Patent Grant
11775954
The present invention relates generally to solutions for requesting, paying for and delivering service-related content to end-users. More particularly, the invention relates to a communication node, a mobile terminal and a method. The invention also relates to a computer program product and a computer readable medium.
Technical solutions are now being discussed as how to order and effect various services over communication networks in an efficient and user-friendly manner. The systems and standards that have been set so far mainly focus on pushing out content from the server side to mobile terminals and secure elements therein.
For example, US 2009/0164322 reveals a solution for (OTA) over-the-air provisioning of soft cards on devices with wireless communications capabilities. Further, the standard GlobalPlatform System, Messaging Specification for Management of Mobile-NFC Services v1.1.2, GPS_SPE_002, October 2013 defines technical functions and messages for live OTA management of mobile-NFC (Near Field Communication) services.
The known solutions, however, do not cover the full scenario. Namely, in most cases, the provision of content also entails an associated payment, or other authorization process; and there is yet no fully satisfying solution which, on one hand, fulfils the end-users' and the content providers' requirements with respect to safety/data integrity and, on the other hand, is efficient and user-friendly.
The object of the present invention is therefore to mitigate the above problem, and thus offer a simple and reliable means for unambiguously linking secure content to a payment, or other authorization event, in a mobile communication environment.
According to one aspect of the invention, the object is achieved by the initially described communication node, wherein after having completed a set-up phase and in response to a payment, the communication node is configured to enable forwarding of secure content relating to at least one service requested by a user of a first mobile terminal to a target entity associated with the first mobile terminal. The set-up phase involves identifying the at least one requested service from the first mobile terminal. The set-up phase further involves linking, in the service-provider node, the at least one requested service to the first mobile terminal; and assigning a reference in the service-provider node to a payment to be made in respect of the at least one requested service. The payment involves linking the at least one requested service and the first mobile terminal to a payment associated with the at least one requested service.
This communication node is advantageous because it links together the service request with the associated payment and the delivery of secure content very reliably. The procedure applied by the proposed communication node also renders it possible to initiate the transfer of secure content from the service-provider node before the payment has been completed. This, in turn, makes the overall process highly time efficient.
According to one preferred embodiment of this aspect of the invention, in the set-up phase, the communication node is configured to receive identification data from the first mobile terminal, which identification data designates the at least one requested service by means of a service identifier. In response to the identification data, the communication node is configured to send the service identifier to the service-provider node, which service identifier is based on the identification data. In the set-up phase, the communication node is further configured to receive a service description from the service-provider node, which service description is produced in response to the service identifier. Moreover, in the set-up phase, the communication node is further configured to send a message that is based on the service description together with a cart identifier to the first mobile terminal; and send a transaction identifier to the service-provider node. Here, the transaction identifier associates the first mobile terminal with a payment to be made in respect of the at least one requested service. This approach is advantageous because sending the transaction identifier to the service-provider node facilitates transferring secure content from the service-provider node to take place in parallel with the payment procedure.
According to another preferred embodiment of this aspect of the invention, the communication node is configured to effect the payment by sending a payment request to the authorization node. In response thereto, the authorization node is expected to issue a payment confirmation message. Upon receipt of such a message from the authorization node, the communication node is notified of a completed payment. Thereby, it is possible to forward any secure content to the first mobile terminal, which secure content may have been sent to the communication node in parallel with the payment procedure.
Preferably, the communication node is configured to enable the forwarding of secure content to the target entity (via the first mobile terminal) by receiving a service call from the service-provider node. The service call is issued in response to the transaction identifier from the communication node. Then, in response to the service call, the communication node sends a first operation identifier to the first mobile terminal, which first operation identifier associates the cart identifier to the transaction identifier. In response to the service call, the communication node also sends a second operation identifier to the service-provider node, which second operation identifier matches the first operation identifier (by e.g., being identical thereto). Via the service call, the secure content is sent from the service-provider node to the communication node. This node, in turn, then forwards the secure content in the form of at least one data message to the first mobile terminal. The at least one data message thus contains the secure content from the service-provider node. Typically, the secure content is divided into two or more data messages to the first mobile terminal, since this facilitates an efficient and flexible data transfer.
