WO2008091191A1 - Method and system for securely executing a charge transaction - Google Patents

Method and system for securely executing a charge transaction Download PDF

Info

Publication number
WO2008091191A1
WO2008091191A1 PCT/SE2008/000030 SE2008000030W WO2008091191A1 WO 2008091191 A1 WO2008091191 A1 WO 2008091191A1 SE 2008000030 W SE2008000030 W SE 2008000030W WO 2008091191 A1 WO2008091191 A1 WO 2008091191A1
Authority
WO
WIPO (PCT)
Prior art keywords
host
telecommunication device
mobile telecommunication
data set
communication link
Prior art date
Application number
PCT/SE2008/000030
Other languages
French (fr)
Inventor
David Nilsson
Michael JÖRGENSEN
Original Assignee
Smartrefill I Helsingborg Ab
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Smartrefill I Helsingborg Ab filed Critical Smartrefill I Helsingborg Ab
Priority to US12/523,575 priority Critical patent/US20100049655A1/en
Priority to EP20080705203 priority patent/EP2115675A4/en
Publication of WO2008091191A1 publication Critical patent/WO2008091191A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists

Definitions

  • the present invention generally relates to mobile telecommunication devices and more specifically to a method, apparatus and system for enabling secure transmission of confidential information from a mobile telecommunication device to a host, e.g. when transferring money from a user account to another party.
  • pre-paid telephone cards In relation to the increased use of mobile telecommunication devices, many different methods and systems for debiting users of the systems have been proposed.
  • One such system is to use so called pre-paid telephone cards, wherein a user of the system may purchase a certificate equivalent to a certain amount of money which is registered to the pre-paid telephone card. The user may then use the money for placing telephone calls (i.e. normally pay for the amount of time the telephone calls are established) or accessing available networks (i.e. normally pay for the amount of data transferred) .
  • telephone calls i.e. normally pay for the amount of time the telephone calls are established
  • accessing available networks i.e. normally pay for the amount of data transferred
  • the present invention is realized by a method for enabling secure transmittal of data from a mobile telecommunication device to a host.
  • the method comprises: transmitting a message from the mobile telecommunication device to the host requesting registration with the host, transmitting executable program code from the host to the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, executing the received program code in the mobile telecommunication device such that an encrypted communication link is established between the mobile telecommunication device and the host, transmitting, from the mobile telecommunication device, a first of at least two in combination unique data sets to the host via the encrypted communication link, determining, at the host, if the first data set corresponds to a valid account number, and if the determination is positive, storing the account number and transmitting an acknowledge signal to the mobile telecommunication device, indicating the positive outcome of the determination, and deleting the first data set in the mobile telecommunication device in response to receiving the acknowledge signal
  • the mobile telecommunication device transmits only a first of at least two in combination unique data sets to the host via the encrypted communication link.
  • the communication link despite the encryption, is tapped by a fraudulent user, not all information needed for establishing a unique set will be available.
  • the method may comprise that the message is transmitted from the mobile telecommunication device.
  • the method may comprise that the message is transmitted from a client connected to the host.
  • the method may further comprise receiving, in the mobile telecommunication device, user input data comprising the first of at least two in combination unique data sets.
  • the method may further comprise that the first data set comprises a credit card number.
  • the method may further comprise that the first data set comprises information identifying the source of the first data set.
  • the method may further comprise that the host, when determining if the first data set corresponds to a valid account number, receives data from a third party, such as a financial institution.
  • a third party such as a financial institution.
  • the method may further comprise that the message transmitted from the mobile telecommunication device is transmitted by means of sms, mms or email.
  • the method may further comprise that the program code received in the mobile telecommunication device is a Java program.
  • the program code is less platform dependent, wherein the invention may easily be implemented in mobile telecommunication devices using different operating systems .
