Electronic Money Transfer
The present invention relates to electronic transfer of a sum of money, and in particular, although not exclusively, to transfer of sums of money representing micro payments. As increasing use of the internet is made for commerce, the need for a secure and easy-to-use means for transferring sums of money is becoming of greater importance. Currently, most monetary transactions over the internet are performed using credit/debit card accounts. However, there are several concerns regarding the security of such transactions, and many people are reluctant to type in their card number on a web site, in case it is misappropriated and used fraudulently.
Alternative methods of transferring money over the internet involve transferring a cash lump sum from a credit card/bank account to an "e-cash" account. Sums are then debited from the e-cash account from suitable web sites which support the e-cash method. Alternatively, buyers can transfer money from a card/bank account into a proprietary currency system (for example eCoin (www.ecoin.com)) . Buyers can then spend amounts in the proprietary currency system at compatible web sites.
Unfortunately, there are several different e-cash and proprietary currency systems available on the internet and customers often find that a particular web site from which they wish to make a purchase does not support the particular system they use. As e-cash accounts and transactions
normally incur charges and involve entering personal and financial data, users are reluctant to set up accounts with several different systems. Also, very few banks allow e- cash accounts and transactions and so only a very small proportion of internet users actually use these facilities. Furthermore, in order to set up an e-cash or proprietary currency account, bank/card account data has to be given out over the internet, again raising security issues.
WO 99/08242 (British Telecommunications Public Limited Company) describes a system for providing a transaction record which allows data describing a transaction between a client computer and a server computer to be created for use by a billing system. However, the system described in this document is only capable of crediting or debiting the client computer for retrieving data, for example when a web page is viewed. There is no way described for the system to allow money to be billed relating to more complex interactions between the client computer and the website, for example, buying/selling goods, or paying for more specifically selected data than an entire web page. The system described is also only used with a telephone service billing system. Thus, a user would have to subscribe to a particular telephone service provider to be able to use this system. This has disadvantages such as only being able to pay for communications network retrieved data by via a telephone bill, rather than being able to pay for specific goods/services directly from a bank account for example. Furthermore, the system described looks up a network address
datum stored in a database to obtain the CLID in most cases, and so the security of the system can be compromised.
An aim of the present invention is to provide an easy- to-use system for transferring a sum of money using a communications network. The preferred embodiment is intended to use an account, such as a bank, credit card or telephone charge account, for debiting or crediting amounts of money, and can thereby remove the need for setting up a separate electronic money transfer account. As the pre- ferred embodiment of the invention can rely upon a verified existing account to transfer money, users do not have to enter any card details each time they use the system.
According to one aspect of the present invention there is provided a method of electronically transferring a sum of money, the method including steps of: a user entity connecting to a network address related to a content provider entity over a communications network; the user entity downloading data from the content provider entity; the user entity manipulating transaction data in response to the downloaded data, the transaction including a manipulation of data representing the transfer of a sum of money; the user entity transferring the transaction data addressed to the content provider entity; the content provider entity obtaining a caller identifier corresponding to the user entity; the content provider entity obtaining account data
using the Caller identifier; the content provider entity transferring data describing the transaction addressed to an account provider entity responsible for the obtained account, and the account provider entity performing a transfer of a sum of money on the obtained account, the money transfer corresponding to the transaction data.
The step of the content provider entity obtaining the caller identifier may be achieved by requesting data representing the caller identifier from a network service provider of the user entity.
The caller identifier can include numerical or alphanu- merical data and is intended to provide information identifying the line which the user entity is using to connect to the communications network. The exact nature of the caller identifier may depend on the nature of the communications network. For example, the caller identifier may include a calling line identifier (CLID) which comprises information about the billing telephone number from which the call made by the user entity originated. The CLID value may include an entire phone number or information regarding the area code and local exchange number used by the user entity. The caller identifier may be obtained using the known automatic number identification (ANI) . ANI can provide billing information for a phone number of a telephone call from which a call originated, or the telephone number itself. The ANI may be compared to the CLID value for a particular call for additional security.