According to a further preferred embodiment of this aspect of the invention, after having forwarded the at least one data message to the first mobile terminal (i. e. completed the data transfer), the communication node is configured to receive at least one confirmation message from the first mobile terminal. Here, a final one of the at least one confirmation message indicates that the forwarding of the secure content to the first mobile terminal has been completed.
Then, in response to the final confirmation message, the communication node, in turn, preferably sends a general confirmation message to the service-provider node. The second confirmation message indicates that the forwarding of secure content to the first mobile terminal has been completed. Consequently, after having received the second confirmation message, the service-provider node can release the reference to the at least one service requested by the first mobile terminal, which was assigned in the set-up phase.
According to one preferred embodiment of this aspect of the invention, after having sent the second confirmation message, the communication node is configured to receive a service-complete confirmation message from the service-provider node. In response to the service-complete confirmation message, the communication node is configured to cancel the reference to the service-provider node relating to the at least one service requested by the first mobile terminal. Thereby, the resources reserved in the service-provider and communication nodes for delivering the secure content to the target entity can be released for use to other purposes.
According to another aspect of the invention, the object is achieved by the mobile terminal described initially, wherein the mobile terminal contains a wireless interface towards at least one network over which it may communicate with the above-proposed communication node. The mobile terminal is configured to, via the wireless interface and in response to specific user input, initiate a set-up phase regarding a service requested from a service-provider node. The mobile terminal is further configured to allow a user to effect a payment in respect of the requested service via an authorization node. After completed payment, the mobile terminal is also configured to receive secure content relating to the requested service from the communication node, for example via one or more data messages. Additionally, the mobile terminal contains a communication module configured to transfer the secure content to the associated target entity; either wirelessly to an external data carrier, or to a Secure Element in the mobile terminal 100, or by other means physically linked thereto, e.g., via a case. The advantages of this mobile terminal, as well as the preferred embodiments thereof, are apparent from the discussion above with reference to the proposed communication node.
According to still another aspect of the invention, the object is achieved by the method described initially, wherein, after having completed a set-up phase with respect to a first mobile terminal and in response to a thereto related payment, the method involves enabling forwarding of secure content relating to at least one service requested by a user of the first mobile terminal to a target entity, which is associated with the first mobile terminal. The set-up phase, in turn, involves: identifying the at least one requested service from the first mobile terminal; linking, in the service-provider node, the at least one requested service to the first mobile terminal; and assigning a reference in the service-provider node to a payment to be made in respect of the at least one requested service. The payment involves linking the at least one requested service and the first mobile terminal to a payment associated with the at least one requested service. The advantages of this method, as well as the preferred embodiments thereof, are likewise apparent from the discussion above with reference to the proposed communication node.
According to a further aspect of the invention the object is achieved by a computer program product, which is loadable into the memory of a computer, and includes software adapted to implement the method proposed above when said computer program product is run on a computer.
According to another aspect of the invention the object is achieved by a computer readable medium, having a program recorded thereon, where the program is to control a computer to perform the method proposed above when the program is loaded into the computer.
Further advantages, beneficial features and applications of the present invention will be apparent from the following description and the dependent claims.
The invention is now to be explained more closely by means of preferred embodiments, which are disclosed as examples, and with reference to the attached drawings.
Initially, to explain from a user point-of-view how delivery of secure content may be effected according to the invention, we refer to
The mobile terminal 100 is preferably a so-called smartphone with at least one wireless interface towards a network N (e.g., the Internet) via which a communication node SECS (see
As a result, the software presents another menu, which is illustrated in
This causes the display 110 to present a first message M1 reading “You have requested to purchase a day pass ticket at the price $5.00” and two accompanying on-screen buttons, namely a first button 141 for cancelling this choice, and a second button 142 for confirming purchase of the selected ticket as illustrated in
Subsequently, as illustrated in
When the transfer is complete, a fourth message M4 on the display 110 notifies the user that the target entity 150 now contains the requested ticket data APDU1−n, and that the target entity 150 is ready for use in the PTO's public transportation system, for example to pay for a ride in an autobus 210 (see
Referring to the communication system in
In addition to the communication node SECS, the communication system includes a service-provider node SP and an authorization node PP. The service-provider node SP is configured to provide at least one service, which is possible to request from a mobile terminal 100, such as the ticket data described above. The authorization node PP is configured to effect payments, or similar authorization-based services. The communication system further includes at least one network N (e.g., of cellular or WiFi type) via which the mobile terminal 100 may reach the communication node SECS. The communication node SECS has a first interface towards the at least one network N, a second interface for communication with a service-provider node SP, and a third interface for communication with the authorization node PP.