  • the present invention is realised by a system for enabling secure transmittal of data from a mobile telecommunication device to a host, said system comprising: means for transmitting a message to the host requesting registration with the host, the host being arranged to transmit executable program code from the host to the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, the mobile telecommunication device being arranged to execute the received program code such that an encrypted communication link is established between the mobile telecommunication device and the host, the mobile telecommunication device being arranged to transmit a first of at least two in combination unique data sets to the host via the encrypted communication link, the host being arranged to determine if the first data set corresponds to a valid account number, and if the determination is positive, store the account number and transmit an acknowledge signal to the mobile telecommunication device, indicating the positive outcome of the determination, the mobile telecommunication device being arranged to delete the first data set in the mobile telecommunication device
  • the invention is realized by a method for securely executing a charge transaction by means of a mobile telecommunication device, said method comprising: establishing an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code in the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, transmitting data related to a charge transaction request from the host to the mobile telecommunication device via the encrypted communication link, transmitting a second of at least two in combination unique data sets from the mobile telecommunication device to the host via the encrypted communication link as authorization for the charge transaction to be executed, transmitting, from the host to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and completing the charge transaction if the first and second data sets in combination authorize the charge transaction.
  • An advantage is that the mobile telecommunication device transmits only a second of at least two in combination unique data sets to the host via the encrypted communication link. In case the communication link, despite the encryption, is tapped by a fraudulent user, not all information needed for establishing a unique set will be available.
  • the method may further comprise that the establishing of the encrypted communication link is initiated by a message from the host.
  • the method may further comprise that the establishing of the encrypted communication link is initiated by a message from the mobile telecommunication device.
  • the method may further comprise that the second data set corresponds to a PIN code.
  • the second data set corresponds to a PIN code.
  • the method may further comprise that the first data set corresponds to a credit card number.
  • the method may further comprise that the completion of the charge transaction comprises transferring funds from the credit card account to a business or an individual.
  • the method may further comprise that the business is a mobile network operator and that the host verifies with the mobile network operator that the mobile telecommunication device is a registered subscriber of services from the mobile network operator.
  • the present invention is realised by a system for securely executing a charge transaction by means of a mobile telecommunication device, said system comprising: the mobile telecommunication device being arranged to establish an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, the host being arranged to transmit data related to a charge transaction request to the mobile telecommunication device via the encrypted communication link, the mobile telecommunication device being arranged to transmit a second of at least two in combination unique data sets to the host via the encrypted communication link as authorization for the charge transaction to be executed, the host being arranged to transmit, to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and means for completing the charge transaction if the first and second data sets in combination authorize the charge transaction.
  • Fig. 1 diagrammatically illustrates a system in which the present invention may be used
  • Fig. 2 is a more detailed view of the system in Fig.
  • Fig. 3 is a schematic block diagram of a method according to a first aspect of the present invention.
  • Fig. 4 is a schematic block diagram of a method according to a second aspect of the present invention. Detailed description of preferred embodiments
  • Fig. 1 illustrates a system according to first aspect of the present invention.
  • a mobile telecommunication device 100 communicates with a host 101 by means of different networks 103 and 104. More specifically, data may be transferred from the host 101 via a first network 103 such as the Internet or a LAN, a mobile network 104 such as such as GSM, UMTS, D-AMPS or CDMA2000, a base station 105 thereof across a wireless communication link 106 to the mobile telecommunication device 100, and vice versa.
  • a first network 103 such as the Internet or a LAN
  • a mobile network 104 such as such as GSM, UMTS, D-AMPS or CDMA2000
  • base station 105 such as GSM, UMTS, D-AMPS or CDMA2000
  • the mobile telecommunication device 100 preferably comprises a display 100a for presenting visual data to a user of the mobile telecommunication device 100, a keyboard 100b for receiving typed input data from the user, a loudspeaker 100c for providing audio data to the user, and a microphone lOOd for receiving audio input from the user.
  • the system includes a mobile network operator 107 which is connected to the host 101 and the mobile network 104.
  • the main task of the mobile operator 107 is to provide services to the user of the mobile telecommunication device 100, e.g. voice communication, fax, messaging services, email and data calls.
  • the system may also include one or more financial institutions 108, such as a payment service provider 108, which are connected to the host 101.
  • the mobile network operator 107 may also be connected to the financial institution 108, e.g. via the mobile telecommunication network 104 and the first network 103 or via the first network 103 only (indicated by the dashed line in Fig 1) .
  • the mobile network operator 107 may be connected directly to the financial institution 108 by means of e.g. the Public Switched Telephone Network (not shown) .
  • the system may also include a client 109 which is connected to the host 101 via the first network 103.
  • the client 109 may be used for sending commands to the host 101.
