Patent Application
20120123880
The present invention relates generally to the use of secure data to complete a wireless transaction, and more particularly to a system and method for diagnosing problems with a device utilizing such secure data to interact with a third party system including the interconnection between the device and system.
Wireless transactions using RFID-based proximity cards are fairly common place. For instance, many workers use RFID keycards to gain access to their workplace and drivers use RFID passes to pay tolls at highway speeds. RFID, which stands for radio-frequency identification, uses electromagnetic waves to exchange data between a terminal and some object for the purpose of identification. More recently, companies have been trying to use RFIDs supported by cellular telephones to implement an electronic payment product (i.e. credit and/or debit card). In such a wireless transaction, various transactional data is required to be transmitted by and among various servers, entities, etc, including amount of the transaction, a unique transaction identification number (“transaction ID”), a unique retailer identification number (“retailer ID”), retailer business category (e.g., retail, restaurant, entertainment, travel, electronics, etc), and an encrypted card identification number corresponding to the user's credit card or other banking account identification (“bank ID”). This data is collectively referred to as “transaction data.” However, basic RFID technology raises a number of security concerns that have prompted modifications of the basic technology. Still, wide spread adoption of RFID as a mechanism for electronic payments has been slow.
Near Field Communication (NFC) is another technology that uses electromagnetic waves to exchange data. NFC waves are only transmitted over a short-range (on the order of a few inches) and at high-frequencies. NFC devices are already being used to make payments at point of sale (“POS”) devices. NFC is an open standard (see, e.g. ISO/IEC 18092) specifying modulation schemes, coding, transfer speeds and RF interface. There has been wider adoption of NFC as a communication platform because it provides better security for financial transactions and access control. Other short distance communication protocols are known and may gain acceptance for use in supporting financial transactions and access control.
Regardless of the wireless communication protocol selected, there are bound to be operational errors within: the devices on which the protocol is implemented (called “wireless wallets” in the present specification); communications between the wireless wallet and local host devices (e.g. point of sale terminals, keycard access control terminals); within the local host devices; within any server-side equipment that must interact with the local host devices (e.g. for confirmation or approval); and/or within communications between the wireless wallet, its mobile network and beyond. For instance, a consumer may have trouble completing a purchase using the “credit card” embedded in his smartphone in a big-box retail store at the point of sale because of one or more problems with (1) the NFC connection between the consumer's phone and the point of sale device; (2) the secure data is corrupt on the consumer's smartphone; (3) the consumer's electronic wallet account has been disabled by the card issuer; (4) the point of sale device has outdated NFC communication software; etc.
A problem arises in that no single company is presently responsible for coordinating the troubleshooting of failed electronic wallet transactions. As such, the consumer may have a difficult time determining which—if any—of the foregoing potential problems is preventing the desired electronic wallet transaction. Thus, the consumer may stop using the electronic wallet or may not be able to complete a transaction with that particular retailer leading the consumer to try to consummate a similar transaction with a competitor.
A related problem arises in that diagnostic software that can facilitate diagnosis of the problem has not been developed for deployment and use on smartphones or similar devices.
Accordingly, the present invention seeks to provide one or more solutions to the foregoing problems and related problems as would be understood by those of ordinary skill in the art having the present specification before them. These and other objects and advantages of the present disclosure will be apparent to those of ordinary skill in the art having the present drawings, specifications, and claims before them. It is intended that all such additional systems, methods, features, and advantages be included within this description, be within the scope of the disclosure, and be protected by the accompanying claims.
The invention is, in part, a system for remotely diagnosing a failure in a mobile transaction. The system includes a system management back end in operable communication with a portable communication device having a unique identification number and a status, a central diagnostics management system configured to receive the unique identification number, the status, and failure data from the portable communication device, and to diagnose the failure based on one or more of the unique identification number, the status, and the failure data; and a point of sale database configured to store point of sale data; wherein the system management back end is configured to receive an audio identification signal uniquely corresponding to a point of sale device from the portable communication device via the mobile network, to determine an identity of the point of sale device based on said audio identification information, and to diagnose the failure based on the identity of the point of sale device.
