EP2561489A1 - Procédé de vente dans un magasin électronique accessible depuis un dispositif de communication mobile - Google Patents

Procédé de vente dans un magasin électronique accessible depuis un dispositif de communication mobile

Info

Publication number
EP2561489A1
EP2561489A1 EP10773712A EP10773712A EP2561489A1 EP 2561489 A1 EP2561489 A1 EP 2561489A1 EP 10773712 A EP10773712 A EP 10773712A EP 10773712 A EP10773712 A EP 10773712A EP 2561489 A1 EP2561489 A1 EP 2561489A1
Authority
EP
European Patent Office
Prior art keywords
payment
removable memory
memory card
card
acquirer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP10773712A
Other languages
German (de)
English (en)
Inventor
Miroslav Florek
Michal Masaryk
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
SMK Corp
Original Assignee
Logomotion sro
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from SK50016-2010A external-priority patent/SK500162010A3/sk
Priority claimed from SK50021-2010A external-priority patent/SK500212010A3/sk
Application filed by Logomotion sro filed Critical Logomotion sro
Publication of EP2561489A1 publication Critical patent/EP2561489A1/fr
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3226Use of secure elements separate from M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists

Definitions

  • the solution refers to cooperation between the virtual shop systems, payment system and clearing system that can be assured by different entities.
  • the solution also describes the way of installation, activation of the selected hardware elements, the way of user registration in the system and the process of realization of payment-terminal operations by which it is possible to ensure a reliable and secure process of payment and sales.
  • the users of the mobile communication devices that can be in different forms such as the mobile phones, PDA tablets, notebooks have available an electronic trade system (e.g. in the form of OVI store by Nokia), in which they can buy various electronic items such as ring tone downloads, songs, maps, games and other applications.
  • the user must register before the first purchase and log into the trade system and usually he also has to install a corresponding application, which communicates with the corresponding trade system in the headquarters, into his mobile communication device.
  • the user can be asked to enter user name and password, under which he will be always recognized. After the creation of his own account in the trade system, the user is informed of the result of the registration and he can also be then logged into the trade system.
  • an e-mail or SMS message with an activation link can be sent from the trade system to a selected e-mail address or phone number. By clicking on the activation link the entered e-mail or phone number is verified in the trade system.
  • the user ' s registration can also be linked to the confirmation of acceptance of the trade conditions of the trade system ' s provider.
  • the user can select the goods he wants to buy, e.g. MP3. By clicking on the "buy” item, the trade system requests that the password be entered.
  • the payment card After successful verification of the user, there is the selection of the payment card by which the user wants to pay. According to the selection of the payment card, the user is asked to enter PAN, the card ' s number, date, card expiration and also the CVC2/CVV2 code.
  • the information inserted in such a way IS sent TO the trade systems headquarters, where it is processed as a common payment by a payment card. In order to increase comfort, this data of the payment card or several payment cards can be stored even in the mobile communication device.
  • configuration there can also come to the pairing of the removable memory card with the specific mobile communication device and that e.g. to the SIM card or to the mobile communication device ' s hardware.
  • the user ' s registration can encompass also the communication with the remote headquarters of the trade system, where the identification data of the user will be stored.
  • the installation of such a program can start now along with the registration of the user with the trade system.
  • the payment terminal on the removable memory card can be set as the preferred way of payment.
  • the payment application is installed at a time when the application for the communication with the trade system is already installed and the user is already registered, the possibility of supplementary setting of the preferred way of payment is used.
  • the steps described so far represent a preparation phase, for which it is enough to be realized only once during the given hardware connection between the removable memory card and the specific mobile communication device.
  • the next phase represents the execution of a trade, which includes in it the run of the payment terminal application according this solution with the following steps:
  • the user After deciding to purchase an item from the trade system, the user goes to the menu of the mobile communication device and runs the corresponding user application for the trade system. In this step the stored parameters of the user ' s account are loaded and the user is enabled to select the desired item by looking through the items in the remote headquarters of the trade system.
  • the user agrees to purchase the selected item.
  • the trade system asks him to enter the password that belongs to the given account of the user. (Alternatively, the password can be provided automatically from a secure location on the memory card.)
  • the application waits for the confirmation from the user. After the confirmation, the payment-terminal application runs directly on the removable memory card. After the selection of the payment application according to this solution, the controller and the interface between the removable memory card and the mobile communication device is activated. In case the check of the entered password (if optionally required) of the payment terminal application is positive then the acquirer's configuration data are loaded into the payment-terminal application. By this the general generic payment terminal becomes a specific terminal with the acquirer's identity.