  • An example of a command that may be transferred from the client 109 to the host 101 is a command to initiate establishing of a communication link between the host 101 and the mobile telecommunication device 100.
  • both the mobile network operator 207 and the financial institution 208 communicate with the host 201 by means of a respective virtual private network (VPN) 209, 210.
  • VPN virtual private network
  • the financial institution 208 may be a centralized payment service provider for electronic card transactions such as CEKAB (Centralen For Elektroniska Korttrans strokeer Aktiebolag) , BOX 5212, SE-121 18, Johanneshov, Sweden, which is a Swedish service provider for distributing transactions to a number of card or bank institutions, such as VISA 210, Master Card 211, Euro Card 212 or Diners Club 213.
  • additional financial institutions may also be in communication with the host.
  • the host 201 comprises means 201a, in the form of one or more network interfaces cards, for communication with other parts of the system.
  • the network interfaces 201a may be adapted for wireless communication or for communication by means of cables.
  • the host 210 moreover comprises a memory 201b for storing (possibly temporarily) e.g. credit card numbers, PIN codes and executable program code.
  • the memory 201b is in communication with the network interface 201a making it possible to transfer information to/from the memory from/to the other parts of the system.
  • the mobile telecommunication device 200 comprises a memory 200a for e.g. storing information received via the mobile network operator (via a base station) . Additionally, the memory 200a may be used for storing information received from e.g. a personal computer via e.g. a USB-port, a Bluetooth link or an infrared link. In particular, the memory 200a may be used for storing executable program code received from the host 201. The executable program code may then be executed by means of a processor 200b connected to the memory 200a.
  • Fig. 3 discloses a method for enabling secure transmittal of data from a mobile telecommunication device to a host.
  • the data transmitted from the mobile telecommunication device 100 to the host 101 may relate to user account data such as a user' s credit card number and a PIN code for authorizing the same .
  • the mobile telecommunication device 100 transmits a message from the mobile telecommunication device 100 to the host 101 requesting registration with the host 101.
  • the message may be transmitted by means of sms, rams, email, wap, or any other suitable data transfer technology.
  • the message is preferably transferred from the mobile telecommunication device 100 via the base station 105, the mobile network 104 and the first network 103 (e.g. the Internet) to the host 101.
  • the host 101 may be directly connected to the mobile network 104 by means of a radio transceiver (not shown) , wherein the first network 103 becomes superfluous.
  • a client 109 may transmitt the message to the host 101 via the first network 103.
  • a user of the system may hence request registration for the mobile telecommunication device 100 with the host 101 by using the client 103 only.
  • the host 101 In reply to the registration request transmitted from the mobile telecommunication device 100 in step 300, the host 101, in step 301, transmits executable program code to the mobile telecommunication device 101.
  • the transmitted program code is arranged to establish an encrypted communication link between the mobile telecommunication device 100 and the host 101.
  • the encrypted communication link is indicated by a dashed line 109 in Fig. 1.
  • the executable program code may be in the form of Java from Sun Microsystems, Inc. or any other format suitable for transmission via the mobile network 104.
  • a processing device 200b in the mobile telecommunication device 100 executes the received program code such that an encrypted communication link is established between the mobile telecommunication device 100 and the host 101.
  • the encrypted communication link may, as mentioned above, be established by means of a secure VPN which uses cryptographic tunneling protocols to prohibit unauthorized access to the data transmitted between the mobile telecommunication device 100 and the host 101.
  • tunneling protocols the routing nodes in any public network, such as the mobile network 104 and the first network 103 are unaware that the transmission is part of a private network.
  • the data transmitted through the "tunnel" is not available to anyone on the public network without authorization to access the VPN.
  • IPsec IP security
  • SSL/TLS Layer 2 Tunneling Protocol
  • PPTP Point-to- Point Tunneling Protocol
  • L2TP Layer 2 Tunneling Protocol
  • L2TPv3 Layer 2 Tunneling Protocol version 3
  • the mobile telecommunication device 100 transmits a first of at least two in combination unique data sets to the host 101 via the encrypted communication link.
  • the first data set corresponds to a credit card number which a user of the mobile telecommunication device 100 has entered into the mobile telecommunication device 100 by means of e.g. the keyboard 100b arranged on the device 100.
  • the first data set may alternatively correspond to a bank account number, a user account number or any other form of information which together with a second data set, such as a PIN code, uniquely identify and authorize a user of the system.
  • the user of the mobile telecommunication device 100 may enter the first data set as a result of an invitation from the received and executed program which is running on the mobile telecommunication device 100.
  • the invitation to enter the first data set may alternatively be provided by the host 101 and transmitted to the mobile telecommunication device 100 via the encrypted communication link 109.
  • the first data set may also be provided from the user to the mobile telecommunication device 100 by means of voice data via the microphone 10Od.
  • the user of the mobile telecommunication device 100 may initially be connected to the host, and from the host receive audio or visual instructions to pronounce the digits and/or characters of the credit card number, which are then subsequently transmitted to the host 101.
  • Software at the host may then interpret the received voice data and convert it to digital data corresponding to the credit card number.
  • the first data set may also comprise information identifying the source of the first data set.
  • This information may for example be in the form of a telephone number of the mobile telecommunication device, an International Mobile Equipment Identity (IMEI) number associated with the mobile telecommunication device 100 or an International Mobile Subscriber Identity (IMSI) number associated with the subscriber of services in the mobile telecommunication system.
  • IMEI International Mobile Equipment Identity
  • IMSI International Mobile Subscriber Identity
  • step 304 the host 101 determines if the received credit card number corresponds to a valid credit card number. The determination may be done by correlating the received number with an database internal to the host 101 or by accessing an external database provided by a financial institution such as CEKAB mentioned above. If the host 101 determines that the received credit card number corresponds to a valid credit card number, the host 101 stores the credit card number in a database and transmits an acknowledge signal to the mobile telecommunication device 101 indicating the positive outcome of the determination.
  • the first data set also comprises identification data identifying the source of the first data set as disclosed above, the host 101 may store the identification data together with the credit card number in the data base .
  • step 305 the mobile telecommunication device 100 deletes the credit card number received in the mobile telecommunication device 100 in response to receiving the acknowledge signal. The number is then present only at the host 101.
  • the above method may advantageously be used in combination with pre-paid telephone cards .
  • the host 101 in step 304a additionally verifies with the mobile network operator 107 that the user is a registered subscriber of services from the mobile network operator.
  • Fig. 4 discloses a method for securely- executing a charge transaction by means of a mobile telecommunication device.
  • a secure charge transaction from a user's credit card to a business in relation to a purchase from the business will be disclosed.
  • the transaction may as well be done to an account of an individual instead of to a business.
  • the same priciples applies when transferring money to an individual.
  • the business is registered as a user at the host 101, wherein the host 101 receives information relating to bank or credit accounts for the business and stores the information in a database connected to the host. Together with an authorization from the business, this information may then be used for transferring money to or from the business account.
  • step 400 an encrypted communication link 109 is established between the mobile telecommunication device 100 and the host 101 by utilizing executable program code in the mobile telecommunication device 100.
  • the communication link 109 may be established as described in relation to Fig 3 above and will not be disclosed in detail below.
  • the host transmits data related to a charge request to the mobile telecommunication device via the encrypted communication link.
  • the data related to the charge request may be in the form of a transaction number, or some other form of identifier, and the amount to transfer, e.g. "Transfer $25 to Business X, Ok?" or "Transaction #1234, $25, pay now?".
  • the charge transaction request may include additional information for internal use by the host 101 and the business and that all information related to the charge request need not be transmitted to and/or shown at the mobile telecommunication device 100. Such information may ⁇ be e.g. time limit during which the charge transaction request is valid, check sums for ensuring that the charge transaction request is transferred without problems, digital certificates for validating the business as receiver of the payment, etc.
  • the charge transaction request is preferably presented on the display 100a in the mobile telecommunication device 100.
  • a user of the mobile telecommunication device 100 may then authorize the transaction by entering e.g. a PIN code by typing the PIN code on the keyboard 100b or providing the PIN code in the form of audio data as spoken words via the microphone 10Od.
  • the charge request may be presented as spoken words to the user of the mobile telecommunication device 100 by means of the loudspeaker 100c, wherein the user may authorize the transaction by providing the PIN code by either using the keyboard 100b or the microphone 10Od.
  • the host transmits a second of at least two in combination unique data sets from the mobile telecommunication device 100 to the host 101 via the encrypted communication link as authorization for the charge transaction to be executed.
  • the second data set may be in the form of a PIN code which in combination with the previously transmitted credit card number authorizes the host 101 to transfer money from the credit card to the business.
  • the second data set may be provided to a user of the mobile telecommunication device 100 in the form of audio data via the loudspeaker 100c. The user may then enter the PIN code by pressing the correct keys on the keyboard 100b or providing the PIN code in the form of audio data as spoken words via the microphone 10Od.
  • step 403 the host 101 transmits data related to the charge request to a financial institution such as a payment service provider 108.
  • the charge request is transmitted to the payment service provider 108 together with the received second data set and a, in combination with the received second data set unique first data set stored at the host 101.
  • the charge request comprises inter alia information about the amount of money to transfer from the credit card. Together with the credit card number and the PIN code all information necessary for authorizing a transaction of money from the credit card to the business is provided to the payment service provider 108. It is emphasized in this context that the charge request may include the first and second data set or that the first and second data set may be transmitted to the payment service provider 108 as separate components of the message to the payment service provider 108.
  • the communication link between the host 101 and the payment service provider 208 may be in the form of a VPN, wherein the data transmitted between the two units are protected from unauthorized access.
  • the host 101 may store the PIN code in a memory thereof for subsequent use, or the host 101 may directly transfer the PIN code to the financial institution without storing the PIN code (besides temporary storage in transfer registers as realized by the skilled person) .
  • step 404 the charge transaction is completed if the first and second data sets in combination authorize the transaction.
  • the transaction may be done by transferring money to an account which the operator of the host 101 has registered with the payment service provider 108. The operator of the host may then subsequently transfer the money to the business. By this procedure the business need not to register an account with the payment service provider 108. Alternatively, the business is registered with the payment service 108, wherein the charge transaction request comprises information about the business' registered account so that the transaction may be completed without transferring the money to the host 101.
  • the transaction is not authorized, i.e. the PIN code, the account number or any other relevant information is erroneous, the transaction is not completed and the routine either ends or returns to step 401, wherein a new charge request is transmitted to the mobile telecommunication device 100.
  • the above method may advantageously be used in combination with pre-paid telephone cards .
  • the host 101 in step 400a additionally verifies with the mobile network operator 107 that the user of the mobile telecommunication device 100 is a registered subscriber of services from the mobile network operator. Money transferred from the credit card is then received at the mobile network operator.
  • the operator of the host 101 may in advance purchase licenses corresponding to units of phone time from the mobile network operator 107. The payment is then received at the host, wherein the host 101 informs the mobile network operator 107 to update the available phone time for the user of the mobile telecommunication device 100.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Finance (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Abstract

A method for securely executing a charge transaction is disclosed. The method comprises: establishing an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code in the mobile telecommunication device, transmitting data related to a charge transaction request from the host to the mobile telecommunication device via the encrypted communication link, transmitting a second of at least two in combination unique data sets from the mobile telecommunication device to the host via the encrypted communication link as authorization for the charge transaction to be executed, transmitting, from the host to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and completing the charge transaction if the first and second data sets in combination authorize the charge transaction.

Description

Method and system for securely executing a charge transaction
Technical field
The present invention generally relates to mobile telecommunication devices and more specifically to a method, apparatus and system for enabling secure transmission of confidential information from a mobile telecommunication device to a host, e.g. when transferring money from a user account to another party.
Background of the invention
The use of credit cards when purchasing goods has increased steadily during the last years . The benefits from using a credit card instead of bills and coins are many, among which the security for the parts involved in the transaction may be the most striking. However, the use of. credit cards for performing financial transactions is not completely problem-free. For example skimming, where the data in the credit card's magnetic strip is copied to a duplicate card without the card owner's knowledge is an increasing problem. Additionally, a person who wants to use a credit card must at the time of purchase present the actual card to the seller for use in a terminal mounted in e.g. the store where the purchase takes place. This implies that the credit card may be lost or stolen when carried along to the place of purchase.