For a better understanding of the present disclosure, non-limiting and non-exhaustive embodiments are described in reference to the following drawings. In the drawings, like reference numerals refer to like parts through all the various figures unless otherwise specified.
a illustrates the operable interconnections between the end user's portable communication device and various subsystems, including the system management back end;
b illustrates the diagnostic agent installed in the end user's portable communication device asking whether she would like diagnostics performed following a failed attempt to use her device to conduct a secure payment transaction at a point of sale.
The present invention now will be described more fully hereinafter with reference to the accompanying drawings, which form a part hereof, and which show, by way of illustration, specific exemplary embodiments by which the invention may be practiced. This invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art. Among other things, the present invention may be embodied as methods or devices. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. The following detailed description is, therefore, not to be taken in a limiting sense.
Below each component of the overall system 100 will be described in greater detail, as will the overall operation and functionality of the claimed system and method.
The present invention provides a system and method that can be utilized with a variety of different portable communication devices 101, including but not limited to PDA's, cellular phones, smart phones, laptops, tablet computers, and other mobile devices that include cellular voice and data service as well as preferable access to consumer downloadable applications. One such portable communication device 101 could be an iPhone, Motorola RAZR or DROID, however, the present invention is preferably platform and device independent. For example, the portable communication device technology platform may be Microsoft Windows Mobile, Microsoft Windows Phone 7, Palm OS, RIM Blackberry OS, Apple OS, Android OS, Symbian, Java or any other technology platform. For purposes of this disclosure, the present invention has been generally described in accordance with features and interfaces that are optimized for a smart phone utilizing a generalized platform, although one skilled in the art would understand that all such features and interfaces may also be used and adapted for any other platform and/or device.
As shown in
The portable communication device 101 further includes a user interface 102 (see
The portable communication device 101 will, as is well known, also include a microprocessor and mass memory. The mass memory may include ROM, RAM as well as one or more removable memory cards. The mass memory provides storage for computer readable instructions and other data, including a basic input/output system (“BIOS”) and an operating system for controlling the operation of the portable communication device 101. The portable communication device 101 will also include a device identification memory dedicated to identify the device, such as a SIM card. As is generally understood, SIM cards contain the unique serial number of the device (ESN), an internationally unique number of the mobile user (IMSI), security authentication and ciphering information, temporary information related to the local network, a list of the services the user has access to and two passwords (PIN for usual use and PUK for unlocking). As would be understood in the art by those having the present specification, figures, and claims before them, other information may be maintained in the device identification memory depending upon the type of device, its primary network type, home mobile network operator, etc.
In the present invention each portable communication device 101 is thought to have two subsystems: (1) a “wireless subsystem” that enables communication and other data applications as has become commonplace with users of cellular telephones today, and (2) the “secure transactional subsystem” which may also be known as the “payment subsystem”. As illustrated in
Each of the portable communications devices 101 is connected to at least one mobile network operator 103. The mobile network operator 103 generally provides physical infrastructure that supports the wireless communication services, data applications and the secure transactional subsystem via a plurality of cell towers that communicate with a plurality of portable communication devices 101 within each cell tower's associated cell. In turn, the cell towers may be in operable communication with the logical network of the mobile network operator 103, POTS, and the Internet to convey the communications and data within the mobile network operator's own logical network as well as to external networks including those of other mobile network operators 103. The mobile network operators 103 generally provide support for one or more communication protocols and technologies including, but not limited to, global system for mobile communication (GSM), 3G, 4G, code division multiple access (CDMA), time division multiple access (TDMA), user datagram protocol (UDP), transmission control protocol/Internet protocol (TCP/IP), SMS, general packet radio service (GPRS), WAP, ultra wide band (MB), IEEE 802.16 Worldwide Interoperability for Microwave Access (WiMax), SIP/RTP, or any of a variety of other wireless communication protocols to communicate with the portable communication devices.
Standard at merchants today is an Internet Protocol connected payment system that allows for transaction processing of debit, credit, prepay and gift products of banks and merchant service providers, referred to herein as a “retail subsystem” 107. By swiping a magnetic stripe enabled card at the magnetic reader of a Point of Sale Terminal (also referred to as a point of sale device or generally as point of sale equipment) 108, the card data is transferred to the point of sale equipment 108 and used to confirm funds by the issuing bank. This point of sale equipment 108 of the retail subsystem 108 has begun to include contactless card readers as accessories that allow for the payment card data to be presented over an RF interface, in lieu of the magnetic reader. The data is transferred to the reader through the RF interface by the ISO 14443 standard and proprietary payment applications like PayPass and Paywave, which transmit the contactless card data from a card and in the future a mobile device that includes a Payment Subsystem.