As will be explained in detail below with reference to
In the first phase 310, a user of the mobile terminal 100 sets up a connection to the communication node SECS, wherein at least one requested service is identified IDD[SID], which at least one service is associated with secure content SC[TID] from the service-provider node SP. The set-up phase 310 links SID the at least one requested service to the mobile terminal 100 and assigns a reference TID in the service-provider node SP to a payment to be made in respect of said service.
The payment, which is effected in the second phase 320, may be initiated as soon as said message M[SD] which is based on the service description SD has been sent to the mobile terminal 100. The payment involves linking CID the at least one requested service and the first mobile terminal 100 to a particular payment. This payment, in turn, is executed via an authorization message AD from the mobile terminal 100 to communication node SECS, which authorization message AD includes said link CID; a message PR from the communication node SECS to the authorization node PP; and a return message PC in the opposite direction confirming the payment.
In the third phase 330, the secure content SC[TID] is sent from the service-provider node SP to the communication node SECS, and then forwarded to the mobile terminal 100; preferably via a set of data messages APDU1−n. According to an embodiment of the invention, the third phase 330 entails sending operation identifiers OID1 and OID2 to the mobile terminal 100 and the service-provider node SP respectively from the communication node SECS. Then, at least one data message APDU1 to APDUn is sent from the communication node SECS to the mobile terminal 100, and forwarded to the target entity 150. Preferably, in response to each data APDU1 to APDUn message, the mobile terminal 100 returns a respective acknowledgement message ACK[1] to ACK[n] to the communication node SECS.
In response to a final confirmation message ACK[n] thereof, the communication node SECS preferably sends a general confirmation message ACK[OID2] to the service-provider node SP. Finally, the service-provider node SP may cancel the reference TID to the requested service and send a service-complete confirmation message END[TID] to the communication node SECS to establish an end of the procedure.
It is advantageous if the communication node SECS includes, or is in communicative connection with a memory unit storing a computer program product, which contains software for causing the communication node SECS to perform the above-described actions when the computer program product is run on one or more processors in the communication node SECS.
To sum up, and with reference to the diagram in
In a first step of the set-up phase 310, a mobile terminal 100 identifies, via identification data IDD[SID] to the communication node SECS, at least one requested service (e.g., secure content in the form of ticket data) offered by the service-provider node SP. In practice, the identification data IDD[SID] may be generated in response to a user activating the selection button 132 in
In a second step of the set-up phase 310, the communication node SECS sends the service identifier SID and the transaction identifier TID to the service-provider node SP. In a third step of the set-up phase 310, and in response to the service identifier SID, the service-provider node SP sends a service description SD to the communication node SECS.
In a fourth step of the set-up phase 310, the communication node SECS sends a message M[SD] that is based on the service description SD together with a cart identifier CID to the first mobile terminal 100. Thus, the message M[SD] may be presented as the above-described message M1 in the mobile terminal 100 (see
In a first step of the payment phase 320, the user of the mobile terminal 100 authorizes payment for the at least one requested service by sending authentication data AD, which are linked to the cart identifier CID, to the communication node SECS. This node, in turn, effects the payment by, in a second step of the payment phase 320, sending a payment request PR to the authorization node PP. Provided that the user is found to be authorized and disposes sufficient funds, in response to the payment request PR the authorization node PP sends a payment confirmation message PC to the communication node SECS, and thus completes the payment phase 320.
The delivery phase 330 may be initiated as soon as the service-provider node SP has received the service identifier SID and the transaction identifier TID, i.e., after the second step of the set-up phase 310. However, of course, the secure content SC[TID] (or more precisely APDU1 to APDUn) cannot be made available to a user of the mobile terminal 100 before the payment phase 320 has been completed successfully.
