FR2988889A1 - Method for making transaction between sending and receiving terminals, involves establishing link between transaction information and validation message, and checking identification numbers of terminals with pre-stored numbers - Google Patents

Abstract

The method involves receiving transaction information having a unique identifier of a transaction and personal authentication data of a user of a terminal (E12), and retrieving an identification number of the terminal (E13). A validation message for the transaction is received (E14) from another terminal, and an identification number of the latter terminal is retrieved (E15). A link is established (E16) between the information and the message, and the identification numbers of the terminals are checked (E17) with pre-stored numbers. The transaction is executed (E18) if the check is positive. Independent claims are also included for the following: (1) a sending terminal (2) a receiving terminal (3) a service entity (4) a program for making a transaction between two terminals via a network.

Description

The invention relates to a method for performing a transaction on a mobile. More specifically, the invention relates to the realization by an entity of the network of a transaction made between a first and a second terminal. The invention finds a particularly interesting application in mobile payment applications (the term usually used for these applications is the term "mobile banking"), which allow users to pay for goods, bills, by means of their mobile phone, while maintaining their anonymity.

We know the service "Orange Money", offered by France Telecom Orange, deployed in several emerging countries. This service enables unbanked populations to carry out financial transactions using their mobile terminal. Mobile device users who subscribe to this service are assigned an associated account, on which they can perform different operations. Thus, the service offers different service options, accessible from the mobile terminal, for example the merchant payment which makes it possible to buy a good from a merchant also subscribed to the service. The interface of this service is offered by the network, via the "USSD" (Unstructured Supplementary Service Data) channel, a basic feature of the "GSM" standard (for "Global System for Mobile Communications"). Access to the service from a user mobile terminal is triggered by sending a USSD code into the network, for example "* # 140 #". This sending generates the opening of an interactive USSD session associated with the execution of the service or a particular service option, and the sending on the mobile terminal of the user of a menu called USSD menu. The menu is a text message displayed on the screen of the terminal of the user inviting the user to enter a choice, or to provide information, for example a personal identification code, or code "PIN" (of the English "Personal Identification Number"). For example, a first menu called "merchant payment" proposes to pay a good purchased from a merchant also subscribed to the service. After having chosen a property of a fixed amount, and in view of making the payment, the merchant opens the service session, by typing on his mobile terminal the code "* # 140 #". The session between the network and the merchant is thus established. A menu appears on the merchant's terminal and asks him to enter the amount of the transaction, corresponding to the amount of the good that the user wants to buy, the phone number of the subscribed user and a personal identification code of the user. merchant associated with the service. The phone number is the user's identifier for the service. This number is provided orally by the user. The user then receives a message of the "SMS" (Short Message Service) type specifying the amount of the transaction. The user must then confirm the current transaction during a USSD sequence by entering a personal identification code of the user associated with the service. A network service platform that receives the information transmitted by the merchant and by the user controls the authenticity of the transaction by verifying the merchant's personal code associated with the Orange Money account identified by telephone number. It also verifies that the transaction can be executed by verifying that the user's personal code is correct and that the user's account is sufficiently powered to execute the transaction. If these checks are positive, the transaction is executed. The merchant then receives from the network platform an SMS confirmation message indicating that the transaction has been made, that is to say that the amount of the transaction has been transferred from the user's Orange Money account to the user. Orange Money account of the merchant. The user also receives a confirmation SMS. However, this service, which is based entirely on the use of the user terminal and an Orange Money account associated with this phone number, requires the user to provide his telephone number for transactions. This can be problematic. Indeed, the user may not wish to give this information which relates to the privacy of the user. Moreover, it is not known what use can be made of this number by the merchant. One of the aims of the invention is to remedy the shortcomings / disadvantages of the state of the art and / or to make improvements thereto. To this end, the invention proposes a method of making a network of a transaction between two terminals, the method comprising steps, implemented by an entity of the network, of: reception from a first of the two transaction information terminals comprising a unique identifier of the transaction and a personal authentication data of a user of the first terminal, - recovery of an identification number of the first terminal in a signaling channel, - reception of the second of the two terminals of a transaction validation message, said message comprising said unique transaction identifier and a personal authentication data of a user of the second terminal, - recovery of a user identification number the second terminal in the signaling channel, - establishing a link between the transaction information received from the first terminal and the valid message ation received from the second terminal using the unique transaction identifier, - checks that the personal authentication data of the user of the first terminal is equal to a personal authentication data prerecorded and associated with the identification number of the first terminal, and that the personal authentication data of the user of the second terminal is equal to a second personal data of prerecorded authentication and associated with the identification number of the second terminal, - if the control is positive, execution of the transaction.

