WO2001035353A1 - Carte a puce a regles personnalisees - Google Patents

Carte a puce a regles personnalisees Download PDF

Info

Publication number
WO2001035353A1
WO2001035353A1 PCT/IL2000/000653 IL0000653W WO0135353A1 WO 2001035353 A1 WO2001035353 A1 WO 2001035353A1 IL 0000653 W IL0000653 W IL 0000653W WO 0135353 A1 WO0135353 A1 WO 0135353A1
Authority
WO
WIPO (PCT)
Prior art keywords
card
payment
policy
executed
currency
Prior art date
Application number
PCT/IL2000/000653
Other languages
English (en)
Inventor
Yosef Gavriely
Ron Gavriely
Original Assignee
Yosef Gavriely
Ron Gavriely
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Yosef Gavriely, Ron Gavriely filed Critical Yosef Gavriely
Priority to AU79419/00A priority Critical patent/AU7941900A/en
Publication of WO2001035353A1 publication Critical patent/WO2001035353A1/fr

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/403Solvency checks
    • G06Q20/4037Remote solvency checks
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0873Details of the card reader
    • G07F7/088Details of the card reader the card reader being part of the point of sale [POS] terminal or electronic cash register [ECR] itself
    • G07F7/0886Details of the card reader the card reader being part of the point of sale [POS] terminal or electronic cash register [ECR] itself the card reader being portable for interacting with a POS or ECR in realizing a payment transaction

