EP1151580A1 - Service card transactions over a wireless lan - Google Patents

Service card transactions over a wireless lan

Info

Publication number
EP1151580A1
EP1151580A1 EP00906806A EP00906806A EP1151580A1 EP 1151580 A1 EP1151580 A1 EP 1151580A1 EP 00906806 A EP00906806 A EP 00906806A EP 00906806 A EP00906806 A EP 00906806A EP 1151580 A1 EP1151580 A1 EP 1151580A1
Authority
EP
European Patent Office
Prior art keywords
transaction
mobile terminal
card
wireless lan
terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP00906806A
Other languages
German (de)
English (en)
French (fr)
Inventor
Jan Olof Nordenstam
Allan Hansson
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Telefonaktiebolaget LM Ericsson AB
Original Assignee
Telefonaktiebolaget LM Ericsson AB
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telefonaktiebolaget LM Ericsson AB filed Critical Telefonaktiebolaget LM Ericsson AB
Publication of EP1151580A1 publication Critical patent/EP1151580A1/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3226Use of secure elements separate from M-devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/02Terminal devices

Definitions

  • the present invention relates to a mobile terminal having service-card transaction functions, and a transaction system and method involving such a mobile terminal.
  • the need to use service cards such as credit cards, cash cards and company- identity cards, in place at shops, stores, company locations and public utilities is well known.
  • Today, this need is satisfied through various plastic cards interworking with card readers in a known manner.
  • the card is normally inserted into a card slot in the card reader, and subsequently the card reader reads information from the card.
  • information can also be transferred to the card.
  • Modern card readers for credit cards normally have a keypad for entering a PIN-code (Personal Identification Number Code) and accepting the transaction.
  • Cash cards do not normally require a PIN-code; only an acceptance or a rejection of the transaction.
  • the card reader may also have functions to handle cash register sums from an electronic cash register and functions for on-line control of credit card numbers.
  • contactless smart cards use a radio contact of very short distance (typically up to 40 centimeters), and a connection is established between the card reader and the smart card by energizing the card through a radio signal from the card reader.
  • plastic cards Another limiting factor is the amount of plastic cards to be handled. It is not unusual for an individual to have a dozen different plastic cards, and this is of course quite inconvenient.
  • the mobile phone is provided with a card reader for cash cards, and by using the conventional radio interface of the mobile phone it is envisaged that a connection may established with a special server in a bank for loading the cash-card.
  • the international patent application WO 97/45814 discloses a wireless terminal used for remote purchase and bill payment transactions as well as transfer of telecash to other terminals without using the GSM network. More specifically, the terminal is a mobile phone, which can also operate as an electronic wallet. By using the terminal the user is able to send/ receive payment messages and electronic cash directly to /from another terminal under a small adjustable terminal-to-terminal radio coverage. The terminal-to- terminal radio coverage is adjusted such that only the payer and the payee will be able to exchange information and telecash, without using the network.
  • Microsoft Corporation offers an electronic wallet software in which information, such as card number and expiry date, associated with a plastic card can be stored in a personal computer and used for the purpose of Internet commerce.
  • U.S. Patent 5,796,832 discloses a financial information and transaction system in which a portable terminal is connected to a financial institution via a wireless or cellular telephone hook-up. Smart cards are utilized to verify authorization for transactions to rnmirnize potential security problems, which could otherwise result from the use of a mobile terminal.
  • the system according to U.S. Patent 5,796,832 seems to be adapted for transactions over longer distances, in similarity to electronic commerce over the Internet.
  • the present invention overcomes these and other drawbacks of the prior art arrangements .
  • the transaction system is more flexible than conventional systems, and capable of handling various different transaction conditions in an efficient manner.
  • the general idea according to the present invention is to use a wireless local area network, a so-called wireless LAN, and one or more mobile terminals that are connectable to the wireless LAN, as a platform for service card transactions.
  • the transaction system comprises at least one wireless LAN having at least one transaction terminal, and at least one mobile terminal.
  • the mobile terminal comprises service-card transaction functions, and means for implementing at least one virtual service card such as a credit card or a cash card.
  • the service-card transaction functions are implemented as a general platform, for example in the form of an electronic wallet, which is capable of handling virtual service cards.
  • the mobile terminal is connectable to the wireless LAN to enable a service card transaction between the mobile terminal and a transaction terminal via the wireless LAN. Together with the electronic wallet, the virtual service cards in the mobile terminal can be used for local service card transactions over the wireless LAN.
  • the system is also capable of handling a transaction environment in which many transactions are performed more or less in parallel between several parties, irrespective of the distance between the parties.
  • the transaction system according to the invention is independent of the operators of larger public networks such as the GSM network, as well as blocking and fault conditions in such networks.
  • the electronic wallet of the mobile terrninal may act as a platform for a number of virtual service cards.