  • the payment terminal unit could have the acquirer ' s identification data pre- inserted and loaded as the basic data and only data of the payment terminal, however by this the otherwise wide possibilities of the usability of the payment terminal on the removable memory card would be narrowed.
  • the acquirer ' s identification data are sent into the headquarters of the trade system over communication tools that are offered by the mobile communication device itself, this means e.g. over GPRS (General Packet Radio Service) channel.
  • GPRS General Packet Radio Service
  • the evaluation of the acquirer ' s status basically means to find out the pertinence to the given trade system.
  • the data set with payment parameters may or may not be encrypted.
  • the file with input parameters is sent over the corresponding interface and controller to the payment terminal unit on the removable memory card.
  • the payment terminal unit starts the communication with the payment card unit. The communication between them is the same as if it was a connection between the POS (point of sale) terminal and ICC (integrated circuit card) payment card inserted in a payment card reader.
  • the result of the transaction is encrypted by the acquirer ' s private key and is sent over the removable memory card ' s interface to the mobile communication device, which sends the payment cryptogram to the trade system ' s headquarters.
  • the payment cryptogram is decrypted by the acquirer ' s public key and its status is evaluated.
  • the payment can be processed as offline or online payment.
  • offline payment the trade system ' s headquarters does not have to be always connected to the acquirer.
  • declining response in a common ACC Application Authentication Cryptogram
  • the user is sent the information of the fact that the payment was declined.
  • the offline payment is evaluated positively, the user is sent a confirmative response in the TC (Transaction Certificate) form.
  • the online payment is evaluated through the connection with the acquirer.
  • the trade system In case of requesting the response in the ARQC form (Authorization Request Cryptogram), the trade system is connected to the acquirer's system with the question and task for authorization of the payment.
  • the authorization is realized in connection with the payment card's issuer's system.
  • the response to the ARQC request file is a cryptogram in the ARPC (Authorization Response Cryptogram) form, which contains a confirmation or declination of the payment.
  • the message is encrypted by the acquirer ' s private key.
  • the acquirer sends the cryptogram to the trade system ' s headquarters, where the final decision act is realized according to the type of the cryptogram and the user is informed on its result in the form of AAC/TC (or a corresponding message) on the display of the mobile communication device.
  • the payment terminal application runs as an online application, which enables the terminal to realize a preset number of the offline payments according to the settings on the payment card.
  • the ARPC payment cryptogram is sent over the interface to the removable memory card after it is received by the mobile communication device.
  • the payment terminal unit receives this cryptogram and sends an instruction for the reset of the counter into the payment card unit.
  • the acquirer creates payment files, which from the cooperating banks' point of view have the same structure as if they were created during a payment on a common POS terminal. Given that, the settlement of the transaction and subtraction of the amount form the user's account is the same as in case of normal current cashless transactions.
  • the confirmation of payment is displayed to the user and subsequently data which represent the item purchased are transferred from the trade system.
  • the transfer is possible into the user ' s mobile communication device or even to a third person ' s device to whom the user sends the purchased item as e.g. a gift.
  • the application in the mobile communication device offers the possibility to return directly to the point Bl for the realization of the purchase of further item or it returns to the common menu on the display.
  • the following units can be located on the removable memory card: payment terminal application unit, especially of the EMV standard (Europay, MasterCard, VISA), the payment card unit, microcontroller, cryptographic unit, the unit of self installation.
  • a NFC communication element with an antenna can also be part of the removable memory card, thanks to which the removable memory card becomes capable of communication with standard POS terminals, and it will be possible to use it not only for payments in a remote trade system where the communication is assured by the mobile communications device, e.g. over GPRS
  • the removable memory card is inserted in the corresponding slot of the mobile communication device representing an element that is held by the user.
  • This removable memory card has corresponding software was provided by the acquirer, which has a contractual relationship with the operator of the trade system.
  • the acquirer ' s system is connected with the trade system on a remote location outside the mobile communication device and the acquirer ' s system encompasses the unit with the payment terminal's configuration data and also the encryption and decryption unit.
  • the package with a program for communication with the trade system can be a part of the removable memory card.
  • the issuer of the card e.g. the bank that provides the corresponding data into the payment card unit located on the removable memory card, is part of assurance of the run of the cashless payments.
  • the acquirer and the card ' s issuer may be, but do not have to be the same entity.
