METHOD FOR THE SAFE TRANSFER OF DATA

Abstract

The present invention relates to a method and a system for the safe transfer of data between at least two computer devices. In first aspect, the invention to this end provides a method for performing an electronic transaction between a mobile communication device of a buyer, a terminal of a merchant and a transaction server which is connected to the terminal, which mobile communication device, the terminal and the transaction server are comprised in a data network, the method comprising the following steps: the mobile communication device initiates a communication session with the transaction server via the terminal; the transaction server of the mobile communication device receives an identification code which is linked to the buyer; the transaction server initiates a communication session with a trusted third party; the transaction server retrieves buyer-identification information and transaction data from the trusted third party in order to perform the electronic transaction between the buyer and merchant; the transaction server authenticates the buyer on the basis of the received buyer-identification information; the transaction server processes the electronic transaction between the buyer and merchant; furthermore comprising the following steps: the mobile communication device transmits an expiration parameter to define a life span of the buyer-identification information on the transaction server together with the identification code to the transaction server; the transaction server automatically removes the buyer-identification information after the life span of the transaction server determined by the expiration parameter has expired.

Claims

1. A method for performing an electronic transaction between a mobile communication device of a buyer, a terminal of a merchant and a transaction server which is connected to the terminal, which mobile communication device, the terminal and the transaction server are comprised in a data network, the method comprising the following steps: the mobile communication device initiates a communication session with the transaction server via the terminal; the transaction server of the mobile communication device receives an identification code which is linked to the buyer; the transaction server initiates a communication session with a trusted third party; the transaction server retrieves buyer-identification information and transaction data from the trusted third party in order to perform the electronic transaction between the buyer and merchant; the transaction server authenticates the buyer on the basis of the received buyer-identification information; the transaction server processes the electronic transaction between the buyer and merchant; furthermore comprising the following steps: the mobile communication device transmits an expiration parameter to define a life span of the buyer-identification information on the transaction server together with the identification code to the transaction server; the transaction server automatically removes the buyer-identification information after the life span of the transaction server determined by the expiration parameter has expired.

2. The method for performing an electronic transaction as claimed in claim 1, wherein the expiration parameter is encrypted by the mobile communication device of the buyer.

3. The method for performing an electronic transaction as claimed in claim 1, furthermore comprising the following step: the transaction server up establishes a sandbox environment; and wherein the buyer-identification information and the transaction data for performing the electronic transaction between the buyer and merchant retrieved by the transaction server from the trusted third party of are stored in the sandbox environment.

4. The method for performing an electronic transaction as claimed in claim 3, wherein the sandbox environment is cancelled after the life span of the expiration parameter has finished.

5. A non-transitory computer readable medium, containing stored instructions for performing an electronic transaction between a mobile communication device of a buyer, a terminal of a merchant and a transaction server connected to the terminal, which mobile communication device, the terminal and the transaction server are comprised in a data network, wherein the instructions are executed by one or more processors to perform the following steps: the mobile communication device initiates a communication session with the transaction server via the terminal; the transaction server receives an identification code which is related to the buyer from the mobile communication device; the transaction server initiates a communication session with a trusted third party; the transaction server retrieves buyer-identification information and transaction data for performing the electronic transaction between the buyer and merchant from the trusted third party; the transaction server authenticates the buyer on the basis of the received buyer-identification information; the transaction server processes the electronic transaction between the buyer and merchant; furthermore comprising the following steps: the mobile communication device transmits an expiration parameter to define a life span of the buyer-identification information on the transaction server together with the identification code to the transaction server; the transaction server automatically removes the buyer-identification information after the life span of the transaction server determined by the expiration parameter has expired.

Description

DESCRIPTION OF THE FIGURES

[0041] The present invention will be described below by means of the figures.

[0042] FIG. 1 shows the steps of the method according to the first aspect of the invention.

[0043] FIG. 2 shows the system according to the second aspect of the invention.

