RU2328772C2 - Protected system with microprocessor card used as electronic wallet - Google Patents

Abstract

FIELD: system of microprocessor cards; electronic purse.

SUBSTANCE: system contains a double chip card, which contains a fixed microcircuit, which serves the microprocessor and a second detachable microcircuit, which contains read-only storage, which contains a predetermined sum of credit, and a micro pack, which is meant for putting the card into and which has a capability of communicating with the external terminal. Apart from the predetermined sum of credit the read-only storage of the detachable microcircuit has a unique serial number appropriated by the central bank and during this, the sum of credit and the unique serial number are put into programmed memory when the card is put into the micro pack for the first time.

EFFECT: invention allows the creation of a system with a microprocessor card, containing a fixed module and a detachable module, and the sum of credit cannot be changed, additionally, it is under control of the central bank.

13 cl, 6 dwg

Description

Technical field

The present invention relates to systems of microprocessor cards and, in particular, electronic payment systems that allow purchases of goods by the owner using a card without resorting to cash transfers, and, in particular, to a secure system with a microprocessor card that acts as an electronic wallet.

State of the art

A system with a bank card also allows you to make transactions of this type, however it is designed for transactions with rather large amounts and requires a direct connection to the bank account.

Recently, various electronic wallets (EC) systems have been developed that allow you to replenish the amount of money up to a certain size and pay for goods or services for an amount less than or equal to the amount of money entered into the system.

As a rule, electronic wallets look like classic microprocessor cards. Basically they are rechargeable. In the case of disposable EC, the electronic module is mainly performed in the form of a simple storage device, the contents of which, reflecting the cash balance, are reduced after each use by the amount of the transaction made until the balance is completely eliminated. This type of electronic wallet functions just like a prepaid phone card. A rechargeable EC has a more complex structure, since it contains a rewritable storage device that stores a balance file, the contents of which, as in the case of a one-time EC, decreases with each transaction or, conversely, increases by the amount of the replenished amount, while all these operations are carried out under the control of a microprocessor with a degree of protection not provided by disposable ECs.

The rechargeable EC management system requires a data collection and reboot system and a system that provides control over the passage of electronic money, that is, a completely new architecture compared to the existing bank card system. Indeed, an EC management system requires a system that simultaneously controls the transfer of money to a remote addressee and the receipt of electronic money. All these EC systems are replenished through terminals and have a level of protection lower than that of a material bank card.

Among currently known e-wallet systems, the system described in European patent application EP 90400280.5 is a flexible mechanism in which a user-owned microprocessor card contains a stationary microcircuit and a removable microcircuit, the storage device of which contains data on the amount of credit allowed, and this credit is reduced from each transaction, and the card is installed in the case intended for this purpose.

However, since the memory of a removable microcircuit can be changed (which happens with each transaction), due to the presence of numerous accesses to the storage device, such a card is more vulnerable than a card designed only for reading.

In addition, a system in which a removable microcircuit is not controlled by the central system may undergo an uncontrolled change in the money supply when creating electronic money.

SUMMARY OF THE INVENTION

An object of the present invention is to provide a system with a microprocessor card, which can act as an electronic wallet containing a permanent module and a removable module, and the loan amount recorded in the removable module cannot be changed and, moreover, is controlled by the central bank.

The problem according to the present invention is solved by creating a secure microprocessor card system, mainly containing a card, on which a first module consisting of a microprocessor and a secure programmable memory device is installed, and a second disposable module, mainly containing a read-only memory device containing data on a predetermined the amount of credit at the disposal of the user, while the permanent storage device contains external contacts, p ednaznachennye to cooperate with corresponding contacts the housing, which is mounted in a card. The housing contains communication means for establishing communication with an external terminal for registering a transaction, and connecting means for interconnecting the first and second modules with the possibility of debiting the transaction amount from the secure programmable storage device. In addition to information about a predetermined loan amount, the permanent storage device contains a single serial number assigned by the central bank, like a banknote number, while the loan amount and a single number are recorded in a secure programmable memory device using communication tools when the card is inserted into the case for the first time.