  • the suitable arrangement of relations between the user and individual operators of trade systems will include a contract between the user and the card's issuer, a contract between the acquirer and the operator of the trade system and a contract between the acquirer and the card ' s issuer.
  • the operator of the trade system does not have to have his bank account at the payment card issuer but he can have his money sent to an account in another bank.
  • the solution described allows some participants to merge, e.g. the payment card ' s issuer can be even an acquirer, but the advantage of the solution presented is in the fact that it enables to use the existing systems and relations between the card issuer, banks and operators of trade systems.
  • the mobile communication device can become attack target with the goal of stealing the data of payment card, which is constantly prepared for the cooperation with the mobile communication device ' s circuits.
  • the removable card had two independent access modes.
  • One access mode is designed and set for the common function of the removable memory card which rests in the extension of the memory capacity of the mobile communication device, such as a mobile phone.
  • This access mode prevents access to the unit with the payment card and to the contactless communication element on the removable memory card.
  • this access mode on the removable memory card ' s interface this card appears to be a common removable card without the secure element and without the communication element on the removable memory card.
  • the second access mode is designed and set for the payment function of the removable memory card, where the access to the unit with the payment card and also to the contactless communication element on the removable memory card is allowed from the mobile communication device ' s circuits over an interface. In case there is even the unit with the payment terminal located on the removable memory card, then this unit is also accessible just and only in the access mode for the payment function.
  • the two modes are alternatively selectable, it is important, that the access mode for the payment function of the removable memory card can be active only after physical press of the hardware payment button.
  • the removable memory card, on which at least one payment card unit is located appears to be a removable memory card for the extension of the memory capacity of the mobile communication device on the interface and that up until the moment when the purpose payment button is physically pushed. Then the removable memory card is made accessible on the interface as a card with Secure Element and at least one payment card unit.
  • the removable memory card behaves as if it contained only a flash memory for the extension of the memory capacity with a corresponding microcontroller. In this state the reading and writing of files is enabled in the memory of the removable memory card, however other elements, e.g. the Secure Element, the NFC communication element are hidden and cannot be managed or run in this mode.
  • the existence of the purpose hardware payment button enables the change of the removable payment card ' s character on its interface level to be tied exclusively to the physical press of the payment button.
  • the necessity of physical press of the button excludes the possibility to run the payment application by some undesirable software or script imitating the will of the user.
  • the removable memory card will behave as a standard memory card and only after physical press of the payment button will switch into the payment card mode. The end of payment application will automatically switch the card's mode into the common card extending the memory capacity mode.
  • FIGs 1 to 45 there are diagrams which gradually show the four steps of the preparatory phase with the installation of the payment application, which occurs after the insertion of removable memory card into the mobile phone ' s slot.
  • FIG 2 there is also an example of how the personal data are entered during the configuration of the payment application.
  • figure 3 there is the step with entering a password from the supplier of the removable memory card.
  • FIG 4 there is an example of the mobile phone ' s display in case there is the possibility of pairing the mobile communication device with the removable memory card.
  • Figure 5 demonstrates the way how the activation key, which belongs to the specific removable memory card, is entered.
  • Figure 7 contains the step with the proposition to install the application, which is designed for communication with the trade system.
  • Figure 8 shows the procedure diagram for the case, when after the payment application is installed there runs the installation of the application for the communication with the trade system.
  • Figure 9 shows the presetting of the preferential payment method in the application for the communication with the trade system
  • On figure 12 there is a block scheme showing the first insertion of the removable memory card into the mobile communication device, after which self installation begins.
  • On figure 13 there is an example of the structure of the data entered into the payment application by the user.
  • On figure 14 there is the possibility that the data entered by the user before are used even during the installation and registration of the application for the communication with the trade system.
  • On figure 15 there is a transmission of user data into the trade system ' s headquarters.
  • FIGs 16 to 19 there are diagrams showing the steps taken during the purchase in the trade system from the user ' s point of view.
  • FIG 16 there is the step with the offer to purchase a specific item.
  • On figure 17 there is an example of the selection of the payment method.
  • On figure 18 there is the payment application ' s run.
  • Figure 19 demonstrates the download of the purchased item into the mobile communication device.
  • Figure 20 shows the structure of elements, where the system encompasses a mobile phone, a removable memory card and then the headquarters of trade systems connected to acquirer, which is also connected to the cardissuer.
