EP2386082A1 - Method for installing an electronic ticket and/or payment application on a mobile terminal - Google Patents
Method for installing an electronic ticket and/or payment application on a mobile terminalInfo
- Publication number
- EP2386082A1 EP2386082A1 EP10700725A EP10700725A EP2386082A1 EP 2386082 A1 EP2386082 A1 EP 2386082A1 EP 10700725 A EP10700725 A EP 10700725A EP 10700725 A EP10700725 A EP 10700725A EP 2386082 A1 EP2386082 A1 EP 2386082A1
- Authority
- EP
- European Patent Office
- Prior art keywords
- application
- mobile terminal
- user
- wireless communication
- payload
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Ceased
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/61—Installation
Definitions
- the invention relates to a method for installing an electronic application on a mobile terminal and a corresponding communication system.
- a field of application of electronic ticket systems is, for example, the automatic determination and payment of the fare in a public transport.
- WO 2006/006001 A1 describes a mobile device with which various tags, such as eg RFID tags, can be read in contactlessly and, based on the information on the tags, corresponding fouling actions can be triggered.
- the object of the invention is to provide a method for installing an electronic user application, in particular a ticket or payment application and a corresponding communication system, which the user application in a short time by interaction of a user with his mobile device for this make useful.
- the user application is installed on a mobile terminal which communicates with a remote station via a contactless communication interface for executing the user application and which also has a wireless connection
- the further wireless communication connection of the mobile terminal takes place in particular via a mobile radio network. That is, the mobile terminal is preferably one in a mobile network powered mobile terminal, such as a mobile phone, a laptop, a PDA and the like.
- a step a) via the contactless communication interface between the mobile terminal and the remote station information about the user application on the mobile terminal is made available to the user who wishes to use the new user application.
- the provision of this information preferably does not take place directly via the contactless communication interface, but rather the information is only made available via the contactless communication interface, wherein the retrieval of the information takes place via the wireless communication connection of the mobile terminal.
- the user can view the provided or retrieved information via a corresponding user interface on his mobile device. If he comes based on the information to the result that he really wants to use the Nutz-application, he will be given the opportunity via the mobile device to agree to the installation of the Nutz application. In the case of the user's consent will be in one
- Step b) of the method according to the invention sends a message via the wireless communication connection of the mobile terminal to a central computer in the communication network.
- the central computer is in particular a server of the operator of the corresponding ticket or payment system.
- the central computer is preferably accessible via the Internet, ie the mobile terminal can also communicate with the Internet via the wireless communication connection.
- a wireless communication connection is in particular GPRS or EDGE into consideration.
- an application code is provided by the central computer in step c).
- the user is given the opportunity to trigger a loading of the application code to the mobile device.
- the loading of the application code preferably takes place via the wireless communication connection of the mobile terminal, but can also be carried out via the contactless communication interface.
- the wording "loading on the mobile terminal" is to be understood broadly and may in particular also include loading onto a data medium inserted or inserted in the mobile terminal.
- a personalization data record for the application via the wireless communication connection to the mobile terminal is transmitted in a step d) of the method according to the invention.
- the application can then be installed on the mobile terminal based on the application code only with the help of the personalization data record.
- installation on the mobile terminal is also to be understood broadly and preferably also includes the installation on a in the mobile terminal inserted or inserted disk.
- the implementation of the method according to the invention is characterized by the fact that in a simple way, a fast electronic logon of a user at a system operator with immediate subsequent installation of the desired Nutz application can be done.
- the user can thus spontaneously use a new ticket system or payment system because he can immediately receive the new payload application wirelessly or wirelessly on his mobile device and install there.
- the Users the ability to control the installation process itself, because the transmission of the application code to his mobile device must be triggered by him.
- the installation of the payload application is carried out on a portable data carrier in the mobile terminal, in particular a chip card.
- the portable data carrier can be connected by plugging or insertion in the mobile terminal with this.
