of the ticket holder to be taken and transmitted to the system, which is cumbersome. Moreover, it also requires additional infrastructure such as a barcode reader. Yet another patent, United States Patent No. 7004388 titled "Electronic ticket issuing system and electronic ticket issuing method", discloses a biometric authentication system for authenticating mobile tickets. But it requires the mobile information terminal possessed by a ticket buyer to be equipped with a personal identification terminal for generating biological information about a fingerprint. However, the number of people possessing such high-end mobile device is very limited. Further, several users may find such a system difficult to operate.
In light of the above, there is a need for a method and a system for authenticating a transaction that can prevent duplication and transfer of identity. There is a further need for a method and a system for authenticating a transaction that is affordable and easy to use.
SUMMARY OF THE INVENTION:
According to an embodiment, a method for authenticating a transaction in a real-time manner using a mobile device is disclosed. The method includes receiving a request for a coupon corresponding to a transaction. The request includes Unique Identity Identification (UII) of the mobile device. Further, the method includes sending the coupon to the mobile device based on one or more eligibility criteria. The coupon facilitates the generation of an authentication request from the mobile device. The method also includes authenticating the UII of the mobile device when the authentication request is received. Further, the method includes sending a transaction authentication message at real-time to the mobile device when the UII of the mobile device is authenticated.
According to another embodiment, a system for authenticating a transaction in a real-time manner using a mobile device is disclosed. The system includes a database for storing a plurality of transaction details. The system also includes a receiving module for receiving an authentication request for authenticating a coupon. The authentication request is generated from the mobile device. Further, the system includes a verification module for authenticating UII of the mobile device. Furthermore, the system includes a sending module for sending a transaction authentication message at real-time to the mobile device. BRIEF DESCRIPTION OF THE DRAWINGS:
FIG. 1 is a schematic depicting an exemplary telecommunication network;
FIG. 2 is a schematic illustrating an exemplary Value Added Services (VAS) system in accordance with an embodiment of the invention;
FIG. 3 is a flow diagram illustrating a method for executing a transaction in accordance with an embodiment of the invention;
FIG. 4 is a flow diagram illustrating a method for authenticating the transaction in accordance with an embodiment of the invention; and
FIG. 5 is a flow diagram illustrating a method for verifying a coupon in accordance with an embodiment of the invention.
DETAILED DESCRIPTION :
In the following description, for the purposes of explanation, specific details are set forth in order to provide a thorough understanding of the invention. However, it will be apparent that the invention may be practiced without these specific details. Various aspects and features of example embodiments of the invention are described in more detail hereinafter.
FIG. 1 illustrates a telecommunication network according to an embodiment of the invention. The telecommunication network includes a mobile device 102 and a telecommunication infrastructure 104. Mobile device 102 belongs to a customer. Telecommunication infrastructure 104 includes a Mobile Switching Center (MSC) 106, a Home Location Register (HLR) 108 and a Value Added Services (VAS) system 110. A telecommunication service provider enables a connection between mobile device 102 and telecommunication infrastructure 104. According to an embodiment, mobile device 102 may be a communication device like a mobile phone, pocket computer, laptop, palmtop, personal digital assistant etc. connected to telecommunication infrastructure 104. MSC 106 enables a network connection between the customer and the destination. According to an embodiment, the telecommunication network is a Global System for Mobile Communications (GSM) network. In the GSM network, data information (including mobile phone number, text, voice etc) is digitally encoded and transmitted to MSC 106. At MSC 106, this information is decoded into an analog signal.
Telecommunication infrastructure 104 further includes an information storage module used to store subscription information related to subscribers of the telecommunication service. An example of the information storage module is Home Location register (HLR) 108. HLR 108 contains details of customers authorized to use the GSM network. HLR 108 also stores details of every SIM card issued by the mobile device operator. More specifically, HLR 108 stores , telephone numbers, current location and other relevant details of the customers. According to an embodiment, VAS system 110 in the telecommunication infrastructure 104 authenticates a transaction made by a customer. VAS system 110 has been described in detail below in conjunction with FIG. 2. VAS system 110 is connected to web server 112. Web server 112 accepts Hypertext Transfer Protocol (HTTP) requests from clients, for example, web browsers and serves them HTTP responses along with optional data contents. Examples of optional data content may be web pages such as Hypertext Markup Language (HTML) documents and linked objects such as images.
