EP1078335A1 - Financial transaction terminal with limited access - Google Patents

Financial transaction terminal with limited access

Info

Publication number
EP1078335A1
EP1078335A1 EP99920492A EP99920492A EP1078335A1 EP 1078335 A1 EP1078335 A1 EP 1078335A1 EP 99920492 A EP99920492 A EP 99920492A EP 99920492 A EP99920492 A EP 99920492A EP 1078335 A1 EP1078335 A1 EP 1078335A1
Authority
EP
European Patent Office
Prior art keywords
financial transaction
transaction terminal
terminal
housing
access port
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP99920492A
Other languages
German (de)
French (fr)
Inventor
David Henry Groves
Fraser Hardman
John Richard Spence
Ki Sheung Yuen
Yiu Kong Wong
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ingenico Canada Ltd
Original Assignee
IVI Checkmate Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to CA2237666 priority Critical
Priority to CA 2237666 priority patent/CA2237666A1/en
Priority to US09/084,999 priority patent/US6097606A/en
Priority to US84999 priority
Application filed by IVI Checkmate Ltd filed Critical IVI Checkmate Ltd
Priority to PCT/CA1999/000431 priority patent/WO1999060533A1/en
Publication of EP1078335A1 publication Critical patent/EP1078335A1/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0873Details of the card reader
    • G07F7/088Details of the card reader the card reader being part of the point of sale [POS] terminal or electronic cash register [ECR] itself
    • G07F7/0886Details of the card reader the card reader being part of the point of sale [POS] terminal or electronic cash register [ECR] itself the card reader being portable for interacting with a POS or ECR in realizing a payment transaction

Abstract

A financial transaction terminal is designed to receive both smart cards and debit cards and includes an access port for inserting or removing security modules such as SIM or SAM modules. A security switch arrangement is provided about the access port to protect the now accessible components of the terminal. Such a terminal provides the uncompromised physical security of a debit terminal with the flexibility and capabilities of a smart card terminal.