In a first step of the delivery phase 330, the service-provider node SP issues a service call SC[TID] to the communication node SECS, which service call SC[TID] causes the secure content to be sent to the communication node SECS and contains the reference in the form of a transaction identifier TID. In response to the service call SC[TID], in a second step of the delivery phase 330, the communication node SECS sends a first operation identifier OID1 to the first mobile terminal 100. The first operation identifier OID1 associates the cart identifier CID to the transaction identifier TID. In a third step of the delivery phase 330, the communication node SECS sends a second operation identifier OID2 to the service-provider node SP. The second operation identifier OID2 matches the first operation identifier OID1. This means that the second operation identifier OID2 can be derived from the first operation identifier OID1, and vice versa. Naturally, for example, the first and second operation identifiers OID1 and OID2 may be equal/identical.
The communication node SECS, in turn, is configured to enable the forwarding of secure content SC[TID] to the mobile terminal 100 at any time after that this data reaches it. Preferably, the communication node SECS forwards the secure content SC[TID] to the mobile terminal 100 in the form of one or more data messages, for example so-called application data units, APDU1, . . . , APDUn, which each contains a portion of the secure content SC[TID].
After having received each data message APDU1, . . . , APDUn correctly in the mobile terminal 100, the mobile terminal 100 preferably returns a respective confirmation message ACK[1], . . . , ACK[n] to the communication node SECS. In response to having received a final confirmation message ACK[n] indicating that the entire secure content SC[TID] has been received correctly in the mobile terminal 100, the communication node SECS preferably sends a general confirmation message ACK [OID2] to the service-provider node SP. The general confirmation message ACK[OID2] specifies to the service-provider node SP that the forwarding of secure content SC[TID] to the mobile terminal 100 has been successful. At this point, the service-provider node SP may set up another secure-content sequence, i.e., issue a new SC[TID], or send a service-complete message indicating for the communication node SECS that the forwarding of secure content SC[TID] to the mobile terminal 100 has been completed. Thus, the delivery phase 330 ends. The service-complete message END[TID] may be associated with a service result SR specifying an effect of the fact that the secure content has been transferred. It is further preferable if the communication node SECS is configured to forward a message M[SR] based on the service result SR to the mobile terminal 100. Namely, based on such a message M[SR], in turn, the mobile terminal 100 may present adequate information to the user (cf. the above-described message M4 notifying the user that the transfer of the requested secure content has been completed).
It is worth noting that, according to the invention, a single transaction identifier TID is always associated with a single service call SC[TID] via which the secure content is transferred to the communication node SECS. Nevertheless, as illustrated above, the secure content SC[TID] may be divided into two or more pieces. Consequently, the mobile terminal 100 may issue multiple confirmation messages ACK[1] to ACK[n] before the communication node SECS returns the general confirmation message ACK [OID2] indicating the all pieces of secure content SC[TID] have been transferred.
The above-described process steps, as well as any sub-sequence of steps, may be controlled by means of a programmed computer apparatus. Moreover, although the embodiments of the invention described above with reference to the drawings comprise a computer apparatus and processes performed in a computer apparatus, the invention thus also extends to computer programs, particularly computer programs on or in a carrier, adapted for putting the invention into practice. The program may be in the form of source code, object code, a code intermediate source and object code such as in partially compiled form, or in any other form suitable for use in the implementation of the process according to the invention. The program may either be a part of an operating system, or be a separate application. The carrier may be any entity or device capable of carrying the program. For example, the carrier may comprise a storage medium, such as a Flash memory, a ROM (Read Only Memory), for example a DVD (Digital Video/Versatile Disk), a CD (Compact Disc) or a semiconductor ROM, an EPROM (Erasable Programmable Read-Only Memory), an EEPROM (Electrically Erasable Programmable Read-Only Memory), or a magnetic recording medium, for example a floppy disc or hard disc. Further, the carrier may be a transmissible carrier such as an electrical or optical signal which may be conveyed via electrical or optical cable or by radio or by other means. When the program is embodied in a signal which may be conveyed directly by a cable or other device or means, the carrier may be constituted by such cable or device or means. Alternatively, the carrier may be an integrated circuit in which the program is embedded, the integrated circuit being adapted for performing, or for use in the performance of, the relevant processes.
