JP2010510609A - Point-of-sale transaction equipment with magnetic band emulator and biometric authentication - Google Patents

Abstract

A handheld unit capable of emulating a plurality of smart cards or magnetic band cards.
[Solution]
A unit can store multiple data sets that represent multiple accounts. The unit is equipped with an RF interface that can emulate a smart interface that can communicate with a smart card reader at a POS or ATM terminal or any other location where a smart card can be used. The unit is also equipped with a program magnetic strip so that it can be used anywhere that a magnetic strip card can be inserted or inserted. The unit is equipped with a biometric sensor so that there is no doubt of authentication.
[Selection] Figure 1

Description

  The present invention relates to a magnetic band emulator and a point-of-sales transaction apparatus with biometric authentication.

  Plastic credit card issuers lose billions of yen worldwide every year. These losses are often shouldered to some extent in the form of higher transaction prices or interest rates for consumers or businesses. However, losses to credit card issuers remain outstanding.

  Credit card information can be used for fraud in several different ways. In a recent example, an employee or hacker accesses an unauthorized company or card processing database and retrieves millions of credit and debit card account information. Often, the credit card itself is lost or stolen, and the thief can make fraudulent payments to the account until the account becomes invalid. Account information can also be illegally obtained by identity theft, a high-tech means by thieves, such as thieves impersonating individuals, obtaining personal information and account information from the credit card magnetic strip, Known as “cloning”.

  Once it is leaked, the account information is static, so it can be used to conduct fraudulent transactions through multiple commerce sites or online commerce, and other “cardless” commerce such as email and phone orders . Therefore, there is a way to make the information required to complete a credit card transaction dynamic, that is, change after every transaction and thereby greatly limit the chances of fraudulent transactions occurring desirable. The “chip and pin” initiative in the UK is a step in this direction. This program uses a smart card type credit card, and the user needs to input a PIN number instead of a signature for the transaction. The PIN number is queried with the number stored on the chip in the smart card. This action is a step in the right direction, but “no card” transactions do not resolve fraud.

  Radio frequency identification devices (RFID) are well known in the art. A typical RFID device includes an antenna and a chip that is activated by RF energy emitted from a reader. The antenna on the reader includes a signal to the RFID chip in the vicinity of the reader, which allows the small amount of data to be transferred back to the reader. RFID tags are thought to be similar to barcodes in terms of convenience.

  RFID finds many applications, as an alternative to traditional magnetic strip cards for inventory management, tracking, and electronic payment at point of sale (POS) points. Includes payment devices, passports and personal information cards. RFID devices have even been used as devices embedded in living organisms, such as domestic pets and children.

  A “smart card” incorporates either a microprocessor and a memory chip, or a memory chip with non-programmable logic. The microprocessor can add, delete, and otherwise handle information on the card. On the other hand, the memory chip card accepts only predetermined operations. Smart cards use radio frequency (RF) to send and receive data, but not all the necessary functions and information necessary to complete a transaction can be carried on the card in the traditional RFID Different from tag. Therefore, the smart card does not need to access a remote database at the time of the transaction. Smart cards are governed by a number of standards, particularly ISO / IEC standards 7816 and 14443. The aforementioned “chip and pin” program in the UK uses this type of card.

  Smart cards are rapidly replacing the traditional method of “machine-passing” credit cards with data contained in magnetic strips. At the point of sale (POS), the smart card is activated by a contactless reader attached to an external device required for the application equipment, such as an RFID reader attached to a cash register. The reader's RF antenna induces a signal on the card's RF antenna, thus activating the smart card. The application can then communicate with the smart card via the reader to send the cardholder account data to the point-of-sale application using the command group specified by the ISO 7816 standard.

  While smart cards allow transactions to be made faster than traditional magnetic band cards, smart cards are more sensitive to account data theft than traditional magnetic band card data they are trying to replace. As a safety measure to defend, it only brings some improvement. A more thorough review of this technology reveals several deficiencies that allow fraudulent and illegal trends to emerge. First, the shopping owner does not sign a PIN number or a printed copy of the credit card transaction. That is, if a smart card is lost or stolen, it can be used for unauthorized shopping. There is also a new technically possible security threat to contactless smart cards. A lost or stolen smart card also contains all the information it needs, including the account number, CCV, and other information needed to complete the transaction, which can be easily copied . Differential power analysis (DPA) and simple power analysis (SPA) are used to steal secure keys for communication encryption and decryption. In addition, smart cards are vulnerable to certain types of attacks known as “relay” attacks. In a “relay” attack, smart cards that are not in the vicinity of a POS-based reader can be used to “relay” information through other reader and smart card combinations.

  These flaws represent a major financial threat to both card issuers and cardholders. While card companies and insurance companies that bear fraud typically absorb losses associated with fraud, the long-term implications for victims and credit ratings are very serious. In addition, the security risks associated with any conceivable smart card technology have become a hindrance to widespread market acceptance. Therefore, it would be advantageous to provide a way to protect data stored in a smart card from being secretly and illegally obtained.

US Patent Application Publication No. 2007/0131759 US Pat. No. 5,959,961 US Pat. No. 6,012,636 International Publication No. 2004/095169 This application is a continuation-in-part of U.S. Application No. 11 / 456,906 filed July 12, 2006, and is filed on November 22, 2006. 60 / 866,909 entitled “Point-of-sale transaction device secured by biometric authentication function”, 60,866 entitled “Cooperation card with biometric function safety function” submitted on November 22, 2006 , 922, 60 / 942,729 entitled “Smart Card and Magnetic Band Emulator with Biometric Function with Advanced Characteristics” filed on June 8, 2007.

  It is to provide a handheld unit capable of emulating a plurality of smart cards or magnetic band cards.

  In a preferred embodiment, the present invention includes two elements: a software application running on a personal computer and a handheld portable data storage and transfer device. Optionally, an associated base unit can also be provided.

  The handheld device in the preferred embodiment is the size of a credit card, has a thickness of 0.76 mm, and complies with ISO 7813 standards. It includes a display and keypad, as well as a number of operation buttons for operating between accounts and applications and navigating the appropriate selections. Optionally, part of the device also includes a programmable magnetic strip. The device is equipped with a main processor that can execute simple applications, as well as a smart card chipset and associated antenna.

  The device also incorporates short range wireless communication (NFC) capabilities in accordance with the ISO 14443 standard. NFC is a terminal-to-terminal communication that allows a larger amount of data to be transferred and a response to a smart card than a simple query. NFC functionality can therefore emulate a smart card. NFC functionality can also be used to download various data to the device, including electronic receipts, coupons, promotional content, electronic tickets, etc. In addition, the device can communicate with NFC-capable POS terminals and receive information such as electronic receipts from POS terminals for the purpose of transferring account information, coupon information, and other types of information to POS terminals. You can also. In addition, the device also communicates with other NFC-capable devices, such as ticketing terminals where discount coupons are available, and ticket media where event tickets are bought and stored electronically before use. it can.