- Examples of such portable data carriers are subscriber identification cards of a mobile network, such as a SIM card of a GSM network and / or a USIM card of a UMTS network.
- the portable data carrier may also be a SecureElement and / or a SecureFlash card. These components are well known to those skilled in the art.
- the remote station checks prior to performing step a) of the method according to the invention via the contactless communication interface, whether the payload application is already present on the mobile terminal, wherein only if the Nutz- application is not present on the mobile terminal, the further steps of the method are performed. It is thus automatically offered to a user by the remote site, the installation of a new ticket or payment application, if it is not yet stored on the mobile device.
- the executable in the process by the user actions in particular the retrieval of the information on the Nutz application and / or consent to the installation of Nutz application and / or the triggering of the loading of the Useful application, about a display on the mobile device, for example via a browser, displayed and triggered. That is, the display provides the user with a user interface to trigger the appropriate actions.
- an electronic contract for use of the payload application is made available and / or retrievable in step a), in step b) in case of consent of the signed by the user by means of a signature contract as a message to the Central computer is transmitted.
- a signature contract as a message to the Central computer is transmitted.
- the validity of the signed contract in the central computer is checked before the execution of step d), the method being terminated if the contract is not valid. In this way, abuse by unauthorized persons is avoided.
- verifying the validity for example, the authenticity of the signature can be checked.
- the user in the case of a consent in step b), the user must also transmit user-specific data to the central computer.
- data may include, for example, information about payment modalities relating to the billing of the services provided via the payload application.
- URL Uniform Resource Locator
- HTTP Hypertext Transfer Protocol
- the application code is loaded in the form of a so-called midlet, in particular a J2ME midlet.
- a midlet is a software for a mobile device.
- SMS Short Message Service
- the personalization record originates from a trusted location in the communication network. In this way, misuse of the payload application by non-authentic personalization data is avoided.
- the invention further relates to a communication system for installing an electronic payload application on a mobile terminal, wherein the communication system is configured such that each variant of the method described above in the system is feasible.
- FIG. 1 shows a schematic representation of the sequence of a variant of the method according to the invention for installing an electronic ticket and / or payment application.
- FIG. 1 illustrates the components involved in the installation of a new application and their interaction. These are a remote station 1, a portable data carrier 2, a mobile terminal 3 suitable for communication with the remote station 1 and with a server 4, and a server 4.
- the remote station 1 is suitably a stationary station, which is designed to carry out a contactless communication with a reading device. It checks requests from a reader locally and transmits certain stored data to the reader.
- the contactless communication is suitably an NFC communication.
- the design is based on the following as a SIM card.
- the portable data carrier 2 can also be realized in other embodiments, for example as a USIM card, as a SecureElement or as a SecureFlash card, for example as an SD card.
- the portable data carrier 2 can also be used as SW or HW component be realized by the mobile terminal 3 or even omitted or be realized by the mobile terminal 3.
- the mobile terminal 3 is based on an NFC-enabled mobile phone below.
- the mobile terminal 3 can also be a PDA, a portable computer or a completely different device that is suitable for establishing a connection to a tag on the one hand and a communication link to the server 4 on the other hand, such as a portable music player.
- the server 4 is suitably connected to the Internet and / or another secondary network.
- the server 4 may e.g. to be a central computer.
- FIG. 1 The individual communication steps between the components 1 to 4 are indicated in FIG. 1 by corresponding arrows, wherein arrows with thick bars represent secure communication connections.
- the securing of the communication connections can take place, for example, via an SSL / TLS tunnel or by means of a cryptographic transport security.
- FIG. 1 permits the rapid installation of a fundamentally arbitrary user application on the mobile telephone 3 or on the SIM card 2.
- payment transactions can be carried out cashlessly by means of contactless NFC communication, for example Tickets, tickets or tickets can be downloaded to a mobile phone or automatically calculated and paid in transport.
- the list is not exhaustive.
- the special interesting application is always based on a better clarity, that a user wants to run an electronic ticketing or payment application with the SIM card of his NFC-enabled mobile phone; the payload application is the ticketing or payment application.
