FR2834156A1 - Service access system uses wireless network chip card reader and mobile phone - Google Patents
Service access system uses wireless network chip card reader and mobile phone Download PDFInfo
- Publication number
- FR2834156A1 FR2834156A1 FR0116579A FR0116579A FR2834156A1 FR 2834156 A1 FR2834156 A1 FR 2834156A1 FR 0116579 A FR0116579 A FR 0116579A FR 0116579 A FR0116579 A FR 0116579A FR 2834156 A1 FR2834156 A1 FR 2834156A1
- Authority
- FR
- France
- Prior art keywords
- electronic chip
- card reader
- network
- chip card
- identification element
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/42—Confirmation, e.g. check or permission by the legal debtor of payment
- G06Q20/425—Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/0873—Details of the card reader
- G07F7/088—Details of the card reader the card reader being part of the point of sale [POS] terminal or electronic cash register [ECR] itself
- G07F7/0886—Details of the card reader the card reader being part of the point of sale [POS] terminal or electronic cash register [ECR] itself the card reader being portable for interacting with a POS or ECR in realizing a payment transaction
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M1/00—Substation equipment, e.g. for use by subscribers
- H04M1/60—Substation equipment, e.g. for use by subscribers including speech amplifiers
- H04M1/6033—Substation equipment, e.g. for use by subscribers including speech amplifiers for providing handsfree use or a loudspeaker mode in telephone sets
- H04M1/6041—Portable telephones adapted for handsfree use
- H04M1/6058—Portable telephones adapted for handsfree use involving the use of a headset accessory device connected to the portable telephone
- H04M1/6066—Portable telephones adapted for handsfree use involving the use of a headset accessory device connected to the portable telephone including a wireless connection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M1/00—Substation equipment, e.g. for use by subscribers
- H04M1/72—Mobile telephones; Cordless telephones, i.e. devices for establishing wireless links to base stations without route selection
- H04M1/724—User interfaces specially adapted for cordless or mobile telephones
- H04M1/72403—User interfaces specially adapted for cordless or mobile telephones with means for local support of applications that increase the functionality
- H04M1/72409—User interfaces specially adapted for cordless or mobile telephones with means for local support of applications that increase the functionality by interfacing with external accessories
- H04M1/72412—User interfaces specially adapted for cordless or mobile telephones with means for local support of applications that increase the functionality by interfacing with external accessories using two-way short-range wireless interfaces
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M2250/00—Details of telephonic subscriber devices
- H04M2250/02—Details of telephonic subscriber devices including a Bluetooth interface
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/18—Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
- H04W8/183—Processing at user equipment or user record carrier
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W92/00—Interfaces specially adapted for wireless communication networks
- H04W92/04—Interfaces between hierarchically different network devices
- H04W92/08—Interfaces between hierarchically different network devices between user and terminal device
Abstract
Description
<Desc/Clms Page number 1> <Desc / Clms Page number 1>
PROCEDE D'ACCES A UN SERVICE PAR UN MOYEN RADIOFREQUENCE ASSOCIE A UN OBJET PORTABLE A PUCE
ELECTRONIQUE L'invention concerne le domaine des réseaux radiofréquence du type connu sous les acronymes"PLAN" pour l'expression anglo-saxonne"Personal Local Area Network"tel que le réseau appelé"BLUETOOTH"et"WLAN" pour l'expression anglo-saxonne"Wireless Local Area Network"tel que celui défini par la norme 802-11 et, plus particulièrement dans ce domaine un procédé pour accéder par un moyen radiofréquence à un service à l'aide d'un objet portable comprenant une puce électronique. METHOD FOR ACCESSING A SERVICE BY RADIO FREQUENCY ASSOCIATED WITH A SMART PORTABLE OBJECT
ELECTRONICS The invention relates to the field of radio frequency networks of the type known under the acronyms "PLAN" for the Anglo-Saxon expression "Personal Local Area Network" such as the network called "BLUETOOTH" and "WLAN" for the English expression Saxon "Wireless Local Area Network" such as that defined by the 802-11 standard and, more particularly in this field, a method for accessing a service by radio frequency means using a portable object comprising an electronic chip.
Il est connu de réaliser des liaisons de communication radiofréquence entre des appareils électroniques tels qu'un ordinateur personnel, une imprimante, un combiné téléphonique portable ou fixe, etc..., en mettant en oeuvre, par exemple, les spécifications du réseau appelé"BLUETOOTH"qui sont définies dans les documents ETS 300-328 et ETS-300-339. It is known to make radio frequency communication links between electronic devices such as a personal computer, a printer, a portable or fixed telephone handset, etc., by implementing, for example, the specifications of the network called " BLUETOOTH "which are defined in documents ETS 300-328 and ETS-300-339.
La figure 1 montre schématiquement un réseau radiofréquence 80 qui connecte un appareil téléphonique portable 10 (ou station mobile) à une oreillette 12 et à un ordinateur personnel 26, ce dernier étant connecté via le réseau 80 à un clavier 32. FIG. 1 schematically shows a radio frequency network 80 which connects a portable telephone device 10 (or mobile station) to a headset 12 and to a personal computer 26, the latter being connected via the network 80 to a keyboard 32.
A cet effet, les différents appareils 10,12, 26 et 32 sont équipés d'un module BLUETOOTH 50 qui émet et reçoit des signaux radioélectriques via une antenne 14 pour l'appareil téléphonique portable 10,16 pour l'oreillette 12,52 pour l'ordinateur personnel 26,54 pour le clavier 32. For this purpose, the various devices 10, 12, 26 and 32 are equipped with a BLUETOOTH module 50 which transmits and receives radio signals via an antenna 14 for the portable telephone device 10.16 for the headset 12.52 for the personal computer 26.54 for the keyboard 32.