  Most importantly, the device incorporates a fingerprint or other biometric sensor for biometric authentication that clearly identifies the user as the owner of the device. This provides a way to confirm the fact that only authorized cardholders are actually executing transactions. In a preferred embodiment, fingerprint verification is used to identify authorized users through biometric functions, but other methods for recognizing users, including both biometric and non-biometric functions, are used. Can be done. Authentication is required for every transaction, and the identity of the authorized user is determined before the device's programmable magnetic band, smart card circuit, or NFC circuit is activated, and to the RFID reader or NFC-enabled POS terminal It must be verified before the signal is transmitted. Authentication is not required for all functions of the device. For example, it is not desirable to require authentication for coupon downloads.

  Preferably, one embodiment of the device involves standard contact with a smart card. The optional base unit includes a mating connector that allows data transfer between the device and an application program running on a standard personal computer. The mating connector also allows the rechargeable battery of the device to be charged through the smart card contact. In addition, the foundation unit optionally includes an NFC or smart card reader so that the foundation can function as a POS terminal for online trading.

  The handheld device communicates with an application running on a personal computer and is preferably connected via a base unit or alternatively via a direct wireless connection, such as Bluetooth. The PC application allows you to download account information from multiple credit cards or other types of cards, and when they are connected, the data on the PC mirrors the data on the handheld device. In addition, personal computer applications that can be synchronized with the handheld device also provide other features discussed in detail herein. The apparatus includes sufficient memory to store account information from a plurality of conventional magnetic band cards and smart cards.

  The handheld device can also emulate a magnetic band card by using a programmable magnetic band. The programmable magnetic strip can be reprogrammed on-the-fly and can be erased after a predetermined time or number of uses for safety purposes. Account information from a card with a magnetic band can also be transferred via the FR signal if an RF reader is available at the POS terminal. In this way, conventional magnetic band cardholders can perform field transactions using the preferred non-contact RF technology.

  The handheld device must be initialized before downloading account information. The initialization process begins with a registration step where the user is prompted to place one or more fingertips on the biometric sensor. The fingerprint is then scanned, converted into a digital template, and stored in the memory of the handheld device. The fingerprint template is then used for the authentication and activation process prior to programming of the magnetic band or RF signal transfer. Optionally, multiple users are registered to use various accounts stored on the card.

  The use of an account stored on the device establishes identity using biometric authentication, from which a specific account to be a “working” account is selected. To authenticate, the user places his finger on the biometric authentication sensor, the fingerprint is scanned and checked against one of the fingerprint templates stored on the device. Optionally, multiple fingerprints from different fingers are required to unlock the device. This feature prohibits any unauthorized use of the card, thus adding a new security step to transactions involving both traditional smart cards.

  One disadvantage of fingerprint recognition is that a small percentage of the total population does not have a “usable” fingerprint pattern for this purpose. In such a case, the user selectively inputs a personal identification number (PIN) as an alternative method of authentication. During initialization, the user is prompted to select either a fingerprint or a PIN for authentication. Once the PIN is entered, the device stores the selected application data set in memory.

  For safety purposes and to avoid certain security attacks on the device, an RF antenna within the device is desirable once used. Without an enabled antenna, no snooping RF signal is received and the device cannot forward a reply signal. When subsequent procedures are desired and when the authentication process is complete, the antenna is re-enabled for a time sufficient to complete the transaction and then automatically disabled. Alternatively, the device can be enabled to transfer account data once. In transactions involving magnetic bands, the programmable magnetic bands on the device are erased after a predetermined period to avoid reuse. The device also includes circuitry that records and timestamps all attempts to retrieve data, including both authenticated and unauthenticated attempts to use the device.

  The device can optionally be equipped with a type of camera that is commonly found on mobile phones. The camera is used to capture information from the coupon by taking a photo of the coupon barcode. In this case, the apparatus is also equipped with bar code reading software that can read a bar code from the captured photo, and displays plain text information to the user.

  The inventor anticipates other types of biometric authentication methods, including but not limited to voiceprint recognition, skin electrical resistance, skin capacitance, and biometrics now known or later invented.

  The present invention is a cost-effective device capable of storing information from multiple smart cards and data from multiple conventional magnetic band cards used as a magnetic band emulator or “virtual” contactless smart card. It is. The device can also prevent both unauthorized use of the device and explicit theft of information on the device via biometric authentication techniques such as fingerprint verification and voiceprint recognition. This feature almost eliminates theft of account data via relay attacks, as well as crimes associated with lost or stolen smart cards.

1a is a front view of the first embodiment of the apparatus, FIG. 1b is a rear view of the first embodiment of the apparatus, and FIG. 1c is a side view of the first embodiment of the apparatus. FIG. 1d is a bottom view of the first embodiment of the apparatus. FIG. 2 shows an optional base unit used in the first embodiment of the present invention. FIG. 3 shows the front of a preferred embodiment of the device with a credit card or smart card form factor. FIG. 4 shows the back of a preferred embodiment of the apparatus showing a magnetic band emulator. FIG. 5 shows an introspection of a preferred embodiment of the device showing the elements in schematic form. FIG. 6 shows a system diagram of a preferred embodiment of the apparatus showing the internal connections of the various elements. FIG. 7 outlines a typical configuration of the basic hardware design concept of the preferred embodiment of the present apparatus. FIG. 8 shows a typical configuration of the basic concept of software design upstream of the present apparatus. FIG. 9 is a flowchart showing a user registration procedure of the apparatus. FIG. 10 is a flowchart showing a user biometric authentication procedure. FIG. 11 is a flow chart illustrating a process for the preparation stage of the device when an electronic account record is downloaded from an account issuer. FIG. 12a is a first embodiment of a flowchart showing account selection and activation. FIG. 12b is a flowchart illustrating an alternative embodiment of the process in which an account is selected and activated. FIG. 13 is a functional diagram of the menu structure of the software application on the handheld device as an option. FIG. 14 is a functional diagram of a support application that runs on a personal computer. FIG. 15 is a first example of a device and reading application that uses a magnetically permeable manner or a contactless smart card model as a communication medium. FIG. 16 is a second example of a device and reading application that uses NFC as the communication medium. FIG. 17 is a flow chart of a transaction using the apparatus of the present invention in which a dynamic safety code is generated in a previous transaction. FIG. 18 is a diagram showing a general configuration of data recording of an account downloaded to the apparatus.

  The device of the present invention is considered to be manufactured in one of two embodiments. In one embodiment, as shown in FIGS. 1a to 1d, the device has two parts with different thicknesses. Part of the device is a typical credit card thickness, while the second part is thicker, allowing more space for physical elements. In a second preferred embodiment, as shown in FIGS. 3 and 4, the entire device is a typical credit card thickness, including places such as ATMs and gas stations where the entire card needs to be inserted, It can be used in all places where credit cards can be used.