As is well known, a retailer's point of sale device 108 may be connected to a network via a wireless or wired connection. This point of sale network may include the Internet in addition to local area networks (LANs), wide area networks (WANs), direct connections, such as through a universal serial bus (USB) port, other forms of computer-readable media, or any combination thereof. On an interconnected set of LANs, including those based on differing architectures and protocols, a router acts as a link between LANs, enabling messages to be sent from one to another. In addition, communication links within LANs typically include twisted wire pair or coaxial cable, while communication links between networks may utilize analog telephone lines, full or fractional dedicated digital lines including T1, T2, T3, and T4, Integrated Services Digital Networks (ISDNs), Digital Subscriber Lines (DSLs), wireless links including satellite links, or other communications links known to those skilled in the art. Furthermore, remote computers and other related electronic devices could be remotely connected to either LANs or WANs via a modem and temporary telephone link. In essence, any communication method may be used that allows information to travel between the retail subsystem 107 and financial services providers of a secure transactional subsystem 105 for the purpose of validating, authorizing and ultimately capturing financial transactions at the point of sale 108 for payment via the secure transaction subsystem 105.
The system includes a secure transactional subsystem 105 made up of one or more financial services providers. The secure transactional subsystem 105 includes secure elements and associated device software for communication to management and provisioning systems as well as the customer facing interfaces for use and management of secure data 210 stored in the secure elements of the customer's portable communication device 101. Preferably the secure transactional subsystem 105 will conform, where appropriate, to an international standard, such as the standard defined in Global Platform 2.1.X or 2.2.
The system 100 of
The server 300 may comprise one or more general-purpose computers that implement the procedures and functions needed to run the system back office in serial or in parallel on the same computer or across a local or wide area network distributed on a plurality of computers and may even be located “in the cloud” (subject to the provision of sufficient security). The computer(s) comprising the server may be controlled by Linux, Windows®, Windows CE, Unix, or a Java® based operating system, to name a few. The system management back end server 109 is operably associated with mass memory that stores program code and data. Data may include one or more databases, text, spreadsheet, folder, file, or the like, that may be configured to maintain and store a knowledge base, user identifiers (ESN, IMSI, PIN, telephone number, email/IM address, billing information, or the like).
The system management back end server 300 supports a care and diagnostics management system 320 to provide call traffic connectivity and distribution across the client devices 302-316 in the customer care center. In a preferred approach using VoIP voice channel connectivity, the care and diagnostics management system 320 is a contact/case management system distributed by Contactual Inc. of Redwood City, Calif. The Contactual Inc. system is a standard CRM system for a VoIP-based customer care call center that also provides flexibility to handle care issues with simultaneous payments and cellular-related care concerns. As would be understood by one of ordinary skill in the art having the present specification, drawings and claims before them, other case management systems may be utilized within the present invention such as Salesforce (salesforce.com inc. of San Francisco, Calif.) and Novo (Novo Solutions, Inc. of Virginia Beach, Va.).
Each client computer 302-316 associated with the system management back end 109 server has a network interface device, graphical user interface, and voice communication capabilities that match the voice channel(s) supported by the client care center server, such as VoIP. Each client computer can request status of both the cellular and secure transactional subsystems of a portable communication device. This status may include the contents of the soft memory and core performance of portable communication device, the NFC components: baseband, NFC antenna, secure element status and identification.
As shown in
The resident diagnostic agent 206 is downloaded onto the portable communication device 101 to assist in determining the reason(s) for the failed transaction. In the case of a purchase at a physical point of sale 108 using a wireless wallet the failure may be caused by problems with the retail subsystem, the financial service subsystem, a physical problem with the portable communication device or the RF link established between the portable communication device and the point of sale device or the link established between the portable communication device and the mobile network operator. As is presently understood, the retailer, the financial service provider (e.g. card issuer) and mobile network operator are usually three different entities and in some cases those entities may be in direct competition with one another for all or part of a consumer's business. As a result, the entities are unable to cooperate sufficiently to rectify problems with any individual transaction, especially in real time.
