Authentication arrangement and method for use with financial transactions

What is claimed is: 1. A network payment system for transacting a sale of merchandise over a network using an integrated circuit card for authentication, said network payment system comprising: a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale; a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server; a card reader for communicating with said integrated circuit card, a transaction approvals server for approving financial transactions, said client terminal having a processor component configured to generate a challenge message, said challenge message being generated by compressing a concatenation of at least the merchant identifier and an account number, the card reader having a processor component for receiving the challenge message and for generating a value from the challenge message, generation of said value based on currency and amount of the transaction and a number unpredictable to the integrated circuit card and the card reader further having a communication component for transmitting said value to said integrated circuit card; said integrated circuit card having a processor component for receiving the value and calculating a cryptographic message by encrypting at least a part of said value and for returning the cryptographic message to the card reader, said integrated circuit card having a bitmap structure to identify bits of the cryptographic message; the processor component of the card reader configured to generate an authentication token, based on the bitmap structure, from at least a part of the cryptographic message, said client terminal having a communication component for transmitting at least part of the authentication token in a message for transmission via the network to said transaction approvals server, said message for transmission via the network to said transaction approvals server generated based at least in part on card verification results. 2. The system according to claim 1 , wherein said processor component configured to generate a challenge message is adapted to generate the challenge message by compressing the merchant identifier, the account number, and at least one of a purchase amount and a purchase currency. 3. The system according to claim 1 , wherein the communication component for transmitting at least part of said authentication token is adapted to transmit the at least part of said authentication token to the merchant server and the merchant server is adapted to transmit the at least part of said authentication token to the transaction approvals server with purchase information in an authorization request message. 4. The system according to claim 1 , wherein the compression is a hash function. 5. The system according to claim 3 , wherein the transaction approvals server rebuilds at least part of the authentication token and compares the rebuilt message with the at least part of the authentication token in the authorization request message transmitted from the merchant server. 6. The system according to claim 5 , wherein the transaction approvals server is adapted to send an authentication approval message to the merchant server if the comparison is positive. 7. The system according to claim 1 , wherein the integrated circuit card has a memory and a first data object stored in said memory and the processor component of the card reader for generating an authentication token from at least a part of the cryptographic message is adapted to select a part of the cryptographic message in accordance with the first data object. 8. A method for authentication for transacting a sale of merchandise over a network using an integrated circuit card, the method comprising: establishing a communication between a merchant server with a client terminal over said network, said merchant server having at least a first item of merchandise for sale; reviewing said first item for sale on said client terminal, initiating a purchase transaction to purchase said first item for sale and building a purchase message using information relating to a merchant identifier and financial transaction information obtained from said merchant server; generating a challenge message on the client terminal by compressing a concatenation of at least the merchant identifier and an account number, receiving the challenge message at a card reader and for generating a value from the challenge message, generation of said value based at least in part on said financial transaction information; establishing a communication between the integrated circuit card and the card reader and calculating a cryptographic message by encrypting at least a part of said value, generating an authentication token on the card reader from at least a part of the cryptographic message and based on a bitmap structure stored on the integrated circuit card, wherein the bitmap structure identifies bits of the cryptographic message, transmitting at least part of the authentication token in a message from the client terminal for transmission via the network to an approvals server, said message generated based at least in part on card verification results. 9. The method according to claim 8 , wherein generating a challenge message comprises generating the challenge message by concatenating the merchant identifier, an account number, and at least one of a purchase amount and a purchase currency. 10. The method according to claim 8 , wherein transmitting at least part of said authentication token comprises transmitting the at least part of said authentication token to the merchant server and transmitting the at least part of said authentication token from the merchant server to the approvals server with purchase information in an authorization request message. 11. The method according to claim 8 , wherein compressing comprises applying a hash function. 12. The method according to claim 10 , further comprising: rebuilding at least part of the authentication token at the approvals server and comparing the rebuilt message with the at least part of the authentication token in the authorization request message transmitted from the merchant server. 13. The method according to claim 12 , further comprising sending an authentication approval message to the merchant server if the comparison is positive. 14. The method according to claim 8 , further comprising generating an authentication token from at least a part of the cryptographic message by selecting a part of the cryptographic message in accordance with a first data object stored in a memory of said integrated circuit card. 15. An authentication system for use with a network payment system for transacting a sale of merchandise over a network using an integrated circuit card for authentication, said authentication system comprising: a merchant server in communication with said network, said merchant server having at least a first item of merchandise for sale; a client terminal in communication with said network, said client terminal having an output device for reviewing said first item for sale, and an input device for initiating a purchase transaction to purchase said first item for sale, said client terminal being arranged to build a purchase message using information rel