Patent Grant
8406809
The solution refers to increase in security and comfort of payments over the mobile communication device, such as a mobile phone, where data on the payment card and possibly even on the payment terminal are stored on the removable memory card that is e.g. in the form of a SD, microSD card and that is inserted into a corresponding slot of the mobile communication device.
In times when the usage of mobile communication devices, such as mobile phones, for cashless payment applications is increasing, the request for increase in comfort and security of payment processes will rise. Mobile communication devices have the possibility of intentional but also unobserved connection to a mobile data network, a fact that raises the risk of penetration by harmful programs into the mobile communication device's environment.
A purpose Pay-button is known according to the patent file published as WO 2010/011670 A2. The NFC communication element necessary for the run of contactless payment application is started by it. This button simplifies launch of the payment application, however its connection to the NFC communication element does not offer increased security in comparison to older solutions, where the payment application was started by a virtual button displayed in the menu on the mobile communication device's display. The analysis of possible attacks on the payment card stored within the mobile communication device pointed out a risk based on the fact that an unsuitable program, e.g. in the form of Trojan horse, can initialize the payment application without the user's knowledge. Because the payment card in the mobile communication device is inserted in the payment card reader all the time, then this kind of placement itself includes the possibility that there will be constant trials to read data from the card. For this reason there is a danger that in the future it will come to the failure of the payment card's security level, e.g. even of the EMV (EuropayMastercardVisa) standard, a situation that was considered to be improbable until recently since the payment card was inserted in the reader, e.g. in the POS (Point of sales) terminal, or in the ATM, for a long time and practically without interruption. For this reason, such a solution is required, which will not only increase the comfort but also the security of the payment card. The existing purpose buttons as e.g. the photo button in the mobile phone had only the purpose of accelerating and simplifying the access to selected function of the phone and it was not necessary to solve the security question of intentional start of the selected function.
The new, more secure solution should be comfortable enough so it would not lower the comfort of the attendant, which is an important presumption in order to spread cashless payments using a mobile phone.
The deficiencies mentioned are to a great extent eliminated by a configuration with a payment button in the mobile communication device, where in accordance with this solution a removable memory card with at least one payment card unit is also located. The subject matter of this solution lies in the fact that the removable memory card has two independent access modes. One access mode is designed and set for the common function of the removable memory card which rests in the extension of the memory capacity of the mobile communication device, such as a mobile phone. This access mode prevents access to the unit with the payment card and to the contactless communication element on the removable memory card. Basically, on the removable memory card's interface this card appears to be a common removable card without the Secure Element and without the communication element on the removable memory card when the card is in this access mode.
The second access mode is designed and set for the payment function of the removable memory card, where the access to the unit with the payment card and also to the contactless communication element on the removable memory card is allowed from the mobile communication device's circuits over an interface. In preferable configuration even the unit with the payment terminal can be located on the removable memory card and then this unit is also accessible just and only in the access mode for the payment function.
The two modes are alternatively selectable, it is important that the access mode for the payment function of the removable memory card is active only after physical press of the hardware payment button. Even the common flash memory can be accessible in the payment function access mode.
The removable memory card, on which at least one payment card unit is located, appears to be a removable memory card for the extension of the memory capacity of the mobile communication device on the interface and that up until the moment when the purpose payment button is physically pressed. Then the removable memory card is made accessible on the interface as a card with Secure Element and at least one payment card unit.
The removable memory card according to this solution has an architecture which encompasses a commonly accessible flash memory and also has hardware and software elements of the payment card, or even of the payment terminal. During common usage of the mobile communication device, the removable memory card behaves as if it contained only a flash memory for the extension of the memory capacity with a corresponding microcontroller. In this state, the reading and writing of files is enabled in the memory of the removable memory card, however other elements, e.g. the Secure Element, the NFC communication element are hidden and cannot be managed or run in this mode.
The existence of the purpose hardware payment button enables the change of the removable payment card's character on its interface level to be tied exclusively to the physical press of the payment button. The necessity of physical press of the button excludes the possibility to run the payment application by some undesirable software or script imitating the will of the user.