Brief Description of the Drawings

Distinctive features of the present invention will be more apparent from the following description with reference to the accompanying drawings, in which:

FIG. 1 is a schematic general view of a dual-chip card equipped with a stationary microcircuit and a removable microcircuit according to the invention;

FIG. 2 is a diagram of an embodiment for installing a removable microcircuit in a dual-chip card, according to the invention;

FIG. 3 is a diagram of an embodiment of a dual-chip card according to the invention;

FIG. 4 is a perspective view of a micro-housing for housing a dual-chip card in accordance with the invention;

FIG. 5 is a block diagram of a micro-payment transaction system shown in FIG. 4, with a dual-chip card inserted in it, according to the invention;

FIG. 6 is a flowchart showing the steps of a transaction carried out using a dual-chip card system according to the invention.

Description of a preferred embodiment of the invention

A microprocessor card in accordance with the present invention, also called a dual-chip card, is shown in FIG. 1. Card 1 contains a stationary programmable chip 2 and a one-time removable-replaceable chip corresponding to a predetermined loan (for example, 100 euros).

Typically, a removable chip is installed in the recess of the card 1 by clicking. According to the embodiment shown in FIG. 2, the recess allows the chip to be inserted by sliding using the male guides 20 made on the microcircuit and the female guides 20 'made on the card 1. The outer width of the recess B is slightly smaller than the width of the internal recess A, which allows the card 1 to firmly hold the removable chip due to the elastic compression.

In the embodiment shown in FIG. 3, which allows for the contact reading of this dual-chip card using any existing reader, the removable microcircuit 3 is installed symmetrically with the stationary microcircuit with respect to the center to ensure sequential reading of one microcircuit first and then the other by introducing, removing, rotating and reintroducing the microprocessor cards 1 to the specified reader, which thus replaces the micro-housing in accordance with the present invention for echeniya connection between two chips 2 and 3.

As shown in FIG. 4, the dual-chip card is inserted into the microcasing 6, containing the display 9 and the keyboard 10, containing the keys "validation", "activation", "request permission" and "transfer", as well as communication means 11 using radio frequency, infrared radiation or any other means for communication with remote means of connection, which will be described below.

A removable microcircuit generally comprises a read-only memory device, such as an EPROM, storing a predetermined loan amount and a single serial number in memory. Preferably, it is issued directly by the central bank, thus retaining a monopoly on money emission, or, in extreme cases, a bank storing on deposit a sum equivalent to the nominal value of circuits issued and circulating under the control of the central bank. This microchip is in some way a real digital banknote, which, moreover, can be easily shared, while retaining the remains of such a division in memory. It can be purchased without difficulty at banks, at the post office, and at any places designated for this purpose. It should be noted that on each chip by engraving or printing with the possibility of full or partial reading, the serial number of the chip is printed, and this number can also be made in the form of a bar code.

Fixed chip 2 is preferably mounted on a card according to ISO standards. This circuit mainly contains a microprocessor and a complex of programmable memory devices with a high degree of protection (ROM, ROM, and rewritable EEPROM) for storing the owner’s identification code, various parameters, such as data on the type and category of use (right to preferential rates, access permissions, etc.) .d.). Permanent storage devices store transaction management programs and a set of algorithms in memory that provide an optimal level of protection. Mentioned read-only memory devices also store other algorithms providing other functions, which will be described below. The EEPROM storage device is partitioned, with each partition section designed to perform a well-defined separate task. Access to various sections is protected by secret codes and / or cryptographic keys, in particular access to the storage device 5 and its control during any transaction. The ability to use many sections allows several service providers that are members of a large corporation, such as an airline, to log in and download specific applications, pursuing a targeted marketing policy and providing the ability to “extract information”.