  • mobile terminals such as mobile phones and personal digital assistants (PDAs) open up for new applications, such as reading and storing information in connection with the service card transactions. For example, receipts and other information associated with a service card transaction may be stored in the mobile terminal, possibly for later transfer to a personal computer.
  • a number of parameter values identifying a session to be completed by a service card transaction are transmitted by the mobile terminal to the transaction terminal.
  • the session may be a purchase or an order of goods or services.
  • the transaction terminal normally transmits information about the session, e.g. in the form of a bill, to the mobile terminal such that the service card transaction can be accepted or rejected based on this information.
  • the transaction terminal commits the transaction.
  • An alternative embodiment of the invention involves a mobile terminal that includes a card reader provided with a card slot for insertion of a real service card.
  • a mobile phone which already has a card place for a conventional SIM card
  • an additional card slot for the service card is provided in the mobile phone.
  • the mobile terminal further comprises means for connecting the mobile terminal to the wireless LAN to enable a service card transaction, related to the service card, between the mobile terminal and a transaction terminal via the wireless LAN.
  • a service card transaction related to the service card
  • the user instead of leaving the plastic card to a waiter, which takes the card and goes away to perform the service card transaction using an ordinary card reader, the user just inserts the service card into the mobile terminal, and the service card transaction is then performed over the wireless LAN.
  • the service card transactions performed over the wireless LAN preferably are financial transactions such as credit card and cash card transactions, it should be understood that other types of transactions are feasible as well; for example transactions made when borrowing books at a library or when recording and giving discounts to users or clients, or even transactions between an electronic key and an electronic door lock.
  • service card not only relates to credit cards and cash cards, but also to other types of cards such as discount cards, bonus cards, membership cards, identity cards, company- identity cards, electronic key cards and combined cards including a combination of such cards.
  • Fig. 1 is a schematic diagram of a mobile terminal according to a preferred embodiment of the invention
  • Fig. 2 is a diagram of a layered representation of the service card functionality and its environment in the mobile terminal of Fig. 1;
  • Fig. 3 is a schematic diagram illustrating a first example of a transaction system according to a preferred embodiment of the invention.
  • Fig. 4 is a schematic diagram illustrating a second example of a transaction system according to a preferred embodiment of the invention.
  • Fig. 5 is a schematic diagram of screen displays in a mobile terminal, illustrating a procedure for identifying a session according to a preferred embodiment of the invention
  • Fig. 6 is a schematic flow diagram of a transaction method according to a preferred embodiment of the invention.
  • Fig. 7 is a schematic diagram illustrating a third example of a transaction system according to a preferred embodiment of the invention.
  • Fig. 8 is a diagram ⁇ iustrating a first example of a communication session performed in a system such as that illustrated in Fig. 7;
  • Fig. 9 is a diagram illustrating a second example of a communication session performed in a system such as that illustrated in Fig. 7;
  • Fig. 10 is a schematic diagram illustrating a fourth example of a transaction system according to a preferred embodiment of the invention.
  • Fig. 11 is a diagram illustrating a third example of a communication session performed in a system such as that illustrated in Fig. 10; and Fig. 12 is a schematic diagram of a transaction system according to an alternative embodiment of the invention;
  • a virtual service card is a set of data, or a set of software-implemented operations and associated data, issued by a card issuer and used by a cardholder for the purpose of service card transactions.
  • the cardholder has to observe the policies and rules that may be requested by the card issuer.
  • a cash-card which traditionally is represented on a smart card, will include software as well as data when implemented as a virtual card, whereas a simple virtual service card will include only data.
  • a service card transaction is an activity or a series of activities related to a service card and involving at least two parties. In general, the activity is carried on to conclusion, and results in information being transferred from/ to the service card.
  • An example of a service card transaction is an operation on a credit card such as reading data or changing data, eventually resulting in funds being transferred from one account to another account.
  • Other examples of service card transactions are reading information from a key card, and checking the authority of a cardholder.
  • a transaction may of course be composed of a sequence of smaller transactions, but in the following the concept of a session is introduced for a sequence of transactions and/ or other events. The purpose is to reduce ambiguity and increase clarity.
  • a session is a sequence of events and/ or transactions performed for a certain purpose.
  • a session is normally associated with a service card transaction.
  • the service card transaction constitutes a part of the session, and typically the session is completed by the service card transaction.
  • An example of a session is the purchase of goods in a shop, which at least involves registering of the selected items and paying with a credit card or cash card.
  • Another example of a session is the opening of an electronic lock with an electronic key, which at least involves reading key information, checking the authority of the key holder and maybe registering the event.
  • a wireless local area network (wireless LAN) and one or more mobile terminals connectable to the wireless LAN are used as a platform for service card transactions.
  • wireless LAN wireless local area network