  • the acquirer ' s identificators, acquirer ' s public key and the terminal ' s identification are transferred to the database of the trade system ' s operator on the basis of the contract between the trade system's operator and the acquirer.
  • Figures 23 and 24 show the state after the pre-preparation phase when the necessary data and applications from all participants of the system are loaded on the removable memory card.
  • Figure 25 shows a procedure of operations carried out in the preparatory phase within the mobile communication device.
  • figure 26 there is depicted the transfer of data from the mobile communication device to the trade system ' s headquarters during the preparatory phase.
  • FIG 27 there are shown the relationships between individual elements during the start of the payment terminal application on the removable memory card. This activity is started by the offer to purchase selected item. On this picture we can see how after the correct password is entered, the payment terminal ' s identification data are requested.
  • FIG 30 there is shown the way in which the payment parameters are transferred over the interface to the removable memory card, the payment parameters being used as an input into the payment-terminal application.
  • Figure 31 depicts the course of processing and the encryption in the payment terminal unit using the acquirer ' s private key.
  • Figure 32 shows how the payment cryptogram is transferred from the mobile communication device to the trade system ' s headquarters, while the payment cryptogram uses the card issuer ' s MasterKey and also the acquirer ' s private key.
  • Figure 37 depicts the relations between the card ' s issuer and the acquirer during online authorization.
  • Figure 38 depicts the way the encrypted ARPC response is sent from the acquirer into the trade system ' s headquarters, where the command is decrypted and evaluated.
  • Figure 39 depicts the course of resetting the counter on the payment card unit after a successful online payment.
  • Figure 40 depicts the possibilities of cryptograms on the acquirer ' s side.
  • Figure 41 depicts the acquirer ' s position with received cryptograms in relation to other participants involved in the trade system.
  • Figure 42 is an example of communication during the settlement of realized payments with further participant, which is the bank of the trade system's operator.
  • FIG 45 there is a schematically displayed diagram showing the successiveness of the payment application ' s run with the press of the hardware payment button, where it is possible to see the localization of the individual tasks and processes during the launch of the application on the level phone hardware / phone firmware / removable memory card.
  • the trade system 2 known as OVI store which is operated by the NOKIA company is described in this example according to figures 1 to 44.
  • the submitted technical solution is capable of cooperation with any other trade system 2 on the same principle and it is not necessary to consider the usage of the OVI store designation, which is registered mark of the NOKIA company as narrowing the scope of the protection.
  • the usage of the image of the mobile communication device 4 in the form of the NOKIA E71 mobile phone is only an example that should facilitate understanding of relationships and processes in the system described and cannot be regarded as a narrowing of the required scope of protection.
  • the user 3 of the mobile communication device 4 Nokia E71 inserts a removable memory card, which he received from the issuer into his phone.
  • the LGM acquirer 12 has a contract with the card's issuer 1_3 and also with the operator of the trade system 2 OVI store. Thanks to this cooperation, during the pre-preparation phase, the acquirer 12 stored the payment card unit 5, which contains the data in the same structure of existing ICC payment cards including the payment card ' s personal data unit 1_8 into the removable memory card 1. In the same time, even the program necessary for the communication with the trade system 2 is loaded on the removable memory card 1 and it is stored in the trade application installation unit 17.
  • the user 3 could download this program into his mobile communication device 4 even from the OVI store trade system ' s 2 headquarters over the mobile network 14, however, for which he would have to pay as for common data transfer and therefore it is suitable if the corresponding software was located directly on the removable memory card1.
  • the payment application ' s installation which in this example is labeled as LGM payment application, is started automatically according to the figures 12, 25 and 1.
  • the run of the installation (figures 1 to 6) is gradually shown on the display 10 of the mobile communication device 4 and the user 3 confirms the process and enters personal data and passwords through the keyboard 9 of the mobile communication device 4.
  • the user uses even the password from the card's issuer l_3._After entering the correct password he is shown on the display 10 that the LGM payment application was installed and is prepared for usage (figure 6).
  • the software necessary for the communication with the trade system was not yet installed in the mobile communication device 4 and therefore the user 3 is offered the possibility to install (figure 7).
  • the trade system can be preset in such a way that no communication program is required directly in the mobile communication device 4 and it uses only a common internet explorer.
  • the pre-preparation phase is depicted on the figures 20 to 24.
  • the trade system ' s 2 operator and acquirer 12 signed a contract, on the basis of which the operator receives the parameters for the run of the transaction (identification of the acquirer 12 through ID, his public encryption key and the payment terminal ' s identificator set). In case of agreement, the acquirer 12 can ensure the placement of the trade application installation unit 17.