When the card 1 with the new removable microcircuit is first introduced into the microcasing 6, the intercom means contained in the microcase provide a connection between the stationary microcircuit and the removable microcircuit. In this case, the microprocessor of the stationary microcircuit transmits a predetermined amount and a single serial number recorded in the ROM of the removable microcircuit to the protected storage device of the stationary microcircuit using internal communications (not shown in the drawing) contained in microcasing 6.

Immediately after the transfer of the entire amount of money recorded in the removable microcircuit to the secure storage device of the stationary microcircuit, the removable microcircuit becomes useless and cannot be used by the card holder. Nevertheless, in order to comply with security measures, the microprocessor continues to check periodically and before each transaction the presence of a removable microcircuit in a dual-chip card.

The electronics of the microcasing 6 allows, on the one hand, to establish a connection between microchips 2 and 3 of a dual-chip card, as described above, as well as to control the exchange of data between communication means 11 and external connection means 12. In all cases, it is the microprocessor of the stationary microcircuit that controls the data exchange operations through microcasing 6 between the two-chip card and external means of connection.

Other functions of the micro-case provide electric power to the dual-chip card with the help of batteries and read chips 2 and 3, in particular, to control, receive information or protect transactions.

Data exchange between the micro-housing and the plurality of connection means 12 is shown schematically in FIG. 5. In the most general case, terminal 12 ′ is used as a means of connection. It contains contactless means of communication, providing interaction with communication means of the micro-housing 6. It also contains a device 16 for reading microprocessor cards, which also allows for contactless data exchange. Terminal 12 'is installed at any point of sale, service center, on buses, in parking lots, etc. to accept payments and receive other data. The data exchanged between the microcases 6 and the terminals 12 'can be of four types:

(a) exchange control data: mutual recognition, resolution of conflict situations, if transmission is carried out simultaneously by several microcases, cryptographic protection, etc. The only objective of this data is to increase the reliability of exchanges between microcases and terminals 12 ';

(b) data representing the amount of each transaction, while the indicated amounts are recorded in the secure storage device of the terminal 12 ';

(c) data providing flow control and protection: tracking cash flows and attempts of illegal actions;

(d) commercial data or other data: an advertising campaign that may be associated with the personal characteristics of the user stored in the memory of a stationary microcircuit, pursuing a policy of stimulating and / or consolidating the clientele, for example, related to the provision of discounts on certain expenses, purchases of goods or services; such data can be stored in a specially allocated memory area, which becomes available to the user under certain conditions.

Regularly, for example, every night, terminal 12 'establishes communication with a centralized computer system 14 for transmitting the above data (b), (c) and, if necessary, (d), which are entered into the corresponding mass storage device and allow determining the daily volume payments and track the totality of control and protection data. After that, the computer system implements the data processing procedure (b) for crediting to the account associated with the terminal 12 'the payment amounts for the past day, implements operations for monitoring, reconciling and accumulating statistical information by processing the data (c).

In the event of a micro-case failure or the batteries are discharged, data exchange between the reader 16 of the terminal 12 'and the microprocessor card 1 can be carried out by contact by inserting the card 1 into the reader 16. According to another embodiment of the terminal 12', it can be portable, like already existing terminals for electronic payments.

The second type of connection means 12 "represents special terminals located in specialized points, for example, in banks. These terminals differ from the previous ones because they are constantly connected to the centralized computer system 14. Special terminals 12" allow the user to carry out various banking operations. Such operations are previously entered using the keyboard 10 of the microcircuit 6 into the memory of the stationary microcircuit 2. The microprocessor of the stationary microcircuit asks the user for a pre-set secret code before registering the instructions that define the operations to the memory of the microcircuit 2. After that, the user can send the pre-recorded instructions on operations (or requesting information) using contactless communication provided by microcasing 6, or by introducing card 1 into slower is 16 'of the terminal 12 ". The terminal 12' may also transmit to 6 mikrokorpus any useful data to be recorded in the memory chip 2 stationary.