  • mobile terminals connectable to the wireless LAN are used as a platform for service card transactions.
  • Fig. 1 is a schematic diagram of a mobile terminal according to a preferred embodiment of the invention.
  • the mobile terminal is based on a mobile telephone or a personal digital assistant (PDA).
  • PDA personal digital assistant
  • the mobile terminal 10 is by way of example illustrated as a mobile telephone.
  • the terminal 10 has a conventional memory (not shown), a display 2, a key pad 4, a radio interface and antenna 5, a processing environment 6 such as a microprocessor, and a conventional microphone and speaker system (not shown).
  • service-card transaction functions are implemented in the mobile terminal, for example as software in the processing environment 6.
  • the service-card transaction functions are preferably implemented as a general platform, a so-called electronic wallet, in the mobile terminal.
  • a number of virtual service cards are implemented in the processing environment 6.
  • the virtual service cards are used together with the electronic wallet platform for service card transactions over the wireless LAN, and the platform preferably provides functionality that can be used by several virtual service cards.
  • a virtual service card is generally a set of data or a combination of software functions and associated data that can replace the functionality of its plastic card counterpart.
  • Card information such as card number, expiry date, cardholder and card issuer, associated with each one of the virtual cards is stored in mobile terminal 10.
  • Fig. 2 is a diagram of a layered representation of the service card functionality and its environment in the mobile terminal of Fig. 1.
  • the bottom layer includes the mobile terminal 10 with its processing capabilities, memory devices, power equipment, user interfaces and a wireless LAN interface.
  • a Java Virtual Machine (JVM) 12 is implemented in the mobile terminal.
  • Java is an example of a programming language that can be used to implement the electronic wallet platform 14 and a number of virtual service cards (1, 2, 3, 4) 16.
  • Java is an object-oriented language, and as such it involves the encapsulation of software functions and data into objects, and is therefore suitable for preventing interference between the software and /or data of different virtual cards.
  • the electronic wallet 14 provides general service-card transaction functions, whereas each one of the virtual service cards 16 may include card specific data and/or software.
  • the general service- card transaction functions of the electronic wallet platform include activation of selected virtual service cards, and reading and possibly writing relevant card information from and to the virtual service cards.
  • the electronic wallet may be viewed as the electronic counterpart of a real wallet, including the general transaction functions as well as the virtual service cards.
  • the electronic wallet in the mobile terminal 10 is normally accessed by entering a PIN-code.
  • the electronic wallet 14 with its transaction functions and virtual service cards is operated, for example by using the display 2 and the keypad 4.
  • Different cards may have different requirements on security support and input/ output capabilities.
  • the mobile terminal to be used must fulfill all requirements for the card, or otherwise the card will not be installed. Since different mobile terminals may have different hardware and software functions, the virtual card in itself is normally configured to handle different types of terminals. During installation of a virtual card, the card normally finds out which kind of mobile terminal that is used, and then stores information about the capabilities of the terminal.
  • virtual service cards are credit cards, cash cards, discount cards, bonus cards, membership cards, identity cards and electronic key cards. Furthermore, two or more cards can be combined into a combination card such as a combination of a credit card and a bonus card.
  • each virtual service card has its own characteristic appearance on the display 2 so as to facilitate the selection of service card. It is also possible to use a characteristic acoustic signal for each virtual card.
  • the mobile terminal 10 also comprises a wireless LAN interface 8, which enables connection to a wireless LAN.
  • a wireless LAN interface known to the art, such as a conventional infrared LAN interface or a radio LAN interface, can be used by the invention.
  • a radio LAN chip based on Bluetooth technology is provided in the mobile terminal 10. The Bluetooth technology will be described in more detail later on.
  • the mobile terminal 10 may have a protecting circuit 7, also referred to as a protected circuit, for encapsulation, protection and/ or encryption of sensitive information such as private keys, PIN-codes and possibly biometric codes such as electronic fingerprints.
  • the protecting circuit 7 is a physically encapsulated integrated circuit that includes a non-erasable memory such as a read only memory (ROM) in which data and/ or software are stored.
  • Fig. 3 is a schematic diagram illustrating a first example of a transaction system according to a preferred embodiment of the invention.
  • the transaction system basically comprises a number of mobile terminals 10A, 10B, and a wireless LAN 20 that includes a number of transaction terminals 22, 24, 26.
  • Each one of the transaction terminals 22, 24, 26 in the wireless LAN 20 has service-card transaction functions and circuitry 23, 25 and 27, respectively for enabling communication with other terminals within the LAN 20.
  • Each one of the mobile terminals 10A, 10B is identical to the mobile terminal described in connection with Figs. 1 and 2. Consequently, each mobile terminal is provided with circuitry for implementing service-card transaction functions and for implementing one or more virtual service cards. The mobile terminal is also provided with circuitry for connecting the mobile terminal to the wireless LAN 20 so as to enable a service card transaction, related to a virtual service card, between the mobile terminal and a transaction terminal via the wireless LAN 20.