The method of the invention makes it possible to dispense with the explicit provision by the second user, for example a buyer, to the first user, for example a merchant of the identification number of his mobile terminal during a transaction between the two users. This terminal identification number usually identifies the service account to be debited for the current transaction. In an exemplary embodiment of the invention, the identification number is the MSISDN number of the terminal, or "known to the public" number, or telephone number. With the method of the invention, the service entity of the network receives from the user of the first terminal and the user of the second terminal a unique transaction identifier which makes it possible to establish a link between the two users for the transaction. regardless of the explicit provision of the telephone number of the second terminal by its user. In addition, the network signaling enables the service entity to obtain the first and second user telephone numbers that identify the service accounts of the users involved and thereby link the current transaction to the service accounts to be impacted. In addition, the authentication personal data is respectively provided by both users, which allows the service entity to complete the authentication of the transaction. Thus, the network service entity is able to identify and authenticate the users involved in the transaction independently of the explicit provision of the second user's telephone number. This guarantees the anonymity of the second user and contributes to maintaining his privacy. Furthermore, by retrieving the telephone number corresponding to the identifier of the second user's service account in the signaling, it avoids any input error at the terminal of the first user, which improves the known solution of the prior art. . In one embodiment of the invention, the transaction information comprising a first transaction amount and the validation message comprising a second transaction amount, it is verified during the control step that the first amount is equal to the second amount of transaction. amount. When the transactions are of a fixed amount, this is specified explicitly in the transaction information and in the validation message sent to the service entity.

The service entity can thus verify that the amount specified in the transaction information and in the transaction message are equal. This constitutes an additional control of the transaction. In one embodiment of the invention, the method further comprises a step of sending a transaction validation message to the first and second terminals.

The first and second users receive a validation message indicating whether the transaction has been successfully completed. The invention also relates to a method for performing a transaction by a network between two terminals, implemented by one of the two terminals, the method comprising: a step of generating a unique transaction identifier by a first of the two Terminals, - a step of sending by the first terminal to the second terminal through a proximity communication channel of said identifier, - a first step of transmission by the first terminal to a service entity of the network of said identifier, - a second transmission step by the second terminal to the service entity of said identifier. a step of reception by the first and second terminals of a confirmation message of said transaction. Advantageously, the unique transaction identifier is sent from the first terminal 25 to the second terminal according to a method selected from a set comprising an NFC transmission of said identifier, a Bluetooth transmission of said identifier, an optical reading by the second terminal of a two-dimensional barcode encoding said identifier displayed on the first terminal, an acoustic transmission of said identifier from the first terminal to the second terminal The method according to the invention proposes different methods of sending the unique transaction identifier from the first to the first second terminal in a proximity channel This can be transmitted by means of NFC technology, Bluetooth, by optical reading from the second terminal of the identifier displayed on the screen of the first terminal in the form of a barcode to two dimensions (usually referred to as "QR code") or p ar "DTMF" acoustic transmission (for "Dual Tone Multi Frequency") or other. Thus, there are many possibilities to transfer this identifier, the method can be chosen according to the capabilities of the terminals. According to an exemplary embodiment of the invention, the first and second transmission steps of said identifier are preceded by a step of constructing a code according to the USSD standard, implemented on the first and the second terminal, said code comprising the unique transaction identifier and the personal authentication data of the user of the first or the second terminal Advantageously, according to this example, the first and second transmission steps consist of transmitting the USSD code built through a dedicated channel of network.