Definitions

  • This invention relates to a method and system for use as currency cash substitute when paying vendors for goods and/or services by means of electronically encoded smart cards.
  • credit cards commonly, are issued by a bank or other financial institution that guarantees to pay expenditures that can be made by the cardholder. Most credit cards give a grace period with several days float and short-term credit at a cheap rate before the money will be deducted from the checking or saving bank account.
  • Debit cards are usually linked directly to the cardholder's bank account. Thus, when one uses a debit card to pay for a purchase, the money is automatically (and usually instantly) taken out of the bank account. This is a quick transaction between the merchant and the personal bank account without grace period, offered by credit cards.
  • debit cards commonly, two types of the debit cards are in usage. The first type is so called "on-line" debit cards.
  • the second type is "off-line" debit cards. These cards usually look like a credit card and resemble a credit card transaction.
  • the merchant's terminal reads the card, identifies it as a debit rather than a credit card, and creates a debit against the corresponding bank account. However, instead of debiting the account immediately, it stores the debit for processing later, usually within several days. Most, but not all, transactions are verified to see if there are adequate funds. Instead, of using a PIN number, the customer must sign a receipt, as he or she would with a credit card. Credit and debit cards are gaining widespread popularity on business establishment since they offer the consumer many conveniences.
  • the method and systems allow the available credit to be determined by someone other than the card issuer and that allow a limit to be set on the number of expenditures that can be made.
  • Fleming proposes a method and system, wherein a separate credit card account for a child is linked with a parent's credit card account that allows a parent to make changes in available credit for the child's and parent's credit card accounts without requiring bank approval.
  • the parent may allow the child to make purchases unlimited in number, a limited number of purchases, or no purchases, and the parent makes a single payment for both the child's and the parent's credit card accounts.
  • the state-of-the-art credit and debit cards have certain drawbacks.
  • One is their functional non-flexibility due to the small amount of certain information that may be stored in the cards.
  • the information is stored in a magnetic strip attached to a credit and/or debit card. These information may be, for instance, account identification numbers. Since a memory capacity of this strip is limited, credit and debit cards itself, for example, do not contain an indication of available balance. Thereby, if a card is printed for a specific purpose like a debit card, like a credit card, or like any specialized card (telephone, gas, parking, and so like), the card's specification cannot be changed during the card usage.
  • smart cards are similar in appearance to conventional credit and debit cards, but unlike the ordinary magnetic strip of a credit and/or debit card a smart card contains an integrated chip.
  • the chip stores much more information of various types like electronic data and programs that are protected by advanced security features.
  • Customers can load a smart card with cash value to pay for goods or services (an electronic purse), collect points or receive discounts (a loyalty card).
  • a currency value encoded on the card decreases each time the card is used, for instance, in vending machines, in the copier or in laundry machines. When the currency amount is used up, additional value can be encoded on the card.
  • Smart cards have a number of advantages over magnetic stripe cards including greater reliability, higher security mechanisms, storage capacity increased for state-of-the-art smart cards by up to 1000 times and the cards may be multifunctional.
  • the anticipated working life of a smart card is several times longer when compared to a conventional magnetic stripe card.
  • the present invention satisfies the aforementioned need by providing a novel method and system for supervising a usage of smart cards. This is achieved by entering a customized policy or updating already loaded policy in a smart card, thereby making the card specification to be more flexible safer and easier for supervising.
  • the invention provides a possibility to any authorized user to set and change selectively the card specification in accordance with the policy encrypted in electronic memory of the card.
  • the card allows a cardholder to debit at least one preexisting currency account having a balance with authorized limited currency amount for payments at selected retail establishments, throughout selected territory, in a restricted period of time, and with a predetermined frequency of times when buying a specific set of consumer items and/or receiving a specific set of services.
  • the policy determining the card specification may be unique to each card, and it allows setting a limit on the manner of the card usage even by someone other than the card issuer.
  • the preexisting account provided by any payment institution and it may be any credit card, any debit card or other account that is provided, for example, by Visa, MasterCard, American Express, unemployment compensation, or the like.
  • the card itself may not contain an account indicating available credit and the amount of purchase from the vendor may be directly withdrawn from one of the preexisting accounts provided by the authorized user, within the policy restrictions, by correspondingly reducing the available therein currency.
  • the preexisting account is prepaid in advance electronic currency that is stored in the card memory and that was installed within the limitations of the policy.
  • the currency amount of a purchase might be withdrawn from the account of the electronic card itself by correspondingly reducing the available currency stored in the card memory.
  • the preexisting account may include a combination of both sources, and may be an account provided by a payment institution together with prepaid in advance electronic currency.
  • the system for entering or updating a policy in a smart card includes a central server apparatus of the card provider having a storage device and configured to be in access with a preexisting bank account of an authorized user.
  • the system further includes a specially designed one or more terminals for entering or changing earlier encrypted policy in the smart card.