The third type of external means of communication is a personal computer 12 '' ', connected to the Internet, to a switched telephone network, etc. Stationary microchip 2 of the microprocessor card stores in its memory the ROM of the program and one or more algorithms that can issue a permission number associated with a well-defined transaction. These programs and algorithms are also stored on the website of 21 suppliers of goods or services trading through the online store. For a better understanding, consider the following example.

Mr. Pierre Martin wants to purchase goods through the website of the online store. He goes to the selected site, offering a list of products with an indication of their prices. Mr. Marten selects one or more products. On site 21 appears a list of selected products with an indication of their value. If Mr. Martin agrees, he confirms his order. An invitation appears on the site to enter its coordinates (last name, first name, address) and the selected payment method.

Mr. Martin, who has at his disposal a micro-housing 6 with a personal dual-chip card inserted in accordance with the present invention, must enter the purchase parameters and, in particular, the payment amount, using the micro-keyboard, and press the “Request for permission” button.

The algorithm stored in the ROM memory of the stationary microcircuit takes into account all or part of the following parameters: last name, first name, address, date, payment amount, number of the current payment card. If the microprocessor determines that the transaction is feasible (sufficient loan amount, age conditions, etc.), then using the algorithm, it selects a permission number specific to the current transaction. After that, the serial number of the removable microcircuit and the just-determined permission number are displayed on the display 9 of the micro-case. Immediately after the appearance of these elements on the display, the transaction amount is transferred to the secure storage device of the stationary chip.

After that, Mr. Marten sends the data appearing on the display screen to the website of the online store via the keyboard of his 12-inch computer. The site computer 21 containing the same algorithms, in turn, determines the permission number and confirms its compliance with the number sent by the buyer, as a result of which the order is confirmed or not confirmed, and the financial transaction is registered or not registered.

A similar procedure can be carried out from any 12 '' '' phone. With this configuration, the buyer can contact the robot by recognizing and synthesizing a speech signal or with a live operator. In this case, the validation of the transaction is carried out by introducing the above elements (serial number of the removable microcircuit and resolution number displayed on the display 9 of the micro-case 6) through the keypad of the telephone with tone dialing (DMTF).

During the first payment operation using a loan of a new removable microcircuit 3 to terminal 12, along with the code “new microcircuit No.x activated”, in addition to the transaction amount, the serial number of the microcircuit is automatically transmitted. After that, this information is forwarded to the central computer system 14, which monitors the microcircuits during data collection from trading terminals.

In the same way, every time a secure storage device of a stationary microcircuit completes spending the amount of credit received from a removable microcircuit during a payment operation, the serial number of the finished removable microcircuit is transmitted to terminal 12 simultaneously with the code “microcircuit #y has been exhausted” and the payment amount, and this information reaches the central computer system 14, as already described above.

Thus, the control system can in real time have at its disposal information:

1) about all removable microcircuits issued and sold, but not activated (possibly tezavrirovannye);

2) about all removable microcircuits issued and at the stage of use;

3) about all exhausted removable microcircuits.

These three key types of information allow you to accurately track the volume of issued electronic money in circulation, in thesaurus or exhausted. Thus, any attempt to create fake electronic money is immediately detected. Therefore, this system is reliably protected from illegal actions. So, a stolen batch of chips can be immediately blocked by sending to the terminals (12, 12 ', ...) a blacklist of serial numbers of stolen chips.

This system also allows the central bank to thoroughly know the state of the money supply and / or the issuing bank to optimally manage the amounts deposited in support of the issued microcircuits.

In the variant of the procedure described above, with each transaction, the serial number of the removable microcircuit is systematically transmitted, which allows for more accurate tracking, but at the same time makes data management more cumbersome.

Transactions

Each transaction between a client’s micro-housing and a merchant’s “terminal” takes place in 3 phases.