Le réseau radiofréquence 80 peut aussi comprendre d'autres appareils tels qu'un terminal de services bancaires qui permet de réaliser des opérations The radio frequency network 80 may also include other devices such as a banking services terminal which allows operations to be carried out.
<Desc/Clms Page number 2><Desc / Clms Page number 2>
bancaires, par exemple le retrait d'argent liquide à l'aide d'une carte bancaire classique. banking, for example withdrawing cash using a conventional bank card.
Pour que cette opération bancaire puisse s'effectuer par le réseau BLUETOOTH à l'aide de la carte bancaire, il faut que cette carte puisse communiquer de manière sécurisée avec le terminal bancaire, pour réaliser certaines actions sensibles confidentielles nécessitant une importante sécurité avant l'autorisation de l'accès au service telle l'identification d'un utilisateur par son code personnel via un clavier. In order for this banking operation to be carried out by the BLUETOOTH network using the bank card, this card must be able to communicate in a secure manner with the bank terminal, in order to carry out certain sensitive sensitive actions requiring significant security before authorization of access to the service such as the identification of a user by his personal code via a keyboard.
En plus des problèmes de sécurité s'ajoutent des problèmes d'infrastructure et de convivialité ; en effet, il faut un moyen d'identification tel un clavier pour réaliser la saisie d'un code personnel et proposer une manière conviviale de le faire. In addition to security problems, there are problems of infrastructure and usability; indeed, you need a means of identification such as a keyboard to enter a personal code and offer a user-friendly way to do it.
Une solution à ce problème serait d'utiliser un lecteur de carte simplifié portable avec clavier et écran dans lequel serait introduite la carte bancaire de manière quasi-permanente, ce lecteur de carte étant équipé d'un module BLUETOOTH pour se connecter au terminal de services via le réseau BLUETOOTH. One solution to this problem would be to use a simplified portable card reader with keyboard and screen into which the bank card would be introduced almost permanently, this card reader being equipped with a BLUETOOTH module to connect to the service terminal. via the BLUETOOTH network.
Une telle solution présente l'inconvénient d'utiliser un nouvel appareil ayant un volume et un poids conséquents qu'il faudrait sortir de sa poche et en manipuler les touches du clavier pour effectuer une opération avec le terminal de services. Such a solution has the drawback of using a new device having a substantial volume and weight which it would be necessary to take out of one's pocket and to manipulate the keys of the keyboard in order to perform an operation with the service terminal.
La présente invention propose de réaliser, dans un réseau radiofréquence sécurisé, des opérations entre une carte à puce électronique portée par un lecteur de carte et un terminal de services via un autre appareil du réseau muni d'un élément d'identification tel qu'un clavier pour tabuler un code d'identification ou une touche d'identification. The present invention proposes to carry out, in a secure radio frequency network, operations between an electronic chip card carried by a card reader and a service terminal via another device of the network provided with an identification element such as a keyboard to tabulate an identification code or an identification key.
Cet autre appareil du réseau est, par exemple, le téléphone mobile personnel de l'utilisateur de la carte This other device on the network is, for example, the personal mobile phone of the card user
<Desc/Clms Page number 3><Desc / Clms Page number 3>
à puce électronique, un terminal de paiement portable ou une borne Internet. with an electronic chip, a portable payment terminal or an Internet point.
L'invention concerne donc un procédé d'accès à un service à l'aide d'un objet portable à puce électronique caractérisé en ce qu'il comprend les étapes suivantes consistant à : réaliser un réseau de communication sécurisé entre l'objet portable à puce électronique et au moins un terminal de services, l'un quelconque des appareils du réseau permettant d'effectuer une opération sensible, établir une première communication entre l'objet portable et ledit au moins terminal de services, établir une deuxième communication entre l'objet portable et ledit quelconque appareil du réseau pour effectuer sur ce dernier ladite opération sensible, valider l'opération sensible par l'objet portable à puce électronique, et transmettre le résultat de la validation au terminal de services. The invention therefore relates to a method of accessing a service using a portable object with an electronic chip, characterized in that it comprises the following steps consisting in: creating a secure communication network between the portable object at electronic chip and at least one service terminal, any of the network devices making it possible to perform a sensitive operation, establish a first communication between the portable object and said at least service terminal, establish a second communication between the portable object and said any network device for carrying out said sensitive operation on the latter, validating the sensitive operation by the portable electronic chip object, and transmitting the result of the validation to the service terminal.
L'opération sensible est réalisée par un troisième appareil dit de saisie, la saisie consistant en un élément d'identification tel q'un code personnel. The sensitive operation is carried out by a third so-called input device, the input consisting of an identification element such as a personal code.
L'objet portable est une carte à puce électronique équipé d'un moyen de communication pour se connecter au réseau de communication sécurisé. Il peut aussi comprendre une carte à puce électronique associée à un lecteur de carte à puce qui est équipé d'un moyen de communication pour se connecter au réseau de communication sécurisé. The portable object is an electronic chip card equipped with a communication means for connecting to the secure communication network. It can also include an electronic smart card associated with a smart card reader which is equipped with a communication means for connecting to the secure communication network.
L'appareil de saisie est un appareil connecté au réseau de communication sécurisé qui comprend des moyens pour saisir un élément d'identification. The recording device is a device connected to the secure communication network which comprises means for entering an identification element.