FIG. 2 is a schematic illustrating an exemplary VAS System 110 in accordance with an embodiment of the invention. VAS system 110 includes an application server 202 and a database 218. Application server 202 includes a receiving module 204, a decision module 206, a transaction module 208, a coupon generating module 210, a sending module 212, a verification module 214 and a message generating module 216. Receiving module 204 receives a request for transaction (RT) and a request for authentication of transaction (RAT) from mobile device 102 of the customer. The customer may send the request for transaction using any mode, for example, mobile device, internet, cash transaction and a cheque. The request of transaction may also be sent by a third party on the customer's behalf. Such a request is accompanied by unique identity information (UII) of the mobile device 102 of the customer. Also, the request for transaction may include additional information such as date of birth, annual income and location of the customer. Sending module 208 sends coupons and messages such as coupon non eligibility message (CNEM) and transaction authentication message (TAM) at real-time to mobile device 102.
According to an embodiment, receiving module 204 may include an SMS module, an Unstructured Supplementary Service Data (USSD) module, a Wireless Application Protocol (WAP) module, a Multimedia Messaging Service (MMS) module, a Hypertext Transfer Protocol (HTTP) module, and a voice module. USSD module receives the authentication request in the form of a USSD message from mobile device 102 of the customer. Typically, a USSD message starts with a * followed by digits which indicate an action to be performed. Each group of digits is separated by a *, and the message is terminated with a #. The USSD message can contain a maximum of 182 alphanumeric characters. USSD allows interactive services between the mobile device and applications hosted by the telecommunication service provider. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5. Similarly, the SMS module receives the authentication request from mobile device 102 in the form of an SMS to a specified number. The specified number might belong to a telecommunication service provider, an agent or a merchant who wishes to authenticate the transaction made by the customer. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5. Similarly, the voice module receives the authentication request from mobile device 102 in the form of a voice call or video call. Similarly, HTTP module and WAP module receive the authentication request from mobile device 102 in the form of an HTTP message and a WAP message respectively, to a specified number. The specified number might belong to a telecommunication service provider, an agent or a merchant who wishes to authenticate the transaction made by the customer. Further details regarding the process are described in conjunction with FIG. 3, FIG. 4 and FIG. 5.
According to an embodiment, decision module 206 checks one or more eligibility criteria of the customer to send the RCT. This can be explained in conjunction with the following example. A club X might open membership only for customers over the age of 25 and having annual income of at least INR 1000000. Decision module 206 receives the customer information such as age and annual income from receiving module 204 and checks for the eligibility criteria. Thus a customer with the age of 30 but annual income of INR 600000 is not eligible for membership of the club X. Another example may be a theatre with a seating capacity of 200. Thus, when 200 seats have been booked, no further RCT can be entertained. Further details regarding the process are described in conjunction with FIG. 3 and FIG. 5.
According to an embodiment, transaction module 208 executes the requested transaction that satisfies the eligibility criteria. According to an embodiment, the transaction is executed when appropriate amount is deducted from the bank account or credit card of the customers. The transaction is also executed when cash or cheque is accepted from the customer or a third party. The transaction details (TD) such as UII of the mobile device and any additional information that accompanies the RCT is stored in database 218.
According to an embodiment, coupon generating module 210 generates a coupon based on the transaction executed by transaction module 208. The coupon may include information such as Transaction Record Number (TRN), value, benefits and validity period of the transaction. In case decision module 206 decides that the request for transaction doesn't satisfy the one or more eligibility criteria, message generating module 216 generates a CNEM. The CNEM may include information such as the reason why the customer is not eligible for the coupon. Verification module 214 authenticates the UII of mobile device 102. According to an embodiment, verification module 214 checks whether UII of mobile device 102 sending the RAT is registered in database 218. Further, verification module 214 also searches for TD in database 218. Message generating module 216 generates a message depending on the result of the verification by verification module 214. The message may be generated, for example, as a USSD message, an HTTP message, an MMS, an encrypted SMS, a voice call, a video call, and a WAP message. For example, in case the verification result is positive, the generated SMS might state "CTRN 45/2345 is valid". Further details regarding the verification process are described in conjunction with FIG. 5.
According to an embodiment, sending module 208 includes at least one of a USSD module, HTTP module, WAP module, an SMS module, a MMS module and a voice module. Sending module 208 sends coupons generated by coupon generating module 210 and messages generated by message generating module 216, such as CNEM and TAM1, at real-time to mobile device 102 of the customer. USSD module is used when a USSD message is sent. Similarly, SMS module and MMS module are used when the communication is through an encrypted SMS and an MMS respectively. Similarly, voice module and WAP module are used when communication is through a call or a WAP message respectively. Further details regarding the process are described in conjunction with FIG. 3 and FIG. 4.