By this configuration we will exclude the risk that the removable memory card's interface will be misused through the trials to overcome the security elements without the user's knowledge. The connection between the physical press of the button and the run of the corresponding Firmware can be stored in the memory in such a way that it is either never possible to rewrite it, change it or update it or that it is not possible to do it without the corresponding password. The unauthorized program then cannot emulate the signal from the physical payment button in such a way so this signal would appear to the other steps of the application's run as a real physical press of the button. Since the intruder will not have the possibility to physically press the described button on the remote mobile communication device, it is excluded that he could gain uncontrollable access to the payment card's unit or to the unit of the payment terminal on the removable memory card. The removable memory card will behave as a standard memory card and only after physical press of the payment button it will switch into the payment card mode. The end of payment application will automatically switch the card's mode into the common extension of the memory capacity mode.
The new way of starting the payment process in the mobile communication device is based on the same principle of the two access modes. This way encompasses the communication between the interface of the mobile communication device and an inserted removable memory card with at least one payment card unit according to this solution, the subject matter of which is based on the fact that before the run of the payment process the removable memory card is in the access mode to the common extension of memory capacity function. Then the unit with the payment card, and pertinently even the contactless communication element and the unit with the payment terminal, in case they are located on the removable memory card, are inaccessible from the side of its interface. Only exclusively after the physical press of the hardware payment button, the removable memory card switches into access mode for the payment function of the removable memory card with allowed access to the unit with the payment card.
The solution is explained in detail on the
On the
On the
On the
On the
On the
In this example according to the
The removable memory card 2 with a common flash memory 13 has the interface 7 of the common microSD standard and it is inserted into the mobile communication device's 4 slot. It is a common slot designed for the insertion of the extension memories.
In this example, the NFC communication element 8 with an antenna 12 is located on the removable memory card 2. The mobile communication device 4 has a payment button 1 located in the keyboard field. The payment button 1 is connected with a microswitch on the printed circuit of the mobile communication device's 4. The specific realization of the microswitch is not important and can be of different formats, e.g. as a membrane switch, capacity switch and similar.
The payment button 1 is connected to the Firmware in such a way that the only acceptable command for the change of access mode of the removable memory card 2 can come from the contact of the payment button 1 or at least in case the mobile communication device 4 is equipped with this kind of payment button 1. In case, the same removable memory card 2 will be inserted into the slot of the mobile communication device 4 without the purpose hardware payment button 1, the change of access mode will be realized over the menu on the display 10 of the mobile communication device 4. That being the case, the removable memory card 2 will be functional in both access modes, however the entire connection with the mobile communication device 4 will have lower security of the payment.
In the mobile phone, which is equipped with the payment button 1, it will not be possible to access Secure Element 3 on the removable memory card by any other way then over the predefined firmware connected with the payment button 1. In this example it will be the LGM application.
The two access modes can have the following characteristics:
In the access mode of the payment function, the caching of the files on the removable memory card 2 will be switched off, the access to the flash memory 13 and the access into the file system will be supported.
In case the mobile communication device 4 will be capable of supporting higher communication interface, e.g. the SDIO standard (Secure Digital Input Output), McEX, the corresponding interface can be accessible even in the access mode of the payment function.
The industrial applicability is obvious. With this invention, it is possible to industrially and repeatedly arrange configurations including the hardware payment button in the mobile communication device, where this button presents the selector of the current access mode of the removable memory card.
This application is a continuation of PCT Application No. PCT/IB2010/051915, filed May 1, 2010, which claims priority from Slovak patent applications nos. PP00032-2009, filed May 3, 2009, PP50009-2010, filed Mar. 27, 2010, PP50012-2010, filed Apr. 8, 2010, and PP50016-2010, filed Apr. 19, 2010. The entire disclosure of each of the above-referenced patent applications is hereby incorporated herein by reference.
