摘要 |
To enable secure authorisation of electronic financial transactions, especially utilising mobile phone terminals, user information regarding a user is collected from a user's transaction card via a secure terminal, such as an ATM or EFTPOS machine, and the user information is stored in a server remote from the secure terminal. Also collected and stored remotely from the secure terminal is an attribute of a terminal that the user would like to use to make the transactions, such as the telephone number of their mobile phone, so that the terminal is thereby authenticated. A request to perform a transaction is received from a user at the processing system, the user using their mobile phone to make the request, and including a PIN code as part of the request. If the processing system confirms that a valid PIN code has been received and that the valid PIN was received from the authentic terminal, some of the stored user information is released to the financial institution to process the requested transaction. The types of transactions, such as the total amount, or paying only regular bills, that can be performed in this way, may be specified and controlled by the system.
|