Patent Grant
8275364
This application is the National Stage of International Application No. PCT/IB2008/055587, filed 30 Dec. 2008, which claims the benefit of Slovak Patent Application No. PP 5004-2008, filed 4 Jan. 2008, the disclosure of which is incorporated herein by reference in its entirety.
The invention relates to a method and a system of authenticity of authorized persons and transaction approval, particularly at direct debits (noncash payment system) by means of a mobile communication device, principally a mobile phone connected to a payment terminal where the mobile communication device functions as a payment card. The invention also concerns an identifier, used for authentication and manipulation, due to which the approval with the operation, principally payment transaction is indicated.
Debit cards, of which the payment confirmation is made by its submitting and entering the correct PIN, are frequently used by direct debits. Very often the direct debit is realized in such way that the purchaser at the payment submits the payment card to the trader who inserts it in the terminal and asks the purchaser to agree the total sum of the purchase. The purchaser enters, mostly with the small keyboard, the PIN into the terminal and the payment is confirmed. By means of PIN the purchasers authenticate themselves at the payment via magnetic, chip or contact free (RFID) payment cards and also at the payments by mobile phones when the act of payment can by done by means of payment terminals or mobile banking direct payments.
Known are more methods and technical means which substitute manual PIN entering in the mobile phone and also by which the confirmation of the direct debit is made. For example according to the published PCT application form WO 2005/086456 A1, RFID chip is used in a small movable card located separately from the mobile phone. RFID technology is described also in patents and patent registrations: EP 1 536 573 A2, CN 1627321 A, KR20040060249, WO 2007/136939 A2, WO 2006/009460 A1. However, RFID chip was developed for applications with a lower level of security such as pallet monitoring in a warehouse, input and distribution of the goods et cetera. RFID technology does not enable the active cryptography of to be approved alphanumerical chain neither without a contact connection between the RFID identifier and the source nor without the use of the own energy source like battery. The use of NFC technology is known also in patents and patent registrations: EP 1 729 253 A1, DE 10 2006 019 628 A1, CN 1835007. However, known is no solution, by which the passive identifier is used without own energy source but making cryptographic operations itself.
Until now known methods and devices did not ensure sufficiently high level of security with passive identifiers, since they can be copied and imitated easily. Active identifiers, on the other hand, demand the own energy source able to supply the hardware of the identifier by energy needed for cryptography of the approving code or a contact connection to a communication device to supply with the energy. However, both methods are uncomfortable and time-consuming.
Disadvantages mentioned above are eliminated significantly by the method of authenticity and/or agreement approval at the direct debits through the separate identifier according to this invention, of which bedrock is based on the fact that after activating the payment process or payment process preparation in the mobile communication device, the device sends alphanumerical chain into the identifier approached to the mobile communication device. The identifier is approached in the distance shorter than 10 cm, mostly it may touch the mobile communication device directly. However, the contact or the contact point setting is not essential or necessary since the communication between the mobile communication device and the identifier is wireless. At this point, the identifier is by means of energy supplied contact free from the electromagnetic field of the mobile communication device, receives alphanumerical chain and realizes its processing in the form of an electronic signature. The received alphanumerical chain is signed electronically in the identifier and such established signed alphanumerical chain is sent back to the mobile communication device where the correctness is checked. If the correctness is verified and at the same time the owner approves the payment transaction, the mobile communication device will be approached to the distance, suitably less than 10 cm from the reading unit of the payment terminal.
It is advantageous if the electronic signature of the received alphanumerical chain is made by the process with the help of a private key saved in the memory of the identifier. To the energy supply of the identifier circuits is used direct and/or while approaching, accumulated energy of the electromagnetic field of the mobile communication device, advantageously electromagnetic field created by transmitting unit of the mobile communication device which aim is to communicate with the identifier.
The invention enables to use cryptography of the authentication preserving the energy passivity of the separate identifier. The principal advantage is the high level of security at the satisfactory user comfort. Entering PIN code mostly consisting of four digits can be according to this invention, replaced by apposing the identifier working with more-bit-chain which is variable since the approving code transmitted from the identifier into the mobile communication device is changed according to the cryptography taking place in the identifier processor at every authentication process. By this, the higher level of security is achieved than at the RFID identifiers and the advantage of its passivity is remained. Such energy passivity enables to reduce the size of the identifier since there is no necessity to use own energy source by which the user comfort is increased as the user does not have to bother with identifier's charge or condition.