The method of the invention as implemented on the first and second terminals uses the USSD channel to transfer the unique transaction identifier. The USSD channel has the advantage of being very responsive and very available. Moreover, this channel, operated by the operator, guarantees the security of the transmission of this sensitive information. According to this embodiment, the code built on one of the two terminals further comprises a transaction amount. The invention also relates to a transmitting terminal, adapted to perform a transaction with a receiving terminal, said transmitting terminal comprising: - generation means, adapted to generate a unique transaction identifier, - first transmission means, arranged to transmit to the receiving terminal said identifier through a proximity communication channel, - second transmission means, arranged to transmit to said service entity of the network said identifier and to receive from the service entity a confirmation message of said transaction. The invention also relates to a receiver terminal, adapted to perform a transaction with a transmitting terminal, said receiving terminal comprising: reception means, arranged to receive from the transmitting terminal through a proximity communication channel a unique identifier of the transaction transmission means, arranged to transmit to said service entity of the network said identifier and to receive from the service entity a confirmation message of said transaction. The invention also relates to a service entity of a network capable of carrying out a transaction between a first and a second terminal, said entity comprising: first receiving means, arranged to receive from the first of the two terminals a transaction information comprising a unique identifier of the transaction and a personal authentication data of a user of the first terminal, - first recovery means, arranged to recover an identification number of the first terminal in a signaling channel, - second means of reception, arranged to receive from the second of the two terminals a transaction validation message, said message comprising said unique transaction identifier and a personal authentication data of a user of the second terminal, - second recovery means, arranged to retrieve an identification number from the second terminal in the channel of signaling; means for establishing a link, arranged to establish a link between the transaction information received from the first terminal and the validation message received from the second terminal using the unique transaction identifier; control means, arranged to control that the personal authentication data of the user of the first terminal is equal to a first personal data prerecorded authentication associated with the identification number of the first terminal, and that the personal data of authentication of the user of the second terminal is equal to a second personal data prerecorded authentication associated with the identification number of the second terminal, - execution means, arranged to execute the transaction. The invention also relates to a system adapted to carry out a transaction, comprising: - a transmitting terminal according to the invention, - a receiving terminal according to the invention, and - a service entity according to the invention. The invention also relates to a program on a data carrier and loadable in the internal memory of a transmitting terminal, the program comprising portions of code for the execution of the steps of the authentication method according to the invention, when the program is executed on said transmitting terminal. Finally, the invention also relates to a program on a data carrier and loadable in the internal memory of a receiving terminal, the program comprising portions of code for executing the steps of the method according to the invention, when the program is executed on said receiving terminal. Many details and advantages of the invention will be better understood on reading the description of a particular embodiment with reference to the accompanying drawings given in a non-limiting manner, and in which: FIG. 1 shows the steps of the method of transaction authentication, according to a first embodiment; FIG. 2 is a schematic representation of a transmitting terminal according to a first exemplary embodiment; FIG. 3 is a schematic representation of a receiver terminal, according to a first exemplary embodiment; - Figure 4 is a schematic representation of a service entity according to a first embodiment of the invention.

The steps of a network authentication method of a transaction between a first terminal and a second terminal, according to a first exemplary embodiment, will now be described in relation to FIG. 1. A first and a second user 10 , 11 subscribe to a mobile payment service. As part of this service, they want to make a transaction, for example, the second user 11 wants to buy a property proposed by the first user 10. In this example, the first user 10 is a merchant. The first user 10 holds a first terminal 20 according to the invention, or payment terminal. The payment terminal 20 is for example a mobile terminal adapted to perform a transaction on behalf of the merchant. The second user 11 holds a second terminal 30 according to the invention. The second terminal 30 is for example a mobile terminal adapted to perform transactions as a buyer. The first and second users 10, 11 are identified, as subscribers to the service, by a subscriber identification number associated with their respective terminal, or "MSISDN" (for "Mobile Station International Subscriber Directory Number") . The MSISDN number of a mobile terminal is the "known to the public" number, through which a user can be reached on his mobile terminal. Moreover, a personal authentication data, for example a personal identification code (the term usually used is the term "PIN" for "Personal Identification Number") is associated with each of the user accounts for their access to the service. mobile payment. This personal authentication data makes it possible to authenticate access to the account. Thus, the first user 10 is identified and authenticated when accessing the service by the number of the first terminal 20, denoted MSISDN1, and by a first personal authentication data, for example a PIN1 personal identification code. The second user 11 is identified and authenticated when accessing the service by the number of the second terminal 30, denoted MSISDN2, and by a second personal authentication data, for example a PIN2 personal identification code.