The term “comprises/comprising” when used in this specification is taken to specify the presence of stated features, integers, steps or components. However, the term does not preclude the presence or addition of one or more additional features, integers, steps or components or groups thereof.
The invention is not restricted to the described embodiments in the figures, but may be varied freely within the scope of the claims.
This patent application is a Continuation Application of U.S. Non-Provisional patent application Ser. No. 15/300,965 filed Sep. 30, 2016, now U.S. Pat. No. 11,176,535, issued on Nov. 16, 2021, which claims the benefit of International Application No. PCT/SE2015/050377 filed on Mar. 30, 2015, which claims the benefit of Swedish Application No. 1450395-7 filed Apr. 2, 2014, the contents of which are incorporated herein by reference in their entireties and the benefits of each are fully claimed herein.
| Number | Name | Date | Kind |
|---|---|---|---|
| 5724520 | Goheen | Mar 1998 | A |
| 8543500 | Ogilvy | Sep 2013 | B2 |
| 8719952 | Damm-Goossens | May 2014 | B1 |
| 8739260 | Damm-Goossens | May 2014 | B1 |
| 8943173 | Ton | Jan 2015 | B1 |
| 9853921 | Saxena et al. | Dec 2017 | B1 |
| 20010034758 | Kikinis | Oct 2001 | A1 |
| 20010051996 | Cooper et al. | Dec 2001 | A1 |
| 20020023015 | Hughes et al. | Feb 2002 | A1 |
| 20020035540 | Yamaguchi | Mar 2002 | A1 |
| 20020120564 | Strietzel | Aug 2002 | A1 |
| 20040030615 | Ling | Feb 2004 | A1 |
| 20040039651 | Grunzig et al. | Feb 2004 | A1 |
| 20040128499 | Peterka et al. | Jul 2004 | A1 |
| 20040249768 | Kontio et al. | Dec 2004 | A1 |
| 20060080397 | Chene et al. | Apr 2006 | A1 |
| 20060095291 | Cherney | May 2006 | A1 |
| 20060165060 | Dua | Jul 2006 | A1 |
| 20060259927 | Acharya et al. | Nov 2006 | A1 |
| 20070043667 | Qawami et al. | Feb 2007 | A1 |
| 20070276926 | LaJoie et al. | Nov 2007 | A1 |
| 20080255890 | Hilliard | Oct 2008 | A1 |
| 20090164322 | Khan et al. | Jun 2009 | A1 |
| 20100023531 | Brisebois et al. | Jan 2010 | A1 |
| 20100063930 | Kenedy et al. | Mar 2010 | A1 |
| 20100138900 | Peterka et al. | Jun 2010 | A1 |
| 20100169977 | Dasher et al. | Jul 2010 | A1 |
| 20100174974 | Brisebois et al. | Jul 2010 | A1 |
| 20100268649 | Roos et al. | Oct 2010 | A1 |
| 20110202393 | DeWakar et al. | Aug 2011 | A1 |
| 20110225417 | Maharajh et al. | Sep 2011 | A1 |
| 20120008786 | Cronk et al. | Jan 2012 | A1 |
| 20120113218 | Sasamoto et al. | May 2012 | A1 |
| 20120130839 | Koh | May 2012 | A1 |
| 20130007849 | Coulter et al. | Jan 2013 | A1 |
| 20130035969 | Fisher | Feb 2013 | A1 |
| 20130054473 | Jan et al. | Feb 2013 | A1 |
| 20130066776 | Rifaat et al. | Mar 2013 | A1 |
| 20130080321 | Mulhall | Mar 2013 | A1 |
| 20130086375 | Lyne et al. | Apr 2013 | A1 |
| 20130127980 | Haddick et al. | May 2013 | A1 |
| 20130151400 | Makhotin et al. | Jun 2013 | A1 |
| 20130254106 | Webber et al. | Sep 2013 | A1 |
| 20130275307 | Khan | Oct 2013 | A1 |
| 20130300533 | Katzer et al. | Nov 2013 | A1 |
| 20130305035 | Lyne et al. | Nov 2013 | A1 |
| 20140039945 | Coady et al. | Feb 2014 | A1 |
| 20140081854 | Sanchez et al. | Mar 2014 | A1 |
| 20140089113 | Desai et al. | Mar 2014 | A1 |
| 20140094142 | Torres | Apr 2014 | A1 |