- the invention is not limited to use in ticketing or payment applications but is generally suitable for use in secured electronic applications as well as in unsecured applications.
- the user When performing a ticket application, the user presents his mobile phone at a remote site, e.g. in the form of a CI / CO tag, whereupon the corresponding payload application is performed via the NFC interface.
- a remote site e.g. in the form of a CI / CO tag
- the corresponding payload application is performed via the NFC interface.
- it is necessary that it is already installed on the mobile phone. If this is not the case, the problem hitherto has been that a user who wishes to use a new user application must register with a corresponding system operator in a complex, sometimes even paper-based, registration process before the user application then is installed on his mobile phone and he can use it.
- an installation of a desired user application by a user is made possible in a short time without a complicated upstream registration process.
- a user who wants to use a new, but not yet installed, application of a ticket system can thereby start a quick installation process and then immediately use the ticket system.
- a user would like to use a new payload application of a ticket system, which has not yet been installed on his mobile phone 3, in the context of an NFC communication at the NFC remote station 1.
- the remote station 1 via the NFC interface provides a URL to the browser of the mobile phone 3.
- This URL the user of the mobile phone 3 then by means of a mobile connection, in particular via a GPRS / EDGE connection, information on the ticket system and a retrieve the corresponding online contract for the use of the user application from a server 4 on the Internet.
- the server is operated by the system operator of the user application.
- the user calls the corresponding URL and receives from the server 4 the information about the ticket system and the online contract via the HTTP protocol.
- the user can view the information and the contract via the browser of his mobile phone 3.
- the user agrees to the terms of the contract.
- the user signs the contract in step S4 via a corresponding signature, which was generated on his SIM card.
- the step of signing the contract is optional and may be omitted.
- a corresponding confirmation or consent of the user in the online contract in step S5 via the browser of the mobile phone 3 to the server 4 is sent.
- the consent is to that the signed online contract is transmitted from the mobile phone 3 to the server 4. It may be provided in particular that the user must enter specific customer data via the browser of his mobile phone before he can send the consent.
- This customer data may include, for example, personal data of the user and in particular payment information.
- the payload application Upon receipt of the consent, the payload application is provided in the form of an application code by the server 4 in step S6, whereby the code is not yet personalized for the user.
- the provision of the application code is carried out via a corresponding URL, which is transmitted to the mobile phone 3.
- the user can then download the application code in step S7 by means of an appropriate interaction via the browser of his mobile telephone by means of an HTTP or HTTPS download. The download is thus effected only at the request of the user with a corresponding trigger command.
- the application code is preferably in the form of a J2ME midlet, and the code is preferably downloaded to the mobile telephone via a GPRS / EDGE connection.
- a next step S8 personalization data for the application code and possibly also access data are provided.
- the personalization data comes from a trustworthy point, which is also called a "Trusted Party.” Only with the help of personalization data, the application can be installed
- Access data which, for example, represent keys for the Global Platform Security Domain for the SIM card, allow the SIM card to access the user application.
- the personalization data and access data are not provided until a verification of the signed online Contract has shown that the contract is valid. The validity can be done for example by checking the authenticity of the signature. If the signing of the contract is valid, an encrypted SMS with the personalization data is finally sent to the mobile telephone 3 by the server 4 in step S9. If necessary, the personalization data can also be provided via an HTTPS download. The download is done via a personalized URL, which is protected by a corresponding authentication.
- the payload application is finally installed on the SIM card based on the application code. After installing the user application on the SIM card, the corresponding ticket system can be used immediately.
- the above-described embodiment of the method according to the invention has the advantage that a new ticket or payment system can be used immediately by a user without a complex registration process.
- the installation of the corresponding payload application of the new ticket system on his mobile terminal or his SIM card can be initiated immediately. This is achieved by electronic consent to the conditions of use, in particular by electronic means
- Contract conclusion between system operator and user In case of valid conclusion of a contract, the respective user application can be immediately downloaded and installed by the user. Subsequently, the ticket system can be used immediately for the user.