In a favorable configuration the mobile communication device may use at the payment processing and authentication a remote processing server to which it is connected via general mobile network, mainly the kind of GSM or GRPS net.
The bedrock of this invention is based on the system of authentication and/or agreement approval at the direct debits which concerns payment terminals, a separate identifier and a mobile communication device communicating with the payment terminal via contact free communication channel where the mobile communication device, preferably mobile phone, contains transmitting and receiving unit to allow the contact free communication with the identifier and where the identifier contains a processor for electronic signature of the received alphanumerical chain. Further more, the identifier contains transmitting and receiving unit to allow the communication with the mobile communication device, a block transforming the electromagnetic field into the electric energy and a memory. Components of the identifier are, from the energy point of view, supplied by electromagnetic field of the mobile communication device either directly by immediately gained energy or partially by energy accumulated during the approaching to the mobile communication device at the relevant payment process.
In a possible configuration the system includes a remote processing server connected to the mobile communication device through general mobile network, preferably via GSM or/and GPRS net. From the point of view of compatibleness with the existing, mass-spread devices and standards, it is suitable if the mobile communication device consists of a mobile phone, advantageously a mobile phone with NFC communication unit.
Disadvantages mentioned in the Present Technology Status are eliminated significantly by the identity identifier and/or agreement approval at the direct debits through communicating contact free with the mobile communication device, principally a mobile phone which is connected contact free to the payment terminal according to this invention, of which bedrock is based on the fact that it consists of a processor for electronic signature of the received alphanumerical chain, transmitting and receiving unit to communicate with the mobile communication device. Communication is principally based on receiving the alphanumerical chain and transmitting electronically signed alphanumerical chain. The identifier further more contains a memory, a block transforming the electromagnetic field into the electric energy. Transmitting and receiving unit and a block transforming the electromagnetic field into the electric energy are connected to the processor. Processor is also connected to the memory. Basically, all the units of the identifier are, from the energy point of view, supplied by electromagnetic field of the mobile communication device.
In an advantageous configuration, the identifier of identity and/or approval contains NFC chip and the memory contains a private key for electronic signature of alphanumerical chain received from the mobile communication device.
Utility attributions increase a configuration, where a part of the memory is reserved for the personal data of the user. This part of memory is adjusted to store the personal user data separately from the private key. In such case the identifier may be used like a health insurance card, identity card and so on. Rightness of data demand is evaluated in the processor of the identifier.
To increase the user comfort, the identifier may be located in a pendant and/or a key ring and/or a label and/or a beading.
The invention enables to higher the level of security and comfort of authenticity and direct debit approval since the user does not have to remember his PIN code. At the same time the invention increases the process of direct debit transaction since the mobile communication device functions as a wallet without any delay caused by the PIN code entering.
The invention is described in more details by means of pictures 1 and 2, where picture 1 shows the connection scheme of a payment terminal, a mobile communication device and an identifier at the direct debit transaction.
Picture 2 represents the scheme of connection between payment terminal, identifier and mobile communication device associated with a remote server at the direct debit transaction.
In this example the system contains a payment terminal 1 located at the cash register in a shop, a mobile communication device 2 represented by a mobile phone NOKIA 6131 serially equipped by NFC technology and an identifier 3 situated in a key ring.
The payment terminal 1 allows contact free radio communication with the mobile communication device 2 while the payment terminal 1 is of a common standard with usual functions and communication with payment servers at the bank central office or other similar institution such as authorized centers.
Mobile communication device 2, herein NOKIA 6131, functions as a payment card in such way that it contains in its memory a software application which enables to realize the payments in cooperation with the payment terminal 1. Needed data are sent via air from the mobile communication device 2 into the payment terminal 1 after the activation of the necessary payment process and approaching the mobile communication device 2 to the payment terminal 1, actually to NFC reader of the payment terminal 1.
Mobile communication device 2 allows a safe and correct recording and storing of the payment software application in a secured memory and has the ability to realize contact free radio communication between the payment terminal 1 and the identifier 3.
At the payment, except for approaching the mobile communication device 2 to payment terminal 1, it is needed to authenticate, approve the presence of the user at the payment and to confirm his agreement with the payment. To authentication and payment confirmation is used an identifier 3 containing a processor 5, which beside recording memory with the private key, is able to realize computationally operations which enable cryptography and decryption needed for electronic signature realization. The identifier 3 does not contain its own energy source (f.e. battery) and uses as energy source the electromagnetic field of the mobile communication device 2 which is processed in a block 10 of transformation. The identifier 3 is able to communicate with the external devices, principally mobile communication device 2, possibly the payment terminal 1 or programming devices, exclusively contact free via radio transmission.