| Number | Name | Date | Kind |
|---|---|---|---|
| 5574470 | de Vall | Nov 1996 | A |
| 5608417 | de Vall | Mar 1997 | A |
| 6062472 | Cheung | May 2000 | A |
| 6070795 | Feiken | Jun 2000 | A |
| 6070796 | Sirbu | Jun 2000 | A |
| 6450407 | Freeman et al. | Sep 2002 | B1 |
| 6615243 | Meggeid et al. | Sep 2003 | B1 |
| 6745935 | Grieu et al. | Jun 2004 | B1 |
| 6828670 | Hayana et al. | Dec 2004 | B2 |
| 6976011 | Capitant et al. | Dec 2005 | B1 |
| 7364092 | Narendra et al. | Apr 2008 | B2 |
| 7374100 | Jei et al. | May 2008 | B2 |
| 7436965 | Sherman | Oct 2008 | B2 |
| 7458518 | Fukuda et al. | Dec 2008 | B2 |
| 7481358 | Honjo et al. | Jan 2009 | B2 |
| 7568065 | D'Athis | Jul 2009 | B2 |
| 7581678 | Narendra et al. | Sep 2009 | B2 |
| 7689932 | Maktedar | Mar 2010 | B2 |
| 7775446 | Ochi et al. | Aug 2010 | B2 |
| 7805615 | Narendra et al. | Sep 2010 | B2 |
| 7828214 | Narendra et al. | Nov 2010 | B2 |
| 8055184 | Dimartino et al. | Nov 2011 | B1 |
| 8127999 | Diamond | Mar 2012 | B2 |
| 20010005832 | Cofta et al. | Jun 2001 | A1 |
| 20020062249 | Iannacci | May 2002 | A1 |
| 20020147658 | Kwan | Oct 2002 | A1 |
| 20020163479 | Lin et al. | Nov 2002 | A1 |
| 20030055738 | Alie | Mar 2003 | A1 |
| 20030138135 | Chung et al. | Jul 2003 | A1 |
| 20040066278 | Hughes et al. | Apr 2004 | A1 |
| 20040087339 | Goldthwaite et al. | May 2004 | A1 |
| 20040127256 | Goldthwaite et al. | Jul 2004 | A1 |
| 20050072595 | Cho | Apr 2005 | A1 |
| 20050092835 | Chung et al. | May 2005 | A1 |
| 20050116050 | Jei et al. | Jun 2005 | A1 |
| 20050125745 | Engestrom | Jun 2005 | A1 |
| 20050222949 | Inotay et al. | Oct 2005 | A1 |
| 20050269401 | Spitzer et al. | Dec 2005 | A1 |
| 20050269402 | Spitzer et al. | Dec 2005 | A1 |
| 20060143578 | Maktedar | Jun 2006 | A1 |
| 20060146023 | Kidron | Jul 2006 | A1 |
| 20060152288 | Peng et al. | Jul 2006 | A1 |
| 20060186209 | Narendra et al. | Aug 2006 | A1 |
| 20060219776 | Finn | Oct 2006 | A1 |
| 20060224470 | Garcia et al. | Oct 2006 | A1 |
| 20060226217 | Narendra et al. | Oct 2006 | A1 |
| 20060255160 | Winkler | Nov 2006 | A1 |
| 20070014407 | Narendra et al. | Jan 2007 | A1 |
| 20070014408 | Narendra et al. | Jan 2007 | A1 |
| 20070016957 | Seaward et al. | Jan 2007 | A1 |
| 20070050871 | Mashhour | Mar 2007 | A1 |
| 20070083772 | Harada et al. | Apr 2007 | A1 |
| 20070106564 | Matotek et al. | May 2007 | A1 |
| 20070125840 | Law et al. | Jun 2007 | A1 |
| 20070152035 | Adams et al. | Jul 2007 | A1 |
| 20070158438 | Fukuda et al. | Jul 2007 | A1 |
| 20070171079 | Saito | Jul 2007 | A1 |
| 20070233615 | Tumminaro | Oct 2007 | A1 |
| 20070235539 | Sevanto et al. | Oct 2007 | A1 |
| 20070241180 | Park et al. | Oct 2007 | A1 |
| 20070278290 | Messerges et al. | Dec 2007 | A1 |
| 20070293155 | Liao | Dec 2007 | A1 |
| 20080048036 | Matsumoto et al. | Feb 2008 | A1 |
| 20080059375 | Abifaker | Mar 2008 | A1 |
| 20080093467 | Narendra et al. | Apr 2008 | A1 |