As shown in
Under certain circumstances, defects or malfunctions in the point of sale device may be the cause of the failed transaction. Therefore, it is also desirable for the system management back end 109 to also receive status, identification, location and other information corresponding to the point of sale device 108 (referred to as POS data). However, if the point of sale device 108 has malfunctioned such that the portable communication device 101 is unable to receive any POS data from the POS device 108 itself, it is desirable to have an alternative way to identify known information (e.g., serial number, or make/model) corresponding to the particular POS device. In one implementation, the system management back end 109 may further include a point of sale database (322 in
However, while many geolocation transceivers are accurate enough to determine in which store the particular POS device 108 is located, they generally do not have the precision to determine the specific location of the applicable POS device within the store. As a solution, each POS device at a given location may be provided with a sound beacon (120 in
One of skill in the art having the specification, figures and claims before them would know that the sound beacon 120 may be connected to the POS device 108 via a USB or other connection so that the sound beacon 120 may draw power from the POS device 108. Alternatively, the sound beacon 120 may be a standalone device having its own power source. It will also be understood by one of ordinary skill in the art that the sound beacon 120 may be replaced with some other unique signal generator. For example, different light-waves may correspond to different POS devices 108, and the communication device may detect the light frequency using a built-in image detector.
In another embodiment, the system may simply ask the end user to manually provide an identification for the particular POS device 108 involved in the failed transaction, such as by phone, email or SMS text. Because asking a user to manually provide this information may be burdensome or cause the end user to incur additional phone charges, many users may elect to ignore the request for additional information. This is undesirable both for the retailer as well as the system operator. Therefore, the retailer or operator of the system may elect to provide rewards, coupons or other promotions in exchange for the end user providing such information and/or feedback relating to the failed transaction.
In yet another embodiment, the POS device 108 may include an RF transmitter that transmits an RF signal when the device 108 is functional. Many NFC baseband transceiver 214 today include a radio-frequency (RF) field detection unit 216 to detect the presence of an RF signal. If an RF signal is present, the failure is less likely to reside with the POS device 108, and conversely if the RF signal is not present, the failure is likely due to a defect or malfunction in the POS device. The presence or absence of an RF signal at the POS device 108 (referred to as “RF presence data”) may be included with the failure data sent to the care and diagnosis system 320. Which would decode and analyze the data, and then determine if the transaction failure is likely due to a defect or malfunction in the POS device. This determination may even be done pre-emptively, before the user even requests assistance.
Upon receipt of the data into the care and diagnostics system 320 of the system management back end 109, the system generates an “Event Record”. The care and diagnostics system 320 decodes and automatically uses the received data to generate, via a ticket management client device 308 a new “Care Ticket”. Preferably, the system management back end 109 will send the consumer 104 on the portable communication device 101, via the most appropriate communication channel, the estimated time before a “Care Agent” will call the consumer and/or recommend self-help resolutions. Where the portable communication device 101 has a camera (as can be gleaned from the model number data sent by the diagnostic device), the system may also prompt the consumer via a message to take an image of the point of sale device using the on-device camera. It is preferred for the diagnostics agent 206 to automatically select the best on-device camera settings to capture and transmit the image via the most appropriate channel. Upon receipt of the image, the system may add the image to the “Care Ticket” that has already been established by the ticket management device 308 for the event, and/or utilize pre-saved Point of Sale imagery to compare and auto-recognize the point of sale where the transaction was made or attempted by the consumer. The care and diagnostics platform 320 of the system management back end 109 also obtains data from the secure payment subsystem 105, mobile network operator subsystem 103, and the retailer subsystem 107 regarding the failed secure transaction.
After the diagnostic agent 206 automatically contacts the system management back end 109, the consumer may also contact the system management back end 109 via the communication channel on their portable communication device 101. Because the diagnostic agent 206 sent information regarding the portable communication device 101, the system will preferably be able to automatically correlate the open Care Ticket generated by the ticket management device 308 with the portable communication device 101.