The payment approval is given in such way that the mobile communication device 2 is either approached or directly put close to the identifier 3 in distance shorter than 10 cm, by which the alphanumerical chain is transmitted into the identifier 3. The identifier 3 receives the chain and signs it electronically by a private key and such signed alphanumerical chain sends back into the mobile communication device 2. These operations are completed by processing in a circuit of the identifier 3 via energy from the electromagnetic field of the mobile communication device 2. Receiving the correct alphanumerical code from the identifier 3 into the mobile communication device 2, the payment application of the mobile communication device 2 considers that the user approved the payment and that the user is authorized.
Correctness verification is basically reading of the electronically signed alphanumerical code via particular general key. Later the user approaches the mobile communication device 2 to the payment terminal 1, by which the payment process will be agreed in the payment terminal 1 from where the payment data are sent in a standard way to the bank or authorized centre. In a common practice, the payment transaction may be realized in such way that the user, while waiting at the cash desk activates in his mobile phone the payment process or preparation for this process. The user chooses from the menu on his display the account he wants the payment to be realized from and puts the identifier 3 closer to the mobile phone. The user, after the receipt is printed by the cash register, decides if he wants to pay the amount and if yes, the user approaches the mobile phone to the payment terminal 1, technically to its reading unit which is marked graphically. The payment terminal 1 prints out the receipt or according to the setting, the user receives SMS about the realized payment. This way the direct debit process will be speed up significantly.
In this example is a part 8 of the memory 6 reserved for the personal data of the user and the identifier 3, in a connection to a suitable reading unit of NFC chip, may be used as electronic ID, health insurance card and so on. Different kinds of such personal data are accessible by means of various levels of access rights evaluated by the processor 5.
Example 2 differs from the above mentioned one in the way that the configuration contains a remote server 9 processing the payment transactions which are therein realized directly in the mobile communication unit 2. In this example the mobile communication device 2 works as a processing mediator and shows the processes which are realized in a distance as a viewer. The connection is made via GPRS data network.
Industrial applicability is obvious. According to this invention, it is possible to authenticate and approve the direct debit processes industrially and repeatedly, principally via a mobile phone with the use of a passive identifier.
According to this invention it is also possible to produce and use passive identifiers, principally by using NFC chip standards where the source, according to this invention, may be supplied by the electromagnetic field of the mobile communication device. The invention is also related to identifier which functions to authentication and approval indication and as well it may be used as a kind of personal cards.
| Number | Date | Country | Kind |
|---|---|---|---|
