A transaction security and authentication apparatus and system for electronic commerce which provides authentication of internet purchases by communication with a cardholder's base computer, or by contacting the cardholder by remote access for purchase verification. The system preferably comprises at least one central server system associated with a remote access system and configured for communication with a payment institution, and at least one internet capable device, operatively coupled for communication with the central server system, with the central server system configured to determine authentication of a cardholder electronic transaction, according to data received from the internet capable device upon a request for verification of the cardholder electronic transaction from the payment institution. The method of the invention generally comprises requesting verification of a cardholder electronic transaction, by a payment institution, from a central server system, contacting, by the central server system, at least one internet capable device associated with the cardholder, determining, by the central server system, if the cardholder electronic transaction is authorized by the cardholder, and communicating authentication information, by the central server system, to the payment institution.