The first and second terminals 20, 30 are adapted to communicate with a service entity 12 by means of a telecommunications network (not shown in FIG. 1). The telecommunications network is for example a mobile network type "GSM" (for "Global System for Mobile Communications"). In this embodiment, the first and second terminals 20, 30 use in particular the channel "USSD" (of the English "Unstructured Supplementary Service Data") which is a basic functionality of the GSM standard. The USSD interface has the advantage of being always available and very reactive. The service entity of the network 12 comprises at least one server 40-1 and a portal "USSD" 40-2. The 40-1 server is intended to provide service management in terms of subscribers and in terms of transactions. The USSD 40-2 portal is adapted to receive from mobile terminals, for example first and second terminals 20, 30, via the USSD channel, USSD codes, to analyze this code, and to transmit to the server 40-1 relevant information. for the execution of the mobile payment service. In an initial step E0 purchase and sale, the first and second users 10, 11 are related, and at the end of this step a user, for example the second user 11 wants to acquire a property offered for sale by the first user 10 in return for a certain amount. In a next step El initialization of the transaction, the user 10 of the first terminal 20, here assimilated to the merchant, initiates the transaction on the first terminal 20. For this purpose, it launches a pre-installed application on its terminal. He then enters on the first terminal 20 the amount of the transaction, corresponding to the amount of the good he sells. In a step E2 generating an identifier, it is generated on the first terminal 20 a unique transaction identifier. Such an identifier is for example a universally unique identifier (the term usually used to designate such an identifier is the English term "Universally Unique IDentifier" or "UUID"), generated by means of a pseudo-random generator associated with a function hash. It is usually 128-bit coded. In another exemplary embodiment, the identifier is an authentication code, or "HMAC" (of the English "keyed-Hash Message Authentication Code"). The identifier is associated with the current transaction, it is intended to identify the transaction uniquely.

In a step E3 of approximation, the second user 11 approaches the second terminal 30 of the first terminal 20. The distance between the first 20 of the second terminal 30 is then less than a determined distance For example, the determined distance is about ten centimeters. In a next step E4 of sending transaction data, the first terminal 20 sends to the second terminal 30 the unique identifier generated during step E230 as well as the amount of the good, or the amount of the transaction, through a For example, the unique identifier and the amount are transmitted by means of a near-field communication (the term usually used is the term "Near Field Communication" or "NFC").

In a receiving step E5, the second terminal 30 receives from the first terminal 20 the unique transaction identifier and the amount of the transaction. In the exemplary embodiment described here, the reception of the transaction data by the NFC channel triggers the launching of an application on the second terminal 30. In a first validation request step E6, a message inviting the first user 10 to validate the transaction is displayed on the screen of the first terminal 20. The message includes the amount of the transaction and an invitation to enter the PINi personal identification code of the first user 10. In a first step E7 of entering the personal data of the first user, the first user 10 enters his personal PINi service code, and validates this entry. In a step E8 of first transmission to the network, the first terminal 20 transmits information relating to the current transaction to the service entity of the network 12. The information comprises the amount of the transaction, the unique identifier previously generated, and the PINi personal identification code of the first user 10. In the example described here, the information relating to the transaction is transmitted through the USSD channel of the GSM network. For this purpose, in a substep E8-1 of construction of a USSD code, it is built by concatenation a first USSD code, denoted USSDi, including a service access code, for example * # 140 #, l unique identifier of the transaction, noted <UUID>, the amount of the transaction, for example 1500 CFA and the personal identification code of the first user 10, PINi, for example 1234. The first USSDi code thus constructed is for example " * # 140 # <UUID> # 1500 # 1234 #. In a sending sub-step E8-2, the first USSDi code is transmitted in the network. In a second validation request step E9, a message inviting the second user 11 to validate the transaction is displayed on the second terminal 30. The message comprises the amount of the transaction and an invitation to enter the PIN2 personal identification code of the transaction. second user 11. In a step El0 of entering the personal code of the second user, the second user 11 enters his PIN2 personal service code and validates this entry. In a step El 1 of second transmission to the network, the second terminal 30 transmits a validation message of the current transaction to the service entity of the network 12.

The validation message includes the unique identifier of the transaction, the amount of the transaction and the PIN2 personal service code of the second user 11. The validation message is transmitted through the USSD channel. For this purpose, and as before, a second USSD code, USSD2, is constructed in a substep El 1 of construction, by concatenation of a service access code, for example "* # 140 #", of the unique identifier of the transaction, the amount of the transaction and the personal identification code of the second user 11, PIN2, for example 4321. The second USSD2 code thus constructed is for example "* # 140 # <UUID> # 1500 # 4321 # ". In a sending sub-step E30, the second USSD2 code is transmitted in the network.

In a first receiving step E12, the service entity 12 receives from the network, from the first terminal 20, the transaction information. More precisely, the USSD 40-2 portal receives the first USSD1 code transmitted by the first terminal 20. The portal 40-2 retrieves the identification number MSISDNi from the first terminal 20 in the signaling channel. It analyzes the first received USSD1 code and transmits to the server 40-1 the identification number MSISDNi of the first terminal 20, the PINi personal identification code entered by the first user 10, the unique transaction identifier and the amount of the transaction. The server 40-1 stores this data in a first record during a first storage step E13. In a second receiving step E14, the service entity 12 receives from the network, from the second terminal 30, the validation message of the transaction. More precisely, the USSD 40-2 portal receives the second USSD2 code transmitted by the second terminal 30. The portal 40-2 retrieves in the signaling channel the identification number MSISDN2 associated with this second transmission and corresponding to the identification number. the second terminal 30. It analyzes the second USSD2 code received and transmits to the server 40-1 the identification number MSISDN2 of the second terminal 30, the unique transaction identifier, the PIN2 personal code entered by the second user 11, and the transaction amount. This data is stored in a second record by the server 40-1 in a second storage step E15. In a subsequent link establishment step E16, the service entity 12, more precisely the server 40-1, establishes a link between the information received from the first terminal 20 and the validation message received from the second terminal 11. using the unique transaction identifier. Thus, the server 40-1 searches, from the unique transaction identifier received from the first terminal 20 and stored in the first record during the first storage step E13, a second record that includes the same unique identifier.

If the link is correctly established, that is, if the server 40-1 finds the second record, it means that a transaction is in progress between a first and a second user and that both users have validated the transaction. . A link is thus established in the network between information relating to this transaction and transmitted independently on the one hand by the first user 10 and on the other hand by the second user 11. In this case, in a next step E17 control, the server 40-1 performs several checks. It verifies, on the one hand, that the first personal code PIN1 entered by the first user 10 is correct, that is to say that it corresponds to the pre-registered personal code associated with the account identified by the identification number MSISDNi. This guarantees to the service entity 12 that it is the first user 10, subscriber of the service, who made the transaction from his terminal. The server 40-1 also verifies that the second PIN2 personal code entered by the second user 11 is correct, that is to say that it corresponds to the pre-registered personal code associated with the account identified by the identification number MSISDN2. This guarantees to the service entity 12 that it is the second user 11, subscriber of the service, who has validated the transaction from his terminal. The server 40-1 also verifies that the transaction amounts that appear in the two USSD codes. are the same. If the control is positive, that is to say if the authentications of the two users have been successful and the transaction amounts are identical, then in a step El8 execution, the transaction is executed. For this purpose, the amount of the good is debited from the account of the second user 11 and credited to the account of the first user 10. It is assumed that the account of the second user 11 has a positive balance, at least greater than the amount of the good. In a final confirmation step E19, the service entity 12 sends a confirmation message of the transaction across the network to the first and second terminals 20, 30. The confirmation messages are, for example, "SMS" messages (Short). Message Service "), sent by an" SMSC "(Short Message Service Center) server (not shown in Figure 1) included in entity 12. The invention is described here with network access via the GSM network. The invention is not limited to this network. Indeed, the USSD channel is also accessible from other networks. Thus, the invention also applies to the "GPRS" network (for "General Packet Radio Service") and the "UMTS" (Universal Mobile Telecommunications System) network. Moreover, the invention is not limited to a combination of the USSD channel and a mobile network that supports this channel. In another embodiment, a WiFi network coupled to an "ADSL" network (of the English "Asymmetric Digital Subscriber Line") can be used. Thus, the transaction information and the transaction validation message can be transmitted in WiFi to a terminal and then relayed to the service entity by the ADSL network. The exemplary embodiment described here uses NFC technology to transmit the unique transaction identifier from the second to the first terminal. The invention is not limited to this technology. Thus, in other exemplary embodiments, the unique transaction identifier may be transmitted by a Bluetooth channel established between the two terminals. In another embodiment, the unique identifier may be a two-dimensional bar code (the term usually used is the English term "QR Code" for "Quick Response Code") displayed on the screen of the first terminal 20 and read by optical reading by the second terminal 30.

The unique transaction identifier can also be transmitted audibly, for example in the form of a DTMF code. The personal authentication data used in the exemplary embodiment described here are personal identification codes, or PINs. The invention is not limited to this type of personal authentication data. Thus, such data, intended to ensure that the subscribed user who is performing a transaction can be of another type. Thus, in another embodiment of the invention, the personal authentication data is a biometric data item. The identification number of the second terminal is, in the example described here, the MSISDN number of the terminal This number is intended to identify the user as a subscriber to the service. This number is also transmitted in the network signaling. The invention is not limited to this number. Thus, in another exemplary embodiment, the number "IMEI" (of the English "International Mobile Equipment Identity") which uniquely identifies each of the mobile telephony terminals, if it is used to identify the As a subscriber to the service, the user can also be used by the method of the invention.

A first terminal, called transmitter terminal, according to a first exemplary embodiment will now be described in relation to FIG. 2. For the sake of clarity, the first terminal 20 is called the transmitting terminal. Indeed, this terminal is considered the initiator of the transaction and issuer of the unique transaction identifier. The transmitting terminal 20 is a payment terminal adapted to communicate with a service entity of the network (not shown in FIG. 2). In this exemplary embodiment, the transmitting terminal 20 is a mobile terminal which comprises: a processing unit 201, or "CPU" (for "Control Processing Unit"), - a memory unit 202, including a volatile memory, or "RAM" (for "Random Access Memory") used to execute code instructions, store variables, etc. ; a network interface 203, adapted to communicate with the service entity of the network through a telecommunications network, for example the GSM network. The network interface 203 is intended to transmit to the service entity of the network transaction information, for example in the form of a USSD code, and to receive a confirmation message of the transaction; - 204 proximity communication means arranged to communicate with a receiving terminal located in the immediate vicinity of the transmitting terminal. The means 204 of proximity communication are intended to send to the receiving terminal data relating to a transaction in progress, in this case the unique identifier associated with the transaction and the amount of the transaction; generation means 205, arranged to generate a unique transaction identifier for the current transaction; display means 206, arranged to display a message to the user of the transmitting terminal. Display means 206 are conventionally a screen; input means 207, arranged to enter a personal authentication data of the user of the transmitting terminal. In the case where the personal authentication data is a personal identification code or PIN code, the input means 207 are conventionally a keyboard; in the case where the USSD interface is used, means 208 for constructing a USSD code, arranged to construct by concatenation the first USSD code USSD1 which comprises the unique transaction identifier, the amount of the transaction and the code personal identification PIN1 of the user of the transmitting terminal. The different modules described above communicate via a communication bus.

The network interface 203, the proximity communication means 204, the means 205 for generating the unique transaction identifier, the means 208 for constructing a USSD code are preferably software means comprising software instructions for executing those steps of the authentication method of a transaction described in relation to Figure 1 which are implemented by the terminal.

The generation means 205 are arranged to implement the step E2 of generating a unique transaction identifier. The means 204 of proximity communication are arranged to implement the step E4 of sending transaction data. The network interface 203 is arranged to implement the step E8 of the first transmission to the network and the step E19 of confirmation of the transaction.

The invention also relates to: a computer program comprising instructions for implementing the authentication method of a transaction, when this program is executed by a processor of the transmitting terminal.

A second terminal 30, called receiving terminal, according to a first exemplary embodiment will now be described in relation to FIG. 3. For the sake of clarity, the second terminal 30 is called a receiving terminal. Indeed, this terminal 30 is considered to receive the unique transaction identifier. The receiving terminal 30 is a mobile terminal, which comprises: a processing unit 301, or CPU; a memory set 302, including a volatile memory, or RAM, used to execute code instructions, store variables, etc. ; a network interface 303 adapted to communicate with the service entity of the network (not shown in FIG. 3) through a telecommunications network, for example the GSM network. The network interface 303 is intended to transmit to the service entity of the network a transaction validation message, for example in the form of a USSD code, and to receive a confirmation message of the transaction; means 304 for proximity communication, arranged to communicate with a receiving terminal located in the immediate vicinity of the transmitting terminal. The means 204 of proximity communication are intended to receive from the transmitting terminal (not shown in Figure 3) data relating to the current transaction, in this case the unique identifier associated with the transaction and the amount of the transaction; display means 305, arranged to display a message for the attention of the user of the receiving terminal. The display means 305 are conventionally a screen; - Input means 306, arranged to enter a personal authentication data of the user of the receiving terminal. In the case where the personal authentication data is a personal identification code or PIN, the input means 306 are typically a keyboard; in the case where the USSD interface is used, means 307 for constructing a USSD code, arranged to concatenate construct the second USSD code USSD2 which comprises the unique transaction identifier, the amount of the transaction and the code personal identification PIN2 of the user of the receiving terminal. The different modules described above communicate via a communication bus.