| 5004-2008 | Jan 2008 | SK | national |
| Filing Document | Filing Date | Country | Kind | 371c Date |
|---|---|---|---|---|
| PCT/IB2008/055587 | 12/30/2008 | WO | 00 | 1/14/2010 |
| Publishing Document | Publishing Date | Country | Kind |
|---|---|---|---|
| WO2009/087539 | 7/16/2009 | WO | A |
| Number | Name | Date | Kind |
|---|---|---|---|
| 5574470 | de Vall | Nov 1996 | A |
| 5608417 | de Vall | Mar 1997 | A |
| 6062472 | Cheung | May 2000 | A |
| 6070795 | Feiken | Jun 2000 | A |
| 6070796 | Sirbu | Jun 2000 | A |
| 6450407 | Freeman et al. | Sep 2002 | B1 |
| 6615243 | Meggeid et al. | Sep 2003 | B1 |
| 6745935 | Grieu et al. | Jun 2004 | B1 |
| 6828670 | Hayana et al. | Dec 2004 | B2 |
| 6976011 | Capitant et al. | Dec 2005 | B1 |
| 7364092 | Narendra et al. | Apr 2008 | B2 |
| 7374100 | Jei et al. | May 2008 | B2 |
| 7436965 | Sherman | Oct 2008 | B2 |
| 7458518 | Fukuda et al. | Dec 2008 | B2 |
| 7481358 | Honjo et al. | Jan 2009 | B2 |
| 7568065 | D'Athis | Jul 2009 | B2 |
| 7581678 | Narendra et al. | Sep 2009 | B2 |
| 7689932 | Maktedar | Mar 2010 | B2 |
| 7805615 | Narendra et al. | Sep 2010 | B2 |
| 7828214 | Narendra et al. | Nov 2010 | B2 |
| 8055184 | DiMartino et al. | Nov 2011 | B1 |
| 8127999 | Diamond | Mar 2012 | B2 |
| 20010005832 | Cofta | Jun 2001 | A1 |
| 20020147658 | Kwan | Oct 2002 | A1 |
| 20030138135 | Chung et al. | Jul 2003 | A1 |
| 20040606278 | Hughes et al. | Apr 2004 | |
| 20040087339 | Goldthwaite et al. | May 2004 | A1 |
| 20040127256 | Goldthwaite et al. | Jul 2004 | A1 |
| 20050072595 | Cho | Apr 2005 | A1 |
| 20050092835 | Chung et al. | May 2005 | A1 |
| 20050116050 | Jei et al. | Jun 2005 | A1 |
| 20050269401 | Spitzer et al. | Dec 2005 | A1 |
| 20050269402 | Spitzer et al. | Dec 2005 | A1 |
| 20060143578 | Maktedar | Jun 2006 | A1 |
| 20060186209 | Narendra et al. | Aug 2006 | A1 |
| 20060219776 | Finn | Oct 2006 | A1 |
| 20060226217 | Narendra et al. | Oct 2006 | A1 |
| 20060255160 | Winkler | Nov 2006 | A1 |
| 20070014407 | Narendra et al. | Jan 2007 | A1 |
| 20070014408 | Narendra et al. | Jan 2007 | A1 |
| 20070016957 | Seaward et al. | Jan 2007 | A1 |
| 20070050871 | Mashhour | Mar 2007 | A1 |
| 20070083772 | Harada et al. | Apr 2007 | A1 |
| 20070106564 | Matotek et al. | May 2007 | A1 |
| 20070125840 | Law et al. | Jun 2007 | A1 |
| 20070152035 | Adams et al. | Jul 2007 | A1 |
| 20070158438 | Fukuda et al. | Jul 2007 | A1 |
| 20070192840 | Pesonen | Aug 2007 | A1 |
| 20070233615 | Tumminaro | Oct 2007 | A1 |
| 20070278290 | Messerges et al. | Dec 2007 | A1 |
| 20080048036 | Matsumoto et al. | Feb 2008 | A1 |
| 20080059375 | Abifaker | Mar 2008 | A1 |
| 20080093467 | Narendra et al. | Apr 2008 | A1 |
| 20080120129 | Seubert et al. | May 2008 | A1 |
| 20080233906 | Mitomo et al. | Sep 2008 | A1 |
| 20080250244 | Baentsch et al. | Oct 2008 | A1 |
| 20080306828 | Chao | Dec 2008 | A1 |
| 20090065571 | Jain et al. | Mar 2009 | A1 |
| 20090065572 | Jain et al. | Mar 2009 | A1 |
| 20090069049 | Jain et al. | Mar 2009 | A1 |
| 20090069050 | Jain et al. | Mar 2009 | A1 |
| 20090069051 | Jain et al. | Mar 2009 | A1 |
| 20090069052 | Jain et al. | Mar 2009 | A1 |
| 20090070272 | Jain et al. | Mar 2009 | A1 |
| 20090070691 | Jain et al. | Mar 2009 | A1 |
| 20090070861 | Jain et al. | Mar 2009 | A1 |
| 20090108063 | Jain et al. | Apr 2009 | A1 |
| 20090119190 | Realini | May 2009 | A1 |
| 20090124273 | Back | May 2009 | A1 |
