| 摘要 |
<p>A method is disclosed of authenticating a consumer and authorizing a transaction over a network. The method is includes a first requesting, by a user, performance of a transaction between said user and a merchant, the user and the merchant performing the transaction over a non-secure web page. The user, then enters transaction request information into a non-secure general purpose computer, and then enters a PIN into a graphic interface of the non-secure web page on the non-secure general purpose computer, providing, by the non-secure general purpose computer, the transaction request information and a PIN data package, the PIN data package being a digital representation of an impression of the users selection of at least one graphic image representing their PIN to a secure transaction manager via an internet system. The transaction manager then combines at least one of dynamic and corollary data with the PIN data package and securely provides the combination to a hardware security module (HSM). The HSM then distills the PIN data package into a PIN and encrypting the PIN Block. Thereafter; the remainder of the transaction is performed.</p> |