  FIGS. 1 a-1 c show in sequence the front, back and side, which are the outer edges of the first embodiment of the device 100, comprising two parts, a thin part 100 a and a thick part 100 b. The thicker portion 100b is preferably thinner than about 10 mm and is composed of any member commonly used to construct electronic equipment, but is composed of a member that does not interfere with RF signal transfer and reception. Is preferred. The front of the device 100 includes a display 101 that can be an LCD display, and also includes a selection key 102 and a numeric keypad 103. The menu selection key 102 prompts navigation through a series of menus displayed on the display 101. Menu selection key 102 includes direction keys, where the center ENTER key is used to select a menu item, while the cursor is used to move the cursor up, down, left and right. The direction key and the ENTER key can be appropriately configured.

  The thin portion of the device 100 includes a programmable magnetic strip 107 on the back side thereof, and preferably has a thickness of about 0.76 mm in accordance with ISO standard 7813. The thickness of the portion 100a of the device 100 is configured to be passed through a typical magnetic strip card reader. Between the portions 100a and 100b is a sloped region 104 that transitions from a thin portion of the device 100 to a thick portion. The thin portion 100a of the device 100 and the magnetic band 107 are optional. Future versions of the device will be made without the programmable magnetic band 107 as the magnetic band credit cards and readers fade away due to their preference for contactless transactions. In such a case, the thin portion 100a of the device 100 may not be present.

  In addition, the biometric sensor 105 is placed on the front surface of the apparatus 100. The biometric sensor comprises a fingerprint scanner in a preferred embodiment. Other embodiments of the present invention can be used with any method of biometric authentication known or later invented that recognizes voiceprints, skin pH analysis, or other users. Furthermore, biometric authentication would replace the alphanumeric password or PIN that the user enters into the device 100 using the numeric keypad 103.

  The back of the device includes a programmable magnetic strip 107 that is mounted on a thin portion 100 a of the device 100. An optional camera 106 is also located on the back of the apparatus. The optional camera 106, in the preferred embodiment, takes a picture of the barcode and is read by barcode recognition software. However, any image can be taken and stored on the device for display or transfer. In addition, an NFC chip 108 and a Bluetooth chip 109 are shown on the back of the device 100. However, these chips are actually inside the device. A system reset button 110 is similarly on the back of the device 100.

  The side view of the device 100 of FIG. 1c shows the device soft key 109 used by the user to interact with a software application programmed into the device.

  FIG. 1d shows the bottom surface of the device 100, including a thin region 100a with a magnetic strip 107 disposed on the bottom surface, a thicker 100b, and a sloped transition 104 therebetween. There is also a connector 201 on the bottom surface of the device 100. The connector 201 is used to transfer data from or to the PC application 1002 as shown in FIG. 15 via a cable connection or foundation unit 200 as shown in FIG.

  Optional base unit 200 includes a connector 202 that fits into connector 201 on the bottom surface of apparatus 100 to provide the aforementioned functionality. Base unit 205 also includes an NFC chip 205 or other wireless communication method that enables the base unit to function as a contactless point-of-sale (POS) terminal for trading online. There is also a PC interface 204 in the foundation 200 that allows the device 100 to communicate with the PC application 1002. Methods that allow the device 100 to communicate with the PC application 1002 are also any of several wireless transfer protocols well known to those skilled in the art, including Bluetooth or wired connections such as serial lines and USB connections. One may be sufficient.

  Connection 201 is used to charge a rechargeable battery 405 within the device 100 via a connection to the base unit 200 or a direct cable connection to a PC. The AC adapter 203 for the base unit 200 supplies power to the recharging battery 405. Alternatively, the battery 405 is charged inductively via a voltage induced on the RF antenna of the device via interaction with an electromagnetic field.

  3 to 5 show the physical configuration of the preferred embodiment of the present invention. In this embodiment, device 150 has a typical credit card area and thickness. The front of the device 150 is shown in FIG. 3 and includes a display area 152 for displaying activated account information that is selected using buttons 153 and 154. Although two buttons are shown in a typical preferred embodiment, it will be apparent that any number of buttons can be used in the device user interface.

  It should be noted that the display area 152 is not limited to the size and shape shown, but can be any convenient size and shape. Preferably, the display 152 is an LCD display, but may be of any type known to those skilled in the art, including an electrophoretic display that can retain images even after the device 150 is turned off. The device can display video as well as color photos in anticipation of the use of device 150, which is not a financial transaction. In the preferred embodiment, the display 152 is used primarily to display the currently active account and to prompt the user. The account information displayed preferably includes any other information necessary to complete the transaction, such as a CCV code or dynamically generated PIN number, as well as a graphic displaying the account issuer's logo or trademark. But you can.

  The account information displayed on the display 152 is an “active” account. Information required for a transaction using the activated account is programmed into the programmable magnetic strip 161 as shown in FIG. 4 or the user authenticates himself using the biometric sensor 151. And then transferred via RF performance. Preferably, the biometric sensor 151 is a fingerprint scanning device that can scan the fingerprint of one or more fingers of a typical user and matches the fingerprint against a stored template. However, other biometric sensors currently known or later developed may be used. In addition, a PIN number may be used.

  The area 156 in front of the device 150 is a printable area that allows logos and other information to be printed on the card. Preferably, the card is not embossed and does not show account information on the front of the card unless it is displayed on the display 152 for added security.

  Contacts 155 are typical for smart cards and meet ISO standards for smart cards. These contacts allow data transfer between the device and the application running on the PC via the base unit 700, and also allow the card rechargeable battery to be charged via the smart card contacts.

  FIG. 4 shows the configuration of the back side of the device 150. Area 160 is an optional area that allows the information printed on the card to be viewed. Area 162 is an optional sign area that fits into the standard sign area of a typical credit card. A programmable magnetic strip 161 is shown at the top of the card, which is a typical location for a conventional credit card magnetic strip.

  FIG. 5 shows the internal elements of the card in schematic form. The battery 171 preferably consists of a thin film lithium polymer that can be charged via a smart card contact 155 as shown in FIG. 3 when the device 150 is located in the base unit 700. The battery is also considered to be inductively recharged by the current induced in the RF antenna 173 by contact with an electromagnetic field or RF wave.

  Element 172 is the system board of the apparatus, including the central processing unit and associated memory, as well as other elements detailed later. Element 173 is an RF antenna that enables a device for handling contactless transactions at a POS terminal. The device allows the transfer of account information when prompted by a typical smart card reader via antenna 173. A typical smart card reader supplies power to the smart card and communicates inductively through an antenna. However, although it is believed that the device can achieve “emergency charging”, suitable for at least one transaction using inductive transfer of power through an RF antenna, The function may not be necessary. Preferably, however, the apparatus uses an antenna only to communicate with a contactless smart card reader.

