SK288736B6 - Payment terminal using mobile communication device, especially mobile phone, cashless payment method - Google Patents

Abstract

A payment terminal using a mobile communication device, such as a mobile phone, is located on a removable memory card (1) which is adjusted in such way so it can by inserted an expansion accessory slot used in addition to the basic function of the mobile communication device (4). The payment terminal application runs on a removable memory card (1). The payment terminal application is read into the microcontroller (12) and then the configuration data of the selected terminal identity is read from the smart card chip (3). The data from the selected payment card is read into the microcontroller (12) acting as a payment terminal from the smart card chip (3). The payment card block (7) with the payment application is located in a protected part of the memory separate from the block (6) with terminal configuration data. The memory card (1) type is the SD or miniSD, or microSD, or M2. The memory card (1) is capable of functioning as a terminal of multiple identities, also comprising a payment card or multiple payment cards and in a preferred embodiment is provided with a contactless communication element (13).

Description

Technical field

The invention relates to a payment terminal which is located in a mobile communication device, in particular a mobile phone, and for realizing payment processes the terminal can also communicate via its own communication element, in particular of the NFC type. The invention also discloses a non-cash payment method using a contactless transmission link.

BACKGROUND OF THE INVENTION

There are known payment terminals, POS terminals, which are stably located in commercial premises. Connections are also known in which mobile communication devices, in particular in the form of a conventional mobile phone, serve to carry out a cashless payment transaction.

To date, there are no known technical means that would reliably update a mobile phone to a payment terminal position held by the user.

The solution according to patent CN101351819 mentions the possibility of using a mobile phone as a POS terminal, but does not solve the particular arrangement of the individual necessary elements of the system. Many solutions, such as the patents CN101339685, CN101329801, US2008270246 (A1), SI22595 (A), US2008059375, describe the involvement of a mobile phone in cashless payments, but there are no elements of a separate POS terminal directly in the phone, A POS terminal, such as in US2007241180 (A1).

SUMMARY OF THE INVENTION

Said deficiencies are substantially eliminated by a payment terminal utilizing a mobile communication device, in particular a mobile phone comprising a memory, interface, microcontroller for executing a payment application, wherein the microcontroller is connected to the memory and interface for connection to the mobile communication circuit, and with a payment application connected to the microcontroller and also comprising a terminal with configuration data of the terminal in the protected portion of the memory according to the invention, characterized in that the terminal and the associated data are located in a removable memory card adapted to be inserted into the slot mobile communication equipment enhancements used in addition to the basic function of the mobile communication equipment. It will be, in particular, but not exclusively, an externally accessible slot of a mobile communication device, in particular a mobile phone. The relevant slot is intended for technical means without which the mobile communication device can fulfill its basic function, i. j. data transmission and / or voice of the network operator. The present slot is for a SIM card and the memory card of the present invention is not a SIM card. The removable memory card is not dependent on the phone's SIM card and can be collected and inserted into the mobile phone without interrupting normal phone functions.

The block in this file represents the functional element stored on the hardware carrier with the appropriate software according to the function.

In addition to the memory itself, the memory card includes a smart card chip comprising protected memory on which there is a block with terminal configuration data. This block is used to securely store the data that the terminal needs to assign its identity, basically mainly data that determines to whom the terminal belongs to the data.

Smart card chip is connected to microcontroller. There is also a memory card memory connected to the microcontroller for running the payment application, where there is a block with the payment application application. This will mainly take the form of an EMV application. The microcontroller reads the payment-terminal application from the respective block and thus becomes the so-called. Generic POS Terminal. It is a general POS terminal, currently indifferent. To become a terminal of a particular bank, a particular institution, satentoPOS downloads data from the terminal configuration data block from the smart card chip.

This arrangement makes it possible to insert a configured and modified memory card into a conventional mobile phone having an expansion memory slot so that it is able to execute terminal payment operations.

Another essential feature of the present solution is that the memory card also includes a payment card block with a payment application, in particular of the EMV type. The combination of a terminal and a payment card into one, moreover, indivisible, hardware means has so far made no useful sense, since payment terminals were bolysically held by the merchant and were usually owned by a bank, payment processor and the like. With the present invention, it is possible for the payment terminals to be in the personal possession of the user, and it is then possible to connect the terminal and the payment card to one hardware means. In doing so, the terminal will continue to belong to a particular bank or clearing institution, as has been the case with the terminals held by the trader until now.

N K 288736 B6

The payment card block is located in the protected portion of the memory separate from the terminal configuration data block, preferably on separate domains of the secure element contained in the smart card chip. From the viewpoint of the suitability of the memory card structure and also with regard to the high penetration of mobile communication means with an SD slot type, it is advantageous if the memory card is of the SD or niniSD type or microSD card or M2 type. Then, the interface of the memory card to the circuits of the mobile communication device will be the corresponding SD or M2 interface. The microcontroller is connected to the card interface as specified by the Technical Committee SD Card Association.