| 20080120129 | Seubert et al. | May 2008 | A1 |
| 20080233906 | Mitomo et al. | Sep 2008 | A1 |
| 20080250244 | Baentsch et al. | Oct 2008 | A1 |
| 20080270246 | Chen | Oct 2008 | A1 |
| 20090063312 | Hurst | Mar 2009 | A1 |
| 20090065571 | Jain | Mar 2009 | A1 |
| 20090065572 | Jain | Mar 2009 | A1 |
| 20090069049 | Jain | Mar 2009 | A1 |
| 20090069050 | Jain et al. | Mar 2009 | A1 |
| 20090069051 | Jain et al. | Mar 2009 | A1 |
| 20090069052 | Jain et al. | Mar 2009 | A1 |
| 20090070272 | Jain | Mar 2009 | A1 |
| 20090070691 | Jain | Mar 2009 | A1 |
| 20090070861 | Jain | Mar 2009 | A1 |
| 20090088077 | Brown et al. | Apr 2009 | A1 |
| 20090098825 | Huomo et al. | Apr 2009 | A1 |
| 20090108063 | Jain et al. | Apr 2009 | A1 |
| 20090119190 | Realini | May 2009 | A1 |
| 20090124273 | Back | May 2009 | A1 |
| 20090132418 | Morsillo et al. | May 2009 | A1 |
| 20090191812 | Teruyama et al. | Jul 2009 | A1 |
| 20090193491 | Rao | Jul 2009 | A1 |
| 20090199206 | Finkenzeller et al. | Aug 2009 | A1 |
| 20090199283 | Jain | Aug 2009 | A1 |
| 20090200371 | Kean et al. | Aug 2009 | A1 |
| 20090261172 | Kumar et al. | Oct 2009 | A1 |
| 20090265544 | Moona et al. | Oct 2009 | A1 |
| 20090265552 | Moshir et al. | Oct 2009 | A1 |
| 20090298540 | Narendra et al. | Dec 2009 | A1 |
| 20090307139 | Mardikar et al. | Dec 2009 | A1 |
| 20090307142 | Mardikar | Dec 2009 | A1 |
| 20090319287 | Hammad et al. | Dec 2009 | A1 |
| 20100012721 | Jain et al. | Jan 2010 | A1 |
| 20100023449 | Skowronek et al. | Jan 2010 | A1 |
| 20100044444 | Jain et al. | Feb 2010 | A1 |
| 20100045425 | Chivallier | Feb 2010 | A1 |
| 20100062808 | Cha et al. | Mar 2010 | A1 |
| 20100063893 | Townsend | Mar 2010 | A1 |
| 20100203870 | Hubinak et al. | Aug 2010 | A1 |
| 20100205432 | Corda et al. | Aug 2010 | A1 |
| 20100213265 | Narendra et al. | Aug 2010 | A1 |
| 20100258639 | Florek et al. | Oct 2010 | A1 |
| 20100262503 | Florek et al. | Oct 2010 | A1 |
| 20100274677 | Florek et al. | Oct 2010 | A1 |
| 20100274726 | Florek et al. | Oct 2010 | A1 |
| 20100323617 | Hubinak et al. | Dec 2010 | A1 |
| 20110282753 | Mullen et al. | Nov 2011 | A1 |
| Number | Date | Country |
|---|---|---|
| 1450782 | Oct 2003 | CN |
| 1627321 | Jun 2005 | CN |
| 1835007 | Sep 2006 | CN |
| 1870012 | Nov 2006 | CN |
| 101013903 | Aug 2007 | CN |
| 101136123 | Mar 2008 | CN |
| 101329801 | Dec 2008 | CN |
| 101339685 | Jan 2009 | CN |
| 101351819 | Jan 2009 | CN |
| 10130019 | Jan 2003 | DE |
| 10 2005 026435 | Dec 2006 | DE |
| 10 2006 019628 | Oct 2007 | DE |
| 10 2007 019272 | Oct 2007 | DE |
| 0704928 | Apr 1996 | EP |
| 601091 | Dec 1997 | EP |
| 1365451 | Nov 2003 | EP |
| 1450233 | Aug 2004 | EP |
| 1536573 | Jun 2005 | EP |
| 1729253 | Dec 2006 | EP |
| 1752902 | Feb 2007 | EP |
| 1752903 | Feb 2007 | EP |
| 1785915 | May 2007 | EP |
| 1943606 | Jul 2008 | EP |
| 0611189 | Sep 1926 | FR |
| 0611190 | Sep 1926 | FR |
| 2390509 | Jan 2004 | GB |
| 2424151 | Sep 2006 | GB |
| 2432031 | Sep 2007 | GB |