| 20090191812 | Teruyama et al. | Jul 2009 | A1 |
| 20090193491 | Rao | Jul 2009 | A1 |
| 20090199283 | Jain et al. | Aug 2009 | A1 |
| 20090200371 | Kean et al. | Aug 2009 | A1 |
| 20090261172 | Kumar et al. | Oct 2009 | A1 |
| 20090265544 | Moona et al. | Oct 2009 | A1 |
| 20090265552 | Moshir et al. | Oct 2009 | A1 |
| 20090298540 | Narendra et al. | Dec 2009 | A1 |
| 20090307139 | Mardikar et al. | Dec 2009 | A1 |
| 20090307142 | Mardikar | Dec 2009 | A1 |
| 20090319287 | Hammad et al. | Dec 2009 | A1 |
| 20100023449 | Skowronek et al. | Jan 2010 | A1 |
| 20100044444 | Jain et al. | Feb 2010 | A1 |
| 20100045425 | Chivallier | Feb 2010 | A1 |
| 20100062808 | Cha et al. | Mar 2010 | A1 |
| 20100063893 | Townsend | Mar 2010 | A1 |
| 20100205432 | Corda et al. | Aug 2010 | A1 |
| 20100213265 | Narendra et al. | Aug 2010 | A1 |
| 20100258639 | Florek et al. | Oct 2010 | A1 |
| 20100262503 | Florek et al. | Oct 2010 | A1 |
| 20100274677 | Florek et al. | Oct 2010 | A1 |
| 20100274726 | Florek et al. | Oct 2010 | A1 |
| 20100323617 | Hubinak et al. | Dec 2010 | A1 |
| 20110282753 | Mullen et al. | Nov 2011 | A1 |
| Number | Date | Country |
|---|---|---|
| 1450782 | Oct 2003 | CN |
| 1627321 | Jun 2005 | CN |
| 1835007 | Sep 2006 | CN |
| 1870012 | Nov 2006 | CN |
| 101013903 | Aug 2007 | CN |
| 101136123 | Mar 2008 | CN |
| 101329801 | Dec 2008 | CN |
| 101339685 | Jan 2009 | CN |
| 101351819 | Jan 2009 | CN |
| 10130019 | Jan 2003 | DE |
| 10 2005 026435 | Dec 2006 | DE |
| 10 2006 019628 | Oct 2007 | DE |
| 10 2007 019272 | Oct 2007 | DE |
| 0704928 | Apr 1996 | EP |
| 601091 | Dec 1997 | EP |
| 1365451 | Nov 2003 | EP |
| 1450233 | Aug 2004 | EP |
| 1536573 | Jun 2005 | EP |
| 1729253 | Dec 2006 | EP |
| 1752902 | Feb 2007 | EP |
| 1752903 | Feb 2007 | EP |
| 1785915 | May 2007 | EP |
| 1943606 | Jul 2008 | EP |
| 2390817 | Nov 2011 | EP |
| 0611189 | Sep 1926 | FR |
| 0611190 | Sep 1926 | FR |
| 2390509 | Jan 2004 | GB |
| 2424151 | Sep 2006 | GB |
| 2432031 | Sep 2007 | GB |
| 980562 | Feb 2000 | IE |
| 2003-131808 | May 2003 | JP |
| 2004-348235 | Dec 2004 | JP |
| 2005-284862 | Oct 2005 | JP |
| 2006-033229 | Feb 2006 | JP |
| 2007-060076 | Mar 2007 | JP |
| 2007-166379 | Jun 2007 | JP |
| 2007-304910 | Nov 2007 | JP |
| 2008-083867 | Apr 2008 | JP |
| 2002-0012738 | Feb 2002 | KR |
| 2002-0051696 | Jun 2002 | KR |
| 2002-0073106 | Sep 2002 | KR |
| 2003-0005088 | Jan 2003 | KR |
| 2004-0012401 | Feb 2004 | KR |
| 2004-0060249 | Jul 2004 | KR |
| 2004-0089800 | Oct 2004 | KR |
| 2005-0008622 | Jan 2005 | KR |
| 2007-0093133 | Sep 2007 | KR |
| 22595 | Feb 2009 | SI |
| WO 03012717 | Feb 2003 | WO |
| WO 2005057316 | Jun 2005 | WO |
| WO 2005086456 | Sep 2005 | WO |
| WO 2006009460 | Jan 2006 | WO |
| WO 2007076456 | Jul 2007 | WO |
| WO 2007136939 | Nov 2007 | WO |
| WO 2008012416 | Jan 2008 | WO |
| WO 2008041861 | Apr 2008 | WO |
| WO 2008063990 | May 2008 | WO |
| WO 2008105703 | Sep 2008 | WO |
| WO 2009014502 | Jan 2009 | WO |
| WO 2009087539 | Jul 2009 | WO |
| WO 2009118681 | Oct 2009 | WO |
| WO 2010011670 | Jan 2010 | WO |
| WO 2010023574 | Mar 2010 | WO |
| WO 2010032215 | Mar 2010 | WO |
| WO 2010032216 | Mar 2010 | WO |
| WO 2010044041 | Apr 2010 | WO |
| WO 2010097777 | Sep 2010 | WO |
| WO 2010122520 | Oct 2010 | WO |
| WO 2010128442 | Nov 2010 | WO |
| WO 2010131226 | Nov 2010 | WO |
| Number | Date | Country | |
|---|---|---|---|
| 20100203870 A1 | Aug 2010 | US |