Today the use of mobile telecommunication technologies in various forms is widespread and many people are in the possession of a mobile telecommunication device, such as a mobile telephone, a personal digital assistant (PDA) or a computer with networking capabilities . Even though the main idea of using mobile telecommunications systems initially was to arrange telephone calls, such systems today provide for many other applications, such as message transfer (e.g. email, short messaging service, SMS) or multimedia transfer (e.g. multimedia messaging service, MMS) or network access (e.g. internet browsing).
In relation to the increased use of mobile telecommunication devices, many different methods and systems for debiting users of the systems have been proposed. One such system is to use so called pre-paid telephone cards, wherein a user of the system may purchase a certificate equivalent to a certain amount of money which is registered to the pre-paid telephone card. The user may then use the money for placing telephone calls (i.e. normally pay for the amount of time the telephone calls are established) or accessing available networks (i.e. normally pay for the amount of data transferred) . One problem in relation to pre-paid telephone cards is that the user of the mobile telephone must be able to top-up the card in order to be able to place telephone calls .
Summary of the invention
According to a first aspect, the present invention is realized by a method for enabling secure transmittal of data from a mobile telecommunication device to a host. The method comprises: transmitting a message from the mobile telecommunication device to the host requesting registration with the host, transmitting executable program code from the host to the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, executing the received program code in the mobile telecommunication device such that an encrypted communication link is established between the mobile telecommunication device and the host, transmitting, from the mobile telecommunication device, a first of at least two in combination unique data sets to the host via the encrypted communication link, determining, at the host, if the first data set corresponds to a valid account number, and if the determination is positive, storing the account number and transmitting an acknowledge signal to the mobile telecommunication device, indicating the positive outcome of the determination, and deleting the first data set in the mobile telecommunication device in response to receiving the acknowledge signal. An advantage is that the mobile telecommunication device transmits only a first of at least two in combination unique data sets to the host via the encrypted communication link. In case the communication link, despite the encryption, is tapped by a fraudulent user, not all information needed for establishing a unique set will be available. Moreover it is beneficial to transmit the executable program code from the host to the mobile telecommunication device as it ensures that the program is not provided by a fraudulent person.
The method may comprise that the message is transmitted from the mobile telecommunication device. An advantage with this embodiment is that the initiation of the registration is always controlled by the user of the mobile telecommunication device.
The method may comprise that the message is transmitted from a client connected to the host. An advantage with this embodiment is that the initiation of the registration may be performed remotely by an authorized user.
The method may further comprise receiving, in the mobile telecommunication device, user input data comprising the first of at least two in combination unique data sets. An advantage with this embodiment is that the user of the mobile telecommunication device may, when requesting registration, always supervise which data that is provided to the host.
The method may further comprise that the first data set comprises a credit card number. An advantage with this embodiment is that the frame work for transferring money is established according to world wide standards making it easy to implement the invention almost anywhere in the world.
The method may further comprise that the first data set comprises information identifying the source of the first data set. An advantage with this embodiment is that it facilitates the identification of the device providing the first data set making it harder to utilize the invention for fraudelent purposes .
The method may further comprise that the host, when determining if the first data set corresponds to a valid account number, receives data from a third party, such as a financial institution. An advantage with this embodiment is that the security of the system is improved since the information needed for determining if the first data set is a valid account number is not provided by the host only.
The method may further comprise that the message transmitted from the mobile telecommunication device is transmitted by means of sms, mms or email. An advantage with this embodiment is that the frame work for transferring money is established according to world wide standards making it easy to implement the invention almost anywhere in the world.
The method may further comprise that the program code received in the mobile telecommunication device is a Java program. An advantage with this embodiment is that the program code is less platform dependent, wherein the invention may easily be implemented in mobile telecommunication devices using different operating systems .
According to a second aspect, the present invention is realised by a system for enabling secure transmittal of data from a mobile telecommunication device to a host, said system comprising: means for transmitting a message to the host requesting registration with the host, the host being arranged to transmit executable program code from the host to the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, the mobile telecommunication device being arranged to execute the received program code such that an encrypted communication link is established between the mobile telecommunication device and the host, the mobile telecommunication device being arranged to transmit a first of at least two in combination unique data sets to the host via the encrypted communication link, the host being arranged to determine if the first data set corresponds to a valid account number, and if the determination is positive, store the account number and transmit an acknowledge signal to the mobile telecommunication device, indicating the positive outcome of the determination, the mobile telecommunication device being arranged to delete the first data set in the mobile telecommunication device in response to receiving the acknowledge signal.