<Desc/Clms Page number 4><Desc / Clms Page number 4>
Les moyens de saisie d'un élément d'identification comprennent un clavier ou une touche pour saisir l'élément d'identification, l'élément d'identification pouvant être du type biométrique. The means for entering an identification element comprise a keyboard or a key for entering the identification element, the identification element possibly being of the biometric type.
Le lecteur de carte à puce comprend une touche marche/arrêt pour permettre la connexion ou non du lecteur au réseau de communication sécurisé. Le lecteur peut comprendre un logiciel applicatif pour permettre la connexion automatique du lecteur au réseau de communication sécurisé. The smart card reader includes an on / off key to allow the reader to connect or not to the secure communication network. The reader can include application software to allow the automatic connection of the reader to the secure communication network.
Le logiciel applicatif de connexion automatique est apte à gérer les choix, préférences et autorisations de l'utilisateur de l'objet portable. The automatic connection application software is able to manage the choices, preferences and authorizations of the user of the portable object.
L'invention concerne également un lecteur de carte à puce, une carte à puce ou une carte SIM, apte à mettre en oeuvre le procédé de l'invention. The invention also relates to a smart card reader, a smart card or a SIM card, capable of implementing the method of the invention.
D'autres caractéristiques et avantages de la présente invention apparaîtront à la lecture de la description suivante d'un exemple particulier de réalisation, ladite description étant faite en relation avec les dessins joints dans lesquels : la figure 1, déjà décrite dans le préambule, montre schématiquement un réseau radiofréquence du type BLUETOOTH qui connecte plusieurs appareils entre eux, et la figure 2 est un schéma d'un réseau radiofréquence du type BLUETOOTH auquel s'applique le procédé selon l'invention. Other characteristics and advantages of the present invention will appear on reading the following description of a particular example of embodiment, said description being made in relation to the accompanying drawings in which: FIG. 1, already described in the preamble, shows schematically a radio frequency network of the BLUETOOTH type which connects several devices to each other, and FIG. 2 is a diagram of a radio frequency network of the BLUETOOTH type to which the method according to the invention applies.
L'invention sera décrite dans le cadre d'un réseau de communication du type BLUETOOTH selon le schéma de la figure 1 décrite dans le préambule. Cependant, elle s'applique à d'autres types de réseau de communication tels que ceux cités dans le préambule. The invention will be described in the context of a BLUETOOTH type communication network according to the diagram in FIG. 1 described in the preamble. However, it applies to other types of communication network such as those mentioned in the preamble.
Dans la figure 2, les éléments identiques à ceux de la figure 1 portent des références identiques et In FIG. 2, the elements identical to those of FIG. 1 bear identical references and
<Desc/Clms Page number 5><Desc / Clms Page number 5>
concernent l'appareil téléphonique portable 10, encore appelé station mobile, ainsi que l'oreillette 12. relate to the portable telephone 10, also called a mobile station, as well as the headset 12.
Les éléments nouveaux sont un terminal de services 100 et un objet portable 102 comprenant une carte à puce électronique 104 insérée dans un lecteur de carte 106. The new elements are a service terminal 100 and a portable object 102 comprising an electronic chip card 104 inserted in a card reader 106.
Le terminal de services 100 est par exemple un terminal d'opérations bancaires tel qu'un distributeur de billets de banque pour des retraits d'argent liquide ou tout autre type de terminal apte à fournir au moins un service sur présentation de la carte à puce électronique dans un lecteur de carte associé au terminal. Un tel terminal peut être équipé d'un écran et d'un clavier en tant qu'interface homme/machine. The service terminal 100 is, for example, a banking operations terminal such as a cash dispenser for cash withdrawals or any other type of terminal capable of providing at least one service on presentation of the smart card. electronic in a card reader associated with the terminal. Such a terminal can be equipped with a screen and a keyboard as a man / machine interface.
A titre d'exemples de terminaux de services seront également cités les appareils de paiement par carte bancaire utilisés par les commerçants pour effectuer une transaction de paiement. Examples of service terminals will also be cited as bank card payment devices used by merchants to carry out a payment transaction.
Pour mettre en oeuvre l'invention, ce terminal de services est équipé d'un module d'émission/réception BLUETOOTH 108 qui lui permet de s'intégrer dans le réseau 80. To implement the invention, this service terminal is equipped with a BLUETOOTH transmission / reception module 108 which allows it to integrate into the network 80.
La carte à puce électronique 104, qui est habituellement utilisée dans le lecteur de carte associé au terminal 100, est associée de manière quasipermanente au lecteur-de carte 106 par l'intermédiaire de contacts électriques 112. Ce lecteur de carte 106 est de type simplifié, sans écran et sans clavier, mais comprend un module d'émission/réception BLUETOOTH 110 ainsi qu'une touche de marche/arrêt 114. L'énergie électrique est fournie par une pile (non représentée). The electronic chip card 104, which is usually used in the card reader associated with the terminal 100, is associated almost quasi-permanently with the card reader 106 by means of electrical contacts 112. This card reader 106 is of the simplified type , without screen and without keyboard, but includes a BLUETOOTH 110 transmission / reception module as well as an on / off button 114. The electrical energy is supplied by a battery (not shown).
Le procédé selon l'invention consiste à autoriser l'accès à un service proposé par le terminal 100 via le lecteur de carte 106 et la station mobile 10 en utilisant l'écran 18 et le clavier 20 de la station mobile pour dialoguer avec le terminal 100, notamment The method according to the invention consists in authorizing access to a service offered by the terminal 100 via the card reader 106 and the mobile station 10 by using the screen 18 and the keyboard 20 of the mobile station to communicate with the terminal 100, in particular
<Desc/Clms Page number 6><Desc / Clms Page number 6>
pour fournir un élément d'identification tel qu'un code d'accès au service. to provide an identification element such as a service access code.
La station mobile 10 peut être remplacée par tout autre appareil équipé d'un clavier ou d'une touche d'identification, pour fournir l'élément d'identification d'accès au service. The mobile station 10 can be replaced by any other device equipped with a keyboard or an identification key, to provide the service access identification element.
Les étapes du procédé seront maintenant décrites en supposant que l'appareil mobile 10, l'oreillette 12, le terminal 100 et 102 sont connectés au réseau 80 de façon sécurisée selon un procédé de reconnaissance sécurisée. The steps of the method will now be described assuming that the mobile device 10, the headset 12, the terminal 100 and 102 are connected to the network 80 in a secure manner according to a secure recognition method.
Un procédé pour établir une communication sécurisée entre par exemple la station mobile 10 et l'oreillette 12, comprend les étapes suivantes consistant à : (a) mettre en marche les deux appareils 10,12, (b) sélectionner l'un 10 des deux appareils comme appareil-maître et l'autre 12 comme appareil- esclave, (c) approcher les deux appareils 10,12 à proximité immédiate l'un de l'autre, (d) lancer sur l'appareil-maître 10 une procédure
automatique de reconnaissance sécurisée consistant à : (dl) émettre des signaux selon un diagramme de rayonnement tel que les signaux ne soient reçus que par l'appareil-esclave 12, (d2) lancer une procédure classique de connexion au réseau radiofréquence et, en cas de succès de connexion au réseau radiofréquence, (d3) générer une clé de reconnaissance en vue de sécuriser les échanges ultérieurs, (d4) émettre à nouveau des signaux selon le diagramme de rayonnement habituel, et (e) éloigner les deux appareils 10,12 l'un de l'autre pour un fonctionnement à distance normale. A method for establishing a secure communication between for example the mobile station 10 and the headset 12, comprises the following steps consisting in: (a) switching on the two devices 10,12, (b) selecting one of the two devices as master device and the other 12 as slave device, (c) approach the two devices 10,12 in close proximity to each other, (d) launch a procedure on the master device 10
automatic secure recognition consisting in: (dl) transmitting signals according to a radiation diagram such that the signals are only received by the slave device 12, (d2) initiating a conventional procedure for connection to the radio frequency network and, in the event successful connection to the radio frequency network, (d3) generate a recognition key in order to secure subsequent exchanges, (d4) re-emit signals according to the usual radiation pattern, and (e) distance the two devices 10,12 each other for normal remote operation.
<Desc/Clms Page number 7> <Desc / Clms Page number 7>
Lorsque l'utilisateur de la carte à puce 104 souhaite bénéficier d'un ou plusieurs services offerts par le terminal 100, il appuie sur la touche marche/arrêt 114 du lecteur de carte 106. Cette manipulation de la touche 112 déclenche l'établissement d'une communication entre le lecteur de carte 106 et le terminal 100 via le réseau 80. Ce dernier requiert à la carte à puce 104 via le lecteur de carte 106 une identification de l'utilisateur, par exemple par la tabulation d'un code personnel. When the user of the smart card 104 wishes to benefit from one or more services offered by the terminal 100, he presses the on / off key 114 of the card reader 106. This manipulation of the key 112 triggers the establishment of communication between the card reader 106 and the terminal 100 via the network 80. The latter requires the smart card 104 via the card reader 106 to identify the user, for example by tabulating a personal code .
Dans une variante, l'invention propose que cette initialisation du dialogue par la manipulation volontaire de la touche marche/arrêt 114 soit remplacée par une initialisation automatique réalisée par le système. A cet effet, le lecteur de carte 106 est toujours en veille et est activé par le système en utilisant un lecteur de carte comprenant, par exemple, une couche logicielle applicative qui présente des choix ou préférences telles que l'activation automatique du lecteur uniquement devant un distributeur bancaire d'une banque particulière. Cette couche logicielle peut aussi présenter des autorisations pour des transactions automatiques par rapport à un service telles que l'accès à un transport, à un local,.... In a variant, the invention proposes that this initialization of the dialogue by the voluntary manipulation of the on / off key 114 be replaced by an automatic initialization carried out by the system. For this purpose, the card reader 106 is always on standby and is activated by the system using a card reader comprising, for example, an application software layer which presents choices or preferences such as the automatic activation of the reader only in front of a bank distributor of a particular bank. This software layer can also present authorizations for automatic transactions with respect to a service such as access to a transport, to a room, etc.
Cette requête est transmise à l'appareil de téléphone mobile 10 via le réseau 80. L'utilisateur de cet appareil de téléphone mobile, qui est en même temps celui de la carte à puce 104, tabule son code personnel sur le clavier 20 et le transmet à la carte à puce 104 via le lecteur 106. This request is transmitted to the mobile telephone device 10 via the network 80. The user of this mobile telephone device, which is at the same time that of the smart card 104, tabulates his personal code on the keyboard 20 and the transmits to smart card 104 via reader 106.
La carte à puce 104 valide ou non ce code personnel et transmet le résultat de la validation au terminal de services 100 via le lecteur de carte 106. The smart card 104 validates or not this personal code and transmits the result of the validation to the service terminal 100 via the card reader 106.
<Desc/Clms Page number 8><Desc / Clms Page number 8>
Si le résultat de la validation est négatif, le terminal de services 100 ne fournit pas le service demandé. Si le résultat de la validation est positif, le terminal de services fournit le service demandé. If the validation result is negative, the service terminal 100 does not provide the requested service. If the validation result is positive, the service terminal provides the requested service.
Au lieu de tabuler un code personnel sur le clavier 20, une autre solution consiste à utiliser une touche d'analyse biométrique sur l'appareil de téléphonie mobile 10, les résultats de l'analyse étant transmis à la carte à puce 104 via le lecteur de carte 106. Instead of tabulating a personal code on the keyboard 20, another solution consists in using a biometric analysis key on the mobile telephone device 10, the results of the analysis being transmitted to the smart card 104 via the reader. card 106.
L'identification de l'utilisateur a été décrite en détail à titre non limitatif comme un exemple d'action ou d'opération sensible à réaliser avant d'autoriser l'accès à un service. On peut citer comme autre exemple la transmission par le terminal de services du montant d'une transaction sur l'écran de l'appareil 10 puis en retour la transmission de l'accord par l'utilisateur de ce montant. The identification of the user has been described in detail without limitation as an example of a sensitive action or operation to be carried out before authorizing access to a service. We can cite as another example the transmission by the service terminal of the amount of a transaction on the screen of the device 10 and in return the transmission of the agreement by the user of this amount.
L'appareil de saisie de l'élément d'identification peut comprendre un logiciel applicatif spécifique pour réaliser les opérations sensibles. Avantageusement, ce logiciel sera incorporé dans un module de sécurité de type carte à puce, par exemple la carte SIM de l'appareil de téléphonie mobile. The device for entering the identification element may comprise specific application software for carrying out the sensitive operations. Advantageously, this software will be incorporated into a security module of the smart card type, for example the SIM card of the mobile telephone device.
Dans l'exemple décrit en relation avec la figure 2, c'est l'utilisateur de la carte à puce qui déclenche la mise en marche du système en manipulant la touche marche/arrêt 114 mais cette mise en marche peut avoir pour origine le terminal de services 100. In the example described in connection with FIG. 2, it is the user of the smart card who initiates the starting of the system by manipulating the on / off key 114 but this starting can originate from the terminal. of services 100.
La mise en oeuvre du procédé selon l'invention requiert l'utilisation d'un terminal de services 100 équipé d'un module
BLUETOOTH 108, par exemple, d'un appareil de téléphonie mobile 10 équipé d'un module BLUETOOTH 50, et The implementation of the method according to the invention requires the use of a service terminal 100 equipped with a module
BLUETOOTH 108, for example, from a mobile telephone device 10 equipped with a BLUETOOTH module 50, and
<Desc/Clms Page number 9><Desc / Clms Page number 9>
d'un lecteur de carte 106, équipé d'un module
BLUETOOTH 110, dans lequel est introduite la carte à puce 104 appartenant à l'utilisateur de l'appareil de téléphonie mobile. a card reader 106, equipped with a module
BLUETOOTH 110, into which the smart card 104 belonging to the user of the mobile telephone device is inserted.
Ce procédé ne requiert donc pas l'utilisation d'un nouvel appareil dont la manipulation serait à maîtriser mais simplement l'utilisation d'un lecteur de carte à puce rudimentaire sans clavier, ni écran. This process therefore does not require the use of a new device, the handling of which should be mastered, but simply the use of a rudimentary smart card reader without keyboard or screen.
En outre, l'encombrement du lecteur de carte est faible et permet donc de le garder dans une poche ou un portefeuille avec une carte à puce en position de connexion avec le lecteur. In addition, the size of the card reader is small and therefore allows it to be kept in a pocket or wallet with a smart card in the connection position with the reader.
Dans certaines applications, le procédé de l'invention peut être mis en oeuvre à l'aide de deux appareils connectés au réseau sécurisé au lieu de trois comme décrit ci-dessus, savoir le terminal de services et un autre appareil permettant d'effectuer l'opération sensible. In certain applications, the method of the invention can be implemented using two devices connected to the secure network instead of three as described above, namely the service terminal and another device making it possible to carry out the sensitive operation.
L'invention a été décrite dans le cadre d'un réseau BLUETOOTH mais elle peut être mise en oeuvre dans différents types de réseau par exemple ceux identifiés ci-dessus par les acronymes PLAN et WLAN . The invention has been described in the context of a BLUETOOTH network but it can be implemented in different types of network, for example those identified above by the acronyms PLAN and WLAN.
L'appareil de saisie de l'élément d'identification peut être soit l'objet portable ou son lecteur, soit le terminal de services, ce qui constitue un avantage de souplesse de l'invention par sa facilité de transport et son adaptabilité et un avantage de convivialité.The device for entering the identification element can be either the portable object or its reader, or the service terminal, which constitutes an advantage of flexibility of the invention by its ease of transport and its adaptability and a advantage of usability.
Claims (14)
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
FR0116579A FR2834156B1 (en) | 2001-12-20 | 2001-12-20 | METHOD FOR ACCESSING A SERVICE BY RADIO FREQUENCY ASSOCIATED WITH A PORTABLE ELECTRONIC CHIP OBJECT |
AU2002364325A AU2002364325A1 (en) | 2001-12-20 | 2002-12-18 | Method for accessing a service by radiofrequency means associated with a microchip portable object |
PCT/FR2002/004431 WO2003053739A2 (en) | 2001-12-20 | 2002-12-18 | Method for accessing a service by radiofrequency means associated with a microchip portable object |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
FR0116579A FR2834156B1 (en) | 2001-12-20 | 2001-12-20 | METHOD FOR ACCESSING A SERVICE BY RADIO FREQUENCY ASSOCIATED WITH A PORTABLE ELECTRONIC CHIP OBJECT |
Publications (2)
Publication Number | Publication Date |
---|---|
FR2834156A1 true FR2834156A1 (en) | 2003-06-27 |
FR2834156B1 FR2834156B1 (en) | 2004-03-05 |
Family
ID=8870776
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
FR0116579A Expired - Fee Related FR2834156B1 (en) | 2001-12-20 | 2001-12-20 | METHOD FOR ACCESSING A SERVICE BY RADIO FREQUENCY ASSOCIATED WITH A PORTABLE ELECTRONIC CHIP OBJECT |
Country Status (3)
Country | Link |
---|---|
AU (1) | AU2002364325A1 (en) |
FR (1) | FR2834156B1 (en) |
WO (1) | WO2003053739A2 (en) |
Cited By (30)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE10325089A1 (en) * | 2003-06-04 | 2004-12-30 | Leopold Kostal Gmbh & Co Kg | Method for functional marriage of the components of an authentication device to one another and authentication device |
WO2005024632A1 (en) * | 2003-09-09 | 2005-03-17 | Telecom Italia S.P.A. | Method and system for remote card access, computer program product therefor |
US10621590B2 (en) | 2017-02-22 | 2020-04-14 | Square, Inc. | Line-based chip card tamper detection |
US10635820B1 (en) | 2017-09-29 | 2020-04-28 | Square, Inc. | Update policy-based anti-rollback techniques |
US10643200B2 (en) | 2010-10-13 | 2020-05-05 | Square, Inc. | Point of sale system |
US10684848B1 (en) | 2016-03-30 | 2020-06-16 | Square, Inc. | Blocking and non-blocking firmware update |
US10733589B2 (en) | 2017-04-28 | 2020-08-04 | Square, Inc. | Point of sale device power management and under voltage protection |
US10733588B1 (en) | 2014-06-11 | 2020-08-04 | Square, Inc. | User interface presentation on system with multiple terminals |
US10753982B2 (en) | 2014-12-09 | 2020-08-25 | Square, Inc. | Monitoring battery health of a battery used in a device |
US10762196B2 (en) | 2018-12-21 | 2020-09-01 | Square, Inc. | Point of sale (POS) systems and methods with dynamic kernel selection |
US10810570B1 (en) | 2019-09-30 | 2020-10-20 | Square, Inc. | Point of sale device with cradle for mobile computing device |
US10817869B2 (en) | 2016-06-29 | 2020-10-27 | Square, Inc. | Preliminary enablement of transaction processing circuitry |
US10937019B2 (en) | 2016-06-08 | 2021-03-02 | Square, Inc. | Wireless communication system with auxiliary antenna |
US10949189B2 (en) | 2017-06-28 | 2021-03-16 | Square, Inc. | Securely updating software on connected electronic devices |
US10970698B1 (en) | 2017-12-08 | 2021-04-06 | Square, Inc. | Reader detection signal bypassing secure processor |
US10970708B2 (en) | 2016-12-31 | 2021-04-06 | Square, Inc. | Predictive data object acquisition and processing |
US10990969B2 (en) | 2018-12-21 | 2021-04-27 | Square, Inc. | Point of sale (POS) systems and methods for dynamically processing payment data based on payment reader capability |
US11010765B2 (en) | 2016-06-29 | 2021-05-18 | Square, Inc. | Preliminary acquisition of payment information |
US11049095B2 (en) | 2018-12-21 | 2021-06-29 | Square, Inc. | Point of sale (POS) systems and methods with dynamic kernel selection |
US11080674B1 (en) | 2014-09-19 | 2021-08-03 | Square, Inc. | Point of sale system |
US11080675B1 (en) | 2015-09-08 | 2021-08-03 | Square, Inc. | Point-of-sale system having a secure touch mode |
US11087315B2 (en) | 2015-09-24 | 2021-08-10 | Square, Inc. | Server-assisted pairing for wireless communications |
US11087301B1 (en) | 2017-12-19 | 2021-08-10 | Square, Inc. | Tamper resistant device |
US11100298B1 (en) | 2017-12-08 | 2021-08-24 | Square, Inc. | Transaction object reader with analog and digital signal interface |
US11257058B1 (en) | 2017-10-30 | 2022-02-22 | Square, Inc. | Sharing output device between unsecured processor and secured processor |
US11328134B1 (en) | 2014-06-23 | 2022-05-10 | Block, Inc. | Displaceable reader circuitry |
US11481750B2 (en) | 2015-06-30 | 2022-10-25 | Block, Inc. | Pairing a payment object reader with a point-of-sale terminal |
US11663368B2 (en) | 2019-09-30 | 2023-05-30 | Block, Inc. | Tamper detection based on removal of fastener from recess |
US11665817B2 (en) | 2019-09-30 | 2023-05-30 | Block, Inc. | Tamper detection based on flexible member connecting circuitry elements |
US11871237B1 (en) | 2016-06-30 | 2024-01-09 | Block, Inc. | Pairing a payment object reader with a point-of-sale terminal |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TWI494886B (en) | 2013-01-04 | 2015-08-01 | Irene Tsai | Mobile device, virtual worth of the conversion system and conversion methods |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1997014121A1 (en) * | 1995-10-11 | 1997-04-17 | Gemplus | Portable device for performing secure internal and smart card transactions, and method therefor |
WO1998058509A1 (en) * | 1997-06-16 | 1998-12-23 | Swisscom Ag | Chip card and method for communication between an external device and a chip card |
US5917913A (en) * | 1996-12-04 | 1999-06-29 | Wang; Ynjiun Paul | Portable electronic authorization devices and methods therefor |
WO2001003086A1 (en) * | 1999-06-30 | 2001-01-11 | Ncr International, Inc. | Portable terminal |
US6250557B1 (en) * | 1998-08-25 | 2001-06-26 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods and arrangements for a smart card wallet and uses thereof |
-
2001
- 2001-12-20 FR FR0116579A patent/FR2834156B1/en not_active Expired - Fee Related
-
2002
- 2002-12-18 WO PCT/FR2002/004431 patent/WO2003053739A2/en not_active Application Discontinuation
- 2002-12-18 AU AU2002364325A patent/AU2002364325A1/en not_active Abandoned
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1997014121A1 (en) * | 1995-10-11 | 1997-04-17 | Gemplus | Portable device for performing secure internal and smart card transactions, and method therefor |
US5917913A (en) * | 1996-12-04 | 1999-06-29 | Wang; Ynjiun Paul | Portable electronic authorization devices and methods therefor |
WO1998058509A1 (en) * | 1997-06-16 | 1998-12-23 | Swisscom Ag | Chip card and method for communication between an external device and a chip card |
US6250557B1 (en) * | 1998-08-25 | 2001-06-26 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods and arrangements for a smart card wallet and uses thereof |
WO2001003086A1 (en) * | 1999-06-30 | 2001-01-11 | Ncr International, Inc. | Portable terminal |
Cited By (45)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7054616B2 (en) | 2003-06-04 | 2006-05-30 | Leopold Kostal Gmbh & Co. Kg | Method for pairing the components of an authentication device, and an authentication device |
DE10325089A1 (en) * | 2003-06-04 | 2004-12-30 | Leopold Kostal Gmbh & Co Kg | Method for functional marriage of the components of an authentication device to one another and authentication device |
WO2005024632A1 (en) * | 2003-09-09 | 2005-03-17 | Telecom Italia S.P.A. | Method and system for remote card access, computer program product therefor |
US10643200B2 (en) | 2010-10-13 | 2020-05-05 | Square, Inc. | Point of sale system |
US10733588B1 (en) | 2014-06-11 | 2020-08-04 | Square, Inc. | User interface presentation on system with multiple terminals |
US11328134B1 (en) | 2014-06-23 | 2022-05-10 | Block, Inc. | Displaceable reader circuitry |
US11836566B2 (en) | 2014-09-19 | 2023-12-05 | Block, Inc | Point of sale system |
US11080674B1 (en) | 2014-09-19 | 2021-08-03 | Square, Inc. | Point of sale system |
US11966805B2 (en) | 2014-09-19 | 2024-04-23 | Block, Inc. | Point of sale system |
US11954549B2 (en) | 2014-09-19 | 2024-04-09 | Block, Inc. | Point of sale system |
US11537803B2 (en) | 2014-09-19 | 2022-12-27 | Block, Inc. | Point of sale system |
US10753982B2 (en) | 2014-12-09 | 2020-08-25 | Square, Inc. | Monitoring battery health of a battery used in a device |
US11481750B2 (en) | 2015-06-30 | 2022-10-25 | Block, Inc. | Pairing a payment object reader with a point-of-sale terminal |
US11080675B1 (en) | 2015-09-08 | 2021-08-03 | Square, Inc. | Point-of-sale system having a secure touch mode |
US11087315B2 (en) | 2015-09-24 | 2021-08-10 | Square, Inc. | Server-assisted pairing for wireless communications |
US10684848B1 (en) | 2016-03-30 | 2020-06-16 | Square, Inc. | Blocking and non-blocking firmware update |
US10937019B2 (en) | 2016-06-08 | 2021-03-02 | Square, Inc. | Wireless communication system with auxiliary antenna |
US11748739B2 (en) | 2016-06-08 | 2023-09-05 | Block, Inc. | Wireless communication system with auxiliary antenna |
US11010765B2 (en) | 2016-06-29 | 2021-05-18 | Square, Inc. | Preliminary acquisition of payment information |
US10817869B2 (en) | 2016-06-29 | 2020-10-27 | Square, Inc. | Preliminary enablement of transaction processing circuitry |
US11871237B1 (en) | 2016-06-30 | 2024-01-09 | Block, Inc. | Pairing a payment object reader with a point-of-sale terminal |
US10970708B2 (en) | 2016-12-31 | 2021-04-06 | Square, Inc. | Predictive data object acquisition and processing |
US11669842B2 (en) | 2017-02-22 | 2023-06-06 | Block, Inc. | Transaction chip incorporating a contact interface |
US11113698B2 (en) | 2017-02-22 | 2021-09-07 | Square, Inc. | Line-based chip card tamper detection |
US10621590B2 (en) | 2017-02-22 | 2020-04-14 | Square, Inc. | Line-based chip card tamper detection |
US10733589B2 (en) | 2017-04-28 | 2020-08-04 | Square, Inc. | Point of sale device power management and under voltage protection |
US11899515B2 (en) | 2017-04-28 | 2024-02-13 | Block, Inc. | Point of sale device power management and undervoltage protection |
US11561593B2 (en) | 2017-04-28 | 2023-01-24 | Block, Inc. | Point of sale device power management and undervoltage protection |
US11762646B2 (en) | 2017-06-28 | 2023-09-19 | Block, Inc. | Securely updating software on connected electronic devices |
US10949189B2 (en) | 2017-06-28 | 2021-03-16 | Square, Inc. | Securely updating software on connected electronic devices |
US10635820B1 (en) | 2017-09-29 | 2020-04-28 | Square, Inc. | Update policy-based anti-rollback techniques |
US11257058B1 (en) | 2017-10-30 | 2022-02-22 | Square, Inc. | Sharing output device between unsecured processor and secured processor |
US10970698B1 (en) | 2017-12-08 | 2021-04-06 | Square, Inc. | Reader detection signal bypassing secure processor |
US11797965B2 (en) | 2017-12-08 | 2023-10-24 | Block, Inc. | Reader detection signal based proximity feedback |
US11100298B1 (en) | 2017-12-08 | 2021-08-24 | Square, Inc. | Transaction object reader with analog and digital signal interface |
US11087301B1 (en) | 2017-12-19 | 2021-08-10 | Square, Inc. | Tamper resistant device |
US10990969B2 (en) | 2018-12-21 | 2021-04-27 | Square, Inc. | Point of sale (POS) systems and methods for dynamically processing payment data based on payment reader capability |
US11775957B2 (en) | 2018-12-21 | 2023-10-03 | Block, Inc. | Point of sale (POS) systems and methods with kernel selection |
US10762196B2 (en) | 2018-12-21 | 2020-09-01 | Square, Inc. | Point of sale (POS) systems and methods with dynamic kernel selection |
US11049095B2 (en) | 2018-12-21 | 2021-06-29 | Square, Inc. | Point of sale (POS) systems and methods with dynamic kernel selection |
US11797970B2 (en) | 2019-09-30 | 2023-10-24 | Block, Inc. | Point of sale device with cradle for mobile computing device |
US11847631B2 (en) | 2019-09-30 | 2023-12-19 | Block, Inc. | Point of sale device with cradle for computing device |
US10810570B1 (en) | 2019-09-30 | 2020-10-20 | Square, Inc. | Point of sale device with cradle for mobile computing device |
US11665817B2 (en) | 2019-09-30 | 2023-05-30 | Block, Inc. | Tamper detection based on flexible member connecting circuitry elements |
US11663368B2 (en) | 2019-09-30 | 2023-05-30 | Block, Inc. | Tamper detection based on removal of fastener from recess |
Also Published As
Publication number | Publication date |
---|---|
AU2002364325A1 (en) | 2003-07-09 |
WO2003053739A3 (en) | 2004-02-19 |
AU2002364325A8 (en) | 2003-07-09 |
FR2834156B1 (en) | 2004-03-05 |
WO2003053739A2 (en) | 2003-07-03 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
FR2834156A1 (en) | Service access system uses wireless network chip card reader and mobile phone | |
EP2646990B1 (en) | Improved method and system for nfc transaction | |
EP3066648B1 (en) | Authentication of a user provided with a mobile device by a vehicle | |
EP2695353B1 (en) | Security module resistance test of a telecommunication device coupled to a nfc circuit against attacks by misrouting of communication channel | |
EP1360665A1 (en) | Telepayment method and system | |
EP1402746A2 (en) | Method for remote loading of an encryption key in a telecommunication network station | |
EP2335376A2 (en) | Secure methods of transmitting and receiving data between terminals comprising means of near-field communication, and corresponding terminals | |
EP2865112A1 (en) | Method of authentication between a mobile terminal and a processing terminal | |
EP2235689A1 (en) | Radiofrequency dispensing of electronic tickets | |
EP2053554A1 (en) | Portable electronic device for exchanging values and method of implementing such a device | |
EP2254077A1 (en) | Device for a conventional smart card allowing an electronic transaction via a network | |
FR2812509A1 (en) | METHOD FOR SECURE RECOGNITION BETWEEN TWO DEVICES IN A RADIO FREQUENCY NETWORK | |
EP3987416A1 (en) | Method and device for authenticating a user using the conductivity of the human body | |
EP2053553B1 (en) | Method and device for exchanging values between portable personal electronic entities | |
FR2820266A1 (en) | DEVICE AND METHOD FOR SECURE AUTOMATIC PAIRING OF DEVICES IN A RADIO FREQUENCY NETWORK | |
FR2912855A1 (en) | Data exchanging method for e.g. mobile telephone, involves providing near filed communication of data between personal equipment and secured terminal depended by identifier of user and by detection of equipment near terminal | |
EP2867837B1 (en) | System for the secure transmission of digital data | |
EP0870279B1 (en) | Portable device for access to at least one service provided by a server | |
EP4055570A1 (en) | Method and system for communication between a chip card reader and an external device | |
EP1761009B1 (en) | Transaction system using short-range radio communication | |
EP1174832B1 (en) | Processor for generation and transmission of an electronic signature and terminal for a radiotelephone network comprising such a processor | |
FR3000823A1 (en) | Method for securing banking transaction carried out between e.g. mobile phone, and server, involves recovering identifier from image information for continuing transaction, without transmission of identifier on communication channel | |
EP4198790A1 (en) | Nfc transaction | |
FR2913162A1 (en) | METHOD OF VERIFYING A CODE IDENTIFYING A BEARER, CHIP CARD AND TERMINAL RESPECTIVELY PROVIDED FOR IMPLEMENTING SAID METHOD. | |
FR3001821A1 (en) | METHOD OF AUTHORIZING ACCESS TO A SERVICE VIA A MOBILE TELEPHONE BY VALIDATION OF A PREPAID USING AN RFID CARD AND ASSOCIATED DEVICES |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
ST | Notification of lapse |
Effective date: 20090831 |