  • Each of the specially designed terminals which may be remote or close disposed, includes a policy introduction keyboard, a card reader-writer unit and should be configured to access central server apparatus and a display for displaying policy statement entries. For example, a displayed text can tell the user how much money is being deducted and how much is left on the card's balance.
  • the instructions from the authorized user for reloading a new policy in the card also might be sent to the terminal via conventional telephone, cellular phone, Internet, or any other computer network, i.e. without using the policy introduction keyboard of the specially designed terminals.
  • the terminal may further include a cash value adding unit in case the card is designed to have prepaid electronic currency stored in the card's memory, and authorized user chooses this way to replenish the card balance.
  • the cash adding unit should provide a possibility to transfer a value onto the card equivalent to the amount of cash inserted into the unit.
  • the user may replenish the card balance via Internet or even at any point of sale equipped with a card reader/writer unit via online transaction.
  • the money may be downloaded into the card's memory from the user's bank account.
  • the system should be configured in order to provide the user with an opportunity to download the predetermined by the policy balance of money into the card either when the entire amount will be expired or earlier, after usage a part of the balance. In the later case, the deducted amounts will be replenished immediately, during every on-line debit or credit transaction, within the same connection.
  • organization of the policy imposed on the card usage may have several levels.
  • a policy may be set in the central server apparatus by the service provider. This first level policy is aimed to meet the tax regulations of the Internal Revenue Service or any other equivalent organization of each particular country.
  • a policy may be business oriented. This policy nested within the policy established on the first level and may be set already by an authorized user. This will insure that any transactions made by using the card would be tax deductible and business oriented.
  • a cardholder which received the card from the authorized user, may set his own policy that will be nested within the policies of the authorized user and the card provider.
  • the smart card may also be a multifunctional card, which includes a memory unit for storing the encrypted policy and a processor chip programmed, according to this policy.
  • the policy may combine the electronic purse function with a function of other applications related to registration of data and information. With these other applications, the cardholder, for instance, may use the card as a public transport ticket, and/or for access to buildings and rooms. Potential uses might include vending machines, residence laundry, and parking meters.
  • the card may additionally be equipped with a keypad and display and be integrated together with a digital calculator.
  • the electronic chips of the card may be additionally programmed in order to provide various functions, for example, the card may provide a calendar, and/or transformer of the current values of one currency into a value of any other currency, and many others functions.
  • the card may be equipped with a beeper for giving a signal when needed, i.e. if any violation of the card usage is registered.
  • the smart card may additionally be equipped with a magnetic strip in order to perform all the functions of the state-of-the-art credit and debit cards in the framework of the encoded policy.
  • a magnetic strip When the card is equipped with in a magnetic strip, verification of various validations imposed by the policy will by carried out, for example, via connection to the central server apparatus.
  • this card will combine the functions of conventional credit and debit cards with all the functions described in the current invention.
  • Such a card may be associated with more than one accounts that will be available, respectively, through the magnetic strip and the connection means (via electrical contacts or contactless) as described above.
  • the authorized user is an account owner himself, or the cardholder is any person entitled to use the card after receiving authorization from the authorized user.
  • the authorized user and the cardholder are a parent and his child, respectively.
  • the authorized user is employer, who wants to supervise a usage of the card in purchase only work-related items by his employee, who is the cardholder.
  • the authorized user or the cardholder can change the policy by locking the card with a special code to prevent its misuse. When locked, transfers from the card are not allowed and statement entries cannot be displayed allowing the owner to keep his currency secure.
  • the method and system for supervising a smart card of the invention differs from other previously described methods without the use of policy encrypted in the card. The advantages of this technology are far-reaching. Customers will benefit by use of the technology of this invention since it increases the quality of their life.
  • a smart card with the policy which allows cardholder to use only limited currency amount, cannot be used beyond its balance. Hence, children will be able to use it without worrying about building-up debts on their parent's bank account.
  • the use of a smart card with customized policy may not involve the documentation work associated with conventional credit cards since no signature is required when the maximum sum deducted is relatively small.
  • the use of PIN code or biometrics may be involved, that means that a person can be reliably identified by his/her hand, fingerprints, retina of the eye, and/or sound of the voice.
  • the PIN code and biometrics data may be stored in the card's memory, and the identification may not demand a retrieving such information from the central server apparatus of the card provider.
  • authorization for the use of electronic information stored in the smart card may be even performed by using a spoken word or the touch of a hand.
  • an authorized user or cardholder may receive at any time information stored in the card about the financial transactions made by using the card. For instance, the users can retrieve the information about the number of invoices and/or numbers accounts wherever the transactions were performed.
  • Smart cards with a customized policy encrypted therein may be programmed for many customers specifications and may be installed, for instance, into the following environments: Education (Schools. Colleges, Universities); Hospitality (Pubs, Restaurants, Hotels); Clubs (Golf clubs, Health clubs, Night Clubs); Retail (Pet shops, Salons, boutiques); Public Sector (Catering, Libraries) and so like.
  • Education Schools. Colleges, Universities
  • Hospitality Pubs, Restaurants, Hotels
  • Clubs Golf clubs, Health clubs, Night Clubs
  • Retail Pet shops, Salons, boutiques