In order to achieve sufficient data throughput, it is convenient if the memory card has at least a two-wire, preferably at least a four-wire bus. Preferably, the memory card used has a maximum dimension of less than 24 mm and a second largest dimension of less than 14 mm

The microcontroller is provided with an indelible internal memory, preferably of the EEPROM type. To achieve a sufficient level of security, the microcontroller is also equipped with a boot-loader block to control unauthorized hits in the loaded payment terminal application. The boot loader is stored in the non-rewritable portion of the microcontroller's processor memory and is triggered by the terminal. The boot-loader task is to check that the operating system and application programs have not been altered by unauthorized intervention. After each reseteboot-loader, the hash value (digital signature) is calculated from the contents of the external flash memory of the program where the operating system and applications are stored. The result is compared with the value stored in the internal EEPROM. If the data matches, it leaves control to the operating system. If not, it decrements the failed counter and stops. If the counter reaches 0, the microcontroller can no longer be started. The operating system is stored in the memory (such as the start and end of the address space and the hash value of the memory (digital signature) is burned into the microcontroller the first time the operating system and application are saved. It cannot be changed later.

In a conventional embodiment, the microcontroller will have a 32-bit microprocessor structure.

The utility values of the terminal substantially increase the arrangement in which the payment terminal has its own communication channel, substantially independent of the communication paths of the mobile communication device. This arrangement will be characterized in that the memory card is provided with a contactless communication element which is connected to a smart card chip and / or to a microcontroller. It will be advantageous to place an antenna directly on the memory card and connect it to a contactless communication element. This makes the terminal functions independent. The non-contact communication element can be equipped with detection of the surrounding electromagnetic field, so that its circuits will only be activated at the time of the required connection, thus reducing the terminal's power demand. This can be supplied from the electromagnetic field and from the power of the mobile communication device via the respective memory card interface. The contactless communication element may be coupled to the blocks on the smart card chip, with the exception of the encryption block, which will only be accessible through the microcontroller, in order to reduce the risk of attempts to illegally overcome the encryption. With respect to existing widespread types of communication, it is preferred that the non-contact communication element is of the NFC type, preferably according to ISO14443.

The payment terminal may also have several separate blocks with configuration data of independent terminals in the smart card chip. These will be stored separately in separate domains of the secure element. This technical solution will enable the payment terminal to be activated as a terminal of different payment processors according to the user's choice or other instructions. Thus, one memory card can subsume and perform sequentially the functions of multiple independent payment terminals. This arrangement will be advantageous precisely in connection with the mobility of the payment terminal described and its independence from the particular merchant, where it would be appropriate to have the choice of identity and jurisdiction of the payment terminal.

A payment terminal may also include several payment cards by having multiple separate blocks of independent payment cards with respective payment applications in the smart card chip. Thus, the payment terminal may not only be a multi-payment terminal, but may also be a multiple card. With the increasing number of cards owned by one user, space will be created for convenient and secure connection of these means of payment to a single memory card inserted into the mobile phone.

The memory card memory, preferably in the form of a flash memory, may have at least a portion of its space protected. Then it is possible to place a block of payment-terminal application in it. This could also be directly in the microprocessor, but such a solution is impractical with respect to the required memory space. In addition, it will be desirable that the payment terminal application be able to update incrementally using the download control block located in memory. To control data flows, the memory is equipped with a memory controller processes block. The memory may also have a web server block for communication between the memory card and the phone via the web interface.

The utility value of the terminal according to the present description will be increased by the addition of non-financial functions. The existing elements of the memory card, separate domains of the secure element, the contactless communication element and possibly also the encryption block can be used to control external devices such as a remote control, an electronic key to the gateway and the like. Then there is a block of non-financial application running through the microcontroller in the smart card chip.

N K 288736 B6

In the arrangement according to the present invention, the memory card with the function of the payment terminal can also fulfill the function of the memory expansion of the mobile communication device. In the unprotected part, the memory has space for freely accessible user data, such as images, music files and the like. This section is directly visible when viewed from a mobile communication device. System data, such as records of payment transaction results and the like, will be stored in the data hidden from the user.

The method of cashless payment using the mobile communication device according to the invention consists in that the payment terminal application runs on a removable memory card that is inserted into the mobile communication device slot for the expansion accessory. The payment terminal application is read into the microcontroller. chip reads configuration data of the selected terminal identity. An essential feature is also the possibility that the data on the selected payment card sado microcontroller acting as a payment terminal is read from the smart card chip, ie from the same hardware means on which the payment-terminal application itself runs.

In order to increase security, it is advantageous for the payment application to be checked for changes in the payment terminal application by means of a boot-loader block before or before starting the payment-terminal application. The payment terminal application will be controlled via the input device of the mobile communication device, in particular the keyboard.