Database 218 stores information regarding customer subscriptions to telecommunication services and is accessible by application server 202. The information stored in database 218 includes TD, such as UII of mobile device of the customer, coupon related information such as transaction record number (TRN), and value, benefits and validity period of the coupons. The UII may include, for example, mobile number and International Mobile Equipment Identity (IMEI) number of mobile device 102. Further details are described in conjunction with FIG. 3 and FIG. 4.
FIG. 3 is a flow diagram illustrating a method for executing a transaction in accordance with an embodiment of the invention. At step 302, VAS system 110 receives an RCT. At step 304, decision module 206 checks the eligibility criteria of the customer making the request for transaction. In case the customer satisfies the eligibility criteria, step 306 is executed, otherwise step 314 is executed. At step 306, VAS system 110 stores UII of the mobile device and other TD in database 218 when the customer satisfies the eligibility criteria. At step 308, transaction module 208 executes the transaction. Based on the transaction executed, at step 310, coupon generating module generates a coupon or a plurality of coupons. At step 312, sending module 212 sends the coupon or coupons at real-time to mobile device 102 of the customer. As mentioned earlier, step 314 is executed when the customer making the RCT doesn't satisfy the eligibility criteria at step 304. At step 314, message generating module 216 generates a coupon non eligibility message (CNEM). At step 316, sending module 212 sends the CNEM at real-time to mobile device 102 of the customer.
FIG. 4 is a flow diagram illustrating a method for authenticating the transaction according to an embodiment of the invention. The method of FIG. 4 is executed when the request for transaction sent by mobile device 102 of the customer satisfies the eligibility criteria. At step 312, VAS system 110 sends a coupon or coupons to mobile device 102 of the customer. At step 402, VAS system 110 receives a request for authentication of transaction (RAT) from mobile device 102 of the customer. The RACT can be made in different formats such as USSD message, SMS, voice call, video call and click on a WAP link. Depending on the format of the RAT, relevant module of receiving module 204 handles the RAT. For example, in case the customer sends the RAT as a USSD message, USSD module handles it. At step 404, verification module 214 checks whether UII of the mobile device sending the RAT is registered in database 218. Further, verification module 214 also searches for the TD. The verification process is described in detail in FIG. 5.
At step 406, message generating module 216 generates a transaction authentication message (TAM) depending on the result of the verification of the RACT by verification module 214. The TAM may be sent to one or more of the agent, customer or merchant's mobile device. The TAM may be in the form of at least one USSD message, an HTTP message, an MMS, an encrypted SMS, a voice call, a video call, and a WAP message. For example, the TAM might be a USSD message stating "The CTRN A45/23T5 is invalid" when the verification result is negative. At step 408, sending module 212 sends the TAM at real-time to mobile device 102 of the customer. The authentication is successful when mobile device 102 from which RAT is sent matches with the corresponding information in database 218.
FIG. 5 is a flow diagram illustrating a method for verifying a coupon in accordance with an embodiment of the invention. The verification process begins when the VAS system 110 receives an RAT from mobile device 102 of the customer at step 402. At step 502, verification module 214 checks whether the customer has already used the coupon earlier. Step 506 is executed when no prior use of the coupon by the customer is detected. At step 504, verification module 214 checks whether the coupon can currently be used by the customer when prior use of the coupon is determined at step 502. Further, at step 506, verification module 214 checks whether the coupon can be used at that particular time. The authentication of the transaction is successful when it is determined that the coupon can be used at the particular time. At step 508, message generating module 216 generates a successful TAM when the transaction is successful. Similarly, an unsuccessful TAM is generated by message generating module 216 when the authentication is unsuccessful.
The above mentioned method can be explained with the help of the following example. A travel agent gives a coupon to a customer to avail three free air tickets between 7th August, 2007 and 15th September, 2007. The attempt of the customer to use the coupon is verified by checking if the coupon has been used earlier and if the coupon can be used again. Verification module 214 also checks whether the time of using the coupon is valid i.e. between 7th August, 2007 and 15th September, 2007. VAS system 110 keeps a count of the number of times the coupon has been used by the customer. Further, the system checks if the coupon usage has exceeded three times and if the validity period of the coupon has lapsed. The TAM is then sent at real-time to mobile device 102 of the customer.
While example embodiments of the invention have been illustrated and described, it will be clear that the invention is not limited to these embodiments only. Numerous modifications, changes, variations, substitutions and equivalents will be apparent to those skilled in the art without departing from the spirit and scope of the invention as described in the claims.