The step of the content provider entity obtaining the caller identifier may be achieved by requesting data representing a network identifier corresponding to the user identifier using the caller identifier and, using the network identifier to obtain the account data. Where the communications network includes the internet, the network identifier can include an internet protocol (IP) address .
The step of the user entity manipulating transaction data may include the user entity performing one or more of the following actions: playing a game; purchasing goods or services; downloading further selected data, for example music, video, image, reference information, news or copyright material. It could be possible for the account to be set up by the content provider.
The content provider entity may transfer data including a public key request to the account provider entity. The method may further include steps of the account provider entity requesting verification of the public key from the user entity, and the account provider entity comparing the user entity verified public key against a private key associated with the user entity before performing the money transfer. The data transferred by the method may be encrypted by algorithm prior to transmission. The encryption algorithm may have public and private elements.
According to another aspect of the present invention
there is provided apparatus for a user entity having an account which can be used to debit and credit sums of money to electronically transfer a sum of money, the apparatus including : means for connecting to a communications network, the connection means including means for providing a caller identifier to another entity; means for connecting to a network address related to a content provider entity; means for downloading data from the content provider entity; means for manipulating transaction data in response to the downloaded data, the transaction including manipulation of data representing a sum of money, and means for transferring the transaction data addressed to the content provider entity.
According to a further aspect of the present invention there is provided apparatus for a content provider entity to arrange for the electronic transfer a sum of money to or from an account associated with a -user entity, the apparatus including : means for downloading data addressed to a user entity connected to a network address related to the content provider entity; means for receiving transaction data from the user entity in response to the downloaded data, the transaction including manipulation of data representing a sum of money; means for obtaining a caller identifier corresponding
to the user entity; means for obtaining user account data using the caller identifier, and means for transferring data describing the transaction addressed to an account provider entity responsible for the obtained account, such that the account provider entity can perform a transfer of a sum of money corresponding to the transaction data.
According to a further aspect of the present invention there is provided a system for electronically transferring a sum of money, the system including: means for a user entity to connect to a network address related to a content provider entity over a communications network; means for the user entity to download data from the content provider entity; means for the user entity to manipulate transaction data in response to the downloaded data, the transaction including manipulation of data representing the transfer of a sum of money; means for the content provider entity to obtain a caller identifier corresponding to the user entity; means for the content provider entity to obtain account data using the caller identifier; means for the user identity to transfer the transaction data addressed to the content provider entity; means for the content provider entity to transfer data describing the transaction addressed to an account provider
entity responsible for the obtained account, and means for the account provider entity to perform a transfer of the sum of money on the obtained account, the transfer corresponding to the transaction data. According to a further aspect still of the present invention there is provided a communications network configured to be used in connection with the apparatus, method and system described above.
According to yet another aspect of the present inven- tion there is provided a method of electronically transferring a sum of money, said method including the steps of: obtaining a call line identification (CLID) number; obtaining an account reference using the CLID; manipulating data representing a transfer of a sum of money; accessing an account corresponding to the obtained account reference, and performing a transfer of a sum of money on the accessed account, the performed money transfer corresponding to the represented money transfer. The account reference may include a telephone charge account. The step of manipulating data representing money transfer may be part of an entertainment service. The sum of money may comprise a micro payment. Preferably, the step of obtaining the CLID includes accessing a CLID captured and stored by an internet service provider.
Whilst the invention has been summarised above, it extends to any inventive combination of the features set out above or in the following description.
The invention may be performed in various ways, and, by way of example only, an embodiment thereof will now be described, reference being made to the accompanying drawings, in which: Figure 1 illustrates schematically steps which may be performed to transfer a sum of money in accordance with a specific embodiment;
Figure 2 illustrates an example of a screen display which may be used as an interface for the money transfer, and
Figure 3 illustrates schematically steps performed by another embodiment including additional security features.