  • the transaction terminals 22, 24, 26 as well as the mobile terminals 10A, 10B are connected to and constitute part of the wireless LAN 20, as indicated by the dotted circle.
  • the transaction system according to the invention is particularly useful for local service card transactions, financial and other service card transactions, at place in for example shops, stores, companies and public utilities.
  • a wireless LAN is a local area network which does not utilize physical wires or cables as transmission medium.
  • the two types of media normally used for wireless LANs are radio waves and infrared optical signals.
  • Radio LANs are direction insensitive and generally have a greater range of coverage than infrared LANs.
  • the wireless LAN is a radio LAN based on Bluetooth, which is a local radio interface developed by the Bluetooth Special Interest Group promoted by Ericsson, Nokia, IBM, Toshiba and Intel.
  • Bluetooth is merely an example of a wireless LAN technology that can be used by the invention.
  • Other examples of wireless LANs include radio LANs such as HyperLAN, and even infrared LANs.
  • any wireless LAN that fulfils the following requirements may be used by the invention:
  • the terminals should be able to establish a connection, which may carry protocols involved in a session. This connection should be established either autonomously when entering the coverage area of a wireless LAN, or on demand when the terminal is within that area. The delay until the connection has been successfully established should be short, at most a few seconds. Further, it is advantageous if no configuration in advance for a certain terminal or user is required.
  • Bluetooth is a radio interface in the 2.45 GHz frequency band that enables terminals to connect and communicate wirelessly via short-range local area networks (wireless LANs). Bluetooth is particularly suitable for, but not limited to, so-called ad hoc networks.
  • each unit can simultaneously communicate with several other units.
  • Bluetooth uses a frequency- hop spread spectrum technique dividing the frequency band into several hop channels. During a connection, the radio transceivers in the LAN hop from one channel to another in a pseudo-random way.
  • Bluetooth channels use a frequency- hop/ time-division-duplex (FH/TDD) scheme, and each channel is divided into 625 ⁇ s intervals, so-called slots, where a different hop frequency is used for each slot.
  • FH/TDD frequency- hop/ time-division-duplex
  • two or more units sharing the same channel form a so-called piconet (a LAN), in which one unit acts as a master, controlling the traffic in the piconet, and the other units act as slaves.
  • Each piconet has a unique set of master parameters that are used in creating a unique channel.
  • a packet can be exchanged between the master and one of the slaves.
  • Packets have a fixed format in Bluetooth, and each packet begins with a 72-bit access code that is derived from the master identity, and unique for the channel. The access code is used for packet identification, synchronization and offset compensation in the wireless LAN.
  • a header trails the access code, and a payload of up to 2,745 bits may trail the header.
  • Bluetooth units that are within range of each other can establish so-called ad hoc connections. Unlike ordinary cellular systems, there is no a priori distinction between terminals and base stations in Bluetooth. As mentioned above, two or more Bluetooth units that share a channel form a piconet. To regulate traffic on the channel, one of the participating units becomes a master of the piconet. Any unit can become a master, but by definition, the unit that establishes the piconet assumes this role. All other participants are slaves. Participants may change roles if a slave wants to take over the master role. However, only one master at a time may exist in a piconet. When units are not participating in a piconet, they enter standby mode, from which they periodically listen for page messages.
  • Bluetooth allows several piconets to be created with overlapping coverages. Each piconet then adheres to its own hopping sequence.
  • Bluetooth The universal radio interface for ad hoc, wireless connectivity by J. Haartsen, Ericsson Review, No. 3, 1998, pages 110-117. It should be understood that the Bluetooth technology is an example of a base technology used to enable local communication between terminals, and that the service card transactions and the associated exchange of information are performed on top of this underlying technology.
  • a wireless LAN especially a radio LAN such as Bluetooth
  • the system is also capable of handling several transactions performed more or less in parallel between several parties, and irrespective of the distance between the parties, as long as the transactions are performed over the wireless LAN.
  • each one of the transaction terminals 22, 24, 26 in the wireless LAN 20 is preferably provided with a wireless LAN chip based on Bluetooth technology.
  • one of the transaction terminals acts as master station of the wireless LAN 20.
  • the master station 22 is often connected in a known manner via the public network and/ or hard wire to a host server 32.
  • the host server 32 may provide additional functionality not included in the transaction terminals themselves.
  • the transaction terminals may have functions to handle cash register sums from a cash register. Furthermore, the transaction terminals may have functions for on-line control of credit card numbers, and functions to transfer information about the transactions to servers or host computers 32 of a bank or credit card company.
  • the transaction terminals may also include conventional card readers, such as ordinary card readers and card readers for contactless cards so as to be capable of handling virtual service cards as well as ordinary plastic cards.
  • the conventional card readers and the functionality used for the virtual service cards preferably share the same cash register functions and have common functions for communication with host servers. It is of course also possible to utilize the security arrangements used for conventional cards and card readers in connection with service card transactions performed between terminals over a wireless LAN as well. For example, if authentication by an identity card such as a driver's license and a real signature on a receipt is required for a certain plastic card, this procedure may also be used for the virtual counterpart of the plastic card.