  • Public Sector Catering, Libraries
  • the system should be configured in order to provide the user with an opportunity to receive a report, depending on his choice, about all or at least a part of the transactions conducted within a predetermined period of time.
  • the account owner may insert a policy that some of the information will not be presented in his monthly report.
  • the present invention thus provides a method for supervising a usage of a smart card for payments for goods or services by debiting at least one preexisting currency account having a balance with an available currency amount, the method including the step of setting a specification of said smart card by entering into electronic memory of the card a policy that provides a possibility to any authorized user selectively to set and change limits on the card's usage, said limits are at least one member from the group including: (i) a limit on the available currency amount to a predetermined maximum amount; (ii) a limit on the currency value that is allowed to spent for each specific item; (iii) an appropriate time period during which the payment can be executed; (iv) a selected territory where the payment can be executed; (v) selected retail establishments wherein the payment can be executed; (vi) a frequency of times when the payment can be executed; (vii) a specific set of items for receiving which the payment can be executed; (viii) a specific set of services for receiving which the payment can be executed.
  • This invention also provides a system for supervising a usage of a smart card by entering a policy into the card that provides a possibility to any authorized user selectively to set or change a card specification for payments for goods or services by debiting at least one preexisting currency account having a balance with an available currency amount, the system comprising:
  • a preexisting bank account of the authorized user (i) a preexisting bank account of the authorized user; (ii) a central server apparatus of the card provider configured to be in access with a preexisting bank account of an authorized user, said central server apparatus having:
  • an at least one terminal coupled with said central server apparatus comprising:
  • a policy introduction keyboard for entering instructions from the authorized user for setting and reloading the policy in the card, said policy being at least one member from the group including: (i) a limit on the available currency amount to a predetermined maximum amount; (ii) a limit on the currency value that is allowed to spent for each specific item; (iii) an appropriate time period during which the payment can be executed; (iv) a selected territory where the payment can be executed; (v) selected retail establishments wherein the payment can be executed; (vi) a frequency of times when the payment can be executed; (vii) a specific set of items for receiving which the payment can be executed; (viii) a specific set of services for receiving which the payment can be executed; (b) a card reader-writer device for entering the policy; and (c) a display for monitoring policy statement entries, card's history and statistics.
  • the present invention further provides for use in the system of the kind specified above a preexisting bank account of the authorized user.
  • the present invention still further provides for use in the system of the kind specified above a central server apparatus of the card provider configured to be in access with a preexisting bank account of an authorized user, said central server apparatus having:
  • the present invention further provides for use in the system of the kind specified above a at least one terminal coupled with said central server apparatus comprising:
  • the present invention yet further provides for use in the system of the kind specified above a smart card storing data indicative of a policy that provides a possibility to any authorized user selectively to set and change limits on the card's usage, said limits are at least one member from the group including: (i) a limit on the available currency amount to a predetermined maximum amount; (ii) a limit on the currency value that is allowed to spent for each specific item; (iii) an appropriate time period during which the payment can be executed; (iv) a selected territory where the payment can be executed; (v) selected retail establishments wherein the payment can be executed; (vi) a frequency of times when the payment can be executed; (vii) a specific set of items for receiving which the payment can be executed; (viii) a specific set of services for receiving which the payment can be executed. BRIEF DESCRIPTION OF THE DRAWINGS
  • Fig. 1 is a schematic diagram illustrating the system for entering or updating a policy in a smart card in accordance with the invention
  • Fig. 2 is a flowchart of the logic to be applied in an interaction of a cardholder and a vendor reader device according to the invention.
  • the system 1 for entering or updating a policy in a smart card (not separately depicted in the figure) of the present invention includes a central server apparatus 1 1 of the card provider having a central computer 12, a storage device 13 and configured to be in access with a preexisting bank account 14 of an authorized user.
  • the preexisting bank account may be provided by a payment institution 15 and may be in a form of any credit card, any debit card or other account that is provided, for example, by Visa, MasterCard, American Express, unemployment compensation, or the like.
  • the system further includes at least one local terminal 16 placed in the vicinity to the main server and one or more remote disposed terminals 17.
  • the terminals 16 and 17 should be configured to access central server apparatus 11, and are designed for entering a new policy or changing encrypted earlier policy in a smart card carrying a chip for policy encrypting.
  • Each of the terminals includes a policy introduction keyboard 161, a card reader- writer device 162.
  • Each terminal further may include a display 163 for monitoring policy statement entries, card's history and statistics. For example, a displayed text can tell the user how much money is being deducted and how much is left on the balance of the card.
  • the instructions from the authorized user for reloading a new policy in the central server apparatus might be sent to the terminal via regular or cellular telephone 18, Internet 19 or any other communication way, i.e. without using the policy introduction keyboard 161 of the local or remote disposed terminals.
  • the terminals may further include a cash value adding unit 164 in case when the card is designed to have prepaid electronic currency stored in the card memory, and authorized user chooses this unit to replenish the card balance.