Description

TITLE: FINANCIAL TRANSACTION TERMINAL WITH LIMITED ACCESS
FIELD OF THE INVENTION
The present invention relates to financial transaction terminals capable of cooperating with smart cards stored in an accessible part of the access terminal. In particular, the application is directed to improvements in security of such terminals .
BACKGROUND OF THE INVENTION
Miniature smart cards compliant with the GSM 11.11 Standard, are commonly referred to as SIM (Security Identity Module) or SAM (Secure Access Module) cards. These devices have the same I/O pad configurations and capabilities as a standard ISO (CNet) smart card. The SIM or SAM cards, because of their small size, can be installed inside a financial transaction terminal for verification, password, registration, billing information or as an electronic purse, where monetary values can be transferred to and from the smart card. Both the SIM and SAM cards have special adapters for attachment to a circuit board for receiving the card and electrically connecting the card with the circuit board. In this way, the circuit board communicates directly with the card which is removable.
The user, from time to tiftie, may need to replace the SIM or SAM card and as such, requires access to the acceptors. For example, these cards can be used as an electronic purse which is replaced by the user, when the old one is full. Financial terminals which are smart card compatible have become increasingly popular for point of sale transactions . Similarly, debit fund transfer systems are becoming quite common. A single terminal which is compatible with both systems would be desired.
In a debit system, PIN entry is required as a means to identify the legitimate user. This PIN is protected by encrypting the PIN and data which is received by the unit or sent by the unit. In addition to this electronic coding, the common standards, such as INTERAC and VISA, require certain physical security to protect against unauthorized entry to the unit. Financial transaction terminals for debit card transactions have an electronic switch arrangement which shuts down the unit if the housing of the financial transaction terminal is separated exposing the enclosed circuitry and software.
The debit card security approach is desirable, however, it is also desirable to have a device with SIM or SAM cards for recordal of certain information directly in the device while allowing a user access to these cards. The present invention combines these two capabilities and while providing effective security for the financial transaction device.
SUMMARY OF THE INVENTION A financial transaction terminal according to the present invention, is capable of cooperating with smart cards and includes a housing enclosing electronic circuitry which cooperates with a visual display and a key pad. The housing includes a slot entry for receiving a smart card and forming an electronic circuit between a received smart card and the enclosed circuitry. The key pad arrangement allows a user to enter information into the financial terminal and the terminal includes at least one accessible secure module located in an access port of the housing. The housing includes an electrical switch seal arrangement about the access port to prevent unauthorized entry into the financial transaction terminal through the port. The financial transaction terminal allows access to the secure module while the seal arrangement about the port provides additional security for the terminal. According to an aspect of the invention, the device includes two security identity modules attached to the circuit board of the electronic circuitry.
According to a further aspect of the invention, the circuit board about the access port includes a series of connection terminals and the housing includes a zebra connector having alternating conducting and non conducting layers extending between the series of connection terminals and electrically connecting some of said terminals to form a security structure about the access port. The two security modules are readily accessible and the housing arid the components of the terminal not exposed in the access port remain protected from authorized access through the access port.
According to yet a further aspect of the invention, the housing is a mechanically secured split housing having an electronic circuit for providing a signal if unauthorized entry to the terminal is attempted by separation of the split housing.
According to yet a further aspect of the invention, the two security modules are miniature SIM card acceptors or miniature SAM card acceptors.
According to yet a further aspect of the invention, the terminal accepts both debit or smart cards for completing financial transactions.
BRIEF DESCRIPTION OF THE DRAWINGS
Preferred embodiments of the invention are shown in the drawings, wherein: Figure 1 is a perspective view of a financial transaction terminal; Figure 2 is a perspective view of the rear of a financial transaction terminal showing an access port with the cover thereof removed;
Figure 3 is a rear perspective view with the back housing removed;
Figure 4 is a partial sectional view showing part of the housing in contact with a circuit board which is an electrical connection with a miniature smart card acceptor; and
Figure 5 is a top view showing various seals provided around an access port.
DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS
Figure 1 shows a financial transaction terminal 2 which can be used with both debit cards and smart cards . A debit card typically has a magnetic strip which is read by the financial transaction terminal, and the user then enters a PIN as part of the authorization process . The terminal electronically connects with a financial institute to complete the transaction. The transaction terminal 2 includes a visual display 4, a key pad 6, and a slot 8 for receiving the smart or debit card. The hand held terminal includes an electrical connection 10 to connect the terminal with other devices and for communication signals with a financial institute. These debit terminals are used at many point of sale counters. As part of the security, the transmitted and received signals are encrypted. The terminal then interprets the receiver's signal using software and encrypting keys maintained within the terminal. Physical security is provided to detect unauthorized access to the case of the terminal. In the event of detection, encoding information is deleted. The terminal 2 has a housing generally shown as 12 which in this case, is a two-part casing having a front housing 14 and a back housing 16. Basically, the casing 12 is horizontally split into the two parts and suitable electronic circuitry arrangements can be provided to alert the terminal that the casing has been opened. The front and the back housing are typically mechanically secured and if released, the terminal detects this release and protects or eliminates any critical information.
The back of the housing as shown in Figures 2 and 3 , has an access port 18 which exposes part of the circuit board 22. SIM or SAM type acceptors 20 and 21 are secured on the circuit board 22 within the access port 18. The user, such as a merchant, has ready access to the acceptors 20 and 21 and can insert the appropriate SIM or SAM cards. A releasable cover 24 protects the access port 18. The SIM or SAM cards are examples of two of the most common user inserted modules that record information and financial transactions for example. Other modules can be used and the terminal is not limited to these particular modules .
The housing 16 includes side walls extending downwardly and contacting the circuit board 17 to provide a boundary area about the access port 18. In this way, access is provided to the* port, yet access to the rest of the terminal is restricted. Critical parts are mounted on the circuit board 22 at a position which is interior to the housing and preferrably remotely located, relative to the access port 18.
An electrical switch seal arrangement 28 is provided, as generally shown in Figures 4 and 5. The back housing 16, as shown in the sectional view of Figure 4, has a series of zebra strip connectors generally shown as 30 in contact with the circuit board 22. The left hand side of the drawing shows two such zebra strip connectors which merely provide additional protection. Each zebra strip connector, as illustrated in Figure 5, has alternating conducting and non conducting layers . The spacing of these layers which are extending horizontally is such that they will make contact with opposed terminals 32,33 or 34 provided on the circuit board 22 and these alternating layers separate adjacent terminals by at least one non conducting strip. Each side of the circuit board, adjacent the access port 18, has a series of logic switches formed by these terminals 32 and terminals 33 or 34. At the left of the circuit board, there are seven logic switches labelled SW1 through SW7. Terminals 34 are connected to the ground whereas terminal 33 are connected to a 5 volt supply. The zebra strip connector electrically connect each terminal 32 with opposed terminals 33 or 34. With this arrangement, logic switches SW7 , SW5, SW3 and SW1 are shorted to ground. In contrast, the terminals 33 associated with SW2, SW4 and SW6, are connected to a 5 volt power source. As such, these switches are closed, i.e. the circuit is live. As can be appreciated, different logic patterns of ones (5V) and zeros (ground) can be detected by a processing arrangement 39 on the circuit board. The zebra strip connector is resilient and the pressure of mechanically joining the two housings is sufficient to ensure some compression of the zebra strip connector and a good electrical connection between the terminals 32, and opposed terminals 33 and -84. If the housing is opened or tampered with, at least some of the logic switches change status as the circuit will be broken.
Figure 5 under each of the zebra strip connectors
30, has a similar switching arrangement 31 and thus, there is multiple switch protection on each side of the access port with some of the switches being connected to ground and some of the switches being connected to 5 volt power. The fact that the zebra strip connectors have a series of conducting and non conducting layers, allows each of the switches to be isolated from the adjacent switch by at least one non conducting strip and preferrably two non conducting strips and it also ensures that an effective electrical connection between terminals is provided without the need for precision location of the connectors .
The logic switches defined a logic high, in this case, 5 volts, and a logic low, i.e., ground. The multiple switches form a code of highs and lows used to detect a change in security status of the case.
The additional zebra strip connector shown as 30a in Figure 4 provides enhanced protection. As can be appreciated, the zebra strip connectors 30 are located immediately adjacent the access port and if there is any attempt to pry up the housing adjacent the access port, this action will open or change the logic of at least some of the switches . Once the status of the switches is changed, the terminal will become inactive and therefore, even if the housing is broken into, the critical information will have been eliminated, or the device rendered inactive. Additional zebra strip connectors further away from the access port provide additional protection against unauthorized entry into the casing.
In some cases, it may be desirable to take security action if one switch changes (high security) , however, in other cases, the security* action may require two or more switches to change. For example, dropping of a terminal might momentarily change the status of one switch and it may be desirable to require change in status of more switches or changes in status for a certain time duration before taking security action. The present arrangement allows for these types of changes in design to customize the security for a particular application.
Although the security switch arrangement provides protection about the access port, it also provides protection against unauthorized opening of the casing by separating the housings. The present invention allows the simple formation of terminals on a circuit board to provide switch information or switch logic through a multiple series of switches using a zebra strip connector having the alternating layers orientated by across the surface of the connector connections. The switches are isolated one from the other and it is not necessary to precisely locate the zebra strip connectors. The separation between the layers is such that any placement of a zebra strip connector in the housing and over the terminals will be sufficient to provide the necessary electrical connection and electrical isolation of terminals on the surface of the circuit board.
The terminal is designed using an outer housing to protect the components with a recessed covered access port to allow a user to insert or remove certain modules in electrical contact with the internal processing circuitry. Although the access part is within the housing, electrical security sales are provided about the access port. With this arrangement, the security of the terminal is uncompromised and the convenience of limited user access is realized.
Although various preferred embodiments of the present invention have been described herein in detail, it will be appreciated by those skilled in the art, that variations may be made thereto without departing from the spirit of the invention or the scope of the appended claims.