  • Fig. 3 Although the transaction system of Fig. 3 is illustrated as having two mobile terminals, and three transaction terminals, it should be understood that only one mobile terminal and one transaction terminal are required in the wireless LAN to perform a service card transaction.
  • the transaction terminals are not necessarily fixed terminals, but may be mobile.
  • a library card is a sort of identity card by which a user can be identified as a registered user at a library. Information about a number of borrowed books together with a last day for return may be transferred from a transaction terminal at the library to the mobile terminal, and the user may then accept the loan.
  • the virtual library card may have a World Wide Web (WWW) link to the home page of the library where information on e.g. opening and closing hours, late return fees, etc. can be found.
  • An electronic key card is a virtual card that replaces a conventional key or a conventional plastic key card for a door.
  • a transaction terminal provided in connection to the door lock controls if the user of the virtual key card in the mobile terminal is authorized for access through the door.
  • a membership card is a service card that confirms membership in an association or club. For example, it is possible to use the virtual membership card as a combined membership and discount card if membership in the association in question entitles to discounts in certain shops and stores. If the association has a clubhouse, the virtual card could also be used as a virtual electronic key.
  • a company-identity card can be used as a virtual electronic key and as a means for identification in general.
  • the virtual card may be used for payments e.g. in a company restaurant.
  • the company may have agreements with shops, stores and gyms, and the card can then be used to get discounts.
  • the pharmacy card is a sort of bonus card, on which a purchase at a pharmacy will be registered and a discount given in accordance with predetermined rules.
  • the service card transactions over the wireless LAN are financial transactions such as credit card and cash card transactions.
  • financial transactions such as credit card and cash card transactions.
  • Fig. 4 is a schematic diagram illustrating a second example of a transaction system according to a preferred embodiment of the invention.
  • the transaction system comprises a number of at least partially overlapping wireless LANs.
  • three wireless LANs A, B and C are illustrated, each of which has a transaction terminal 22, 24 and 26, respectively.
  • the transaction system further comprises two mobile terminals 10A, 10B that are within the coverage of at least one of the LANs.
  • the mobile terminal 10B is within the coverage of two of the LANs A and B.
  • a transaction is to be performed between a mobile terminal 10B operated by a user and a transaction terminal of a wireless LAN operated by a salesman or merchant.
  • a connectivity layer of the wireless LAN a connection between the mobile terminal and the transaction terminal is established. If the transaction terminal involved acts as master station of the wireless LAN, the mobile terminal and the transaction terminal communicate directly with each other. However, if the transaction terminal involved in the transaction is not a master station, communication between transaction terminal and mobile terminal is normally, although not necessarily, performed via the master station of the wireless LAN.
  • a procedure is normally required to identify the session to be completed by the payment transaction and to ensure that payment is performed with the relevant transaction parties involved.
  • the relevant transaction parties and the relevant session are identified by a number of parameter values transferred over the wireless LAN.
  • the number of parameter values necessary for this identification varies from case to case.
  • the transaction terminal of the salesman knows which parameters are required to identify a session among a number of on-going sessions in the local network.
  • the transaction terminal preferably transmits information about which parameters that are requested, or information on selectable parameter values for each one of the parameters to the mobile terminal, and the mobile terminal then responds by transmitting the parameter values.
  • Fig. 5 is a schematic diagram of screen displays in a mobile terminal, illustrating a procedure for identifying a session according to a preferred embodiment of the invention.
  • the mobile terminal receives signals from the wireless LANs of several salesmen, shops or restaurants, the options may be presented on the display 42 of the mobile terminal.
  • the user of the mobile terminal preferably uses the key pad to select one of the wireless LANs, for example the LAN of shop or restaurant 'B', and a parameter value representative of the selected wireless LAN is transmitted to the LAN in question.
  • these alternative terminals may also be presented as for example menu options on the display 44 of the mobile terminal.
  • the user of the mobile terminal selects one of the terminals and a corresponding parameter value is transmitted to the selected transaction terminal.
  • the transaction terminals transmit information about which parameters that are requested in order to identify a session. This information may be presented on the display 46 of the mobile terminal, and the user then enters a number of parameter values that are subsequently transmitted over the wireless LAN.
  • the session may be identified by using the number of the table in the restaurant, and if necessary even the seat at the table.
  • the parameter value or values also identify the transaction terminal.
  • the parameter value for the table may indirectly point out a particular transaction terminal assigned to this table.
  • the electronic wallet according to the invention may also include support for ordering of goods and services.
  • a menu can be transferred from a transaction terminal in the restaurant to the mobile terminal of a user.