  • the configuration data for the payment terminal (e.g. in the EMVP structure) unit 6 placed into the configuration data unit 1 1 , which is usually in the form of a protected Secure Element.
  • the payment terminal unit 6 will fulfill the role of the virtual POS terminal for the payments in the trade system 2.
  • the LgmPayCard parameters are placed into the Secure Element.
  • the preferential way of payment is the payment over the LGM payment application (figure 9).
  • the payment card units 5 are located within the mobile communication device 4 and the removable memory card 1.
  • the user 3 is offered the possibility to shop (figure 11) in the trade system 2. From the user ' s 3 point the course of payment in the trade system 2 is almost the same as in case of existing way of payment (figures 16 to 19).
  • the possibilities of payment appear on the display 10 of the mobile communication device 4. In this case three possibilities appeared on the display 10 and these are payment by the VISA card, payment by the MasterCard card and payment over the LGM Pay payment terminal.
  • the controller 7 manages the communication between the LGM payment application and the LgmPayCard.
  • the task - request for the acquirer ' s identification 12 - runs over the microSD controller 7 (figure 27) in the removable memory card 1.
  • the acquirer ' s identification 12 is loaded from the configuration data unit H into the EMV processor unit, which represents the payment terminal 6 unit. From there the acquirer ' s identification 12 is sent over the microSD controller 7 and the mobile data network 14 (figure 28) into the trade system ' s headquarters 2. There it is evaluated if the acquirer ' s identification 12 belongs to any of the entities with which the the trade system ' s 2 operator has a contract.
  • the positive response runs a task on the side of the trade system 2 during which transaction payment parameters are sent back into mobile communication device 4.
  • the LGM payment application sends request for transaction with corresponding parameters to the payment terminal 6 unit, where it is evaluated in cooperation with the payment card application (e.g. PayPass risk management) and the transaction in EMV standard is prepared.
  • the encryption runs over the card issuer ' s 13 masterkey.
  • the data are sent over the microSD controller 7 into the payment terminal 6 unit, which in this phase (figure 30) operates as a payment terminal of the acquirer 12.
  • This payment cryptogram was created by being encrypted by the acquirer ' s 12 private key and where the part of the encrypted file is a cryptogram encrypted using the card issuer ' s 13 MasterKey ( Figure 32).
  • the encryption and decryption on the platform of the removable memory card 1 is ensured by an encryption unit 15 . .
  • the decryption of the payment cryptogram is possible thanks to the fact that the trade system 2 operator has previously stored public encryption keys from the acquirer 12. The operator evaluates further proceedings according to the decrypted message.
  • the approved online payments are depicted in figures 36 to 38. This kind of procedure is necessary in case when higher amount is being paid or after the preset number of offline payment is realized.
  • the request ARQC file is sent ( Figure 37) from the trade system ' s 2 headquarters to the acquirer 12, which sends the task for online authorization to the card ' s issuer 13.
  • the authorization of the status runs there and a response is created.
  • the acquirer 12 sends this response into the trade system ' s headquarters 2, where the response is decrypted ( Figure 38) by the acquirer ' s 12 public key and sends the result in the form of AAC or TC into the mobile communication device 4.
  • the successful payment starts download of the data paid for into the mobile communication device 4.
  • the entire business case is ended from the outside point of the view of the user 3.
  • figure 39 it is shown how it is possible to reset the counter on the payment card unit 5 after the successful realization of the online payment.
  • the ARPC file is sent into the payment terminal 6 unit over microSD controller 7, where it is evaluated as an instruction to reset the counter since the APRC response file represents the confirmation on the successful realization of the online payment.
  • the specific parameters, the number of newly possibile offline payments is controlled by the Risk management preset by the payment card ' s issuer 1_3 in the payment card ' s unit 5.
  • the reset of the counter enables to realize a preset number of offline payments.
  • Trx RSA(Acq PrivKey[AcqID+TermID+TrxNo+RS(IssMKey[TrxDet]) + ARQC]).
  • these are located at the acquirer ' s 12 server and according to the processes that were agreed on and contracted beforehand ( Figures 41 to 44) the acquirer sends it to be settled between the card ' s issuer 1_3 bank and the trade system ' s 2 operator bank. All the transactions (offline and online) are sent in time intervals that were pre-agreed. The billing of transactions and the payments are realized in accordance with the standards of the participating banks and they are of the same form as in case of physical POS terminals at standard merchants.
  • NFC communication element 8 with an antenna on the removable memory card 1 even though it was not active in any of the steps decribed here. It is designed on the realization of payments over NFC readers of the standard POS terminals, which considerably extends the possibilities of usage of the payment devices on the removable memory card 1.
  • the industrial usability is obvious. According to this solution it is possible to industrially and repeatedly install, configure and use the way and process while selling in the trade system that is accessible from the mobile communication device. During this the payment terminal located on the removable memory card is used. The advantage is a high security while retaining current data standards of the payment transactions.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