At step 101 of Figure 1, a user connects to the internet via an internet service provider (ISP) . This typically involves the user using a personal computer (PC) and a modem to log on to an account which they have opened with the ISP, using suitable internet/World Wide Web navigation software such as Microsoft Explorer (Trade Mark) or Netscape (Trade Mark) . The modem uses a conventional land or mobile telephone line to communicate with the ISP. The telephone line is provided by a telecommunications company such as BT which normally performs quite stringent security checks before allowing a user to set up an account . In order to detain a line from the telecommunications company, the user must provide a verified address and bank account details, so it is easy to establish the individual responsible for the line. Furthermore, in the case of a land-based telephone
line, it is easy to confirm the geographical origin of the telephone call.
At step 102, the ISP captures a call line identification (CLID) of the user. CLID capture is an almost univer- sal practice carried out by ISPs in order to attempt to prevent criminal misuse of their services and sometimes to obtain marketing data. The CLID is intended to be a unique identifier corresponding to the telecommunications line which the user's modem is utilising. For some telecommuni- cations networks the CLID capture may be called "Automatic Number Identification" (ANI) .
At step 103, the user directs the World Wide Web navigation software to connect to a particular web site which functions in accordance with the preferred embodiment. The user then interacts with the web site at step 104. This interaction typically involves the user selecting on-screen icons and/or entering alpha numerical information in input boxes. Data representing the user's actions is then transferred to the web site software, which may in turn transfer data back to the user. This interaction may involve performing a function which is to result in a transfer of a sum of money. Examples of such functions include the purchasing of software or physical items, in which case the user is to pay the sum of money. Alterna- tively, the function may result in the user receiving a sum of money, for example, selling bonds or shares. There may even be a mixture of payments by or to the user, for example, resulting from a series of transactions with an on-
line book-maker.
At step 105, the web site obtains the CLID of the user. The web site may obtain the CLID either from the ISP which has already captured it or, alternatively, the web site software itself may be able to send an interrogation pulse to sense the user's CLID without a direct connection to the user's internet account, which can assist in correctly identifying the user who is actually using the communications line which is the source of the interaction. At step 106, the web site software uses the CLID to contact the telecommunications company providing the user's line in order to access the user's charge account. The web site software will then transfer information regarding the transfer of the sum of money resulting from the user's interaction with the web site, so that a corresponding transfer of money can be made from or to the charge account. The information will typically include the amount of money to be transferred, whether the money is to be paid into or out of the user's account, destination details of another party or parties' account (s) into- or out of which the sum of money is to be transferred, details of the web site, including time and date of the user's interactions and the functions performed. Details of the transaction may be included on the telephone charge account bill for the user's information. The web site software may also provide other information or functions, for example, conversion of the sum of money from a local currency in the country where the web site is based into a local currency where the telecommunica-
tions company or user is based. The- sum of money will be transferred to the destination account when the bill is paid.
In an alternative embodiment, the user's CLID may be used by a database system to obtain a bank or credit card account reference rather than a telephone charge account.
The sum of money could then be directly transferred from or to the card/bank account
Figure 2 illustrates an example of an on-screen display 201 representing a web site providing an "on-line fruit machine". The display includes a play area 202 containing graphics representing reels of a simulated fruit machine. The display 201 also includes a number of icons which may be clicked by the user's mouse pointer in order to play the simulated fruit machine. Playing the simulated fruit machine may be thought of as constituting interaction with the web site at step 104 above.
Icons 203 to 206 represent sums of money which the user can select in order to gamble on the fruit machine. The icons 203 to 206 correspond to specific, small sums of money £1, 50 pence, 10 pence, and 5 pence, respectively. Assuming each spin of the reels allows a sum of 5 pence to be gambled, then clicking on icon 204 (representing 50 pence) would mean that the user has staked 50 pence in return for 10 spins of the reels. Clicking the icons 203 to 206 may be thought of as being equivalent to inserting a coin of corresponding value into a fruit machine . The sum of money staked by the user each time they click one of icons 203 to
206 can then be charged to their telephone charge account in accordance with steps 105 to 106 above.