Once the information that can be gathered about the failure event has been gathered, a human care agent would review the care ticket via the care management software and contact the consumer on her portable communication device 101. Once contact is established, the human care agent will guide the consumer through the deductive resolution process using the information received in conjunction with the system management back end knowledge database 306. The deductive resolution process continues between the care agent and the consumer until the issue is resolved. Upon resolution of the issue, the Care Ticket as well as a Knowledge Library generated by the knowledge database 306 are updated based on the information gathered in this call.
In one embodiment of the invention, if after carrying out the foregoing process(es) the issue remains unresolved, then the person operating the cash register (or a manager, or some other appropriate person employed by the merchant), may be provided with the option of securely sending the available transaction data directly to the applicable financial service provider 105. In this situation, the transaction failure is likely to be due to a malfunction in the NFC/RFID connection. So while the POS device 108 was unable to obtain the bank ID from the portable communication device 101, the retailer will likely have the other relevant transaction data (i.e., transaction amount, retailer ID and transaction ID), and can send that available data to the secure transactional subsystem 105 (either directly or indirectly via the system management back end 109). On the other hand, while the portable communication device may not have received the transaction data normally obtained from the POS device 108, the end user will have the applicable bank ID information. In this embodiment, the end user can send his or her bank ID information via the portable communication device 101 to financial service provider via an SMS text message, an email message, through a web browser, or otherwise via the internet. Once the financial service provider 105 has received the required data from both the retailer and from the end user, it may then send a transaction link back to the end user, allowing the end user to carry out an alternative electronic wallet transaction that does not require a functioning NFC (or RFID as applicable) connection between the portable communication device 101 and the point of sale device 108. Such an alternative electronic wallet transaction is described in co-pending U.S. Patent Application No. 61/556,179, entitled “System and Method for Increasing Security in Internet Transactions” filed on Nov. 5, 2011, which is fully incorporated into this application by reference.
In some instances the consumer may initiate a help session via a voice call by dialing a care help number without first initiating the diagnostics agent 206. Perhaps the consumer wants to speak with a live agent first or perhaps the consumer is not comfortable using the diagnostic agent 206. The call may directly connect or be rerouted to a live agent via the system. Upon receipt of the call into the care and diagnostics platform 320, the system generates an “Event Record” and “Care Ticket”. Based on the caller identification number associated with the telephone call, the system management back end 109 would then initiate communications with the diagnostics agent 206 installed on the consumer's portable communication device 101 using the appropriate communication channel (e.g. e.g. SMS, MMS, HTTP, Secure Sockets, and email). In an example, where the portable communication device 101 is GSM 3G based, there may also be support for simultaneous voice and data sessions available particularly from certain mobile network operators 103. In the case of a CDMA 3G based device, the users could receive a message while they are in voice session since simultaneous voice and data sessions are not supported (Verizon). The diagnostic agent 206 will gather the same information described in the foregoing paragraph for use in the system management back end 109 in diagnosing the failure. Of course, in the event that communications cannot be opened with the diagnostics agent 206 on the consumer's portable communication device 101, the care agent may direct the consumer to open the diagnostic agent manually and/or navigate to the “Help” screen of the diagnostic agent and select the “Help Me” function manually, which should result in the gathering and transmission of data to the system management back end 109, as discussed above. The call would follow along much the same lines as the call initiated by the diagnostic agent 206.
The foregoing description and drawings merely explain and illustrate the invention and the invention is not limited thereto. While the specification is described in relation to certain implementation or embodiments, many details are set forth for the purpose of illustration. Thus, the foregoing merely illustrates the principles of the invention. For example, the invention may have other specific forms without departing from its spirit or essential characteristic. The described arrangements are illustrative and not restrictive. To those skilled in the art, the invention is susceptible to additional implementations or embodiments and certain of these details described in this application may be varied considerably without departing from the basic principles of the invention. It will thus be appreciated that those skilled in the art will be able to devise various arrangements which, although not explicitly described or shown herein, embody the principles of the invention and, thus, within its scope and spirit.
This application claims priority from U.S. Provisional Patent Application No. 61/414,857, filed on Nov. 17, 2010.
| Number | Date | Country | |
|---|---|---|---|
| 61414857 | Nov 2010 | US |