  • the cash adding unit that should provide a possibility to transfer a value onto the card equivalent to the amount of cash inserted into the unit.
  • the user may replenish the card balance via Internet or other computerized network.
  • the money may be downloaded into the card's memory from the user's bank account.
  • the user may set in the policy, that this replenishment will be automatic within every online transaction.
  • an authorized user approaches to a card provider for issuing and obtaining at least one blank smart card.
  • An authorized user may be any account holder having at least one account that is provided by any payment institution, for example, by a bank, Visa, MasterCard, American Express, unemployment compensation, or the like.
  • the blank card then can be sent to any user of the card.
  • the card may be given to a child or a mentally infirm elderly person, or any other person who is needed supervision of expenditures.
  • the blank card obtained from a provider may further be loaded with a customized policy that is contemplated in advance.
  • the card allows a cardholder to debit at least one given currency account having a balance with authorized currency amount.
  • the given account is a preexisting bank account provided by any payment institutions.
  • the card itself may not contain an account indicating available credit.
  • the amount of purchase from a vendor may be directly withdrawn from one of the preexisting accounts provided by the authorized user, within the policy restrictions, by correspondingly reducing the available therein currency.
  • the given account is prepaid electronic currency that is stored in the card memory and that was installed within the limitations of the policy. In operation, the currency amount of a purchase may be withdrawn from the electronic card itself by correspondingly reducing the available currency stored in the card memory.
  • the source for further replenishment of the electronic currency installed in the account of the card is predetermined by the policy and may take any suitable form such as a currency value added unit 164, and/or a preexisting bank account provided by the payment institution 14.
  • the policy encrypted in the card should allow the user to set a margin on the manner of the card usage.
  • the policy data are stored in the card's memory and might preferably determine a maximal currency amount that can be spent for payments at selected retail establishments throughout the selected territory. Further it also may determine a restricted period of time of the card's availability for buying a specific set of consumer items and/or receiving a specific set of services.
  • the policy additionally, may determine a predetermined frequency of times when the purchase of each specific item is allowed.
  • the policy may be introduced into the storage device 13 of the central server apparatus 11.
  • the introduction can be performed by using the local terminals 16, remote disposed terminals 17, or via usage the telephone 18 or Internet 19.
  • downloading the policy and encrypting it in the card may be done later by the cardholder as soon as he will approach to the card reader- writer device 162 at any point of sale.
  • a card reader-writer unit may be installed in a cellular phone of a cardholder.
  • the cellular phone that may work as the remote disposed terminal 17.
  • a customized policy can be downloaded in a memory module of the cellular phone wherein it can be stored in a protected form.
  • the cardholder if desired, may insert a smart card in the card reader- writer unit of the cellular phone for entering and encrypting the policy in the card in the manner as described above.
  • the central server apparatus 11 receives a call from an authorized user requesting an authorization code for introducing a policy, and in response thereto, verifies funds in a preexisting customer account and provides an active authorization code allowing introduction of the policy and its storage in the storage device 13. Only the authorized user, providing an authorization code in the form of a PIN code or any other method of identification, is able to change the policy.
  • a use of Biometrics may be involved in the authorization, that means that a person can be reliably identified by his/her hand, fingerprints, retina of the eye. and/or sound of the voice.
  • the smart card includes a housing, a means that provide a communication between the card and a reader-writer device of the terminal, a memory, and a processor operatively joined to the memory.
  • the cardholder in order to download the policy from the storage device to the card the cardholder should establish an operative connection between the reader- writer device 162 of the terminal and the card through a connection via electrical contacts or in a contactless manner, and provide the corresponding transaction command.
  • Such connection can, for example, be via electrical connectors on the reader- writer 162 and the card.
  • the connectors provide transfer data to and from the card's chip.
  • the card should be inserted into the reader- writer device 162 that makes direct electrical contact.
  • the reader- writer device 162 and the smart card should be equipped with contactless means that provide a transaction when the card, with an electronic microchip and an antenna embedded inside, be passed near an antenna of the contactless reader- writer.
  • the authorized user can always modify and update the policy that is already stored in the storage device 13.
  • the modified policy is reloaded in the smart card in order to update the policy stored therein by the same manner as described above.
  • This policy remains fixed in the card until the authorized user chooses to change or update it, or until the policy expires its validly.
  • the expiration date is a part of the policy and the authorized user may set the expiration for each part of the policy on his choice.
  • the card may additionally be equipped with a card keypad, a card display and a source of energy (a battery or a photoelectric cell).
  • such a card may allow a tourist to transform a typed amount of money from one currency to another currency of his interest.
  • Such a card also allows any cardholder to lock and reactivate the card by typing a personal code onto the card itself. This, for example, will enable users to leave their cards in wallets unguarded without the threat of misuse by others.
  • the smart card may additionally be equipped with a magnetic strip in order to perform all the functions of the state-of-the-art credit and debit cards in the framework of the encoded policy.
  • this card will combine the functions of conventional credit and debit cards with all the functions described in the current invention.
  • Such a card may be associated with more than one accounts that will be available, respectively, through the magnetic strip and the connection means (via electrical contacts or contactless) as described above.