L'invention porte sur un procédé qui recouvre une communication entre un système de transactions accessible sur une interface graphique utilisateur (GUI) de dispositif de communication mobile (4), lorsque, après la sélection de l'article acheté, l'identification de l'acquéreur (12) est chargée à partir de la carte mémoire amovible (1). L'identification de l'acquéreur (12) est envoyée au siège du système de transactions (2) où, après qu'elle a été approuvée, les paramètres de paiement de transaction sont créés, puis entrent dans la carte mémoire amovible (1) en tant qu'initiateur de l'application de terminal de paiement. L'application de terminal de paiement s'exécute sur la carte mémoire amovible (1) et elle crée un cryptogramme de paiement. Celui-ci est envoyé au siège du système de transactions (2), où il peut être traité en tant que cryptogramme commun de terminaux de points de vente (POS) habituels. Le procédé peut même comprendre une phase de préparation et de pré-préparation, grâce auxquelles des applications correspondantes des participants individuels du système sont installées, configurées et activées. Le paiement en ligne peut, de préférence, réaliser même la réinitialisation du compteur sur le dispositif de paiement.
EP10773712A 2010-04-19 2010-09-19 Procédé de vente dans un magasin électronique accessible depuis un dispositif de communication mobile Withdrawn EP2561489A1 (fr)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
SK50016-2010A SK500162010A3 (sk) 2010-04-19 2010-04-19 Zapojenie tlačidla platby v mobilnom komunikačnom zariadení, spôsob rozbehu platobného procesu
SK50021-2010A SK500212010A3 (sk) 2010-05-12 2010-05-12 Postup pri predaji v elektronickom obchode prístupnom z mobilného komunikačného zariadenia
PCT/IB2010/054229 WO2011132025A1 (fr) 2010-04-19 2010-09-19 Procédé de vente dans un magasin électronique accessible depuis un dispositif de communication mobile