1. The seller enters the price on the keyboard. This price is simultaneously recorded on the customer’s micro-housing.

2. The client confirms his consent by pressing the "Validation" key on the micro-housing.

3. From the protected storage device of the stationary circuit 2, previously replenished from the account of the removable microcircuit 3, the transaction amount is credited to the seller’s storage device.

As already mentioned above, in the absence of a micro-case, the microprocessor card 1 can carry out transactions by contact. In this case, the position of the stationary microcircuit on the card corresponds to ISO standards, which allows most existing readers to process transactions without making changes to the equipment using an application program that can be downloaded remotely while connected to a centralized computer system 14.

In FIG. 6 shows a flowchart of various stages of a transaction.

1) Activation of the micro-housing by pressing the “Activation” button on the micro-housing 6.

2) Monitoring the availability of a removable microcircuit by a microprocessor of a stationary microcircuit and checking the correspondence of the serial number of this microcircuit to the number that allowed a memory reset. If the test result is negative, an error message is displayed on screen 9 and the electronics are deactivated.

3) If the control shows a positive result, the microprocessor remembers the control parameters and, in particular, the time and date of the specified control, and issues a temporary permission for the transaction.

If payment is made by contactless means:

5) The seller enters the price on the terminal 12 keyboard.

6) The terminal issues and exchanges data a) with a micro-housing for mutual recognition.

7) The transaction amount is transferred from terminal 12 to the micro-housing 6.

8) The indicated amount is displayed on the display of microcasing 6.

9) If the owner does not press the Validation key, the transaction is canceled. If, what usually happens, he presses the "Validation" key, then in this case:

10) The microprocessor analyzes the feasibility of the operation:

- sufficiency of a loan or corresponding interim loan;

- confirmation of the temporary permission for the transaction (step 3);

- analysis of typical parameters stored in a permanent memory, and possible changes in the transaction amount or cancellation (reduction, minimum age, etc.).

11) If the result of step 10 is satisfactory, the micro-housing and the terminal exchange data b), c), d). If the result of step 10 is unsatisfactory, the transaction is canceled.

12) If the transaction is implemented:

- debiting the amount from the buyer's removable microcircuit;

- crediting the same amount to the storage device of the seller’s terminal;

- entering data c) and d) into the storage device of the seller’s terminal;

- the possible introduction of data d) in the storage device of a stationary microcircuit microprocessor card.

If payment is made by contact:

5 ') the seller enters the price on the keyboard of terminal 12;

6 ') the cardholder enters it into a reader connected to terminal 12;

7 ') the microprocessor analyzes the validation of the time resolution (step 3). If the validation is satisfactory, they return to step 10, otherwise the transaction is canceled.

In the implementation of the present invention in the transaction involved five categories of participants:

- issuer of cards, "supplying" the population:

microcasing

cards containing only a stationary chip;

- issuer of removable microcircuits: central or any authorized bank;

- user-owner of the micro-housing;

- transaction user: sellers or service providers owning the means of connection (12 ', 12 ", 12' '', 12 '' '');

- collector: one or more local banking or financial institutions engaged in daily lending to sellers.

According to a particular embodiment, two micro-bodies, the sender and the receiver, containing microprocessor cards, can also exchange small amounts of money. In order to exchange data for a money transfer from one building to another, they must be near and opposite each other if the communication device uses infrared radiation. Such a transaction may meet the criteria of security, anonymity and the transfer of responsibility to the recipient for possible illegal actions.