  • a cardholder 21 presents the card (not separately depicted in the figure) as a cash substitute at a retail outlet 22 that may be a vendor machine or establishment 221 for retail of drinks, snacks, fast food, etc.
  • the cardholder may present the card at a service provider 222, such as, telephone, car wash, or the like.
  • a service provider 222 such as, telephone, car wash, or the like.
  • Each recipient entity (221 and/or 222) has a card reader 2211 , which is integrated with a processing device 2212 and a transaction device 2213.
  • the processing device processes the smart card according to the policy encrypted therein, whereby data stored in the smart card are altered to represent a registration of performing of a financial operation or providing of a service.
  • the registration is needed for preventing overuse the card over the policy regulations.
  • the processing of the smart card includes a sequence of physical operations related to verification of various validations imposed by the policy that prevent the smart card usage by an unauthorized person, who has found or stolen the card.
  • the verification of various validations may include, for example, a user validation check 23 that may be done by state-of-the-art methods through the use of a PIN secret code and/or biometrics. For example, if the cardholder is a child, then his fingerprint encrypted in the card may be use for his identification.
  • the money could only be deducted from the account associated with the card if the entered PIN code or the biometrics match those prescribed by the policy. If the cardholder made a mistake, a new attempt of the verification may be allowed. A number of fallacious attempts to enter the code is counted bv a counter 24, this number is limited. If this number exceed a number that is predetermined by the encrypted policy, then the smart card will be "locked" 28 or retained by the terminal and will not be available for the further use. If so, the authorized user will be notified, and he will be to reactivate the card at will. Sometimes, the policy may be set to allow a payment only for selected items, or for items of relatively small amounts of money without a secret code. In this case the maximum sum of the deductible relatively small amounts of money may be defined by the policy. Hence, an unauthorized user who does not know the secret number can thus use only this maximum sum of money so that the damage is limited.
  • the verification further may include a card balance check 25, that may follow the user validation check, and is intended for retrieving the available credit for the cards that have been set by the policy.
  • the further validation checks 26 prescribed by the policy might, for instance, include an item validation check (not depicted in the figure) that provide a possibility to buy only specific items throughout the selected retail establishments on predetermined territory, while excluding other items from consideration.
  • an item validation check (not depicted in the figure) that provide a possibility to buy only specific items throughout the selected retail establishments on predetermined territory, while excluding other items from consideration.
  • the further validation checks 26 prescribed by the policy might include a verification of a period of time eligible for shopping, a predetermined frequency of times when purchasing of specific items is permitted and many others, depending on the card functionality.
  • the locking operation described above can be applied in accordance with the policy to any verification step for preventing a misuse of the card. Since only the authorized user and cardholder knows the details of the particular policy, an unauthorized person who found or stolen the card will not know, for instance, where to buy and what items are allowed for the purchase. It means that the locking operation will quickly deactivate the card after one or several fallacious attempts, as it was defined in the policy.
  • a further step is monetary (or its equivalent) transactions 27 from the given account indicating available card credit to the corresponding means of the card reader of the recipient entity.
  • the transactions may be executed by conventional methods either from a preexisting bank account and/or from the prepaid electronic currency stored in the card.
  • the size and shape of the card may be determined by an international standard (ISO 7810). This standard also may define the physical characteristics of the plastic, such as temperature tolerance and flexibility. It also defines a position of the electrical contacts and their functions, if the means that provide a communication between the card and a card-reader-writer is via the contacts, and how the integrated circuit communicates with the outside world.
  • ISO 7810 International Standard
  • This standard also may define the physical characteristics of the plastic, such as temperature tolerance and flexibility. It also defines a position of the electrical contacts and their functions, if the means that provide a communication between the card and a card-reader-writer is via the contacts, and how the integrated circuit communicates with the outside world.
  • plastic may be used for the smart cards of the present invention, for example, such as PVC (Polyvinyl Chloride) that can be embossed but is not recyclable, or ABS (Acrylonitrile Butadiene Styrene) that cannot be embossed but is recyclable.
  • the card Since the main components of the smart card, such as a card processor chip, a card memory unit, and a source of electric energy may be miniaturized, then the card may be integrated with any utensil carried by a cardholder, for example, with a watch, spectacles, jewelry, etc.
  • the smart card may be a multifunctional card.
  • the policy may combine the electronic purse function with a function of for other applications, relating to the registration of data and information.
  • the cardholder for instance, may use it as a public transport ticket, and for access to buildings and rooms. Potential uses include vending machines, residence laundry, parking meters, etc.
  • the card may additionally be integrated together with a digital computer.
  • the electronic chips of the card may be additionally programmed in order provide various functions, for example, the card may provide a calendar, and/or transformer of the current rates of various currencies and many others functions.
  • the system according to the invention should be suitably programmed.
  • the invention contemplates software being readable by the central computer for executing the method of the invention.
  • the invention further contemplates a machine-readable memory tangibly embodying a program of instructions executable by the machine for executing the method of the invention.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