Abstract
Description
Claims
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DE200910004113 DE102009004113A1 (en) | 2009-01-08 | 2009-01-08 | Method for installing an electronic ticket and / or payment application on a mobile terminal |
PCT/EP2010/050101 WO2010079195A1 (en) | 2009-01-08 | 2010-01-07 | Method for installing an electronic ticket and/or payment application on a mobile terminal |
Publications (1)
Publication Number | Publication Date |
---|---|
EP2386082A1 true EP2386082A1 (en) | 2011-11-16 |
Family
ID=41716466
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP10700725A Ceased EP2386082A1 (en) | 2009-01-08 | 2010-01-07 | Method for installing an electronic ticket and/or payment application on a mobile terminal |
Country Status (4)
Country | Link |
---|---|
EP (1) | EP2386082A1 (en) |
CN (1) | CN102272722A (en) |
DE (1) | DE102009004113A1 (en) |
WO (1) | WO2010079195A1 (en) |
Families Citing this family (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
GB2483318B (en) * | 2011-01-24 | 2013-06-26 | Realvnc Ltd | Software activation systems |
US8560015B2 (en) * | 2011-07-18 | 2013-10-15 | Nokia Corporation | Application selection for multi-SIM environment |
DE102012200043A1 (en) | 2012-01-03 | 2013-07-04 | Vodafone Holding Gmbh | Execution of cryptographic operations with data of a user terminal |
DE102012016164A1 (en) | 2012-08-14 | 2014-02-20 | Giesecke & Devrient Gmbh | Security element and method for installing data in the security element |
CN103258360A (en) * | 2012-08-21 | 2013-08-21 | 广州市渡明信息技术有限公司 | Method and equipment for electronic bill registration using electronic mobile equipment |
CN103778395B (en) * | 2012-10-25 | 2016-12-21 | 中国移动通信集团公司 | Application installation method in near-field communication NFC terminal and NFC terminal |
CN107103456A (en) * | 2013-08-02 | 2017-08-29 | 东芝泰格有限公司 | Information processor and electronic billing system |
CN104602224B (en) * | 2014-12-31 | 2018-07-24 | 浙江融创信息产业有限公司 | It is a kind of that chucking method is opened based on NFC mobile phone SWP-SIM cards in the air |
JP6820663B2 (en) * | 2016-03-25 | 2021-01-27 | ザ コカ・コーラ カンパニーThe Coca‐Cola Company | Food and beverage dispenser and mobile terminal |
CN106648739A (en) * | 2016-10-13 | 2017-05-10 | 青岛海信移动通信技术股份有限公司 | Control method and device of application installation |
IL293550A (en) | 2019-12-04 | 2022-08-01 | Omeros Corp | Masp-2 inhibitor compounds, compositions comprising same and uses thereof |
Family Cites Families (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2002001522A1 (en) * | 2000-06-26 | 2002-01-03 | Covadis S.A. | Computer keyboard unit for carrying out secure transactions in a communications network |
US6721578B2 (en) * | 2002-01-31 | 2004-04-13 | Qualcomm Incorporated | System and method for providing an interactive screen on a wireless device interacting with a server |
US7304585B2 (en) | 2004-07-02 | 2007-12-04 | Nokia Corporation | Initiation of actions with compressed action language representations |
CN1980121B (en) * | 2005-11-29 | 2015-04-01 | 北京书生国际信息技术有限公司 | Electronic signing mobile terminal, system and method |
CN1835007A (en) * | 2006-04-07 | 2006-09-20 | 浙江通普通信技术有限公司 | Mobile payment method based on mobile communication network |
US20080022380A1 (en) * | 2006-05-25 | 2008-01-24 | Gemalto, Inc. | Method of patching applications on small resource-constrained secure devices |
CN101123454B (en) * | 2007-09-21 | 2011-04-20 | 北京交通大学 | Data transmission method and system for mobile phone bank union card based on Bluetooth technology |
CN101252722A (en) * | 2007-09-25 | 2008-08-27 | 杭州义盛祥通信技术有限公司 | Mobile communication guide system and guide method |
-
2009
- 2009-01-08 DE DE200910004113 patent/DE102009004113A1/en not_active Ceased
-
2010
- 2010-01-07 CN CN2010800041340A patent/CN102272722A/en active Pending
- 2010-01-07 WO PCT/EP2010/050101 patent/WO2010079195A1/en active Application Filing
- 2010-01-07 EP EP10700725A patent/EP2386082A1/en not_active Ceased