Claims

THE EMBODIMENTS OF THE INVENTION IN WHICH AN EXCLUSIVE PROPERTY OR PRIVILEGE IS CLAIMED ARE DEFINED AS FOLLOWS:
1. A financial transaction terminal for cooperating with smart cards said terminal comprising a housing enclosing electronic circuitry and including a visual display and a keypad, said housing including a slot entry for receiving and forming an electronic circuit between a received smart card and said enclosed electronic circuitry, said keypad arrangement for allowing a user to enter information into said financial terminal, and at least one accessible user secure module provided in an access port of said housing, said housing including an electrical switch seal arrangement about said accessible port whereby both access to said user secure module and security about said port are provided.
2. A financial transaction terminal as claimed in claim 1 wherein said at least one user secure module is defined by two security identity modules attached to a circuit board of said electronic circuitry.
3. A financial transaction terminal as claimed in claim 2 wherein said circuit board about said access port includes a series of connection terminals and said housing includes a zebra connector having alternating conducting and non conducting layers extending between said series of connection terminals and electrically connecting at least some of said terminals to form a security structure about said access port whereby said two security identity modules are readily accessible and said housing and the components of said terminal not exposed in said access port remain protected from unauthorized access through said access port.
4. A financial transaction terminal as claimed in claim 3 wherein said housing is a mechanically secured split housing having an electronic circuit for providing a signal if unauthorized entry to said terminal is attempted by releasing said split housing.
5. A financial transaction terminal as claimed in claim 4 wherein said electronic circuitry includes a circuit board having said two security modules attached to a surface thereof facing a base of said split housing, said circuit board having a border area surrounding said access port which border area is defined by said connection terminals .
6. A financial transaction terminal as claimed in claim 5 wherein said two security modules are miniature SIM card acceptors .
7. A financial transaction terminal as claimed in claim 5 wherein said two security modules are miniature secured application modules .
8. A financial transaction terminal as claimed in claim 5 wherein said terminal accepts debit or smart cards .
9. A financial transaction terminal comprising a housing enclosing electronic circuitry and including a visual display and a keypad, said housing including at least one access port with said housing including an electronic seal about the perimeter of said port, said access port including an electrical component interface adapted to receive a replaceable electrical component and allow communication between said replaceable electrical component and said electronic circuitry, said electrical seal defining a coded switch having a known condition, said terminal including an arrangement for monitoring said coded switch and determining a change in the condition thereof, and a security system which deletes critical information upon determining a change in condition of said coded switch.
10. A financial transaction terminal as claimed in claim 9 wherein said electrical component interface is mounted on a circuit board which forms part of said electronic circuitry.
11. A financial transaction terminal as claimed in claim 10 wherein only a limited portion of the back face of said circuit board is exposed within said access port and said electrical component interface is mounted on said back face.
12. A financial transaction terminal as claimed in claim 11 wherein said electrical component interface is adapted to receive at least one SIM module.
13. A financial transaction terminal as claimed in claim 11 wherein said electrical component interface is adapted to receive at least one SAM module .
14. A financial transaction terminal as claimed in claim 11 wherein said access port includes sufficient space for receiving two SAM modules and connecting said modules to said circuit board.
15. A financial transaction terminal as claimed in claim 12 wherein said electrical seal includes a series of opposed pairs of electrical contacts forming a code of circuits having one of two different states and a change in any state indicates a security breach.
16. A financial transaction terminal as claimed in claim 15 wherein said electrical seal generally surrounds said access port and said housing applies a pressure on at least one connector which connects opposed pairs of electrical contact points.
17. A financial transaction terminal as claimed in claim 16 wherein said connector is a series of alternating conducting and non conducting layers with at least one non conducting layer separating adjacent pairs of electrical contact points .
18. A financial transaction terminal as claimed in claim 15 wherein said electrical contact points are provided on said circuit board.
19. A financial transaction terminal as claimed in claim 18 wherein each side of said access port includes at least three pairs of electrical contact points.
EP99920492A 1998-05-14 1999-05-14 Financial transaction terminal with limited access Withdrawn EP1078335A1 (en)

Priority Applications (5)