L'invention concerne un procédé et un système permettant de surveiller l'utilisation d'une carte à puce par l'enregistrement de règles ou la mise à jour de règles déjà chargées dans la carte. L'invention permet à tout utilisateur autorisé de régler et de modifier, de manière sélective, les spécifications de la carte conformément aux règles codées dans la mémoire électronique de la carte. Conformément aux instructions des règles, la carte permet à un détenteur de débiter au moins un compte de monnaie préexistant d'un montant de monnaie limité autorisé pour effectuer des paiements dans des établissements sélectionnés de vente au détail, sur un territoire sélectionné, au cours d'une période de temps limitée, et à une fréquence prédéterminée lors de l'achat d'un ensemble spécifique de biens de consommation et/ou la réception d'un ensemble spécifique de services.
PCT/IL2000/000653 1999-11-09 2000-10-15 Carte a puce a regles personnalisees WO2001035353A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU79419/00A AU7941900A (en) 1999-11-09 2000-10-15 Smart card with customized policy

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
IL132823 1999-11-09
IL13282399A IL132823A (en) 1999-11-09 1999-11-09 Smart card with customized policy

Publications (1)

Publication Number Publication Date
WO2001035353A1 true WO2001035353A1 (fr) 2001-05-17

Family

ID=11073450

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IL2000/000653 WO2001035353A1 (fr) 1999-11-09 2000-10-15 Carte a puce a regles personnalisees

Country Status (3)

Country Link
AU (1) AU7941900A (fr)
IL (2) IL132823A (fr)
WO (1) WO2001035353A1 (fr)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002077923A1 (fr) * 2001-03-22 2002-10-03 Koninklijke Philips Electronics N.V. Subventionnement de transports publics par l'intermediaire de coupons electroniques
EP1422919A2 (fr) 2002-11-20 2004-05-26 Nec Corporation Terminal téléphonique portable et procédé de restriction de l'usage de terminal par un service à paiement
US8918080B2 (en) 2012-01-17 2014-12-23 Kajeet, Inc. Mobile device management
US8929857B2 (en) 2007-06-28 2015-01-06 Kajeet, Inc. Policy management of electronic devices
US9137389B2 (en) 2011-11-08 2015-09-15 Kajeet, Inc. Master limits and filters for electronic devices
US9137386B1 (en) 2007-06-28 2015-09-15 Kajeet, Inc. Feature management of a communication device
US10313532B2 (en) 2013-06-13 2019-06-04 Kajeet, Inc. Platform for enabling users to sign up for sponsored functions on computing devices
US11070681B2 (en) 2013-06-13 2021-07-20 Kajeet, Inc. Platform for enabling sponsors to sponsor functions of a computing device

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4837422A (en) * 1987-09-08 1989-06-06 Juergen Dethloff Multi-user card system
US4877947A (en) 1986-08-05 1989-10-31 Oki Electric Industry Co., Ltd. Transaction processing system
EP0640945A2 (fr) * 1993-08-27 1995-03-01 AT&T Corp. Système intégré pour points de vente à applications multiples
US5500513A (en) * 1994-05-11 1996-03-19 Visa International Automated purchasing control system
US5521362A (en) 1994-06-08 1996-05-28 Mci Communications Corporation Electronic purse card having multiple storage memories to prevent fraudulent usage and method therefor
US5753899A (en) 1993-10-06 1998-05-19 Gomm; R. Greg Cash alternative transaction system
US5811771A (en) 1996-05-22 1998-09-22 Dethloff; Juergen Method and system for paying with a portable data medium having security against over charging and unauthorized use
WO1998049658A1 (fr) 1997-04-30 1998-11-05 Visa International Service Association Systeme de paiement et de chargement par internet a l'aide d'une carte a puce
WO1998058345A2 (fr) * 1997-06-16 1998-12-23 Picciallo Michael J Carte de debit pour tiers
US5953710A (en) 1996-10-09 1999-09-14 Fleming; Stephen S. Children's credit or debit card system
WO1999054841A1 (fr) * 1998-04-17 1999-10-28 Diebold, Incorporated Appareil de transaction

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4877947A (en) 1986-08-05 1989-10-31 Oki Electric Industry Co., Ltd. Transaction processing system
US4837422A (en) * 1987-09-08 1989-06-06 Juergen Dethloff Multi-user card system
EP0640945A2 (fr) * 1993-08-27 1995-03-01 AT&T Corp. Système intégré pour points de vente à applications multiples
US5649118A (en) 1993-08-27 1997-07-15 Lucent Technologies Inc. Smart card with multiple charge accounts and product item tables designating the account to debit
US5753899A (en) 1993-10-06 1998-05-19 Gomm; R. Greg Cash alternative transaction system
US5500513A (en) * 1994-05-11 1996-03-19 Visa International Automated purchasing control system
US5521362A (en) 1994-06-08 1996-05-28 Mci Communications Corporation Electronic purse card having multiple storage memories to prevent fraudulent usage and method therefor
US5811771A (en) 1996-05-22 1998-09-22 Dethloff; Juergen Method and system for paying with a portable data medium having security against over charging and unauthorized use
US5953710A (en) 1996-10-09 1999-09-14 Fleming; Stephen S. Children's credit or debit card system
WO1998049658A1 (fr) 1997-04-30 1998-11-05 Visa International Service Association Systeme de paiement et de chargement par internet a l'aide d'une carte a puce
WO1998058345A2 (fr) * 1997-06-16 1998-12-23 Picciallo Michael J Carte de debit pour tiers
WO1999054841A1 (fr) * 1998-04-17 1999-10-28 Diebold, Incorporated Appareil de transaction