Suppose that it is necessary to transfer an amount of 3 euros from the first micro-housing to the second micro-housing, in this case the owner of the micro-housing - the sender types the transfer amount on the keyboard of the specified micro-housing and presses the transfer key. The owner of the micro-housing - the recipient located nearby should press the "Activation" key. Wherein:

- the first micro-case deducts 3 euros from the protected storage device of the stationary microcircuit located in the micro-case, and transfers the value of this amount, as well as the serial number of the removable microcircuit, which allows crediting the protected storage device, to the receiving micro-case, which is in the standby state;

- the amount of 3 euros is displayed on the display of the recipient micro-housing, then it is credited to the protected storage device of the stationary microcircuit of the microprocessor card located in the receiver body, and this special storage device is designed for amounts received from another micro-housing according to the procedure described above. In addition, the serial number of the removable microcircuit located in the sender micro-housing is also recorded in the same storage device, and this serial number is associated with the transaction.

To ensure protection, this procedure should not be repeated many times (for example, no more than 3-5 times) and only for small amounts. At the first payments that will be made by the owner of the card located in the microprocessor, which received money from another microprocessor card through an exchange between two microcases, the amount or amounts entered into the permanent storage device will be spent in the first place.

A read-only memory device that allows you to deposit money from another microprocessor card through the micro-case can record several of the transactions described above. A read-only memory device remembers the parameters of each transaction (the serial number of the sender’s removable microcircuit and the size of the amount received, and also for the transfer of responsibility to the recipient, its identification code), which are transmitted to the computer system 14 during each payment transaction, and all the while the amount recorded in read-only memory will not be exhausted.

Numerous variations of the present invention can be envisioned. So, a removable microcircuit may be provided in the form of a loan, and in this case, the stationary microcircuit contains the loan management parameters in the course of which it automatically generates the returns transmitted during the connection with the connection means 12.

It should be noted that if the available credit entered in the permanent storage device is not sufficient to make a payment, it can be envisaged that the microprocessor will nevertheless make this payment within the permitted intermediate loan, the predetermined amount of which is recorded in the permanent storage device, at this credit is repaid at the time of installation of a new removable chip.

Finally, it is quite clear that in addition to the recess intended for installing a removable microcircuit, the microprocessor card may contain a second and even third recess designed for installing other microcircuits containing, for example, specific payment and other means, such as food stamps, game coupons, security clearance parameters, etc. In this case, the microcasing should be equipped with appropriate connectors.

The system described above is a universal electronic wallet designed for users who are serviced or not serviced by banks, who are not required to have a bank card to replenish and who do not even have their own bank account. It can carry out all operations and provide the population with all the benefits provided by paper money (anonymity of payment, the possibility of hoarding), while at the same time providing banking institutions with significant advantages, such as centralized and secure money emission and automated flow tracking.

Another conceptual aspect of the present invention is the fight against counterfeit phenomena. For this purpose, an authenticator chip can be attached to any luxury item or valuable object (watch, travel accessories) by any means, which can be disconnected from the item by the seller during the sale.

In fact, the authenticator chip is a removable chip, which is inserted into the recess of the microprocessor card 2 during verification. As in the previous version, the microcircuit is applied using microcasing 6 using at least one algorithm recorded in the memory of a stationary microcircuit. It contains two areas of memory. The first area remembers the identification code and the single serial number of the product. Example: “suitcase - model x - color y - serial number z”. The seller of the luxury item has a device containing means that record once and at the time of sale in the second memory area the parameters of the sale (date, name of the seller, amount, conditions and proof of guarantee, possibly the name of the future owner).

Authentication of the goods sold is carried out after the introduction of a microprocessor card containing an authenticator chip into the micro-case. Using at least one algorithm stored in the memory of the ROM, the microprocessor of the stationary microcircuit can read the information contained in the storage devices of the microcircuits and check its compliance.