  Element 176 is a smart card circuit that supports smart card contact, contactless smart card interface and communication and holds activated account information that must be transferred to the POS device to complete the transaction. Includes memory.

  Element 174 is a custom chipset that controls the storage and transfer of track 1 and track 2 data required to complete a transaction at the POS terminal, and is a control for magnetic band emulation. Element 175 is the transfer medium for track 1 and track 2 of the programmable magnetic strip. The POS device writes data to any one of the tracks in the magnetic band, and the magnetic band emulation control 174 can read such information and is associated with the currently activated account information in the memory 403 of the device 150. It can be stored in the area.

  FIG. 6 shows a system diagram of a preferred embodiment of the present invention. Base unit 700 provides a connection point between device 150 and a typical personal computer (PC) 704. The connection between the base unit 700 and the PC 704 may be any conventional method including a cable connection well known to those skilled in the art, typically a serial line, USB connection, or wireless communication such as Bluetooth. However, any well-known communication protocol currently known or conceived will be used. Base unit 700 includes a removable battery 701 that is used to charge the internal battery of device 150. The removable battery 701 may be any type of consumer-quality battery, such as a 9v battery or multiple “AA” or “AAA” batteries. Optionally, an AC adapter 702 is used for the same purpose. Insertion of the device 150 in the base unit 700 enables both charging of the internal battery 171 of the device 150 in addition to data transfer between the PC 704 and the device 150. Both data transfer and battery charging occur via smart card contacts 155. When the device 150 is placed on the base unit 700, the contacts 705 in the base unit 700 are in electrical contact with the smart card contacts 155 on the front of the device 150. This enables data transfer between the base unit 150 and the PC application 1002 running on the PC 704 as described below. Furthermore, the rechargeable battery 171 is recharged via the smart card contact 155.

  It is contemplated that the rechargeable battery 171 can be recharged by the portable battery in the form of a molded clip or soft skin that fits the outer edge of the device 150. This charger (not shown) is powered by a single battery, possibly a wafer battery. Such a charger is molded into a wallet or handbag and provides a convenient place to store the device 150 between uses while charging the battery 171 of the device 150.

  In other embodiments, while the mobile phone has a slot that fits into the device 150, the device 150 can be coupled to the mobile phone for recharging. By inserting the device 150 into the slot, the smart card contact 155 is electrically connected to the charging part of the mobile phone for charging the rechargeable battery 171. It is considered that a data transfer function exists between the device 150 intended for data transfer on the mobile phone network and the mobile phone. For example, data relating to a transaction can be encrypted and transmitted over a mobile phone network to a central site for other processing of a credit card processor.

  It is believed that the device 150 can be integrated into a mobile phone at some point. In such a case, the transaction can be completed via an RF or NFC function with a POS terminal also enabled. Due to the thickness, such an implementation does not have a programmable magnetic strip 161 but has a programmable magnetic strip 161 that can be stowed. The rechargeable programmable magnetic strip 161 is housed in a telephone slot when not in use and expanded from the telephone storage when in use.

  In other embodiments, a solar cell auxiliary option is used for the rechargeable battery 171. In the rechargeable battery 171, a solar cell (not shown) is charged by light in the space so as to keep the battery 171 charged and to reduce power reduction of the battery 171. In addition, light can also be extracted from the backlight of the LCD display 152 of the device 150 to provide a current to reduce battery 171 power reduction.

  In the preferred embodiment shown in FIGS. 3-5, the device 150 is preferably kept structurally flexible, like a credit card that is known in the art. The device 150 is also waterproof.

  FIG. 7 is a schematic structural diagram of the system board 401 of the apparatus 150. The system board 401 includes most of the elements for device control and use. The CPU 408 is the main processor of the device 150, provides overall control of the device 150, and runs main operating system software and applications. The memory 402 is a memory necessary for operating the apparatus, and includes control software and application programs. Flash memory 403 is used for the purpose of long-term storage of security, application data and electronic account records.

  Smart card control 404 includes software and hardware that controls the interaction between smart card circuit 176 and CPU 408. Smart card read / write contact 405 controls data input and output and power transfer via standard smart card contact 155 on the front of device 150.

  The power management element 406 controls the status of the rechargeable battery 171, transfers and adjustments for the rechargeable battery 171 when the device is connected to the base 700.

  The magnetic band control 407 is an interface having a magnetic band control circuit 174, and provides account data programmed to a programmable magnetic band. Further, the magnetic band control 407 determines when the magnetic band 161 is erased or otherwise disabled.

  Display control 409 is responsible for images and information displayed on display 152 in front of the card.

  The biometric control 410 collects input from the biometric sensor 151 on the front of the device 150 and passes it to the biometric registration and authentication software, which is part of the main system software. Alternatively, this functionality is provided by the biometric sensor control element 410.

  Programmable softkey control 411 similarly controls scroll keys 153 and 154 and any other input on the card.

  In addition to the elements shown in the preferred embodiment, additional circuitry is included on the main system board 401 of the apparatus or as a separate element within the apparatus. These include but are not limited to on-board cameras, Bluetooth interfaces, and short-range wireless communications. The configuration shown in FIG. 7 is merely exemplary, and those skilled in the art will be able to provide many alternative configurations that are functional and still within the spirit of the invention.

  FIG. 16 shows the software configuration of the apparatus including all software elements. The device application 501 is a main software application that controls the device 150 and runs on the CPU 408. This provides basic input / output processing functions, and provides main functionality and control of the device 150. The device application 501 may be any currently known or later developed operating system used for portable devices, such as LINUX, Java Card Open Platform (JCOP), but any suitable operating system used. Also good. The device operating system 503 performs all the basic tasks that control the internal elements of the device and provides a software platform on which the device application 501 can run.

  Biometric registration and authentication element 502 allows both initial acquisition of a biometric template and storage of a template that needs to be used later for biometric authentication. In addition, the biometric registration and authorization element 502 is responsible for scanning scans for the biometric sensor 151 and comparing them to a stored template for verifying user identity. If the authentication process is not successful, the device is not activated.

  Software element 504 manages smart card commands and returns them to the system. The smart card operating system 504 is part of the device operating system.

  Similarly for hardware elements, the configuration shown in FIG. 8 is merely exemplary in nature and there will be many alternative configurations that are still considered to be within the spirit of the invention.