  • the menu is then displayed in the mobile terminal and the food can be ordered by using the order functions of the electronic wallet.
  • the order may be presented at a terminal for the waiter who subsequently transfers the order to the kitchen.
  • the order is presented at a terminal in the kitchen.
  • a session number is assigned to the order, and stored in the transaction terminal as well as the mobile terminal. At payment, the session number can be retrieved and used to identify the transaction.
  • the order is stored in the cash register included in or connected to a transaction terminal of the restaurant.
  • the bill can then be produced on request and transferred to the electronic wallet of the user's mobile terminal without any interference of the waiter.
  • the restaurant has a system for ordering, it can be used by employees of the restaurant. If a guest does not have a mobile terminal equipped with an electronic wallet according to the invention, a waiter can use such a mobile terminal to take the order and transfer it by using the electronic wallet therein. The bill is then easily produced, based on the electronic order.
  • the terminal used by the waiter may also include functions to print out the bill and an ordinary card reader for plastic cards.
  • the relevant transaction terminal When the relevant transaction parties and the relevant session has been identified, the relevant transaction terminal normally transmits a bill to the buyer so that the he or she can check that the bill corresponds to the products/ services bought.
  • the buyer selects the credit card or cash card that he or she wants to use to complete the session.
  • a card is selected from the electronic wallet in the mobile terminal 10B.
  • the electronic wallet platform in the mobile terminal operates, in some sense, as a card reader and reads the relevant information, such as card number, card holder, card issuer and expiry date, from the selected virtual card. This information is transmitted to the transaction terminal by the LAN interface of the mobile terminal utilizing the security system that is associated with the currently used card.
  • the transaction terminal receives the service card information and commits, in response to an acceptance of the transaction, the payment transaction.
  • commit is meant that the transaction is carried on to a conclusion, seen form the perspective of the user of the mobile terminal.
  • the transaction terminal transfers information to a server or host computer of a bank or credit card company, where the transaction is registered and funds eventually are transferred from the account of the user to the account of the salesman.
  • Fig. 6 is a schematic flow diagram of a transaction method according to a preferred embodiment the invention.
  • the transaction method according to the invention involves a mobile terminal, which has service-card transaction functions.
  • step 52 at least one virtual service card is implemented in the mobile terminal, and the service-card transaction functions include functions for handling the virtual service card.
  • step 54 the mobile terminal is connected to a wireless LAN which includes at least one transaction terminal, and in step 56 a service card transaction related to the virtual service card is performed between the mobile terminal and the transaction terminal via the wireless LAN.
  • Fig. 7 is a schematic diagram illustrating a third example of a transaction system according to a preferred embodiment of the invention.
  • the wireless LAN 60 of the transaction system comprises two mobile terminals 10A, 10B and a single transaction terminal 22. Assume by way of example that the mobile terminal 10A is requesting the initiation of a transaction.
  • Fig. 8 is a diagram illustrating a first example of a communication session performed in a system such as that illustrated in Fig. 7.
  • the mobile terminal 10A transmits a request 70 to the transaction terminal 22 over the wireless LAN 60.
  • the transaction terminal 22 transmits information 72 about a session to be completed by a service card transaction, in response to the request 70.
  • the session information 72 may include detailed information about the session; for example in the form of a bill with a specification of a purchase. Alternatively, the session information may simply be a cash register sum.
  • the user accepts or rejects the service card transaction, and the mobile terminal 10A then transmits an acceptance or rejection 74 of the transaction, normally together with service card information 74 to the transaction terminal.
  • the service card information normally includes a service card number and associated information.
  • the transaction terminal 22 commits 76 the transaction. If necessary, the transaction terminal 22 also transfers information to a server in a bank or other institution.
  • Fig. 9 is a diagram illustrating a second example of a communication session performed in a system such as that illustrated in Fig. 7.
  • the mobile terminal 10A transmits a request 80 to the transaction terminal 22 over the wireless LAN 60.
  • the transaction terminal 22 transmits information 82 on which parameter(s) that is requested to identify a session among a number of on-going sessions, or selectable parameter values for each one of the parameter(s).
  • the user of the mobile terminal enters at least one parameter value 84 that is transmitted to the transaction terminal over the wireless LAN.
  • information 86 about the identified session is transmitted to the mobile terminal over the wireless LAN 60. Based on this information, the user may accept or reject a service card transaction.
  • the mobile terminal transmits an acceptance 88 to the transaction terminal 22.
  • the mobile terminal 10A also transmits service card information 88, such as a service card number or equivalent, to the transaction terminal 22.
  • service card information 88 such as a service card number or equivalent
  • Fig. 10 is a schematic diagram illustrating a fourth example of a transaction system according to a preferred embodiment of the invention.
  • the wireless LAN 100 of the transaction system comprises three transaction terminals 22, 24, 26, and three mobile terminals 10A, 10B, IOC.