Claims (13)

1. A secure system with a microprocessor card, containing a two-chip card (1), containing the first chip (2), which serves mainly as a microprocessor, and a secure programmable memory device called a stationary chip, and a second removable chip (3), mainly containing read-only memory a device containing a predetermined amount of credit at the disposal of the user, and a micro-housing (6), intended for the introduction of the aforementioned dual-chip card, while said mik the corpus contains communication means (11) for establishing communication with an external transaction unit, in particular, with an external terminal (12 ', 12' ', 12' '', 12 '' '') intended for registering a transaction, and means of internal connection designed to interconnect the first and second microcircuits and write off from the aforementioned secure programmable storage device the amount of the transaction, characterized in that the read-only memory of the removable microcircuit contains, in addition to a predetermined amount of credit, a single serial number assigned by the central bank like a serial number of a banknote, while the amount of the loan and a single serial number are entered into the secure programmable memory using internal connection when a two-chip card inserted for the first time in the microcorpus. 2. The system according to claim 1, characterized in that a single serial number is transmitted together with a code such as “a new microcircuit is activated” to an external terminal (12 ', 12' ', 12' '', 12 '' '') by means of (11 ) communication of the micro-housing (6) during the first transaction after installing a new removable microcircuit. 3. The system according to claim 2, characterized in that the single serial number of the removable microcircuit (3) is transmitted to an external terminal (12 ', 12' ', 12' '', 12 '' '') together with a code like “the microcircuit is exhausted” "When the predetermined amount of credit stored in the secure programmable storage device has been exhausted. 4. The system according to claim 3, characterized in that it further comprises a centralized computer system (14) connected to an external terminal (12 ', 12``, 12' '', 12 '' ''), which is intended for transmission to the centralized computer system of the “new microcircuit activated” code type during the first transaction after the installation of a new removable microcircuit and the “microcircuit exhausted” code, when the predetermined amount of credit stored in the secure programmable memory device has been exhausted, while Allow the mentioned centralized system to track and manage cash flows. 5. The system according to any one of claims 1 to 4, characterized in that the external terminal is a personal computer (12`` ') connected via the Internet to a trading site (21) so that a user of a personal computer can carry out secure transactions with a trading site using the specified loan amount. 6. The system according to any one of claims 1 to 4, characterized in that the external terminal is a telephone (12`` '') connected via a switched telephone network to a trading website (21) so that the telephone user can carry out secure transactions with a trading website using a given loan amount. 7. The system according to claim 6, characterized in that the microprocessor of the stationary microcircuit (2) uses at least one algorithm to determine a special transaction authorization number depending on various parameters, such as customer’s coordinates, transaction amount, removable serial number microcircuits. 8. The system according to claim 7, characterized in that the trading site (21) contains the same algorithm as the microprocessor of the stationary chip to determine the permission number, which allows checking the correspondence with the number transmitted by the card (1). 9. The system according to claim 8, characterized in that the validation of the transaction is carried out using the keyboard of a personal computer (12`` ') or telephone (12' '' ') by entering the serial number of the removable microcircuit (3) and the resolution number calculated by the microprocessor stationary microcircuit (2), while the numbers are displayed on the display (9) of the micro-housing (6). 10. The system according to claim 1, characterized in that the microprocessor of the stationary microcircuit (2) sequentially and before each transaction provides a check for the presence of a removable microcircuit (3) in a dual-chip card (1). 11. The system according to claim 1, characterized in that the terminal (12 ', 12``, 12' '', 12 '' '') contains a reader (16, 16 ') for reading a microprocessor card, which allows the transaction by contact by inserting a microprocessor card (1) into the reader in case of failure of the micro-case. 12. The system according to claim 11, characterized in that the removable microcircuit (3) is installed symmetrically with the stationary microcircuit (2) relative to the center to ensure sequential reading of one microcircuit, and then the other by inserting, removing, rotating and reinserting the microprocessor card into the reader device (16, 16 '). 13. The system according to claim 1, characterized in that the external unit is a second micro-case, into which a second two-chip card is inserted, the transaction being to write off the loan amount from the protected storage device of the stationary microcircuit of the card inserted in the first micro-case, and transfer the said amount, as well as transfer the serial number of the removable microcircuit to the second micro-case, while the latter transfers the said amount to the secure storage device of the stationary microcircuit of the second card and the register It generates the serial number of the removable microcircuit of the first card.

Images