The network interface 303, the proximity communication means 304, the means 307 for constructing a USSD code are preferably software means comprising software instructions for executing those of the steps of the authentication method of a transaction described. in relation with Figure 1 which are implemented by the receiving terminal.

The means 304 of proximity communication are arranged to implement the step E5 of receiving transaction data. The network interface 303 is arranged to implement the step Ell of second transmission to the network and the step E19 of confirmation of the transaction. The invention also relates to: a computer program comprising instructions for implementing the method of authenticating a transaction, when this program is executed by a processor of the receiving terminal. A service entity 40 according to a first exemplary embodiment of the invention will now be described in relation to FIG. 4. The service entity 40 is an entity of a telecommunications network. According to the exemplary embodiment described here, it comprises a server 40-1 and a gate USSD 40-2. The USSD 40-2 gate is arranged to receive USSD codes, to retrieve in the network signaling mobile terminal identification numbers, and to transmit to the server 40-1 the relevant information received in the USSD codes, as well as the numbers identified in the signaling. The server 40-1 is arranged to manage the subscribers to the service and to execute the service transactions. The service entity 40 comprises: a processing unit 401, or CPU; a memory set 402, including a volatile memory 402-1, or RAM used to execute code instructions, store variables, etc., and a rewritable memory 4022 adapted to store user subscription data. In particular, the 402-2 rewritable memory is adapted to store the identification numbers of the terminals in association with personal authentication data of the users of these terminals. The personal authentication data are entered by the subscribed users during a preliminary phase of configuration of the service. This personal data is for example PIN codes; first receiving means 403, arranged to receive from a first terminal, for example the transmitting terminal described in relation with FIG. 2, a transaction information comprising a unique identifier of the transaction, a personal authentication data item, and user of the first terminal, and a transaction amount; first recovery means 404 arranged to retrieve an identification number from the first terminal in a signaling channel; second reception means 405 arranged to receive from a second terminal, for example the receiver terminal described in relation to with Figure 3 a transaction validation message, said message comprising said unique transaction identifier and a personal authentication data of the user of the second terminal, and a transaction amount; second recovery means 406, arranged to retrieve an identification number from the second terminal in the signaling channel, means 407 for establishing a link, arranged to establish a link between the transaction information received from the first terminal and the validation message received from the second terminal using the unique transaction identifier, - control means 408, arranged to control that the personal authentication data of the user of the first terminal is equal to a first personal data authentication prerecorded and associated with the identification number of the first terminal, and that the personal authentication data of the user of the second terminal is equal to a second personal data prerecorded authentication and associated with the number of identification of the second terminal, execution means 409, arranged to execute the transaction. The means described above communicate via a communication bus. The first reception means 403, the first recovery means 404, the second reception means 405, the second recovery means 406, the link establishment means 407, the control means 408 and the execution means 409 are preferably software means comprising software instructions for executing those of the steps of the authentication method of a transaction described in connection with FIG. 1 which are implemented by the service entity of the network. The first reception means 403 and the first recovery means 404 are arranged to implement the first reception step E12. The second reception means 405 and the second recovery means 406 are arranged to implement the second reception step E14. Means 407 for establishing a link are arranged to implement step E16 for establishing a link. The control means 408 are arranged to implement the control step E17. The execution means 409 are arranged to implement the execution step E18.

The invention also relates to: a computer program comprising instructions for implementing the method of authenticating a transaction, when this program is executed by a processor of a service entity of the network. The invention also relates to a system adapted to execute transactions and which comprises a transmitting terminal according to the invention, a receiving terminal according to the invention and a service entity of the network according to the invention. 10

Claims (14)