| 20140108263 | Ortiz et al. | Apr 2014 | A1 |
| 20140143089 | Campos et al. | May 2014 | A1 |
| 20140143137 | Carlson | May 2014 | A1 |
| 20140214920 | Wong et al. | Jul 2014 | A1 |
| 20140256251 | Caceres et al. | Sep 2014 | A1 |
| 20140282882 | Tsui | Sep 2014 | A1 |
| 20150026068 | Nuzzi | Jan 2015 | A1 |
| 20150033289 | Caceres et al. | Jan 2015 | A1 |
| 20150126109 | Keshavdas et al. | May 2015 | A1 |
| 20150178712 | Angrish et al. | Jun 2015 | A1 |
| 20150178862 | Angrish et al. | Jun 2015 | A1 |
| 20150249540 | Khalil | Sep 2015 | A1 |
| 20150379499 | Wang et al. | Dec 2015 | A1 |
| 20160063496 | Royyuru et al. | Mar 2016 | A1 |
| 20160275504 | Koh | Sep 2016 | A1 |
| 20170032357 | Eld et al. | Feb 2017 | A1 |
| Number | Date | Country |
|---|---|---|
| 107993375 | May 2018 | CN |
| 2008039796 | Apr 2008 | WO |
| 2008039796 | Apr 2008 | WO |
| 2010078530 | Jul 2010 | WO |
| 2012002852 | Jan 2012 | WO |
| 2013075071 | May 2013 | WO |
| 2014041381 | Mar 2014 | WO |
| Entry |
|---|
| Extended European Search Report issued in corresponding European Application No. 15772482.4 dated Nov. 10, 2017, pp. 1-8. |
| Final Office Action issued in corresponding U.S. Appl. No. 15/300,965, dated Aug. 5, 2020. |
| Final Office Action issued in corresponding U.S. Appl. No. 15/300,965, dated May 28, 2019. |
| Globalplatform Inc., Messaging Specification for Management of Mobile-NFC Service, Version 1.1.2, Oct. 2013, pp. 1-425. |
| GSMA Mobile Commerce, White Paper: The Role of the Trusted Service Manager in Mobile Commerce, Dec. 2013, pp. 1-11. |
| Non-Final Office Action issued in corresponding U.S. Appl. No. 15/300,965, dated Jan. 30, 2020. |
| Non-Final Office Action issued in corresponding U.S. Appl. No. 15/300,965, dated Mar. 17, 2021. |
| Non-Final Office Action issued in corresponding U.S. Appl. No. 15/300,965, dated Nov. 16, 2018. |
| Office Communication issued in corresponding European Patent Application No. 157727482.4, dated Nov. 26, 2019. |
| Third Office Action issued in corresponding Chinese Application No. 201580017271.1, dated Oct. 8, 2019. |
| Irwin, James; “Digital Rights Management: The Open Mobile Alliance DRM Specifications”; Information Security Technical Report; vol. 9, No. 4; pp. 22-31. |
| Cheng, Yunli; “Based on netease train ticket booking system design and implementation”; Journal of Physics Conference Series 1486 (2020) 022006; doi: 10.1088/1742-6596/1486/2/022006. |
| Olsen, Cameron; “Getting the most out of EMV with contactless cards”; Card Technology Today; Apr. 2007; pp. 10-11. |
| Zhou, Chang-Ying et al.; “A Trusted Smart Phone and Its Applications in Electronic Payment”; Journal of Electronic Science and Technology of China; vol. 5, No. 3; Sep. 2007; pp. 206-2011. |
| Bhatt, Siddharth et al.; “A personal mobile DRM manager for smartphones”; Computers & Security; vol. 28; 2009; pp. 327-340. |
| Notice of Allowance issued in corresponding U.S. Appl. No. 15/300,965, dated Jul. 20, 2021. |
| Advisory Action issued in corresponding U.S. Appl. No. 15/300,965, dated Nov. 4, 2020. |
| Number | Date | Country | |
|---|---|---|---|
| 20220076232 A1 | Mar 2022 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 15300965 | US | |
| Child | 17525090 | US |