Referring to Figure 3 , a more complex embodiment of the present invention which involves the principles of the known public key encryption for additional security is schematically illustrated. At step 301 a user connects to the internet via his/her ISP. At step 302 the user navigates his/her browser software to a web page related to a particular content provider. In doing this he/she downloads data from the content provider into the memory of his/her computer. The data may include HTML code, Java Applets or other suitable forms of code data and so complex interaction between the user and the content provider is possible.
At step 303 the user interacts with the downloaded data, e.g. by clicking on-screen icons or entering alphanumerical data according to on-screen instructions. This interaction can be one of a number of possible types, for example, the user may play a game, such as the one described above with reference to Figure 2 ; or may purchase software or data for downloading on to their PC (such as video or music data) , or the user may buy goods to be delivered; or purchase other services, such as via an online bookmaker. The interaction will normally result in a sum of money either being payable to the user (e.g. in exchange for goods) or to be credited to the user (e.g. a reward for successfully playing a game) . Thus, by interacting with the downloaded data, the user has effectively manipulated transaction data representing a transfer of a
sum of money .
At step 304 the user indicates that he/she wishes the money to be transferred using a cash account which can be looked up using his/her CLID. It may be possible for the user to select from a number of accounts which will be used in connection with the transaction. This may be done at step 304 or may be configured by the user prior to connection to the web site, for example by selecting options at the account provider's web site. The content provider may only accept money transfers using this system, in which case the user will not be offered an alternative way of making the payment or receiving the credit .
At step 305 the content provider obtains the CLID of the line which the user is using to connect his/her PC to the web page. This may be achieved by the content provider obtaining the information from the ISP or the content provider may send an interrogation pulse to read the CLID of the user without a direct connection to the internet account of the user. After obtaining the CLID, the content provider uses the CLID as a key to find data relating to an account associated with the user. If there is more than one account associated with the CLID then the database can indicate which of the accounts is to be used for this transaction. This information may be provided by the user as described above. Obtaining the account details may be done in many ways, for example, the content provider may connect to a central database via the communications network, or the user may transfer the relevant information to the content
provider. Alternatively, the content 'provider may maintain a database itself.
At step 306 the content provider communicates with the account provider responsible for the user's account. The account provider may be a bank or credit/debit card company or may be a company which is authorised to debit or credit money from/to the user. For example, the account provider may be a utility company (e.g. electric, gas) which bills the user. In this case, any credits payable to the user may be deducted from the amount payable on an upcoming bill. The account provider could also be a telecommunications company (including mobile telecommunications) ; a proprietary billing system or a store card facility which bills the user. The content provider transfers data describing the transaction performed by the user as well as a public key request to the account provider.
At step 307 the account provider receives the data sent by the content provider and creates a public and private key. The account provider stores data representing the private key and sends a public key verification request to the user, typically via the ISP. It will be appreciated by those skilled in the art that the data used by the system may be encrypted before storage or transmission and decrypted when necessary using known algorithms. At step 308 the user receives the public key verification request and transfers public key verification data back to the account provider. Verification of the public key may involve the user agreeing to terms and conditions of the
content provider and also possibly furnishing further proof of identity, e.g. by entering an account number. Alternatively, the public key verification process may be invisible to the user. As a further possibility, the internet service provider could verify the public key request instead of the user. Once the public key request has been verified, data describing this action is transferred back to the account provider at step 308.
At step 309 the account provider compares the verified public key data with the stored private key corresponding to the user. If this comparison is positive then the account provider performs a money transfer on the user's account corresponding to the transaction data.
The steps described above may be repeated for each transaction in a series of transactions (e.g. every time a game "cycle" is played), or some of the steps, e.g. those involving the Public and Private key data, may only be performed once, with all subsequent transactions by the user continuing to be authorised to debit/credit the user's account until he/she disconnects from the Internet or navigates to another web page.
In this specification, the term "micro payment" is intended to mean a relatively small sum of money. At present, micro payments may be considered to be sums of money of £5 sterling or under. However, definitions vary and micro payments may represent payments which would in the case of cash involve coins or notes of relatively small denomination. They can also include fractions of current
units. Although the present invention is particularly suitable for transactions involving micro payments, it can also be used for larger payment amounts.