REVENDICATIONS1. A method of performing a transaction between two terminals by a network, the method comprising steps, implemented by an entity of the network (12), of: - receiving (E12, E14) from a first of the two terminals a transaction information comprising a unique identifier of the transaction and a personal authentication data of a user of the first terminal, - recovery (E13, E15) of an identification number of the first terminal in a signaling channel , - receiving (E14, E12) the second of the two terminals of a transaction validation message, said message comprising said unique transaction identifier and a personal authentication data of a user of the second terminal, - recovery (E15 , E13) of a user identification number of the second terminal in the signaling channel, - establishing (E16) a link between the transaction information received from the first terminal and the validation message received from the second terminal using the unique transaction identifier, - control (E17) that the personal authentication data of the user of the first terminal is equal to a personal data of pre-registered authentication and associated with the identification number of the first terminal, and the personal authentication data of the user of the second terminal is equal to a second personal data prerecorded authentication and associated with the identification number of the second terminal, - if the control is positive, execution (E18) of the transaction. 2. Method according to claim 1, wherein the transaction information comprising a first transaction amount and the validation message comprising a second transaction amount, it is verified during the control step that the first amount is equal. at the second amount. The method of claim 1, further comprising a step of sending (E19) a transaction validation message to the first and second terminals. 4. A method of performing a transaction between two terminals, the method comprising the steps implemented by a first of the two terminals: generating (E2) a unique transaction identifier by a first of the two terminals; sending (E4) by the first terminal to the second terminal through a proximity communication channel of said identifier, - first transmission (E8-2) by the first terminal to a service entity of the network of said identifier, - second transmission (E11-2) by the second terminal to the service entity of said identifier. - Reception (E19) by the first and the second terminal of a confirmation message of said transaction. 5. A method of performing a transaction according to claim 4, wherein the unique transaction identifier is sent from the first terminal to the second terminal according to a method selected from a set comprising an NFC transmission of said identifier, a Bluetooth transmission of said identifier, an optical reading by the second terminal of a two-dimensional barcode encoding said identifier displayed on the first terminal, an acoustic transmission of said identifier of the first terminal to the second terminal. 6. A method of performing a transaction according to claim 4, wherein the first and second transmission steps of said identifier are preceded by a step of constructing a code according to USSD, implemented on the first and the second. second terminal, said code comprising the unique transaction identifier and the personal authentication data of the user of the first and second terminal respectively The method of performing a transaction according to claim 6, wherein the first and second transmission steps comprise transmitting the USSD code constructed through a dedicated network channel. The method of performing a transaction according to claim 6, wherein the code constructed on one of the two terminals further comprises a transaction amount. 9. Transmitting terminal (20), adapted to perform a transaction with a receiving terminal, said transmitting terminal comprising: - generation means (205), adapted to generate a unique transaction identifier, - first transmission means (204) , arranged to transmit said identifier to said receiving terminal through a proximity communication channel, second transmission means (203) arranged to transmit said identifier to a service entity of the network and to receive from the service entity a confirmation message of said transaction. Receiving terminal (30), adapted to perform a transaction with a transmitting terminal, said receiving terminal comprising: receiving means (304), arranged to receive from the transmitting terminal through a proximity communication channel a unique identifier of the transaction, means (303) for transmitting, arranged to transmit to a service entity of the network said identifier and to receive from the service entity a confirmation message of said transaction. 11. Service entity (40) of a network capable of carrying out a transaction between a first and a second terminal, said entity comprising: first receiving means (403) arranged to receive from the first of the two terminals information from transaction comprising a unique identifier of the transaction and a personal authentication data of a user of the first terminal, - first means (404) of recovery, arranged to recover an identification number of the first terminal in a signaling channel, second receiving means (405), arranged to receive from the second of the two terminals a transaction validation message, said message comprising said unique transaction identifier and a personal authentication data of a user of the second terminal; second recovery means (406) arranged to recover an identification number from the second terminal in the channel of si an arrangement, means (407) for establishing a link, arranged to establish a link between the transaction information received from the first terminal and the validation message received from the second terminal using the unique identifier of transaction, control means (408), arranged to control that the personal authentication data of the user of the first terminal is equal to a first personal data authentication prerecorded and associated with the identification number of the first terminal, and that the personal authentication data of the user of the second terminal is equal to a second personal authentication data prerecorded and associated with the identification number of the second terminal, - means (409) of execution, arranged to execute the transaction. A system adapted to perform a transaction, comprising: - a transmitting terminal according to claim 9, - a receiving terminal according to claim 10, and - a service entity according to claim 11. 13. Program on a data carrier and loadable in the internal memory of a transmitting terminal, the program comprising portions of code for performing the steps of the authentication method according to claim 2, when the program is executed on said transmitter terminal. 10 15 14. Program on a data medium and loadable in the internal memory of a receiving terminal, the program comprising portions of code for performing the steps of the method according to claim 2, when the program is executed on said receiving terminal. 20