Claims

CLAIMS:
1. A method for authenticating a transaction in a real-time manner using a mobile device, the mobile device being connected to a telecommunication network, the method comprising:
a. receiving a request for a coupon corresponding to a transaction, the request comprising a Unique Identity Identification of the mobile device;
b. sending the coupon to the mobile device based on one or more eligibility criteria, the coupon facilitating the generation of an authentication request from the mobile device;
c. receiving the authentication request from the mobile device for authenticating the coupon;
d. authenticating the Unique Identity Identification of the mobile device; and
e. upon authentication, sending a transaction authentication message at real-time to the mobile device.
2. The method of claim 1 , wherein the request for authentication of the transaction from the mobile device is at least one of a USSD message, an SMS, a voice call, a video call, an HTTP message, an MMS and a WAP message.
3. The method of claim 1 , wherein sending the transaction authentication message comprises sending at least one of a USSD message, an encrypted SMS, a voice call, an HTTP message, a WAP message, a video call, and an MMS to the mobile device.
4. A system for authenticating a transaction in a real-time manner using a mobile device, the system comprising:
a. a database for storing a plurality of transaction details;
b. a receiving module for receiving an authentication request for authenticating a coupon from the mobile device;
c. a verification module for authenticating the UII of the mobile device; and
d. a sending module for sending a transaction authentication message at real-time to the mobile device.
5. The system of claim 4 further comprising a decision module for checking one or more eligibility criteria of a customer making a request for transaction.
6. The system of claim 4 further comprising a transaction module for executing a transaction.
7. The system of claim 4, wherein the sending module sends the coupon to the mobile device based on one or more eligibility criterion.
8. The system of claim 4, wherein the request for authentication of the transaction from the mobile device is at least one of a USSD message, an SMS, a voice call, a video call, an HTTP message, an MMS and a WAP message.
9. The system of claim 4, wherein the transaction authentication message comprises at least one of a USSD message, an encrypted SMS, a voice call, an HTTP message, a WAP message, a video call, and an MMS to the mobile device.
10. A method for authenticating a transaction in a real-time manner using a mobile device, the mobile device being connected to a telecommunication network, the method comprising:
a. sending a request for a coupon corresponding to a transaction, the request comprising a Unique Identity Identification of the mobile device;
b. receiving the coupon on the mobile device based on one or more eligibility criteria, the coupon facilitating the generation of an authentication request from the mobile device;
c. generating the authentication request from the mobile device for authenticating the coupon;
d. receiving a transaction authentication message on the mobile device at real time, the transaction authentication message authenticating the coupon.
PCT/IN2007/000627 2007-12-31 2007-12-31 Method and system for authenticating commercial transaction in a telecommunication network WO2009083999A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/IN2007/000627 WO2009083999A1 (en) 2007-12-31 2007-12-31 Method and system for authenticating commercial transaction in a telecommunication network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/IN2007/000627 WO2009083999A1 (en) 2007-12-31 2007-12-31 Method and system for authenticating commercial transaction in a telecommunication network