Non-Patent Citations (2)
Title |
---|
None * |
See also references of WO2010079195A1 * |
Also Published As
Publication number | Publication date |
---|---|
DE102009004113A1 (en) | 2010-07-15 |
WO2010079195A1 (en) | 2010-07-15 |
CN102272722A (en) | 2011-12-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2010079195A1 (en) | Method for installing an electronic ticket and/or payment application on a mobile terminal | |
DE102017113529A1 (en) | Method and system for checking the authenticity of a trusted user interface | |
EP2691855A1 (en) | Method for updating a data storage medium | |
WO2006027171A1 (en) | Electronic ticket | |
EP2715684A1 (en) | Electronic system for quickly and securely processing transactions using mobile devices | |
EP2692157A2 (en) | Updating a data storage medium application | |
EP2393032A1 (en) | Method for running an application with the help of a portable data storage device | |
EP3215974B1 (en) | Method for providing an access code in a portable device, and portable device | |
EP1456822B1 (en) | Method and system for carrying out verification processes with regard to authorization of use and/or payment processes by means of a mobile telephone terminal, mobile telephone terminal, interrogation station, control program for a mobile telephone terminal and control program for an interrogation s | |
EP2041727B1 (en) | Methods for selecting and cancelling electronic tickets by an electronic terminal capable of near field communication | |
EP2088543A1 (en) | Method for using hotel or event services | |
DE102010017861A1 (en) | Method for handling electronic tickets | |
EP2885907B1 (en) | Method for installing of security relevant applications in a security element of a terminal | |
EP1393262A1 (en) | Device for the utilisation of services | |
WO2013093026A1 (en) | Method for making authenticated payments | |
EP2081140A1 (en) | Method and system for protecting a transaction | |
DE102014016606A1 (en) | Method for verifying the validity of a ticket; mobile device | |
DE102007024144B3 (en) | Method and arrangement for a quick log-on of a user on a service portal by means of a mobile communication device | |
DE202004016344U1 (en) | Electronic ticket transaction system, e.g. for traffic services, has central station, mobile terminal, arrangement in central station for generating ticket/sending to mobile terminal with arrangement for receiving/displaying encoded part | |
WO2013007630A1 (en) | System, method, and mobile device for performing payment processes | |
EP1345180B1 (en) | System and method for allocating and controlling of service authorisations and appropriate devices therefor | |
DE102007023003A1 (en) | Mobile paying method, involves causing paying process based on transferred data record with reference data record in server computer, where data record comprises safety information with temporally limited validation | |
EP2790145A1 (en) | Method and system for cashless payment or withdrawal of money with a mobile customer terminal | |
WO2015176772A1 (en) | Method for processing a transaction | |
DE102012010559A1 (en) | Authentication system e.g. address decoding and access data synchronous authentication system has confirmation device that sends positive feedback with correct authentication data to registration device providing auxiliary functions |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
17P | Request for examination filed |
Effective date: 20110808 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK SM TR |
|
DAX | Request for extension of the european patent (deleted) | ||
17Q | First examination report despatched |
Effective date: 20140424 |
|
RAP1 | Party data changed (applicant data changed or rights of an application transferred) |
Owner name: GIESECKE+DEVRIENT MOBILE SECURITY GMBH |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R003 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE APPLICATION HAS BEEN REFUSED |
|
18R | Application refused |
Effective date: 20190510 |