[0044] FIG. 1 shows a few steps of the first aspect of the invention 100 for performing an electronic transaction. This consists at least of the following steps 101-108 which are performed in a data network containing three or more nodes. At least one of these nodes is a mobile communication device of a first user, in this case the buyer of a product or a service. In this case, it has to be noted that, in the context of the present description, the transaction may relate to a transaction in which a right to dispose of an item of property is transferred to another party having legal personality, being a person or organization which has legal personalities. This may mean that a person or organization uses, rents, borrows or obtains the ownership of a physical or tangible object from another person or organization, but it may also relate to an intangible item, such as a digital currency unit or a service. Thus, at least one second user is involved in the transaction, being the other party having legal personality. The latter has a terminal at his or her disposal. This terminal may also be a mobile phone, such as a smartphone, just like the mobile communication device of the buyer, but it may also be a dedicated device, such as a payment terminal, cash register system or a different kind of device. At least the terminal is connected to a transaction server. This connection may be partly wired and partly wireless or entirely wired or entirely wireless. The same applies to the connection between the transaction server and a further server, being a server which is recognized as a trusted party by all nodes of the network.

[0045] In a first step 101 of the method, the mobile communication device initiates a communication session with the transaction server via the terminal. This communication session is established by means of a preferably symmetrically or asymmetrically encrypted connection. After the connection has been established, the transaction server will receive an identification code from the mobile communication device in step 102. This identification code is related to the buyer. This may be by a non-traceable unique code or by a hash of one or more of the data of the user, such as a hashed username, first name/surname, telephone number, account number or the like. The transaction server then initiates a communication session with a trusted third party in step 103. This party is an entity or node which facilitates the communication session and the safe transfer of data, but most of all confirmation of identities between the smartphone and the transaction server (via the terminal). Both parties, the buyer and the seller or also more generally the merchant (i.e. between smartphone and terminal user) trust this third party and the latter preferably provides all transaction-related and identity-related data between the parties. In the following step 104, the trusted third party will provide identification information to the buyer as well as transaction data to perform the electronic transaction for the communication session between the buyer and seller or merchant.

[0046] By means of the data provided by the third party, the buyer, and preferably also the seller, can be authenticated in the following step 105. Now the merchant/seller has authenticated the buyer, and preferably the buyer has authenticated the seller, the actual transaction between the two parties can be performed. To this end, the transaction server will process a transaction 106. This may be in the form of a settlement of a balance between two accounts of the two parties, or by another form of payment or registration. This may thus also be acceptance of a service or the acceptance of a property, without there being a direct monetary payment involved in this transaction. The method furthermore comprises the steps of the mobile communication device transmitting 107 an expiration parameter to define a life span of the buyer-identification information on the transaction server together with the identification code to the transaction server. By means of this expiration parameter, the buyer retains control over access to his or her identity data. Due to the fact that the expiration parameter comprises a time period which will elapse at a certain moment, this configuration will cause the transaction server to automatically remove the available buyer-identification information in the last step 108. Now the buyer-identification information has automatically been removed from the transaction server, this information has only been made available for and during the period of the transaction. Thereafter, this information is only present again on the trusted third party. This simplifies executing transactions between buyers and merchants without in this case an infrastructure having to be provided to safely manage the information required for the transaction. In addition, the buyer retains control at all times over his or her personal information and thus privacy-sensitive data. Therefore, the merchant does not have to make any arrangements to secure and manage the data because he or she no longer has the privacy-sensitive data.

[0047] FIG. 2 shows the various components of the system. The system 200 shows a device of the buyer 201, in this case a mobile communication device in the form of a smartphone. The smartphone 201 is in direct contact with the terminal 202 of the merchant. In FIG. 2, this terminal is configured in the form of a cash register system 202, but this may also be a dedicated device, or a smartphone, tablet, computer or the like. The terminal 202, but preferably also the smartphone 201 are in wired, but preferably wireless, contact with the transaction server 203. The latter is under the control of a service provider which allows the merchant to facilitate transactions electronically. The transaction server 203 is preferably situated in a datacenter or in another remote location. The transaction server is capable of establishing a connection to a second server 204, which is a trusted third-party server which is able to check, control and provide the identity of at least one or more of the buyer, merchant and service provider.