Publications (1)

Publication Number Publication Date
WO2009083999A1 true WO2009083999A1 (en) 2009-07-09

Family

ID=40823806

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IN2007/000627 WO2009083999A1 (en) 2007-12-31 2007-12-31 Method and system for authenticating commercial transaction in a telecommunication network

Country Status (1)

Country Link
WO (1) WO2009083999A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011051553A1 (en) * 2009-10-30 2011-05-05 Nokia Corporation Method and apparatus for recovery during authentication
US20140289127A1 (en) * 2013-03-22 2014-09-25 F-Secure Corporation Secured Online Transactions

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010018660A1 (en) * 1997-05-06 2001-08-30 Richard P. Sehr Electronic ticketing system and methods utilizing multi-service vistior cards
US20020023215A1 (en) * 1996-12-04 2002-02-21 Wang Ynjiun P. Electronic transaction systems and methods therefor
US20060165060A1 (en) * 2005-01-21 2006-07-27 Robin Dua Method and apparatus for managing credentials through a wireless network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020023215A1 (en) * 1996-12-04 2002-02-21 Wang Ynjiun P. Electronic transaction systems and methods therefor
US20010018660A1 (en) * 1997-05-06 2001-08-30 Richard P. Sehr Electronic ticketing system and methods utilizing multi-service vistior cards
US20060165060A1 (en) * 2005-01-21 2006-07-27 Robin Dua Method and apparatus for managing credentials through a wireless network

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011051553A1 (en) * 2009-10-30 2011-05-05 Nokia Corporation Method and apparatus for recovery during authentication
CN102668491A (en) * 2009-10-30 2012-09-12 诺基亚公司 Method and apparatus for recovery during authentication
US9195980B2 (en) 2009-10-30 2015-11-24 Nokia Technologies Oy Method and apparatus for recovery during authentication
US20140289127A1 (en) * 2013-03-22 2014-09-25 F-Secure Corporation Secured Online Transactions
US9626676B2 (en) * 2013-03-22 2017-04-18 F-Secure Corporation Secured online transactions

Similar Documents

Publication Publication Date Title
TW594514B (en) Method and apparatus in a wireless communication system for using a selective call receiver to provide demographic information, redeem coupons, and emulate affinity cards
EP1297466B1 (en) A token delivery system
US7708194B2 (en) Virtual wallet
US7209903B1 (en) Method and system for facilitation of wireless e-commerce transactions
CA2498366C (en) Optimised messages containing barcode information for mobile receiving devices
US20130097078A1 (en) Mobile remote payment system
US20060015402A1 (en) Using multiple PINs for redemption through multiple distribution channels
US20130179250A1 (en) Digital coupon redemption
CA2354230A1 (en) Electronic coupon system
WO2003096159A2 (en) Method and system for enabling electronic transactions via a personal device
WO2007012085A2 (en) Mobile electronic transaction system
WO2009116954A2 (en) Method and system for distribution of barcode information for performing a transaction via a network
JP2003132256A (en) Coupon ticket information issuance system and display system
US20120143668A1 (en) Method of managing franchises using credit-card payment system
US20020138422A1 (en) Electronic commerce contracts mediating method and mobile communication network
EP2135178A1 (en) Method and system for providing electronic tickets
JP4072325B2 (en) Information processing device for electronic commerce support
JP2003168063A (en) Method and system for approving payment in card payment method
WO2009083999A1 (en) Method and system for authenticating commercial transaction in a telecommunication network
JP2003511797A (en) Remotely configurable multimedia entertainment and information system with electronic coupon
JP5405197B2 (en) Prepaid electronic money payment system
US20040181531A1 (en) Speed pass system
WO2005081148A1 (en) A system and method for the validation of electronic vouchers
EP1368796A2 (en) Point of sale terminal
WO2009084001A2 (en) Method and system for authenticating user information

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07870575

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07870575

Country of ref document: EP

Kind code of ref document: A1