| 980562 | Feb 2000 | IE |
| 2003-131808 | May 2003 | JP |
| 2004-348235 | Dec 2004 | JP |
| 2005-284862 | Oct 2005 | JP |
| 2006-033229 | Feb 2006 | JP |
| 2007-060076 | Mar 2007 | JP |
| 2007-166379 | Jun 2007 | JP |
| 2007-304910 | Nov 2007 | JP |
| 2008-083867 | Apr 2008 | JP |
| 2002-0012738 | Feb 2002 | KR |
| 2002-0051696 | Jun 2002 | KR |
| 2002-0073106 | Sep 2002 | KR |
| 2003-0005088 | Jan 2003 | KR |
| 2004-0012401 | Feb 2004 | KR |
| 2004-0060249 | Jul 2004 | KR |
| 2004-0089800 | Oct 2004 | KR |
| 2005-0008622 | Jan 2005 | KR |
| 2007-0093133 | Sep 2007 | KR |
| 22595 | Feb 2009 | SI |
| WO 2003012717 | Feb 2003 | WO |
| WO 2005057316 | Jun 2005 | WO |
| WO 2005086456 | Sep 2005 | WO |
| WO 2006009460 | Jan 2006 | WO |
| WO 2007076456 | Jul 2007 | WO |
| WO 2007105469 | Sep 2007 | WO |
| WO 2007136939 | Nov 2007 | WO |
| WO 2008012416 | Jan 2008 | WO |
| WO 2008041861 | Apr 2008 | WO |
| WO 2008063990 | May 2008 | WO |
| WO 2008105703 | Sep 2008 | WO |
| WO 2009014502 | Jan 2009 | WO |
| WO 2009087539 | Jul 2009 | WO |
| WO 2009118681 | Oct 2009 | WO |
| WO 2010011670 | Jan 2010 | WO |
| WO 2010023574 | Mar 2010 | WO |
| WO 2010032215 | Mar 2010 | WO |
| WO 2010032216 | Mar 2010 | WO |
| WO 2010044041 | Apr 2010 | WO |
| WO 2010097777 | Sep 2010 | WO |
| WO 2010122520 | Oct 2010 | WO |
| WO 2010128442 | Nov 2010 | WO |
| WO 2010131226 | Nov 2010 | WO |
| Entry |
|---|
| “EMV Mobile Contactless Payment: Technical Issues and Position Paper”, www.emvco.com/mobile.aspx, © Oct. 11, 2007, accessed Apr. 20, 2009, 37 pages. |
| “NFC Frequently Asked Questions,” NFC for Customers, www.nfc-forum.org., Retrieved from the internet on Nov. 7, 2008, 5 pages. |
| Smart Card Alliance, “RF-Enabled Applications and Technology: Comparing and Contrasting RFID and RF-Enabled Smart Cards”, Smart Card Alliance Identity Council, Jan. 2007, 7 pages. |
| Smart Card Alliance: “Proximity Mobile Payments: Leveraging NFC and the Contactless Financial Payments Infrastructure a Smart Card Alliance Contactless Payments Council White Paper”, www.smartcardalliance.org, © Sep. 1, 2007, accessed Nov. 7, 2008, 10 pages. |
| Wikipedia, “Cellular Frequencies” Wikipedia, The Free Encyclopedia, http://en.wikipedia.rog.wiki/cellular—frequencies, accessed Apr. 8, 2012, 5 pages. |
| Wikipedia, “Bluetooth”, Wikipedia, The Free Encyclopedia, http://enwikipedia.org/wiki/bluetooth, accessed Apr. 8, 2012, 19 pages. |
| “Intelligent Mouse”, IBM Technical Disclosure Bulletin, International Business Machines Corp., Thornwood, US, Feb. 1, 1995, 38(2), p. 463. |
| Finkenzeller (Ed.), “RFID-Handbuch: Grundlagen und praktische Anwendungen Induktiver Funkanlagen, Transponder und kontaktloser Chipkarten”, Jan. 1, 2002, 225-231 (English abstract attached). |
| Number | Date | Country | |
|---|---|---|---|
| 20110021175 A1 | Jan 2011 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | PCT/IB2010/051915 | May 2010 | US |
| Child | 12899346 | US |