Application Number Priority Date Filing Date Title
CA2237666 1998-05-14
CA 2237666 CA2237666A1 (en) 1998-05-14 1998-05-14 Financial transaction terminal with limited access
US09/084,999 US6097606A (en) 1998-05-28 1998-05-28 Financial transaction terminal with limited access
US84999 1998-05-28
PCT/CA1999/000431 WO1999060533A1 (en) 1998-05-14 1999-05-14 Financial transaction terminal with limited access

Publications (1)

Publication Number Publication Date
EP1078335A1 true EP1078335A1 (en) 2001-02-28

Family

ID=25680202

Family Applications (1)

Application Number Title Priority Date Filing Date
EP99920492A Withdrawn EP1078335A1 (en) 1998-05-14 1999-05-14 Financial transaction terminal with limited access

Country Status (3)

Country Link
EP (1) EP1078335A1 (en)
AU (1) AU3806099A (en)
WO (1) WO1999060533A1 (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6994261B2 (en) 2000-08-10 2006-02-07 Novo Nirdisk A/S Support for a cartridge for transferring an electronically readable item of information from the cartridge to an electronic circuit
US7748620B2 (en) 2002-01-11 2010-07-06 Hand Held Products, Inc. Transaction terminal including imaging module
BR0301164A (en) * 2003-05-19 2005-05-10 Sp Itaqui Participacoees Ltda Multifunction terminal for business transactions
EP1881859B1 (en) 2005-05-10 2011-01-19 Novo Nordisk A/S Injection device comprising an optical sensor
CN101421913B (en) 2006-04-12 2012-07-18 诺沃-诺迪斯克有限公司 Absolute position determination of movably mounted member in medication delivery device
JP5896747B2 (en) 2009-02-13 2016-03-30 ノボ・ノルデイスク・エー/エス Medical device and cartridge
DE102012204847A1 (en) * 2012-03-27 2013-10-02 Zf Friedrichshafen Ag module

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0128672A1 (en) * 1983-05-13 1984-12-19 Ira Dennis Gale Data security device
DE9105960U1 (en) * 1991-05-14 1992-06-11 Siemens Nixdorf Informationssysteme Ag, 4790 Paderborn, De
US6065679A (en) * 1996-09-06 2000-05-23 Ivi Checkmate Inc. Modular transaction terminal

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO9960533A1 *

Also Published As

Publication number Publication date
WO1999060533A1 (en) 1999-11-25
AU3806099A (en) 1999-12-06

Similar Documents

Publication Publication Date Title
US6097606A (en) Financial transaction terminal with limited access
US6917299B2 (en) Point of sale (POS) terminal security system
US20130140364A1 (en) Systems and methods for detecting and preventing tampering of card readers
US5093862A (en) Data carrier-controlled terminal in a data exchange system
US7270275B1 (en) Secured pin entry device
US6921988B2 (en) Anti-spoofing elastomer membrane for secure electronic modules
US9996713B2 (en) Secure smartcard reader
US4985921A (en) Portable data carrying device
US9213869B2 (en) Magnetic stripe reading device
US20070016963A1 (en) PIN entry terminal having security system
US20070271544A1 (en) Security sensing module envelope
US20090127336A1 (en) Enhanced security magnetic card reader especially useful in point of sale devices
US9831050B2 (en) Tamper resistant rugged keypad
WO1999060533A1 (en) Financial transaction terminal with limited access
US5982888A (en) Programmable key and receptacle system and method therefor
US9430675B2 (en) Encrypting pin pad
JP2819445B2 (en) IC card processing device
CA2271617C (en) Financial transaction terminal with limited access
JP2004362366A (en) Information processing terminal, its control method, and its control program
DE202004008380U1 (en) Secure card reader has additional electronic components for encrypting data to be transferred to an external unit and for detecting data access attempts
KR101586189B1 (en) Card payment porcessing device with security functions
CA2237666A1 (en) Financial transaction terminal with limited access
CA2133902A1 (en) Coded seal
US20070116279A1 (en) Secure terminal
KR102206146B1 (en) Apparatus for securing an electronic device

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20001102

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): DE ES FR GB IT NL

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION HAS BEEN WITHDRAWN

18W Application withdrawn

Withdrawal date: 20010711