  • Fig. 11 is a diagram illustrating a third example of a communication session performed in a system such as that illustrated in Fig. 10.
  • the mobile terminal 10A transmits a request 120 and at least one parameter value 124 that identifies a session associated a service card transaction over said wireless LAN.
  • the parameter value or values 124 are sent to the master station 22 of the LAN 100.
  • the parameter value or values 124 also identifies one of the transaction terminals of the LAN, and the master station 22 informs the identified transaction terminal.
  • the identified transaction terminal transmits information 126 about the identified session to the mobile terminal over the wireless LAN.
  • the mobile terminal receives the session information to enable acceptance/rejection of the service card transaction based on this information, and an acceptance or a rejection 128 of the transaction is transmitted to the identified transaction terminal.
  • the mobile terminal also transmits service card information 128 to the identified transaction terminal over the wireless LAN, and finally the transaction terminal commits 130 the transaction in response to an acceptance.
  • Fig. 12 is a schematic diagram of a transaction system according to an alternative embodiment of the invention.
  • the transaction system 200 of Fig. 12 is similar to the system of Fig. 3, except for the mobile terminals 11A, 1 IB.
  • Each one of the mobile terminals 11A, 1 IB includes a card reader for a real service card.
  • Any ordinary card reader such as a card reader provided with a card slot for insertion of a real plastic card or a contactless card reader, may be used by the invention.
  • the mobile terminals 11 A, 11B are based on conventional dual-slot mobile phones, but it is possible to use other mobile terminals such as a PDA provided with a card reader.
  • each one of the mobile terminals 11 A, 11B further comprises means for connecting the mobile terminal to the wireless LAN 200 to enable a service card transaction, related to the real service card, between the mobile terminal and a transaction terminal via the wireless LAN.
  • the card reader reads information from the service card.
  • a software module executing in the processing environment of the mobile terminal handles the information and makes sure that the information is ready to be transmitted over the wireless LAN by a wireless LAN interface such as a Bluetooth chip.
  • the card reader may write information to the card.
  • the electronic wallet software that handles the virtual service cards may also handle the information read from the real plastic service cards by the ordinary card reader.
  • a virtual counterpart i.e. a corresponding virtual service card, is generated by use of the electronic wallet software.
  • the electronic wallet platform according to the invention may support several different security levels. Different service cards may have different requirements on the security system. The lowest security level is merely based on the ownership of the mobile terminal. However, this is normally not the recommended level of security.
  • Sensitive information such as card number, the identity of the cardholder and the card issuer and expiry date can be encrypted with the private key of the card issuer. This makes sure that this information can not be manipulated, but gives no protection for unauthorized duplication of the card.
  • Storing a transaction number or a session number for each transaction facilitates a later review of performed transactions if transaction errors are suspected.
  • certain types of fraudulent behavior may be detected. For example, it is possible to detect a duplicated card used in parallel with the ordinary card.
  • biometric procedures may provide a higher security level than the use of PIN-codes.
  • biometric procedures include scanning of fingerprints, voice recognition mechanisms, and the use of digital signatures. These biometric methods may replace the PIN-code or used as a complement.
  • Storing and checking PIN-codes and/ or biometric codes in special hardware may provide a higher level of security than that obtained when storing the PIN- code in a conventional computer memory.
  • the special hardware can either be provided at the SIM card of the mobile terminal, if such a card exists, or provided at an additional smart card. It is also possible to use a built-in hardware function for this purpose. The hardware should have functions for limiting the number of unsuccessful attempts to access the card or the electronic wallet.
  • a security function commonly required by many service cards is encryption by a private key to prove authentication.
  • a certificate is issued by a so-called Certification Authority. The certificate binds a person to a predetermined public key. More information on certificates, private keys and public keys can be found e.g. in the book Understanding Digital Signatures by G. L. Grant, McGraw-Hill, New York, 1998, pages 123-126.
  • SET-protocol Secure Electronic Transaction
  • SET is primarily intended for credit card transactions over the Internet.
  • the main security goals of SET are information confidentiality, payment information integrity and merchant/ cardholder authentication. With SET it is possible to protect e.g. the cardholder's credit card number, and make sure that only authorized parties can use it. More information on SET can be found e.g. in the book Understanding Digital Signatures by G. L. Grant, McGraw-Hill, New York, 1998, pages 110-116.
  • such a protocol is implemented in the transaction system according to the invention.
  • public wireless telecommunication networks such as the GSM network using the WAP protocol (Wireless Application Protocol), may be used by the mobile phones according to the invention for service card transactions over longer distances in a traditional manner.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
EP00906806A 1999-02-05 2000-01-18 Service card transactions over a wireless lan Withdrawn EP1151580A1 (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
SE9900397 1999-02-05
SE9900397A SE514999C2 (sv) 1999-02-05 1999-02-05 Transaktioner med servicekort över ett trådlöst LAN
PCT/SE2000/000085 WO2000046959A1 (en) 1999-02-05 2000-01-18 Service card transactions over a wireless lan

Publications (1)

Publication Number Publication Date
EP1151580A1 true EP1151580A1 (en) 2001-11-07

Family

ID=20414375

Family Applications (1)

Application Number Title Priority Date Filing Date
EP00906806A Withdrawn EP1151580A1 (en) 1999-02-05 2000-01-18 Service card transactions over a wireless lan

Country Status (5)

Country Link
EP (1) EP1151580A1 (sv)
AU (1) AU2836500A (sv)
CA (1) CA2361748A1 (sv)
SE (1) SE514999C2 (sv)
WO (1) WO2000046959A1 (sv)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1107522B1 (en) * 1999-12-06 2010-06-16 Telefonaktiebolaget LM Ericsson (publ) Intelligent piconet forming
US7330838B2 (en) * 2001-12-31 2008-02-12 Ncr Corporation System and method for securing transactional data transmitted over a wireless network in a retail store environment
US7353382B2 (en) 2002-08-08 2008-04-01 Fujitsu Limited Security framework and protocol for universal pervasive transactions
CA2648523C (en) 2005-04-21 2018-09-04 Securedpay Solutions, Inc. Portable handheld device for wireless order entry and real time payment authorization and related methods
FR2985341B1 (fr) * 2011-12-30 2015-01-09 Pw Group Procede et systeme de securisation d'un paiement realise a l'aide d'une carte de paiement

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5387784A (en) * 1990-10-30 1995-02-07 Societe D'applications Generales D'electricite Et De Mecanique Sagem Portable payment terminals and network for such terminals
US5591949A (en) * 1995-01-06 1997-01-07 Bernstein; Robert J. Automatic portable account controller for remotely arranging for payment of debt to a vendor
GB9503662D0 (en) * 1995-02-23 1995-04-12 Coveley Michael Free-roaming remote hand-held point-of-sale terminal
TW355899B (en) * 1997-01-30 1999-04-11 Qualcomm Inc Method and apparatus for performing financial transactions using a mobile communication unit

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
None *
See also references of WO0046959A1 *

Also Published As

Publication number Publication date
SE9900397L (sv) 2000-08-06
SE514999C2 (sv) 2001-05-28
AU2836500A (en) 2000-08-25
SE9900397D0 (sv) 1999-02-05
CA2361748A1 (en) 2000-08-10
WO2000046959A1 (en) 2000-08-10

Similar Documents

Publication Publication Date Title
EP1719322B1 (en) Electronic payment schemes in a mobile environment for short-range transactions
US7014107B2 (en) Wireless payment processing system
KR100670779B1 (ko) 무선통신망 접속장치를 구비한 atm 및 이를 이용한금융서비스 제공방법
US7458510B1 (en) Authentication of automated vending machines by wireless communications devices
US9704327B2 (en) Multi-function transaction device
US6195541B1 (en) Interaction of a wireless telephone with a transaction unit
US7533065B2 (en) Advanced method and arrangement for performing electronic payment transactions
US20070206743A1 (en) System and method for facilitating transaction over a communication network
US20030172028A1 (en) Authorization of payment for a commercial transaction via a bluetooth enabled device
US20090150248A1 (en) System for enhancing payment security, method thereof and payment center
RU2452020C2 (ru) Способ осуществления платежей (варианты) и система для осуществления способа
JP2004500607A (ja) スマートカード財布
WO2001009807A1 (fr) Systeme de reglement electronique, et dispositif et terminal de reglement
CA2361489A1 (en) Method of effecting cashless payments and a system for implementing the method
JP2010501147A (ja) 無線取引のためのシステム及び方法
JP2003530630A (ja) 電子金融取り引きシステム及びプロセス
EP1308871A2 (en) Controlling transactions
EP1151580A1 (en) Service card transactions over a wireless lan
JP2004164597A (ja) 商品及びサービスを購入する方法
KR20030012149A (ko) 근거리 무선 통신이 가능한 휴대용 단말기를 이용한전자요금 결제 시스템 및 그 방법
KR20030041754A (ko) 전자 화폐 처리 방법, 프로그램 및 기록 매체
JP3433735B2 (ja) 現金自動振込方法
EP1408435A1 (en) Electronic currency transfer settling system
CA2475275C (en) Wireless data processing system for credit payment
JP2004508612A (ja) 使用者番号が自動的に更新される認証/決済カード及びこれを利用した認証/決済システム並びにその方法

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20010905

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE

AX Request for extension of the european patent

Free format text: AL;LT;LV;MK;RO;SI

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: TELEFONAKTIEBOLAGET LM ERICSSON (PUBL)

RBV Designated contracting states (corrected)

Designated state(s): DE FR GB

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20170801