  FIG. 9 is a flowchart illustrating the process by which a user is registered on device 150. In box 900, the “device initialization” process begins, and in box 902, a portion of the memory that contains saved or count information and all other user data, such as a previously saved biometric template, is erased. . This is to prevent an unauthenticated person who physically owns the unit from adding an authenticated user to an existing account stored in the device 150. In box 904, it is preferably determined by asking the user how many scans are required for authentication. In a preferred embodiment, multiple scans may be required for the user to authenticate themselves. For example, a user may wish to scan multiple fingerprints from different fingers in a specific order to complete the authentication process. Once the appropriate number of scans has been determined, the counter is reset in box 906. A biometric acquisition procedure, including biometric template acquisition, encoding and storage, is performed at box 908. Preferably, this function is available as a standard part including a biometric scanner. In box 910, the counter is incremented, and in box 912, it is determined whether the required number of biometric samples has been collected. If additional templates are needed, box 912 transfers control to box 908, where other templates are obtained, encoded, and stored. If it is determined at box 912 that the required number of templates has been collected, control is transferred to box 914 which determines whether additional users are registered. If so, control is transferred to box 904, which initiates further user registration. If there are no more registrants, the registration process ends at box 916.

  Further embodiments of the device can provide different types of biometric scans such as voiceprint recognition, or the use of PINs instead of biometric scans. However, this embodiment requires further control on the device for entering the PIN number. However, this embodiment is considered to be within the spirit of the present invention.

  FIG. 10 shows a process that is activated for device use at a POS terminal. The device activation process is the process by which a user is authenticated, thereby unlocking various accounts associated with that user. The process begins at box 1000 when biometric sensor 151 or scroll key 153 or 154 is touched. In other apparatus embodiments, any user input element initiates the authentication process. Either the scroll key 153 or 154 is touched, so that the account information is scrolled and the account currently displayed on the display 152 is activated. When the biometric sensor 151 is touched, the account currently displayed or last displayed is activated. In box 1002, a message prompting the user to complete the authentication process is displayed. If fingerprint scanning is used, the user places an appropriate finger (or fingers in order) on the scanner. Biometric information is collected in box 1003 and encoded in a pre-matching process with a stored template of valid biometric scans. In box 1004, it is compared with the biometric authentication template in which the acquired biometric authentication is stored. The template is obtained during user registration shown in FIG.

  If the query is correct, control is transferred to box 1006 where the counter is updated to indicate how many times the correct query has been made. In box 1008, it is determined whether additional biometrics will be obtained, and if so, control returns to box 1003. If the correct number of biometric authentications is acquired and correctly verified, control passes to box 1010 where the message is erased. The process then moves to box 1012 where a “correct” indication is returned to biometric sensor control 410 on main system board 401.

  If the verification fails in box 1003, control passes to box 1014 where an error message is displayed on display 152. In box 1016, it is determined whether the number of failed attempts has reached a predetermined limit, and if so, control passes to box 1018 and the error value is returned to biometric sensor control 410, which activates the device. Indicates that it should not. If the retry limit has not been reached, box 1016 transfers control to box 1003 where further biometric acquisition is performed.

  FIG. 11 illustrates an interim process in which electronic account data 800 required to complete the transaction is downloaded from the account issuer to the device 150. This information is shown in FIG. 18 and is required to program account characteristics 802, account issuer logo or other graphics 804, and in turn track 1 and track 2 data 806 and 808 (programmable magnetic strip 161. ), Executable code, smart card file system 810, advertising content and / or other data 812 that is not required to complete the transaction, such as coupons. The smart card file system 810 includes executable code that supports anti-theft standards, such as rotating account numbers, dynamically generated passwords, and authentication codes.

  The account issuer is usually a bank or other credit card issuer and, for a particular account, provides a formatted data file 800 containing the information discussed above. Preferably, the formed data file 800 is available for download from the publisher's website 1104 via a secure channel 1103 and electronically via any other method well known to those skilled in the art. Available for transfer.

  FIG. 11 shows the process by which the formed data file 800 is provided to the user. In box 1100, the user preferably inserts device 150 connected to a typical personal computer into base unit 700 via any known communication channel, as described above. In future embodiments of the device 150, it is possible to establish a wireless connection directly from the device 150 to the personal computer, thus eliminating the need for the base unit 700 for communication purposes.

  In box 1102, the user logs on to the account issuer's website 1104 using any authentication procedure required there and establishes a secure communication channel 1103 with the account issuer. Preferably, the secure communication channel is an HTTPS connection that uses the HTTP protocol over an encrypted SSL or TLS transport protocol to ensure secure communication with the web server. However, any encrypted secure communication channel may be used. Depending on the user's request, the account issuer generates a data file 800 formed in the account issuer in box 1106. The formed data file 800 is downloaded to the PC 704 over the secure communication channel 1103 and is preferably stored in the box 1108 in some permanent storage format on the PC 704. In box 1110, the user uses the PC application 1400 to prompt transfer of the formed data file 800 to the device 150. Preferably, the formed data file 800 is encrypted so that it can only be read by the device 150 or the PC application 1400.

  FIG. 12a shows the upstream flow of control for the preferred embodiment of the device 150 after the user has been authenticated. In box 1200, the device activation process of FIG. 10 is executed. If activation is successful (ie, the process shown in FIG. 10 returns a “positive” result), control proceeds to box 1202, where the currently activated account is displayed. The currently active account may be the first account in the account list or the last active account. It should be noted that if the activation process of FIG. 10 returns a “false” result, the device remains locked and awaits a request to execute another device activation. The number of device activation failures that are performed is limited and the device 150 is required to be connected to the PC application 1400 before authentication is attempted again.

  In box 1004, the account that is currently activated becomes available. This means that account information is programmed into the programmable magnetic strip 161 and / or is loaded into a memory containing information that is transferred via the RF antenna 173 in the case of wireless transactions. In addition, additional information required to complete the transaction, such as a dynamically generated password, security code, or CCV code, is shown on display 151.

  In box 1206, it is determined whether the currently active account has timed out, and if so, the device is deactivated in box 1208 and the authentication process of FIG. 10 is not repeated to restart the account. Must not. If the device has not timed out, control proceeds to box 1210 where it is determined whether one of keys 153 or 154 has been pressed, and the press scrolls the user to the next or previous account in the list. Indicates that you want to start Scrolling occurs at box 1212 and control is then returned to box 1202 to display new account information. If no key is pressed in box 1210, the currently activated account information is used, and device 150 waits for the timeout in box 1208. Alternatively, it is determined whether the account information has been transferred over the air or physically swipe through. When physically swiped through, the programmable magnetic strip 161 is read, and in that case the device is powered off before the timeout is reached.

  In another embodiment of the process shown in FIG. 12b, if a key press is detected in box 1210, it is determined in box 1211 whether the pressed key is a soft key. In that case, control proceeds to box 1213 where the most upstream level of the on-board application menu 1300 shown in FIG. 13 is displayed. Keys 153 and 154 are also used to navigate this menu. The onboard application 1300 provides access to various additional functions of the device. It should be noted that in order to use the other embodiment of flow control shown in FIG. 12b, a soft key needs to be added as a modification of device 150. Alternatively, if other methods of soft key press detection are used, such as detecting simultaneous presses of buttons 153 and 154, the original embodiment of device 150 is used.

  FIG. 13 shows the top level of the onboard application menu 1300. The top level of the application menu 1300 allows the user to select from several functions. In box 1302, a user can activate an NFC circuit to download content to or from device 150 to PC 704 or other short-range wireless communication device. For example, NFC content town 1302 can be used to move data about a new account from PC 704 to device 150. Further, data related to account usage, such as the number of times the account has been used and the amount charged for various accounts, is downloaded from the device 150 to the PC application 1400. The NFC function of the device is also used to communicate with a properly equipped POS terminal or other purpose ticketing terminal. Other purposes include downloading coupons from advertising ticketing terminals, uploading coupons to POS terminals, downloading electronic receipts from POS terminals, downloading products (such as electronic tickets) and content, Others.

  In box 1304, the camera 106 is used to obtain an image including images from other advertising media such as coupons and posters. To obtain the barcode, the user takes a picture of the barcode wherever it is displayed. The barcode is then translated by software in box 1305. The software behaves like optical character recognition software that translates barcode content into plain text. The details of the coupon can then be displayed on the LCD display 151. In box 1306, coupon data is stored in on-board memory 402 and can be uploaded to application 1400 if the device is connected to a personal computer.

  The user can choose to review the saved coupons, products, or content in box 1310 to determine whether they are used or deleted. Similarly, in box 1312, the user can review the stored receipt downloaded to the memory 402 of the device 150 via the NFC circuit. These receipts are eventually downloaded to the PC application 1400 for permanent storage and / or review and printing on a personal computer. Box 1014 is reserved for future expansion of device 150. Future extensions are possible via software updates, applied via the PC application 1400.

  A functional diagram of the PC application 1400 is shown in FIG. The PC application 1400 preferably runs on a PC 704 to which the device 150 is connected via the base unit 700. Preferably, the computer executed by the PC application 1400 has means for connecting to the Internet in order to download account information from the account issuer and to download other content. Thus, the PC application 1400 may be any conventional design of this type of application as long as all or a subset of the functions as in FIG. 14 are provided.

  PC application 1400 allows account information to be maintained in box 1404. This includes defining a new account record in 1405, modifying an existing account record in box 1406, and deleting the existing account record in box 1407. Defining a new account record includes downloading account information from the account issuer in the form of a formed data file 800, as described above with respect to FIG. The account information downloaded from the account issuer to the PC application 1400 includes advertising media and graphics displayed on the display 151 when the account is activated.

  In box 1408, the PC application 1400 can synchronize with the device 150 the account data and any other content stored therein. The permanent storage device on the PC application 1400 and the PC 704 functions as a backup for information stored on the device 150, maintains a history retrieved from the device 150, and all accounts between the device 150 and the PC application 1400. Synchronize recorded data.

  During the synchronization process by personalizing account data to one specific device 150, an additional level of account data protection is used. In this process, all new account records moved to device 150 preferably perform an encryption process specific to device 150. The encryption process is performed by software on the device 150, and the newly encrypted account data is returned to the PC 704 for storage, thus rewriting the unencrypted version of the account data. This confirms that the generated account data only works on a single device 150 and not on other similar devices. To accomplish this, each device 150 is programmed with a unique serial number or encryption key that is used to encrypt data for that particular device 150.

  The PC application 1400 also functions as a payment intermediary for online purchases and purchases, and the base unit 700 functions as a POS, allowing NFC or wireless smart card transfer of account data to complete transactions from the device 150. . Alternatively, account information is transferred via a smart card contact 155 on the device 150. Further, in the absence of the base unit 700, payment is made using the wireless connection function directly from the device 150 via a personal computer.

  To make an internet payment, the device 150 is activated and an appropriate account is selected. If the device 150 is inserted into the base unit 700, the account information from the device 150 is read via the smart card contact 155 and the relevant area on the web page is collected for payment in online trading. The

  Similarly, the device 150 is also used as an authentication device for a user to log into a website any number of times. To do so, a username / password combination is required for access. When the user logs on to the website, the device 150 automatically detects the website and automatically provides the appropriate username / password combination to allow access to the website. Other uses devised by the inventor include use as a student ID, use as an electronic driver's license, use as a passport, and use to permit entry into restricted areas of a building. In general, wherever a particular person needs to be associated with a number or account, an apparatus 150 that provides a more secure method of authorization that is less prone to theft and fraud is useful.

  PC application 1400 also helps manage receipt records by selecting menu item 1412. Receipt records may be downloaded from the device during the synchronization process 1409, and receipt records may be saved for local storage by the PC application 1402 in the permanent storage of the PC 704. In box 1413, the receipt can be exported as an image document in a well-known image format such as JPEG, TIFF, PDF, or text file. In addition, multiple receipt records can be exported in a suitable format so that they can be read by a spreadsheet-type program such as Excel. In box 1414, the record is deleted from local storage when it is no longer needed.

  Menu item 1416 enables the coupon management function of PC application 1400. In box 1418, coupons that the user no longer wants to hold are erased, or alternatively, expired coupons are automatically erased. In addition, coupons can be downloaded from the Internet via the PC application 1400 and these coupons can then be sent to the device 150 during the synchronization process 1409.

  Menu item 1420 includes various settings for PC application 1400, such as the method used by base unit 700 to communicate with the personal computer, the format of the user interface for application 1200, and various other items that affect the operation of device 150. Enable options.

  In operation, as shown in FIG. 15, the device 150 can be used for transactions used with POS terminals having magnetic band or RF transfer capabilities. After the user has successfully activated the device, the account record data is used to encode the magnetic band emulator on the device. The magnetic band emulator can then be swiped through a magnetic band reading device typically found in POS terminals. This provides the information necessary to complete a transaction with a specification that works with existing equipment. Existing contactless POS terminal interfaces also support the device as a way to communicate with the transaction data needed by using the RF function.

  FIG. 16 shows a transaction between the device 150 and a POS device with an NFC function. Here, an interactive session is supported. That is, the NFC circuit on the device 150 exchanges NFC-enabled POS terminals where the device 150 exchanges selected account information, any applicable coupons or special offers, and other key information regarding such transactions. Two-way communication can be established. Further, the information may be sent from the POS terminal to the device 150 for data such as electronic receipt data, information about loyalty points, key points about future shopping, advertising content, products (eg, electronic tickets) and messages directed to the user. Can be downloaded. This function is not in the transaction shown in FIG. 15 because there is no channel for data going from the POS terminal device back to device 150 via the magnetic band or smart card interface. In an embodiment of the device 150 with an NFC circuit, the NFC circuit is used to emulate a smart card RF transaction.

  While the device is considered to comply with ISO standards 7810, 7811, 7812 and 7813 as a magnetic band card, other embodiments do not have a magnetic band portion and communicate only with devices that use smart card technology or have NFC capability. I think that.