Publications (1)

Publication Number Publication Date
EP2561489A1 true EP2561489A1 (fr) 2013-02-27

Family

ID=43513901

Family Applications (1)

Application Number Title Priority Date Filing Date
EP10773712A Withdrawn EP2561489A1 (fr) 2010-04-19 2010-09-19 Procédé de vente dans un magasin électronique accessible depuis un dispositif de communication mobile

Country Status (2)

Country Link
EP (1) EP2561489A1 (fr)
WO (1) WO2011132025A1 (fr)

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030055738A1 (en) * 2001-04-04 2003-03-20 Microcell I5 Inc. Method and system for effecting an electronic transaction
JPWO2003105037A1 (ja) * 2002-06-06 2005-10-13 富士通株式会社 購入者携帯端末と共働するデータ通信仲介装置
TW200732991A (en) * 2006-02-22 2007-09-01 Benq Corp Method for electronic transactions using a mobile communication device
SK50862008A3 (sk) * 2008-09-19 2010-06-07 Logomotion, S. R. O. Systém na elektronické platobné aplikácie a spôsob autorizácie platby

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO2011132025A1 *

Also Published As

Publication number Publication date
WO2011132025A1 (fr) 2011-10-27

Similar Documents

Publication Publication Date Title
US9098845B2 (en) Process of selling in electronic shop accessible from the mobile communication device
US20200286088A1 (en) Method, device, and system for securing payment data for transmission over open communication networks
CN107087432B (zh) 远程服务器加密的数据的储备系统和方法
JP6147896B2 (ja) モバイル・チェックアウト・システム及び方法
EP3232386B1 (fr) Procédé d'exécution de transactions avec des dispositifs de paiement sans contact utilisant des opérations de pré-prise et à deux prises
JP5562965B2 (ja) 電子決済アプリケーションシステムと決済認証方法
RU2659024C2 (ru) Система и способ безопасной загрузки, хранения и передачи данных с магнитных полос в устройстве, работающем с системой мобильного кошелька
EP2761553B1 (fr) Système de paiement
EP2688024A1 (fr) Procédé pour le paiement en ligne et système et dispositif électronique pour la mise en ýuvre de ce procédé
US10108958B2 (en) Method for processing a payment, and system and electronic device for implementing the same
CN107466409B (zh) 使用电子电信装置的绑定过程
KR20140125449A (ko) 거래 프로세싱 시스템 및 방법
CN102187353A (zh) 用于虚拟储值卡的身份验证的系统和方法
US9836735B2 (en) Method for initiating and performing a CNP business transaction, software for the same and a communication device comprising such software
US20210004806A1 (en) Transaction Device Management
AU2023200221A1 (en) Remote transaction system, method and point of sale terminal
CN103942691A (zh) 一种利用声波实现电子交易的方法及系统
WO2006128215A1 (fr) Procede et systeme d'autorisation de transactions securisees
KR20070121618A (ko) 결제대행 서버
WO2015073486A1 (fr) Système et procédé de traitement de transactions de paiement de point de vente par l'intermédiaire de dispositifs mobiles
JP2021082359A (ja) 認証装置、認証システム、認証方法及びプログラム
US20160217442A1 (en) Method for Payment
EP3059703A1 (fr) Procédé permettant d'extraire par un serveur de paiement un numéro de compte permanent de financement depuis un numéro de compte de paiement de jeton
EP2561489A1 (fr) Procédé de vente dans un magasin électronique accessible depuis un dispositif de communication mobile
SK500212010A3 (sk) Postup pri predaji v elektronickom obchode prístupnom z mobilného komunikačného zariadenia

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20121119

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK SM TR

DAX Request for extension of the european patent (deleted)
17Q First examination report despatched

Effective date: 20141111

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: SMK-LOGOMOTION CORPORATION

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: SMK CORPORATION

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20190402