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002077923A1 (fr) * 2001-03-22 2002-10-03 Koninklijke Philips Electronics N.V. Subventionnement de transports publics par l'intermediaire de coupons electroniques
EP1422919A2 (fr) 2002-11-20 2004-05-26 Nec Corporation Terminal téléphonique portable et procédé de restriction de l'usage de terminal par un service à paiement
EP1422919A3 (fr) * 2002-11-20 2006-04-05 Nec Corporation Terminal téléphonique portable et procédé de restriction de l'usage de terminal par un service à paiement
US7263348B2 (en) 2002-11-20 2007-08-28 Nec Corporation Portable telephone terminal device and a method for restricting pay service for using the terminal device
US11689901B2 (en) 2007-06-28 2023-06-27 Kajeet, Inc. Feature management of a communication device
US8929857B2 (en) 2007-06-28 2015-01-06 Kajeet, Inc. Policy management of electronic devices
US11206516B2 (en) 2007-06-28 2021-12-21 Kajeet, Inc. Feature management of a communication device
US9137386B1 (en) 2007-06-28 2015-09-15 Kajeet, Inc. Feature management of a communication device
US9237433B1 (en) 2007-06-28 2016-01-12 Kajeet, Inc. Feature management of a communication device
US10009480B2 (en) 2007-06-28 2018-06-26 Kajeet, Inc. Policy management of electronic devices
US10285025B1 (en) 2007-06-28 2019-05-07 Kajeet, Inc. Feature management of a communication device
US11516629B2 (en) 2007-06-28 2022-11-29 Kajeet, Inc. Feature management of a communication device
US10555140B2 (en) 2007-06-28 2020-02-04 Kajeet, Inc. Feature management of a communication device
US10694346B1 (en) 2007-06-28 2020-06-23 Kajeet, Inc. Feature management of a communication device
US9137389B2 (en) 2011-11-08 2015-09-15 Kajeet, Inc. Master limits and filters for electronic devices
US8918080B2 (en) 2012-01-17 2014-12-23 Kajeet, Inc. Mobile device management
US9125057B2 (en) 2012-01-17 2015-09-01 Kajeet, Inc. Mobile device management
US11070681B2 (en) 2013-06-13 2021-07-20 Kajeet, Inc. Platform for enabling sponsors to sponsor functions of a computing device
US10313532B2 (en) 2013-06-13 2019-06-04 Kajeet, Inc. Platform for enabling users to sign up for sponsored functions on computing devices

Also Published As

Publication number Publication date
IL155061A0 (en) 2003-10-31
IL132823A (en) 2003-06-24
IL132823A0 (en) 2001-03-19
AU7941900A (en) 2001-06-06

Similar Documents

Publication Publication Date Title
US20210103917A1 (en) Payment device applets with pre-stored messages and triggerable logic
AU2002347822B2 (en) System and method for integrated circuit card data storage
US5438184A (en) Method and apparatus for electronic cash transactions
US7748616B2 (en) Method for implementing anonymous credit card transactions using a fictitious account name
US6012049A (en) System for performing financial transactions using a smartcard
AU2007211131C1 (en) Techniques for authorization of usage of a payment device
US7039440B2 (en) Wireless rechargeable money card
EP0978800A2 (fr) Appareil portatif électronique pour transactions bancaires
US20030200180A1 (en) Money card system, method and apparatus
US20060155641A1 (en) Prepaid card with multiple depositors
US20040210519A1 (en) System and method for authorizing transactions
WO2001024123A9 (fr) Systeme electronique d'autorisation portatif et procede correspondant
GB2361571A (en) Payment method
CN109804398A (zh) 预付卡、借记卡和信用卡安全码生成系统
HU220570B1 (hu) Elrendezés kiskereskedelmi forgalom bonyolítására, kiskereskedelmi egység és eljárás kiskereskedelmi forgalom bonyolítására
US7472092B2 (en) Money order device with identity verification and method
JP2000215279A (ja) Icカ―ド決済装置
US6829597B1 (en) Method, apparatus and computer program product for processing cashless payments
JP2000099603A (ja) Icカードによる取引情報の確認方法とそのシステム
WO2001035353A1 (fr) Carte a puce a regles personnalisees
US20070235524A1 (en) Data card management system
JP2006155636A (ja) Icカード決済装置
US20090172678A1 (en) Method And System For Controlling The Functionality Of A Transaction Device
JPH0517600B2 (fr)
US20070278292A1 (en) Retail cash product

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CR CU CZ DE DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP