RU2263347C2 - Method for performing transactions of users of mobile communication devices and computerized cashless transaction system for realization of said method - Google Patents

Abstract

FIELD: mobile telecommunication systems.

SUBSTANCE: method includes forming conditions of type of payment and condition on payment sum, and recording these on server, unique index is assigned to each payment type, which is inputted via mobile communication deice before transaction, in accordance to inputted index query for transaction is sent to server system, before initiation of payment in response to aforementioned query, from server system to mobile communication device conditions of aforementioned payment type are sent with displaying of these on screen of mobile communication device, after that from mobile communication device to server confirmed payment order is sent, after receipt of which payment is initiated by query to server from appropriate paying organization. System has block for working with payment receivers, payment receiver terminal, block for working with users, block for working with payment operations, block for generation and storing of pseudo-random transaction codes, recording device.

EFFECT: higher reliability, higher trustworthiness, higher speed of operation.

2 cl, 3 dwg

Description

The invention relates to the field of information technology and, in particular, to a method for making payment transactions by users of mobile electronic communication devices and a computer system for its implementation.

State of the art

The rapid development of information technology has led to the emergence of a variety of cashless payment systems using electronic communication lines and computer network resources.

The publication of international application WO 02/35429 describes a cashless payment system in which the computers of the system’s clients are connected via a computer network to an intermediary site organizing money transfers through a bank associated with it, which, in turn, is linked to the banks included in the system. To transfer money from one client to another, the payer must send a payment request to the specified intermediary site indicating the amount, source of payment, as well as its recipient. Obviously, to enter such data by the client, the latter must have a computer display and keyboard.

Recently, the development of cashless payment systems focused on the use of electronic communication devices such as mobile phones or PDAs (Personal Digital Assistant or PDAs) as user terminals has begun.

One of the technical solutions in this area is disclosed in the patent of the Russian Federation No. 2191482, considered as the closest analogue of the invention. This patent describes how to offer for sale, place orders and sell goods and services using an offer server associated with computer terminals of sellers of goods or services. According to this document, the seller or the offer server forms the identification of offers for the sale of goods or services, which is a combination of alphanumeric characters, that is, a conditional index that carries information about the seller, the offered product, as well as other possible information. Such indexes are distributed among users of mobile electronic communications devices. A user who decides to use the offer, enters the appropriate index on his mobile electronic communications device and, on its basis, transmits a request for ordering or purchasing the corresponding product or service to the offer server. If the specified product is available, a special marker is sent to the user's mobile electronic communication device confirming the order. This marker, which corresponds to a specific sample of the product, is stored in the memory of a mobile electronic communication device so that it can subsequently be presented, for example, as proof of payment for receiving the corresponding product or as an entrance ticket to an event.

The use of markers according to this patent makes it possible to streamline the process of placing orders by creating a mechanism to control the availability of a particular type of goods or services. However, the patent of the Russian Federation No. 2191482 does not provide technical means that would insure the user against fraud or errors in entering the offer index. In particular, when entering the offer index on a mobile electronic communication device, the user is forced to act “blindly”, because from the cashless payment system (or offer server) he does not receive information about what exactly and to whom he pays, since the offer index represents a code that is understandable only to the offer server. As a result, a situation may arise when the user receives incorrect information about the offer index or simply makes an input error, and the incorrectly entered index may correspond to another offer. In both cases, in the well-known system, the order will be placed and the sale completed, and the user, initiating the payment, is not able to verify whether the goods that he wants to buy, the seller from whom he wants to buy these goods, and the amount that he is ready to pay. Moreover, the token received from the server of the system and displayed on the screen of a mobile electronic communication device cannot be considered as legally valid proof of payment, which can be especially important in contentious situations.

SUMMARY OF THE INVENTION

The above analysis of the prior art shows that it does not yet have mechanisms to insure users of mobile electronic communication devices acting as payers in such systems from malicious manipulation of payment type indices or accidental errors in their transmission and distribution or errors in entering these indices into mobile electronic communications device.

Such a mechanism is provided by the proposed method of making payments by users of mobile electronic communication devices through a cashless payment system, according to which the payment type conditions are generated and stored in the server of the specified system, including at least the identification of the payee, purpose common to all payments of this type, and a condition for the payment amount, with a specific payment type being assigned a unique index. Before making a payment, the index of the type of payment is entered by means of a mobile electronic communication device, and in accordance with the entered index, a request for making a payment is transmitted to the system server. The difference of the proposed method from the closest analogue of the invention lies in the fact that in response to the specified request from the server of the system the conditions of the specified type of payment are transmitted to the mobile electronic communication device, including at least the destination and the payee, with the display of these conditions on the screen of the mobile device electronic communication, after which a confirmed payment order is transmitted from the mobile electronic communication device to the system server, after receiving which through the system They make a payment by contacting the server of the relevant payment organization.

Preferred types of mobile electronic communications device are a mobile phone or PDA, and the connection between the mobile electronic communications device and the system server can be established through the gateway of the mobile operator. In another embodiment, a handheld computer user may establish communication with a system server via an Internet terminal.

The terms of the type of payment transmitted to the electronic communication mobile device may include a condition for the payment amount, which is a fixed value, which subsequently, when transmitting a confirmed payment order, is not subject to change.

In another case, the conditions of the type of payment transmitted to the mobile electronic communication device may include a condition on the payment amount, which is an interval of acceptable values, and before sending a confirmed payment order from the mobile electronic communication device, a specific value of the payment amount is entered, while checking the location of the entered values of the payment amount in the specified interval. Such verification can be carried out both by hardware and software of a mobile electronic communication device before sending a confirmed payment order to the system server, or by the system server after receiving the specified payment order. A characteristic type of payment with an interval of acceptable values of the transferred payment amount may be an advance payment of a service, in particular, a mobile operator’s service. Another example of this type of payment may be a contribution to a charity fund.

Such a mechanism for selecting a specific payment value within a given interval and verifying the correctness of such a choice simplifies the cashless settlement process, allowing the user to more flexibly manage their financial resources.

The terms of the type of payment may include any of the following elements: comment of the payee, detailed description of the payee company, detailed description of the purpose of payment, images, three-dimensional models, videos, sound messages.

The payment type index can be communicated to the user of the mobile electronic communication device using mass media and / or information materials of the payees. This can be billboards, mobile visual aids, advertising publications and publications, television advertising, etc. The index of the type of payment is preferably indicated with the designation of the cashless payment system, which may be indicated before such an index.

Together with a request to make a payment or a confirmed payment order, the user’s means of payment supported by the specified payment organization can be transferred to the system server. Moreover, such data can also be stored in the storage device of the system server. A user’s payment instrument may be a bank account and / or a credit card, in which case the bank may act as a payment institution. In the second case, a credit card service center may also act as a payment institution. In addition, the payment institution may be an electronic payment system, while the user’s payment instrument will be the user's personal account in the specified system.

To ensure the maximum convenience of entering the index of the type of payment from a mobile electronic communication device, it is preferable to generate this index only from numbers.

As an additional security measure for a payment transaction, after receiving a confirmed payment order from the user, a pseudo-random code (unique identifier) of the payment transaction can be generated through the system server and transmitted to the terminal of the payee. Further, from the terminal of the payee, the specified transaction code is transmitted directly to the user, after which the code is entered and transmitted from the mobile electronic communication device to the system server, in which the value of the payment transaction code received from the user and the value of the payment transaction code transmitted to the recipient terminal are compared payment, and the payment is initiated if the specified values match. This operation code is set for a limited period of time, after which the specified code is canceled. For this, for example, after generating a payment transaction code, it can be stored in the storage device of the system server for a specified period of time, followed by deletion. Prior to the transfer of this code from a mobile electronic communication device to the system server, the user of the mobile electronic communication device may retain the right to cancel the payment by sending a corresponding message to the system server.

Another security step in the implementation of the proposed method may be an additional verification of the user's credentials of a mobile electronic communication device to make a payment by entering a fixed password and / or a one-time user authentication code, such as a personal identification number (PIN), on a mobile electronic communication device. For example, if a mobile electronic communication device supports the J2ME language (Java 2 Micro Edition), then a user-entered fixed password or a one-time authentication code can be transferred to the system using the application installed on the J2ME mobile device (the so-called "midlet") and through an additional a user interface server that supports working with applications written in the J2ME language and connected to the system server.

In another embodiment, if the mobile electronic communication device supports WAP, a user-entered fixed password or one-time authentication code can be transmitted to the system server through the associated additional user interface server that supports the exchange of information with mobile electronic communication devices in WML

The proposed method of cashless payment also allows you to simplify payments in case of combining the corresponding cashless payment system with various kinds of information services. In particular, the type of payment index may correspond to the index of a particular product in the database of goods providing such a service. This product database can be maintained on a user interface server, whereby a user of a mobile electronic communication device is provided access to said database via a corresponding WAP or C2ME interface.

When the payee and the user of the mobile electronic communication device are at a distance, in order to be able to communicate between them, the payment transaction code can be transmitted to the terminal of the payee along with the corresponding user identification, in particular, indicating his mobile phone number.

In the particular case of the implementation of the proposed method, the type of payment is the payment of a state fee for the issuance of a general civil or foreign passport, while the payment transaction code is transmitted to the terminal of the passport service operator indicating the surname, name and patronymic of the user of the mobile electronic communications device, and this code is transmitted directly to the user through the terminal operator of the passport service (during an interview with the user).

The second object of the invention is a computer system of non-cash payment for making payments by users of mobile electronic communication devices, including a payment authorization server associated with mobile electronic communication devices, a server of at least one payment organization and a terminal of at least one payee. The difference of the proposed system from the closest analogue of the invention lies in the fact that the payment authorization server contains: a block for working with payees associated with the specified terminal of the payee with the possibility of creating conditions for types of payments; a user interaction unit associated with mobile electronic communication devices; a unit for working with payment operations associated with a server of a payment organization and a unit for working with users; and a storage device comprising at least a storage area for data about users and their means of payment and a storage area for conditions of payment types, the storage device being connected to a block for working with payees, a block for working with users, and a block for working with payment transactions.

The payment authorization server may contain a pseudo-random payment transaction code generation and comparison unit, the input of which is connected with the user work unit, one output - with the payment recipient work unit, and the other output - with the payment operation work unit, and the authorization server memory device of payments may comprise a storage area for payment transaction codes, wherein a pseudo-random payment transaction code generation and comparison unit is associated with said storage area for payment transaction codes. The storage device of the payment authorization server may contain a data storage area about payment recipients and their accounts associated with the block of work with payment recipients.

In a preferred embodiment, the proposed system comprises an additional user interface server connecting the payment authorization server to mobile electronic communication devices. This user interface server preferably supports working with applications written in the J2ME language and / or exchanging information with mobile electronic communication devices in the WML language using the WAP protocol.

A mobile electronic communication device may be able to communicate with the user interface server via a secure connection channel, in particular using encryption using one of the RC6, WTLS or SSL protocols. Within the system, the payment authorization server can be connected to the terminal of the payee, the server of the payment organization, and the user interface server via secure connection channels, in particular, using encryption using the SSL protocol.

To increase the security of data exchange, the payment authorization server can be connected to the server of the payment organization and the terminals of payment recipients through a network protection device.

In addition, the payment authorization server may comprise an authentication code generation unit, and the payment authorization server memory may comprise an authentication code storage area associated with a user interface, and the authentication code generation unit in this case is associated with the specified authentication code storage area.

By means of the claimed invention, an increase in the reliability and security of payment transactions through a system of cashless payments by users of mobile electronic communication devices is achieved without significantly increasing the requirements for these devices and at the same time ensuring the convenience, speed and simplicity of these operations by users. This allows for mass implementation of the specified cashless payment system.

Brief Description of the Drawings

Figure 1 presents the structural diagram of the proposed system of cashless payments.

Figure 2 presents the structural diagram of the proposed system of cashless payments in another embodiment of the invention.

Figure 3 presents the structural diagram of the server authorization payments.

The implementation of the invention

Figure 1 presents the structural diagram of a cashless payment system in which the proposed method of cashless payment can be implemented. The arrows indicate the communication channels between the components and the preferred direction of information flows. The main elements of the system are the payment authorization server 1, the payment organization server (in particular, the bank 2 server), the payee terminal 3 and the mobile electronic communications device (in particular, the mobile phone) 4.

The mobile phone 4 is connected to the gateway 5 of the mobile operator through which it can exchange data with the payment authorization server 1.

The interaction between mobile phones and the payment authorization server provides an additional user interface server 6, which connects the payment authorization server 1 to the mobile phones 4. In order to be able to work with the widest possible range of mobile phone models, the user interface server 6 supports working with applications written in the language J2ME, as well as the exchange of information with mobile electronic communication devices in the WML language using the WAP protocol. Alternatively, the user interface server 6 may further support a database of goods and / or services to which mobile phone users access via the corresponding WAP or J2ME interface.

The payee terminal 3 is preferably a computer, suitably connected to a computer network (for example, the Internet), but can also be represented by another type of terminal device, including a mobile electronic communications device.

As explained below, the payment authorization server 1 is the main element of the proposed cashless payment system, it is connected to the payment recipient terminals 3 and the bank server 2 and, in the preferred embodiment, is a means of controlling the execution of payment transactions used in making payment transactions, in particular for authorization and cancellation of payments. Payment orders are sent by the payment authorization server 1 to the bank 2 server after the payment is confirmed in accordance with the proposed method of making payment transactions.

The payment authorization server 1 is connected to the server 2 of the bank, the terminals 3 of the payees and the user interface server with 6 secure connection channels. Encryption of transmitted data using SSL technology is preferred. To ensure security when transferring data from and to a mobile phone, mobile phone 4 is also connected to the user interface server 6 via a secure connection channel. For these purposes, encryption can be performed using one of the RC6, WTLS or SSL protocols. The possibilities of using the WTLS and SSL protocols will be discussed below when describing the user’s work with a cashless payment system containing a user interface server 6.

Figure 2 presents the structural diagram of the cashless payment system in another embodiment, different from the one discussed above in that instead of one server user interface 6, the system has two separate servers, one of which implements an interface for working with mobile phones with J2ME support (for for brevity, hereinafter referred to as J2ME-cepaep and indicated at 7 in figure 2), and the other is an interface for working with WAP-enabled mobile phones (for brevity, hereinafter referred to as a WAP server and indicated in figure 2 by itsiey 8).

In addition, if in the embodiment shown in FIG. 1, it is assumed that the protection of the payment authorization server 1 can be implemented by the software of this server, as well as the user interface server 6, then in the considered embodiment, the payment authorization server 1 is connected to the J2ME server 7 and WAP-server 8, and terminals 3 of payees, as well as the server of bank 2 through additional network protection devices 9 and 10 (firewall), for example, Cisco PIX devices from Cisco Systems.

The system can be implemented in various configurations. So, the server 1 authorization payments can be connected to the server of a single payment institution (server 2 of the bank in figure 1). In this case, the proposed cashless payment system can be used by the relevant bank to organize its own payment processing center. The payment authorization server 1 will be administered by the specified bank. In another embodiment, a single server 1 authorization payments with the corresponding server user interface 6 can serve several banks (figure 2). There is also the possibility of organizing an interbank system in which several payment authorization servers belonging to different banks are connected to the same user interface server 6.

As shown in FIG. 3, where the arrows indicate the communication channels between the components and the preferred direction of the information flows, the payment authorization server 1 contains the following functional blocks: a block 11 of work with payees, which is connected to the payee terminal with the possibility of forming conditions for payment types, block 12 user work associated with mobile phones 4 (through a gateway 5 of a mobile operator), a payment operation unit 13 associated with a bank server 2 and a user work unit 12 ateliers, and a storage device 14 comprising at least a storage area for data about users and their means of payment and a storage area for payment type conditions. The storage device 14 is associated with the aforementioned block 11 of work with payees, block 12 of work with users and block 13 of work with payment transactions.

For additional confirmation by the user of a mobile phone of the payment made by him, the mechanism of which will be considered below when describing the operation of the cashless payment system, the payment authorization server 1 contains a block 15 for generating and comparing pseudo-random payment transaction codes, the input of which is connected with the block 12 for working with users, one output is with block 11 of work with payees, and another output with block 13 of work with payment operations. To save the generated codes, the unit 15 for generating and comparing pseudo-random payment transaction codes is associated with a storage device 14, which contains a storage area for payment transaction codes. For identification of payment recipients, the storage device 14 of the payment authorization server 1 contains a data storage area about payment recipients and their accounts associated with the payment authorization server 12 of the payment recipients server.

To check the credentials of users of mobile electronic communication devices to make payments, a block 16 for generating authentication codes is provided as part of the payment authorization server 1. The authentication code can be a fixed password or a one-time pin code, which is transmitted to the user and entered by him from a mobile phone. The storage device 14 of the payment authorization server 1 comprises a separate storage area for authentication codes associated with a user handling unit 12. In this case, the authentication code generation unit 16 is associated with the storage area of the authentication codes of the storage device.

Payment authorization server 1 can be made in the form of a computing device or system, representing a hardware and software complex, in a variety of configurations, taking into account the volume and direction of the proposed cashless payment system in each case. The term "payment authorization server" is used in this application in the sense of "central node of a computer system" and, as indicated above, allows its implementation in many ways. Details of the hardware and software implementation of the payment authorization server, as well as other components of the proposed cashless payment system, do not belong to the essence of this invention.

In one embodiment of the practical embodiment, the payment authorization server 1 may be one powerful multiprocessor server with a large amount of memory (RAM) (for example, 4 gigabytes or more) and large disk space (i.e., with a large amount of ROM). The functioning of each of the blocks 11, 12, 13, 15, 16 can be supported by a separate processor. To implement each of the above memory areas, it is advisable to use your own ROM, i.e. in this embodiment, the storage device 14 of the payment authorization server 1 may consist, for example, of five separate disk drives. The connections between the blocks of the payment authorization server and the storage device shown in FIG. 3 are implemented by an information bus, for example, a motherboard (system) board, and, if necessary, network cables in combination with known network adapters.

At the same time, the efficiency and productivity of the payment authorization server can be improved by implementing part of its functional blocks in the form of separate workstations with which the payment authorization server can be integrated into a local network. This is especially important for those blocks that are closely related to working with databases in their functionality. These, in particular, are a block 15 for generating and comparing pseudo-random codes of payment transactions and a block 12 for working with users.

Currently, mobile phone 4 is the most common type of mobile electronic communication device, however, the proposed system equally applies to any other types of such devices that can communicate with the Internet server of the cashless payment system (including the aforementioned J2ME server 7 and / or WAP server 8). In addition to a mobile phone, it can be a PDA (PDA) or even a pager. With a cashless payment system, a mobile electronic communications device can communicate using WAP (Wireless Application Protocol) version 1.1 or later, or J2ME (Java 2 ME). It is desirable to have support for the GPRS protocol (General Packet Radio Service).

Connecting to the system of a mobile electronic communication device can also be via infrared (IrDA), either using Bluetooth technology (universal wireless technology for heterogeneous microprocessor devices on a local network in the 2.4 GHz band), or using any other technology for local wireless data exchange between electronic devices, with a computer or any other electronic device that provides a connection to the system, for example, through the global Internet. This means that a handheld computer without a communicator function (that is, without the possibility of connecting to a telecom operator’s gateway) can also be used as a consumer’s mobile electronic communications device, while such a handheld computer, for example, has an infrared port.

The user interface can be implemented by the unit 12 for working with users either in the WML language (Wireless Markup Language, any mobile communication device that supports the WAP protocol must work with this language, because these are interconnected technologies), or in Java (J2ME ) WAP, WML, GPRS standards are developed by Open Mobile Alliance Ltd. (OMA). The Java 2 Micro Edition (J2ME) standards as well as Personal Java are developed by SUN Microsystems.

In the case of using WML, the memory of the mobile phone is not used, the user works with the system by connecting to the WAP server 8 of the system. The transfer of information between the mobile device and the payment authorization server 1 in this case is carried out using the WAP protocol.

In the latter case, when Java is used, a Java application (J2ME) is installed on the user's mobile phone that implements the user interface (the application can be installed, for example, by a telecom operator or by the consumer himself by downloading the application from the Internet). The interaction of such an application with the payment authorization server 1 is carried out by directly connecting a mobile device to the Internet using any of the CSD protocols (Circuit Switched Data - technology for exchanging data using a voice channel, can only be used to work with WAP sites, and therefore In the literature, most often instead of "CSD" they indicate "WAP"; we will also stick to this notation) or GPRS (can be used both for working with WAP sites and for connecting Java (J2ME) applications to the server). It is important to note that the option of working with the system using a Java application (using communication via GPRS) is preferable, since it requires the transfer of less data between the mobile phone and the system (by storing the application in the memory of the mobile device), that is, this method it works faster, and at the same time, the expressive means of the Java language are more developed, so the user interface in this case is also more convenient for consumers.

The possibility of implementing the proposed cashless payment system is ensured by the fact that the use of WAP (CSD) and GPRS protocols for connecting mobile phones and PDAs with the communicator function to the Internet is supported by all major Russian mobile communication operators, in particular, MTS, Beeline and Megafon, their users only need to have a mobile phone or PDA with WAP or GPRS support. At the moment, at least 80% of mobile phone models sold in Russia and abroad support WAP protocol. So, based on the data of the sotovic Internet portal (www.sotovic.ru), it can be argued that among the 121 models of mobile phones of various manufacturers currently on the market, currently 15 models support the WAP 1.1 standard, 11 models support the WAP 1.2 standard, 70 models support the WAP 1.2.1 standard, and 18 models support the WAP 2.0 standard. JAVA language supports 49 models, GPRS technology - 81 models. A significant proportion of existing mobile phones are models with large full-color screens that are best suited to display payment terms. So, 48 models have a screen larger than 128 × 128, and the number of models with 4096 colors is 55. These figures indicate that the technical level of mobile phones and PDAs has already provided a technical and economic basis for the implementation of the proposed system and method.

Thus, at the moment, a significant part of mobile phone users in Russia and abroad already have the opportunity to directly work with the proposed system from their mobile phones.

Among such mobile phones that are maximally adapted to work in the proposed system, it is worth highlighting the following models:

Sony Ericsson P800 (GPRS, MMS, Java, Personal Java, screen 208 × 320);

Nokia 3650 (GPRS, MMS, Java, Personal Java, screen 176 × 208);

Nokia 7650 (GPRS, Java, screen 176 × 208);

Samsung SGH-S100 (GPRS, Java, 128 × 160 screen);

Motorola V600 (GPRS, MMS, Java, 120 × 160 screen);

Sharp GX1, GX10 (GPRS, MMS, Java, 120 × 160 screen);

Panasonic GD87 (GPRS, MMS, Java, screen 120 × 160);

LG G8000 (GPRS, MMS, Java, screen 176 × 220);

NEC e525, N8 (GPRS, MMS screen 162 × 216).

As for handheld computers (PDAs), any of them with a communicator function is very well suited to work directly with the system from the very beginning. This is due to the fact that on such devices the screen is large enough and user input of information is very convenient. Although it is important to note that due to the much larger size, such devices are much less popular compared to mobile phones. Therefore, the main potential users of the system should be mobile phone users.

Among the devices of the type indicated here (PDA with communicator functions), with the help of which consumers can work with the system, it is worth highlighting:

Nokia 9210, 9210i, 9290 (Java, Personal Java, 640 × 200 screen);

Motorola Accompli 008 (GPRS, Java, 240 × 320 screen);

Motorola Accompli 008 (GPRS, Java, 240 × 160 screen);

Motorola A388 (GPRS, Java, 240 × 320 screen);

Blackberry 5810, 5820 (GPRS, Java, 160 × 160 screen).

The proposed cashless payment system operates as follows.

The payee (often the supplier of goods and / or services) enters through the terminal 3 into the payment authorization server 1 the conditions of the payment type, which include at least the identification of the payee, the purpose common to all payments of this type, and the condition for the amount payment. The conditions of the type of payment may include an arbitrary type of text as a description of the purpose of the payment, and the condition for the amount of payment may contain a fixed amount or a range of acceptable values as the amount of the payment. The conditions of the type of payment are processed by the block 11 of work with payees and entered into the storage device 14, and each specific type of payment is assigned a unique index distributed among users of mobile electronic communication devices.

Typical types of payments are: payment of various fixed duties, fees and fines, payment for communication services, utilities, as well as payment for other goods and / or services offered by suppliers. Indices of types of payments are distributed through any available channels, such as telecommunication lines (including mobile communications via SMS), mass media (billboards, mobile visual advertising, advertising publications and publications, television advertising) or information materials of payees . The index of the type of payment is preferably made up of numbers (to facilitate dialing on a mobile electronic communication device) and indicated together with the designation of the corresponding cashless payment system, since several such systems can operate in parallel.

To use the resources of the cashless payment system, a mobile phone user must register in it.

Registration of new users in the system includes the following operations:

- creating an account in the payment authorization server 1 or, alternatively, in the user interface server 6,

- registration of user contact information;

- registration of bank accounts (or other means of payment, such as credit cards) that will be used to make payments.

After creating the user account, the unit 12 for working with users sends an SMS message to the mobile phone number specified by him during registration. The specified message contains a WAP-link for quick login in the future (the link contains an open unique identifier of the user in the system). The user can save this link in the list of WAP bookmarks, after which no identifier will be required to enter the system, however, the password must be typed every time you log in to the system using this link. When working with the Java2ME module, the user identifier will need to be entered only once at the first login, after which this identifier will be saved in the phone’s memory and will be automatically substituted in the future field; just like when using WAP, a password must be entered every time you log in.

There are two user registration mechanisms:

The first is that through the Web site of the cashless payment system, the user can register only to work with the information resources of the cashless payment system (catalog of goods and / or services supported by the user interface server 6), without the possibility of making any payments. Accordingly, in this case, only the operations of creating a new account and registering contact information are available.

The second is through a payment institution (bank) included in the system. In this case, the user will be able to perform all three of the above operations, which are necessary in order to be able to use all the functions of the system, including paying for purchases / bills and sending money transfers.

When registering through a bank, the following two options are available:

- registration of a new user of the cashless payment system, that is, the performance of all three of the above operations, while all identification data necessary for the system, including the mobile phone number, must be entered.

- "re-registration" of the user, that is, if the user is already registered in the system (for example, via the Internet), the bank operator remains to register the user's payment tool (account or credit card) in the system. It may be provided that the real bank details remain known only to the bank, as they are stored on payment authorization server 1, which is part of the bank transfer system and administered by this bank.

The user registration data is processed by the user handling unit 12 and stored in the data storage area about users and their means of payment of the storage device 14.

To enter the system through the WAP server 8, the user selects the above-mentioned link to the WAP server using the buttons of the mobile phone 4 and presses "OK", after which he preferably enters a digital index of the type of payment to be made. In general, the user's work with the system depends on the capabilities of the phone. So, the WAP 1.1 standard does not provide any additional (in addition to those provided by GSM) encryption mechanisms for information transmitted in both directions between the telephone and the carrier’s gateway and does not provide any convenience for working with messages (there is no support for WAP Push technology, the use of which is described below). True, it is important to emphasize that the connection between the gateway and any WAP server is carried out as between any two "normal" servers on the Internet, that is, using the HTTP or HTTPS protocols (HTTP over SSL). To ensure maximum security in this area, it is preferable to use the HTTPS protocol (i.e. SSL).

It should also be noted that in addition to making payments by entering an index of the type of payment, a mechanism for generating and posting payment authorizations on server 1 or on server user interface 6 can be used. In particular, after establishing a connection with the payment authorization server 1 through the WAP server 8, the user can view the suppliers' (payees) commercial offers that were previously generated for him and select some of them for payment. For example, a situation is possible when the user communicates with the representative of the supplier, and the latter generates a commercial offer for the user, transferring it from the terminal 3 of the payee to the payment authorization server 1. After that, the user immediately logs into the system and selects the first commercial offer in the list (just received, since commercial offers are always ordered in any graphical user interface (GUI) by the date of their submission).

In another case, the user can receive an SMS from the supplier informing him of the appearance of a new commercial offer (for example, an invoice has been issued for utility bills), and immediately or at any time when it is convenient for him, the user establishes a connection via WAP -server 8 with payment authorization server 1 and finds the corresponding offer in the list of all offers (if it enters the system immediately after receiving the SMS message, then with high probability the corresponding offer will be the first in the list).

In the case of calculating by entering the index of the type of payment, the user’s request is processed by the user interface unit 12, which accesses the storage device 14, in particular, its storage area of the conditions of payment types, and calls up the conditions data of a particular type of payment, which corresponds to the index received from the user. This data, including at least the purpose of the payment and identification of the payee, is sent by the user handling unit 12 to the mobile phone 4 and displayed on its screen by means of a graphical user interface along with an invitation to confirm the payment transaction. By clicking on the “OK” button, the user sends the confirmed payment order from his mobile phone to the payment authorization server 1, which is received via the WAP server 8 again to the block 12 for working with users of the payment authorization server 1.

In the case of the calculation of the commercial proposal, the system works in a similar way. The user views the corresponding offer (invoice) using the same WAP-interface. After reviewing the information on the payee, purpose and, for example, the amount of payment, the user decides to pay this bill and presses the appropriate phone button.

The above algorithm provides a reliable mechanism for protecting users and payment organizations both from accidental inaccuracies in entering indexes of payment types, and from malicious manipulation of indexes. When distributing indices of types of payments by mass media or informational materials of payment recipients, attackers can replace the actual index with another one that refers to their bank account. In the absence of the mechanism for the formation of a confirmed payment order discussed above with a preliminary display of the terms of the type of payment on the mobile phone screen, the user, making a payment, cannot be completely sure that his money will be transferred to the recipient indicated in the advertisement, information booklet, etc. .P. The invention, however, allows the user to confirm that the payment type index entered by him exactly matches the subject of the transaction before confirming his intention to make a payment.

Another aspect of ensuring the security of making payments in the cashless payment system is checking the user’s authority to make a payment transaction.

A well-known means of authenticating users is a user password. However, in WAP 1.1, encryption is not supported, so using a fixed user password to confirm credentials does not provide the necessary level of security and, therefore, is unacceptable.

To solve this problem, a mechanism may be provided for using one-time authentication codes, or pin codes. For example, the user receives a list (printout) of such pin codes at the bank or from the administrator of the bank transfer system (as agreed with the bank) at the time of registration in the system, as well as after using or losing all previous pin codes (the latter, of course, become invalid). It is worth noting that the pin codes in this list are numbered and are preferably numbers for easy entry using the phone keys.

The complete chain of work with PIN codes is as follows:

After a user sends a request to make a payment to WAP-server 8, the WAP-server 8 communicates via SSL-channel with the payment authorization server 1, notifying the latter of the interest of the specified user (the user ID is transmitted) to make the specified payment (transferred system account identifier). In response to this, the payment authorization server 1 transfers to the WAP server a number in the list of the next unused one-time PIN code (this is not necessarily the next order in the list value after the one used the previous time). Already from this moment, payment authorization server 1 considers the corresponding pin code expended (that is, this pin code can no longer be used to make any payment other than the one declared).

As part of the WAP interface, the server prompts the user to enter a one-time pin code with the specified number from the user's pin-pin printout.

The number entered by the user is transmitted by the WAP server 8 to the payment authorization server 1, where it is checked. Only if this number coincides with the previously selected pin code, the conditions of the type of payment are transferred to the user's mobile phone for the subsequent generation of the confirmed payment order. If the pin code is incorrect, the WAP server 8 is informed about the error, the previously selected pin code becomes invalid even for the current payment. In this case, the WAP server 8 reports an error to the user and offers to enter a different pin code. If yes, the above chain starts over. If incorrect requested pin codes are entered three times in a row, the payment mechanism using the cashless payment system for this user is blocked.

It should be noted that WAP-server 8 is operated by users within sessions (the concept of a session is closely related to WAP itself and corresponds to one session with a particular phone). For the same user, the ability to work with multiple sessions in parallel even to work with information is not supported, not to mention the payment. In this case, the session identifiers are generated in the payment authorization server 1 at the request of the WAP server 8.

If the mobile phone supports WAP Push protocol, the previous situation is supplemented by a very convenient and important mechanism: the payee (provider) is able to send special messages (WAP Push messages) to the user's phone, an analogue of SMS messages that are immediately processed in such a way upon arrival, that the user is prompted to go to the specified WAP server 8 using the specified resource indicator (URL) in that message; connecting to WAP server 8 and switching to the specified page of the corresponding site is performed by him Lapse and automatically after the confirmation of the phone owner wishes to use this mechanism (only one push of a button). Otherwise, the work with one-time PIN codes does not differ from the one described above, with the peculiarity that the page indication of the site supported by the WAP server may contain a random value generated by the payment authorization server 1 necessary for a specific user to work with a specific offer. That is, it is the user who received such a Push-message on his phone (the message is sent to the phone of the user whose number is registered in the system), and it is from his phone that he is generally able to get to the page with PIN-codes.

Inside the payment authorization server 1, work with PIN codes is provided by an authentication code generation unit 16, which transmits the generated pin codes to a user interaction unit 12, as well as to a storage device, namely, an authentication code storage area associated with the authentication work unit 12 users, in which the above comparison of the code selected by the system, with the code transmitted by the user.

If your mobile phone supports WAP 1.2.1 / 2.0, the fundamental difference between WAP 1.2.1 and previous versions is support for both WAP Push and WTLS (Wireless Transport Layer Security) information encryption protocol, which is the WAP equivalent of Secure Sockets Layer (SSL) protocol. ), widely used in banking network solutions. The scheme of work with WTLS consists in the fact that the information transmitted through WAP is encrypted between the mobile phone 4 and the WAP gateway (gateway 5 of the service provider), and the data transmitted between the gateway 5 and WAP server 8 is encrypted exclusively using SSL

Thus, WTLS encryption in this case provides the ability to encrypt all information received from the system and transmitted to the system, which allows you to hide information from the hypothetical intruders about the interests of the user (when he works with a database of goods and / or services supported by the user interface server 6), and - which is especially important - to carry out all actions related to payment in a completely protected mode.

To authenticate the user in this case, it is enough to use a regular password, because it is impossible to read it either on the phone itself (if it is lost), or between the phone and the system server. It should also be noted that any phone that supports WTLS also supports WAP Push, which allows you to realize the above advantage of the WAP Push standard when communicating between the provider (payee) and the mobile phone user before making a payment. In addition, the WAP Push standard can also be used when the mobile phone 4 interacts with the payment authorization server 1 to ensure that payment is actually made from the user's phone. That is, the user pressing the confirmation button of the supplier’s commercial offer in the information part of the system is a trigger that initiates the operation of the above service, which generates a random value, sends a push message to the user, etc. In this case, the password is required in any case, regardless of whether the user sends a request for payment while in the database of goods or services of the server of the user interface 6 or not. In any case, to transfer the confirmed payment order to server 1 of payment authorization, a new WAP connection does not need to be established, since it is already open.

More advanced data transfer security features are provided by Java (J2ME) -based mobile phones. In the case of using C2ME applications to work with the system, it becomes possible to organize data encryption independent of the telecom operator (as is the case with WAP and WTLS). It is advisable to use, for example, the RC6 encryption scheme developed by RSA Labs., To encrypt data transmitted between the telephone 4 and the user interface server 6. This algorithm represents a sufficient level of security and requires little computing resources, which is very important when using mobile phones. In addition, according to reports, mobile phone developers are currently working to enable SSL implementation in J2ME (Java 2 Micro Edition). Thus, we can expect that after some time (presumably, in a year) all phones that support Java will initially be designed to work through a secure connection via SSL. However, on some phones that have sufficient memory and allow the installation of applications of 200 Kb or more , already now it is possible to ensure the operation of the interface of the cashless payment system via SSL Among such phones, it is worth highlighting the SonyEricsson P800 model. It is also worth noting that all PDAs with communicator functions (for example, Nokia 9210i Communicator) satisfy this condition, because they support the installation of large midlets (J2ME applications) and have more than enough memory.

Thus, with the help of such a mobile phone or PDA, the user will be able to work with the payment authorization server 1, using SSL encryption on all data transmission areas. The great advantage of this option is that all the user’s work with the system is completely independent of the telecom operator and its gateway 5 (the operator’s function, of course, is the delivery of packets, but even he cannot know their contents in any way).

As in the previous case (WAP 1.2.1 / 2.0), it is impossible to find out the user's password either from the network or from the phone itself, if the latter becomes accessible to intruders. Therefore, for authentication, the use of the user's system password here seems sufficient. It should also be noted that the security mechanisms discussed above make it possible to work reliably with a cashless payment system for users with any phones that are generally capable of working with information, i.e. supporting at least the WAP 1.1 standard (only a few of the existing mobile phone models now do not satisfy this condition, and with the development of telecommunication technologies, the share of such models will undoubtedly decrease). At the same time, which is very important, there is no need to make any changes to the phones and SIM cards themselves. This ensures complete technical independence of the cashless payment system both from telephone manufacturers, as well as from mobile operators and SIM card manufacturers.

Regardless of the above user authentication procedures, the proposed cashless payment system provides an additional mechanism for ensuring payment security, based on the formation by the server system (payment authorization server 1) of a unique payment transaction code transmitted to terminal 3 of the intended payee for each payment made. This function is performed by the block 15 for generating and comparing pseudo-random codes of payment transactions, generating a pseudo-random code (preferably digital) in response to the receipt from the block 12 of work with users of a signal characterizing the user's request to make a payment to the account of a particular recipient. Pseudo-random code can be generated using well-known pseudo-random number generation mechanisms, such as ANSI X9.17 (ANSI85) and RSAREF 2.0 PRNG (RSA94).

In this case, the block 15 for generating and comparing pseudo-random codes of payment transactions refers to the storage device 14, in particular, to the data storage area of the payees and their accounts, and calls data identifying the terminal 3 of the specified payee. These data, together with the payment transaction code and the mobile phone user ID (mobile phone number), are transmitted to the payee processing unit 11, which generates a message for the payee requesting a particular user to make a payment to the specified payee's account, and this message contains the code of this payment transaction and the mobile phone number of the user, and transmits this message to the terminal of the payee, as shown in Fig.3.

At the same time, the conditions of the type of payment can be sent to the mobile phone 4 with a message about the need for subsequent confirmation of the intention to make the payment to this particular payee by entering the payment transaction code, which should come from the payee. However, it should be borne in mind that the possibilities of carrying out the invention are not limited to any particular procedure for performing these security procedures: automatically displaying the payment type conditions on the screen of mobile phone 4 (the main protection mechanism) and transmitting the payment transaction code in a closed loop "system server - terminal 3 payees - mobile phone 4 - system server. "

The payee transmits this payment transaction code to the user, for example, in the form of an SMS message, and this transfer bypasses the payment authorization server 1, after which the user enters the received transaction code, which is sent through the user interaction block 12 to the pseudo-random generation and comparison block 15 payment transaction codes, where the code received from the mobile phone user is compared with the code transmitted to the terminal 3 of the payee, and if these codes match in block 13 with payment operations, a permission signal is issued to make a payment, initiating the direction of the corresponding order to server 2 of the bank.

A typical example of the implementation of this security mechanism is the case of payment of a state fee for the issuance of a general civil or foreign passport. The mobile phone user sees an announcement on the information board that the state fee can be paid not only by bank transfer, but also through the proposed cashless payment system. In this case, the index of this type of payment is indicated in the system. The mobile phone user, being in this case a passport recipient and payer, as well as being a user of such a system, has the opportunity to pay a fee without leaving the passport office building and without resorting to the use of cash or credit cards (which is not practiced in government structures) . It is enough for him to enter the system (launch the corresponding J2ME application or enter the system page using the WAP browser installed on the phone; on most phones it is possible to configure the login to the system with a single touch of a phone button) and enter the index indicated on the stand, which will be sent to the server 1 authorization payments. In response to the entered index, the unit for working with users transmits to the user’s mobile phone 4 the conditions of the corresponding type of payment, and the user gets the opportunity to view the payment information on the phone screen (the recipient is the corresponding state structure, the destination is the payment of the fee for issuing the passport, the specific fixed, i.e. invariable, payment amount). After checking the payment information, the user presses the phone button corresponding to the payment, and a confirmed payment order is sent to the payment authorization server 1, after which the user interaction unit 12 generates a request for entering a password or a one-time PIN code, and also sends it to the generating unit 15 and comparing the pseudo-random codes of payment transactions, a command to generate a unique payment transaction code and transmitting this code through block 11 of work with payees to terminal 3 of the passport service operator, with the surname, name and patronymic of the user of the mobile phone. Next, the user enters the corresponding numerical value (for example, from 4 digits), and if the PIN code is entered correctly to complete the payment, the next payment transaction code is requested (also, say, 4 digits), which can only be obtained from the terminal 3 operator for example during an interview.

It is not difficult to see, the described payment procedure is quite simple and saves the payer time (since it eliminates the need to go to the bank, manually fill out a receipt for money transfer and standing in line at the bank). In addition, this scheme eliminates the possibility of fraud based on the substitution of information on the passport office booth (i.e. indicating a different payment index and, accordingly, changing the payee). The substitution can be detected by the payer when viewing information about the payee. And even if the payer did not pay attention to this information, he still will not be able to make the transfer like scammers, because cannot enter the correct payment transaction code (if the recipient of the payment is not an appropriate state structure, the terminal 3 operator will not be able to receive the transaction code and transfer it to the payer).

The proposed cashless payment system may provide for a limited number of payment recipients, such as telecom operators, for whom it does not make sense to use the above additional confirmation using payment transaction codes. For such payments, in view of their expected special high flow, special short indices can be allocated (for example, only from 3 digits). At the same time, the system administrator must be sure of all such payees and that their indices will be well known (and technologically not falsified; this is ensured for the telecom operator, because when the user connects, the operator can provide the latter with a list of special "service" phone numbers (as is already done now), and "service" indexes in the system of the type described for paying for the services of this operator). At the same time, other types of payees are allocated indices of a different type, which cannot be confused with the previous ones, for example, their length can be at least 5 characters (digits). It is for the types of payments of the latter type that the mandatory use of an additional mechanism of payment transaction codes can be provided. To ensure an acceptable throughput of the cashless payment system (that is, to prevent the hanging of many unconfirmed payments in it), as well as for security reasons, the payment transaction code can be set for a limited period of time, after which the specified code is canceled. This can be implemented by storing the code in the storage device of the system server for a given period of time, with its subsequent removal.

The purpose of the above additional confirmation mechanism is to protect against fraud or simply negligence or input errors: fraudsters can somehow replace the indication of the payment type index (for example, in the passport office booth above, a sign with the duty payment index) for customers of some organization, and the new index will correspond to their own account (the description of the payment can be any, including the exact same as that of the real recipient, the amount may be exactly fall, and the name of the recipient can be made similar to the name of the real organization). In addition, a person could simply make a mistake and dial the wrong index, and then inattentively check the purpose of the payment.

Thus, when the user first confirms the payment (that is, he transmitted the confirmed payment order), the recipient of this payment can see through the user interface of the system (implemented, for example, in Java (J2SE)) on his terminal 3 confirmation of the payment initiation indicating the number payer in the system and some of its data (for example, full name).

Prior to transferring the payment transaction code from the mobile phone to the system server, the user of the mobile phone may be entitled to cancel the payment by sending a corresponding message to the system server. In any case, as long as the payment is canceled, information about it is not transmitted to server 2 of the bank. A payment order is transmitted from the payment authorization server 1 to the bank server only when there is full confidence that the payment must be made (i.e., for the bank itself, all payments can be considered irrevocable and, accordingly, can be made without delay, at the highest possible speed) .

As noted above, the conditions of the type of payment may include a fixed value of the payment amount or an interval of acceptable values. It is advisable to use the value range for prepaid services, for example, a telecom operator, i.e. when the user decides how much to pay. At the same time, checking that the entered value falls within the specified interval is preferably carried out before the transfer of the confirmed payment order. Fixed values can be used to pay state duties and fines, and in the case of small amounts of such payments, the amount of payment may not be part of the conditions of the type of payment automatically transferred to the user's mobile phone 4 in response to his request.

As noted earlier, a credit card registered in the system can be used as a means of payment for a mobile phone user. In this case, payment is made through the server of the bank, which is connected to the system and is engaged in acquiring credit cards (i.e. authorization of the user when using the card, receiving money from the company-owner of the corresponding system, transferring money to the recipient's account). In this case, the user himself (the payer) has no relation to the specified bank. In this case, one such bank working with the system is enough for at least all credit card holders to pay through the system.

Moreover, the invention overcomes the inherent disadvantages of credit cards. In this case, the user no longer needs to carry a credit card with him, risking losing it (if lost, in contrast to losing the phone, there is a real danger of losing the money available through the card). The card number is registered in server 1 of authorization of payments and is not transmitted anywhere, except for the bank, while payments are made and commercial offers are issued, as before, based on the user ID in the system.

Claims (32)

1. A method of making payment transactions by users of mobile electronic communication devices through a cashless payment system, according to which form of payment type is generated and stored in the server of the specified system, including at least the identification of the payee, purpose common to all payments of this type, and condition for the amount of payment, moreover, a specific type of payment is assigned a unique index, which is entered through a mobile electronic communication device before making a payment, and in accordance In accordance with the entered index, a payment request is transmitted to the system server, characterized in that, in response to the specified request, the conditions of the specified type of payment are transferred from the system server to the mobile electronic communication device, including at least the destination and the payee, showing these conditions on the screen of the mobile electronic communication device, after which a confirmed payment order is transmitted from the mobile electronic communication device to the system server, after receiving which by the system’s rovers generate a pseudo-random code of the payment transaction and transfer it to the terminal of the payee, from the payee terminal the specified code is transmitted directly to the user, after which this code is entered and transmitted to the system server, in which the values of the payment transaction code are compared, received from the user, and the value of the payment transaction code transmitted to the terminal of the payee, and if the specified values match through the server s initiate a payment by reference to the server of the corresponding payment organization. 2. The method according to claim 1, characterized in that the mobile electronic communication device is a mobile phone or PDA, and the connection between the mobile electronic communication device and the system server is established through the gateway of the mobile operator. 3. The method according to claim 1, characterized in that the terms of the type of payment transmitted to the mobile electronic communication device include a condition for the payment amount, which is a fixed value, and this value cannot be changed when transmitting a confirmed payment order. 4. The method according to claim 1, characterized in that the payment type conditions transmitted to the mobile electronic communication device include a condition for the payment amount, which is an interval of acceptable values, and a specific value is entered before transmitting the confirmed payment order from the mobile electronic communication device payment amount, while checking whether the entered value of the payment amount in the specified interval. 5. The method according to claim 4, characterized in that the type of payment is the prepayment of a service, in particular the services of a mobile operator. 6. The method according to claim 4, characterized in that the type of payment is a contribution to a charity fund. 7. The method according to any one of claims 1 to 6, characterized in that the conditions of the type of payment include any of the following elements: comment of the payee, detailed description of the payee company, detailed description of the purpose of payment, images, three-dimensional models, videos, sound messages. 8. The method according to claim 1, characterized in that the payment type index is communicated to the user of the mobile electronic communication device using mass media and / or information materials of the payees. 9. The method according to claim 8, characterized in that billboards, mobile visual aids, advertisements and publications, television advertisements are used as mass media, and the type of payment index is indicated together with the designation of the cashless payment system. 10. The method according to any one of claims 1 to 6, 8 or 9, characterized in that, with a request for payment or a confirmed payment order, the payment method data of the user supported by the specified payment organization is transmitted to the system server and / or stored in system server storage device. 11. The method according to claim 10, characterized in that the payment institution is a bank, while the payment medium of the user is an account in the specified bank and / or a credit card. 12. The method according to claim 10, characterized in that the payment institution is a credit card service center, wherein the payment medium of the user is a credit card. 13. The method according to claim 10, characterized in that the payment organization is an electronic payment system, while the payment medium of the user is the personal account of the user in the specified system. 14. The method according to any one of claims 1 to 6, 8 or 9, characterized in that the payment type index consists of only numbers. 15. The method according to claim 1, characterized in that the payment transaction code is set for a limited period of time, after which the specified code is canceled. 16. The method according to claim 1, characterized in that after the generation of the payment transaction code, it is stored in the storage device of the system server for a specified period of time, and then deleted. 17. The method according to claim 1, characterized in that until the payment transaction code is transmitted from the mobile electronic communication device to the system server, the user of the mobile electronic communication device retains the right to cancel the payment by sending a corresponding message to the system server. 18. The method according to any one of claims 1 to 6, 8, 9 or 15-17, characterized in that it further checks the user’s credentials of the mobile electronic communication device to make a payment by entering a fixed password and / or a one-time user authentication code, in particular a personal identification number (PIN) on a mobile electronic communications device. 19. The method according to p. 18, characterized in that they use a mobile electronic communication device with support for the J2ME language, while a fixed password entered by the user or a one-time authentication code is transmitted to the system server through the associated additional user interface server supporting work with applications, written in the J2ME language. 20. The method according to p. 18, characterized in that they use a mobile electronic communication device that supports WAP protocol, while the user-entered fixed password or one-time authentication code is transmitted to the system server through the associated additional user interface server that supports the exchange of information with mobile electronic communication devices in the WML language. 21. The method according to any one of claims 1 to 6, 8, 9 or 15-17, characterized in that the type of payment index corresponds to the index of a particular product in the goods database. 22. The method according to item 21, wherein the database of goods is maintained on the server of the user interface, and the user of the mobile electronic communication device is provided access to the specified database through the corresponding WAP or J2ME interface. 23. The method according to claim 1, characterized in that the payment transaction code is transmitted to the terminal of the payee along with the identification of the user, in particular, indicating his mobile phone number. 24. The method according to item 23, wherein the type of payment is the payment of a state fee for issuing a general or foreign passport, while the payment transaction code is transmitted to the terminal of the passport service operator indicating the name, surname and middle name of the user of the mobile electronic communications device, and the transmission of this code to the user is carried out directly through the terminal operator of the passport service. 25. A computer-based non-cash payment system for making payments by users of mobile electronic communication devices, including a payment authorization server connected to mobile electronic communication devices, a server of at least one payment organization and a terminal of at least one payee, and the payment authorization server contains a block of work with payees associated with the specified terminal of the payee with the possibility of forming the conditions of types of payments; block of work with users; block operations with payment operations associated with the server of the payment organization; a block for generating and comparing pseudo-random codes of payment transactions, the input of which is connected to the block for working with users, one output is for the block for working with payees, and the other output is for the block for working with payment transactions; and a storage device comprising at least a storage area for data about users and their means of payment, a storage area for payment type conditions and a storage area for payment transaction codes associated with a pseudo-random payment transaction generation and comparison unit, the storage device being connected to a recipient work unit payments and a unit for working with payment transactions, and a unit for working with users is associated with mobile electronic communication devices, a unit for working with payment operations, and remember the device and made with the possibility of calling the conditions of the type of payment from the storage device and transferring them to the mobile electronic communication device upon receipt of a request for payment from the specified mobile device, as well as the subsequent receipt of the confirmed payment order from the specified mobile device and its transfer to the work unit with payment transactions. 26. The system according to p. 25, characterized in that the storage device of the payment authorization server contains an area for storing data about payees and their accounts associated with the block of work with payees. 27. The system according to p. 25, characterized in that it contains an additional server user interface that connects the server authorization payments with mobile electronic communication devices. 28. The system of claim 27, wherein the user interface server supports working with applications written in the J2ME language and / or exchanging information with mobile electronic communication devices in the WML language using the WAP protocol. 29. The system according to p. 27, characterized in that the mobile electronic communication device has the ability to communicate with the user interface server via a secure connection channel, in particular using encryption using one of the RC6, WTLS or SSL protocols. 30. The system according to any one of paragraphs. 27-29, characterized in that the payment authorization server is connected to the terminal of the payee, the server of the payment organization and the user interface server with secure connection channels, in particular, using SSL encryption. 31. The system of claim 27, wherein the payment authorization server is connected to a user interface server and payment recipient terminals via a network security device. 32. The system according to any one of paragraphs. 25-29 or 31, characterized in that the payment authorization server contains an authentication code generation unit, and the payment authorization server memory contains an authentication code storage area associated with a user operation unit, wherein the authentication code generation unit is associated with the specified authentication code storage area .

Images