BRIEF DESCRIPTION OF THE DRAWINGS

BRIEF DESCRIPTION OF THE DRAWINGS The invention is explained in more detail with reference to FIG. Figure 2 shows the connection of a mobile phone with a memory card for payment in an online store.

Exemplary embodiments of the invention

In this example, a payment terminal is described on a removable micro SD memory card 1 platform with the size and shape of a conventional microSD card. The memory card 1 has a micro controller 12 in the form of a 32-bit microprocessor operating with a multi-task operating system 8, in this example Linux. The microcontroller 12 is connected to a flash memory 2, a smart card chip 3 and an SD interface 11. The microprocessor 12 includes an internal EEPROM memory 10 and a boot-loader block 9 to control unauthorized hits in the loaded payment terminal application.

Flash memory 2 is divided into protected and unprotected part. In the unprotected part there is a space 15 for freely accessible and freely visible user data as well as a space 20 for the hidden storage of system files, in particular payment transaction records running through the over payment terminal. In the protected part there is a block 8 with an operating system, in this example with Linux and in particular a block 5 of a payment-terminal application where the payment-terminal application, in this case EMV type, is loaded. In the protected memory 2, in this example, there is also a download control block 19, which serves to store and manage the software on memory card 1. If it is necessary to upload / upgrade applications in smart card chip 3, the application binary data is loaded into the unprotected part of the flash memory. 2, for example, into a system data block in the space 20 for data hidden by the user. The download control block 19 periodically checks for a new file in the system data block; which you need to upload to smart card chip 3. If so, it will start the corresponding installation.

Also in the protected memory 2 is block 18 of the SCWS web server for application management on the smart card chip3 of the payment EMV application. The microcontroller 12 has a portion of the memory in which the operating system (beginning and end of the address space) is stored. The hash value of the memory content (digital signature) is burned into the microcontroller 12 the first time the operating system and application are saved. It is not possible to change this later.

Several separate domains are created in the secure element of the smart card chip 3. In this example, three are used to hold three separate blocks 6 with terminal configuration data of three different payment processors. The two secure element compartments are occupied by blocks 7 of two independent payment cards with respective EMV payment applications. Thus, the example describes a circuitry that makes it possible to pay from two different payment cards through three terminals of different payment processors, one of which may be a mobile telephone network operator, for example, linking its offered telecommunications services with bank credit card processing services. There is also an RSA block 14 of encryption on the secure element.

The memory card 1 also has its own NFC non-contact communication element 13 with an antenna placed on and off respectively. In the memory card body 1. This arrangement makes it possible to establish an NFC communication link between a conventional telephone without an NFC chip with an appropriate ISO14443 reader.

A non-financial application block 16 is also located in the secure element, which in this example is set to function as an electronic contactless key for controlling the door lock.

The flash memory controller 17 contained in the protected portion 2 controls the transfer of data between the mobile

With K 288736 B6 phone and flash memory 2 on memory card 1. Blocks browsing and writing of protected part of memory 2 and blocks browsing of unprotected part of memory 2 with system data block where data writing and reading is allowed.

The payment terminal application is run on a removable memory card 1, which is inserted into the slot of the mobile communication device 4 for expansion accessories. The payment terminal application reads the microcontroller 12 in the memory card 1 and subsequently reads the configuration data of the selected terminal identity. The data on the selected payment card is read into the microcontroller 12 acting as a payment terminal from the smart card chip 3 at the user's choice.

Before the payment terminal application is started, changes to the payment terminal application are checked using the boot loader loader block 9. The payment terminal application is controlled via the keyboard and display of the mobile communication device 4. The mobile phone has a graphical user interface (GUI) for communication between the user, a memory card 1, a host processor and also has push SMS technology. The payment terminal application is an SD microcontroller 12 application allowing online and off-line payments from a payment application on microSD memory card 1. Payment is made as a “card is present”, which significantly increases security - the transaction is signed with a cryptograph and ATC increases with each transaction one, that is, it is not possible to generate an unlimited number of transactions for the purpose of obtaining some keys. The client controls the payment application via the installed GUI application in its own mobile phone. The payment terminal application in conjunction with the microcontroller 12 forms a Generic POS terminal. Subsequently, with configuration parameters, EMBEDDED POS TERMINAL forms: Terminal_type Ix = terminal belonging to financial institution, 2x = terminal belonging to the merchant, 3x = terminal belonging to the cardholder - Card Holder terminal. Block 6 with terminal configuration data contains terminal ID number, PDOL data (process SingOptions Dala Object List), Terminal Risk Management, off-line batchfile format, SMS gatewayHOST, IP addressanaHOST, code to sign off-line transaction. Payments can be off-line or on-line. Communication with the payment processor can be via SMS or GPRS.