  FIG. 17 provides a solution that fraud can be removed from credit card processing by requiring a one-time password to be included in a dynamically generated transaction. This function cannot be used with a conventional credit card because there is no calculation element for calculating a dynamic password.

  Different account issuers have different algorithms and solutions for the generation of dynamically generated passwords. Thus, the encryption algorithm for generating the dynamic password is downloaded as part of the smart card file system 810 as part of the electronic account record 800, as shown in FIG.

  The dynamic password generated by the device 150 is electrically transferred to the POS device along with the remaining account information and finally transferred to the financial institution for billing authentication, or the device user can enter the password. It is displayed on the display 152 so that it can be read and communicated verbally to the seller or typed into a keypad with a POS device. Alternatively, a non-dynamic alphanumeric safety code, such as a CCV code that does not require computation, is displayed for use by the user in a similar manner.

  In operation, a password is generated when the user activates an account or is queried by the POS device and displayed on the display 152 to the user, or alternatively, as part of an electronic transfer of the account number. , Provided via a wireless RF transaction through a programmable magnetic strip 161 and antenna 173.

  This process is illustrated in FIG. In box 1701, the user provides an account number and a dynamic password to the merchant during normal transactions at the POS terminal. In box 1702, the merchant includes the dynamic password in the transfer to payment processor 1703 as part of the normal payment authorization transfer. The information is then sent to the collecting bank in box 1704. Alternatively, in the absence of a payment processing service provider, the merchant communicates directly with the collecting bank. The collecting bank then forwards the account number and dynamic password to the payment card association 1705. Payment card association 1705 forwards information to payment processing service at 1706. In 1706, the one-time password is authenticated for the specific account, and charging is authorized. In box 1707, the financial card issuer also authenticates the dynamic password and approves the charge. Authentication is then returned to the collecting bank 1704. The payment processor or gateway server 1703 then forwards the authentication to the merchant and the transaction is complete. It should be noted that one or more actual conditions in FIG. 17 are the same actual condition.

  A user with a password that is dynamically generated based on the uniqueness inherent in the device 150 eliminates the type of fraud where credit numbers are stolen and used to buy goods for individuals. This can be done by embossing the number to another card, or simply by doing an internet transaction on the internet where the card number is provided. The method also eliminates that a safety code or CCV code is printed on the card sign panel. Thus, the theft of dynamically generated security codes is almost impossible. The illustrated embodiments are only examples and are not intended to limit the invention. For example, the actual physical configuration of the device 150 will vary depending on the needs of the applications running on it. For example, some applications require a larger or smaller display, or some embodiments of the invention include, for example, speakers and / or microphones. Similarly, the arrangement of keys 153 and 154 and, in addition, the number and additional key arrangement may be any configuration convenient for the user. The biometric sensor 151 may be located at any convenient location and is located outside or inside the case of the device 150. Similarly, the system design basic concept shown in FIG. 7 is only one possible embodiment. The basic concept of system design is configured in any way that provides the necessary functionality for the magnetic band emulator, smart card, and / or NFC depicted here.

Claims (83)

A device that executes point-of-sale transactions,
a. A case with roughly the size of a credit card,
b. A biometric sensor,
c. Memory for storing information about one or more accounts;
d. A user interface for selecting one of the one or more accounts stored in the memory;
e. A display portion for displaying information about the selected account;
f. An RF interface including an RF antenna for providing said selected account information in electronic form to a point of sale device;
Including the device.   The biometric sensor identifies the user of the device by comparing one or more biometrics acquired from a user with one or more previously stored biometrics acquired from the user. The apparatus according to claim 1, used for authenticating.   The apparatus of claim 2, wherein the interface includes one or more buttons.   The one or more accounts are arranged in a list, and the one or more buttons traverse the list by scrolling back and forth through the list to select one of the one or more accounts. 4. The device according to claim 3, which can be used for the purpose.   The apparatus of claim 2, wherein information regarding the selected account is displayed on the display portion.   The apparatus of claim 5, wherein the display portion is an LCD display.   6. The apparatus of claim 5, wherein the information about the selected account includes any information necessary to complete a point-of-sale device transaction that is not electrically transferred by the device.   The apparatus of claim 2, wherein the RF interface is disabled until the user identification is approved.   The apparatus of claim 5, wherein the RF interface is a smart card interface.   9. The apparatus of claim 8, wherein the RF interface is capable of transferring information regarding the selected account when queried by a point-of-sale device.   The apparatus of claim 10, wherein the RF interface is disabled after a single transfer of the selected account information or after a predetermined time.   3. The apparatus of claim 2, further comprising a programmable magnetic strip that is programmed with the selected account information and is subsequently erasable.   13. The apparatus of claim 12, wherein the programmable magnetic band is programmed with the selected account information only after recognition of an authenticated user of the apparatus is authenticated via the biometric sensor.   11. The apparatus of claim 10, wherein the programmable magnetic strip is erased or unreadable after being swiped through a point-of-sale device or after a predetermined time.   The apparatus according to claim 2, wherein the biometric authentication is a fingerprint and the biometric sensor is a fingerprint scanner.   8. The device of claim 7, wherein the information required to complete a transaction at a point-of-sale device that is not electrically transferred by the device is a dynamically generated password calculated by the device.   The apparatus of claim 16, wherein the dynamically generated password is unique for each transaction.   The device of claim 16, wherein the dynamic password is calculated by the device based on an algorithm stored in the memory of the device.   The apparatus of claim 17, wherein the algorithm is supplied by the issuer of the selected account and downloaded to the apparatus.   The apparatus of claim 1, wherein the account information transferred in electronic form to a point-of-sale device includes a dynamically generated password calculated by the device.   21. The device of claim 20, wherein the dynamic password is calculated by the device based on an algorithm stored in the memory of the device.   The apparatus of claim 21, wherein the algorithm is supplied by the issuer of the selected account and downloaded to the apparatus.   8. The device of claim 7, wherein the information required to complete a point-of-sale device transaction that is not electrically transferred by the device is an alphanumeric password.   The apparatus of claim 1, further comprising a plurality of electrical connections at the case outer edge of the apparatus.   25. The apparatus of claim 24, wherein the plurality of electrical connections are compliant with a smart card specification.   25. The device of claim 24, further comprising a rechargeable battery.   27. The apparatus of claim 26, wherein the rechargeable battery is recharged via the plurality of electrical connections.   27. The apparatus of claim 26, wherein the rechargeable battery can be charged using inductive coupling when the RF antenna is exposed to RF energy.   25. The apparatus of claim 24, wherein the apparatus can exchange data with a computer via the plurality of electrical connections.   30. The device of claim 29, wherein account information can be downloaded to the device via the plurality of electrical connections.   30. The device of claim 29, wherein executable code can be downloaded to the device via the plurality of electrical connections.   15. The apparatus of claim 14, wherein the programmable magnetic band can have data programmed onto at least track 1 and track 2 of the magnetic band.   15. The programmable magnetic strip is written by a point-of-sale device, and the information written on the programmable magnetic strip is read by the device and further stored in the memory of the device. The device described.   27. The apparatus of claim 26, further comprising a solar cell that can be used to recharge the battery when exposed to space light.   The apparatus of claim 1, further comprising a short range wireless communication (NFC) interface.   36. The device of claim 35, wherein the NFC interface can be used to upload selected account information to a point-of-sale device.   36. The device of claim 35, wherein the NFC interface can be used to upload coupon information to a point-of-sale device.   36. The device of claim 35, wherein the NFC interface can be used to download content from a point-of-sale device or other NFC capable terminal to the device.   40. The apparatus of claim 38, wherein the content is selected from the group consisting of promotional advertisements, electronic receipts, electronic coupons, and electronic tickets.   The apparatus of claim 1, wherein the apparatus can be used as a method of identification.   41. The apparatus of claim 40, wherein the apparatus can be used as a method of identification selected from the group consisting of a student ID, employee ID, driver's license, and passport.   The apparatus of claim 1, wherein the apparatus can be used for access control. A device that executes point-of-sale transactions,
a. A case with roughly the size of a credit card,
b. A fingerprint scanner,
c. Memory for storing information about one or more accounts;
d. One or more buttons for selecting one of the one or more accounts;
e. A display that displays information about one of the accounts, and wherein the displayed account is the currently selected account;
f. An RF interface for providing the currently selected account information in electronic form to a point-of-sale device;
g. A programmable magnetic band that is programmable with the currently selected account information and is subsequently erasable;
Including the device.   44. The apparatus of claim 43, wherein the apparatus calculates a dynamically generated password for each account or each transaction of each account.   45. The apparatus of claim 44, wherein the dynamically generated password can be electrically transferred via the RF interface or via a programmable magnetic strip.   45. The apparatus of claim 44, wherein the dynamically generated password is displayed on the display.   44. The apparatus of claim 43, wherein information required to complete a transaction at the point-of-sale terminal that is not electronically transferred to the point-of-sale terminal is electronically displayed on the display.   48. The apparatus of claim 47, wherein the information required to complete a transaction at a point-of-sale terminal that is not electronically transferred is a CCV or a safety code. A system for performing point-of-sale transactions,
a. A computer running the application;
b. A memory for storing information about one or more accounts, a user interface for selecting one of the one or more accounts stored in the memory, and for authenticating a user identity of the device A handheld portion including a biometric sensor, an RF interface for transferring the selected account information in electronic form to a point-of-sale terminal, and a data port for communicating with the application;
Including system.   50. The system of claim 49, wherein the application is capable of downloading account information from an account issuer over the Internet and storing the account information on the computer.   51. The system of claim 50, wherein the account information can be downloaded to the handheld portion and stored in the memory therein.   51. The system of claim 50, wherein the account information is downloaded to the handheld portion, encrypted at the handheld portion, and returned to the application for storage on the computer.   50. The system of claim 49, wherein the application can download content to the handheld portion.   54. The system of claim 53, wherein the content includes promotional advertisements and coupons.   49. The system of claim 48, wherein the RF interface is a short range wireless communication (NFC) interface.   56. The system of claim 55, wherein the NFC interface is capable of emulating a smart card that enables a contactless transaction function by a point-of-sale terminal with smart card enabled.   56. The system of claim 55, wherein the handheld device can communicate with point-of-sale devices and other devices with NFC functionality.   58. The system of claim 57, wherein the handheld portion is capable of receiving content downloads from devices having NFC functionality.   59. The system of claim 58, wherein the content is selected from the group consisting of promotional advertisements, electronic receipts, electronic coupons, and electronic tickets.   60. The system of claim 59, wherein the downloaded content can be copied to the PC by the application for printing and permanent storage.   50. The system of claim 49, wherein the handheld part is electrically connected to the computer to allow synchronization between the application and the handheld part.   50. The system of claim 49, further comprising a base unit having a connector connected to the computer via a cable or wireless connection and capable of mating with the data port on the handheld portion.   64. The system of claim 62, wherein the data port comprises a plurality of electrical connections.   64. The system of claim 63, wherein the handheld portion further comprises a rechargeable battery that can be dielectrically recharged by exposure to the data port or RF wave.   50. The system of claim 49, wherein the handheld portion further comprises a programmable magnetic strip that is programmable with the selected account information and is subsequently erasable.   66. The device of claim 65, wherein the programmable magnetic strip is programmed with the selected account information only after the identity of the authorized user of the device is authenticated via the biometric sensor.   66. The apparatus of claim 65, wherein the programmable magnetic strip is erased or rendered unreadable after being read by swiping through a point-of-sale device or after a predetermined time.   50. The apparatus of claim 49, wherein the RF interface is disabled until the user identity is authenticated using the biometric authentication sensor.   50. The apparatus of claim 49, wherein the RF interface is a smart card interface.   69. The apparatus of claim 68, wherein the RF interface is capable of transferring information regarding the selected account when queried by a point-of-sale device.   The apparatus of claim 70, wherein the RF interface is disabled after a single transfer of the selected account information or after a predetermined time.   50. The apparatus of claim 49, wherein information regarding the selected account is displayed on the display.   73. The device of claim 72, wherein the information regarding the selected account includes any information required to complete a point-of-sale device transaction that is not electrically transferred by the device.   74. The information required to complete a transaction at the point-of-sale device that is not electrically transferred by the device is a dynamically generated password calculated by the device. apparatus.   75. The apparatus of claim 74, wherein the dynamically generated password is unique to each transaction.   75. The device of claim 74, wherein the dynamic password is calculated by the device based on an algorithm stored in the memory of the device.   77. The apparatus of claim 76, wherein the algorithm is supplied by an issuer of the selected account and downloaded to the apparatus.   50. The device of claim 49, wherein the account information transferred in electronic form to a point-of-sale device comprises a dynamically generated password calculated by the device.   79. The device of claim 78, wherein the dynamic password is calculated by the device based on an algorithm stored in the memory of the device.   80. The device of claim 79, wherein the algorithm is supplied by an issuer of the selected account and downloaded to the device.   74. The device of claim 73, wherein the information required to complete a transaction at the point-of-sale device that is not electrically transferred by the device is an alphanumeric password.   28. The apparatus of claim 27, wherein the rechargeable battery is rechargeable by a mobile phone having a mating connection combination. A device for performing point-of-sale transactions,
a. A mobile phone including a case,
b. A biometric sensor disposed on the case;
c. Memory for storing information about one or more accounts;
d. A user interface for selecting one of the one or more accounts stored in the memory;
e. A display portion for displaying information about the selected account;
f. An RF interface, including an RF antenna, for providing the selected account information in electronic form to a point-of-sale device;
Including the device.

Images