Industrial usability

Industrial applicability is obvious. According to the present invention, payment terminals implemented in memory cards can be manufactured and used industrially and repeatedly, and these cards can contain one or more payment cards at the same time.

N K 288736 B6

List of reference marks

- memory card

- memory

Smart card chip

- mobile communication equipment

- block with payment-terminal application

- block with terminal configuration data

- credit card block

8- operating system block

- boot-loader block

- microcontroller internal memory

11- interface

- microcontroller

- contactless communication circuit

- encryption block

- free user data

- non-financial application block

- memory controller block

- Web server block

- download control block

- space for data hidden by the user

Claims (20)

PATENT CLAIMS A payment terminal using a mobile communication device, in particular a mobile phone, comprising a memory (2), an interface (11), a microcontroller (12) for executing a payment terminal application, a microcontroller (12) connected to the memory (2) and a circuit for a mobile communication device (4) comprising a payment terminal application block coupled to a microcontroller (12), also comprising a terminal (6) with terminal configuration data in a protected portion of memory, characterized by being located on a removable memory card (1) The memory card (1) comprises a smart card chip (3) including a protected memory on which there is a block (6) containing terminal configuration data, which is adapted for insertion into an expansion accessory slot used in addition to the basic function of the mobile communication device (4). , the smart card chip (3) is connected to the microcontroller (12) with whom it is connected to a memory (2) The memory card (1) and the smart card chip (3) comprises a block (14) of encryption. Payment terminal according to claim 1, characterized in that the memory card (1) has a payment card block (7) with a payment application, wherein the payment card block (7) is located in a protected part of the memory separately from the configuration block (6). terminal data, preferably on separate domains of the secuie element contained in the smart card chip (3). Payment terminal according to claims 1 or 2, characterized in that the memory card (1) is of the SD or miniSD type, or of the microSD card, or M2, and the interface is an SD type or M2 type interface. Payment terminal according to any one of claims 1 to 3, characterized in that the memory card (1) has at least a two-wire, preferably a four-wire bus. Payment terminal according to any one of claims 1 to 4, characterized in that the memory card (1) has a maximum dimension of less than 24 mm and a second largest dimension of less than 14 mm Payment terminal according to any one of claims 1 to 5, characterized in that the microcontroller (12) is provided with an indelible internal memory (10), preferably of the EEPROM type, the microcontroller (12) also being equipped with a boot-loader block (9) for controlling unauthorized interference in the loaded payment terminal application. Payment terminal according to any one of claims 1 to 6, characterized in that the memory card (1) is provided with a contactless communication element (13) which is connected to a smart card chip (3) and / or a microcontroller (12). Payment terminal according to claim 7, characterized in that on the memory card (1) the antenna is connected to a contactless communication element (13). Payment terminal according to any one of claims 1 to 8, characterized in that the smart card chip (3) has at least double blocks (6) with configuration data of independent terminals. Payment terminal according to any one of claims 1 to 9, characterized in that the smart card chip (3) comprises at least double-cards (7) of independent payment cards with respective payment applications. Payment terminal according to any one of claims 1 to 10, characterized in that the memory (2), preferably of the Flash type, is protected at least in part of its space and in this part there is a block (5) with a payment terminal application. Payment terminal according to any one of claims 1 to 11, characterized in that the memory (2) comprises a memory controller block (17), a download control block (19) and preferably a web server block (18). Payment terminal according to any one of claims 1 to 12, characterized in that there is a non-financial application block (16) in the smart card chip (3). Payment terminal according to any one of claims 7 to 13, characterized in that the contactless communication element (13) is of the NFC type, preferably according to the ISO14443 standard. Payment terminal according to any one of claims 1 to 14, characterized in that the memory (2) has in the unprotected part a data storage area (20) for the user and a space (15) for the user's freely accessible data. A non-cash payment method using a mobile communication device, in particular a mobile phone, comprising running a payment terminal application, in particular an EMV type, characterized in that the payment terminal application runs on a removable memory card (1) after inserting it into the pie communication slot (4). expansion accessories. The non-cash payment method according to claim 16, characterized in that a payment terminal application is loaded into the microcontroller (12) in the memory card (1) and subsequently the configuration data of the selected terminal identity is read from the smart card chip (3). Cashless payment method according to claims 16 or 17, characterized in that after the user selects a payment card from the menu, the data on the selected payment card is read into the microcontroller (12) acting as a payment terminal from the smart card chip (3). . A method of non-cash payment according to any one of claims 16 to 18, characterized by S K 288736 B6, by checking for changes in the payment application by means of a boot-loader block (9) at or before starting the payment application. The non-cash payment method according to any one of claims 16 to 19, characterized in that the payment terminal application is controlled via an input device of the mobile communication device (4), in particular a keyboard.