According to a third aspect, the invention is realized by a method for securely executing a charge transaction by means of a mobile telecommunication device, said method comprising: establishing an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code in the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, transmitting data related to a charge transaction request from the host to the mobile telecommunication device via the encrypted communication link, transmitting a second of at least two in combination unique data sets from the mobile telecommunication device to the host via the encrypted communication link as authorization for the charge transaction to be executed, transmitting, from the host to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and completing the charge transaction if the first and second data sets in combination authorize the charge transaction. An advantage is that the mobile telecommunication device transmits only a second of at least two in combination unique data sets to the host via the encrypted communication link. In case the communication link, despite the encryption, is tapped by a fraudulent user, not all information needed for establishing a unique set will be available.
The method may further comprise that the establishing of the encrypted communication link is initiated by a message from the host. An advantage with this embodiment is that the establishing of the encrypted link is always controlled by the host ensuring that no fraudelent person gains access to the information in the mobile telecommunication device.
The method may further comprise that the establishing of the encrypted communication link is initiated by a message from the mobile telecommunication device. An advantage with this embodiment is that the user of the mobile telecommunication device may always safeguard that no fraudelent person may initiate unauthorized access to the mobile telecommunication ' ι device .
The method may further comprise that the second data set corresponds to a PIN code. An advantage with this embodiment is that the second data set is in a form which is only known to the user of the mobile telecommunication device thereby increasing the security of the system.
The method may further comprise that the first data set corresponds to a credit card number. An advantage with this embodiment is that the frame work for transferring money is established according to world wide standards making it easy to implement the invention almost anywhere in the world.
The method may further comprise that the completion of the charge transaction comprises transferring funds from the credit card account to a business or an individual. An advantage with this embodiment is that the purchase of goods and services is fascilitated without the need for specific money-transfer equipment at the location where the purchase is performed
The method may further comprise that the business is a mobile network operator and that the host verifies with the mobile network operator that the mobile telecommunication device is a registered subscriber of services from the mobile network operator. An advantage with this embodiment is that only relevant attempts to e.g. refill a prepaid telephone card are executed.
According to a fourth aspect, the present invention is realised by a system for securely executing a charge transaction by means of a mobile telecommunication device, said system comprising: the mobile telecommunication device being arranged to establish an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, the host being arranged to transmit data related to a charge transaction request to the mobile telecommunication device via the encrypted communication link, the mobile telecommunication device being arranged to transmit a second of at least two in combination unique data sets to the host via the encrypted communication link as authorization for the charge transaction to be executed, the host being arranged to transmit, to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and means for completing the charge transaction if the first and second data sets in combination authorize the charge transaction.
Other objectives, features and advantages of the present invention will appear from the following detailed disclosure, from the attached claims as well as from the drawings .
Generally, all terms used in the claims are to be interpreted according to their ordinary meaning in the technical field, unless explicitly defined otherwise herein. All references to "a/an/the [element, device, component, means, step, etc]" are to be interpreted openly as referring to at least one instance of said element, device, component, means, step, etc., unless explicitly stated otherwise. The steps of any method disclosed herein do not have to be performed in the exact order disclosed, unless explicitly stated.
Brief description of the drawings
The above, as well as additional objects, features and advantages of the present invention, will be better understood through the following illustrative and non- limiting detailed description of preferred embodiments of the present invention, with reference to the appended drawings, where the same reference numerals will be used for similar elements, wherein:
Fig. 1 diagrammatically illustrates a system in which the present invention may be used;
Fig. 2 is a more detailed view of the system in Fig.
1;
Fig. 3 is a schematic block diagram of a method according to a first aspect of the present invention;
Fig. 4 is a schematic block diagram of a method according to a second aspect of the present invention; Detailed description of preferred embodiments
Fig. 1 illustrates a system according to first aspect of the present invention. In the system of FIG 1, a mobile telecommunication device 100 communicates with a host 101 by means of different networks 103 and 104. More specifically, data may be transferred from the host 101 via a first network 103 such as the Internet or a LAN, a mobile network 104 such as such as GSM, UMTS, D-AMPS or CDMA2000, a base station 105 thereof across a wireless communication link 106 to the mobile telecommunication device 100, and vice versa.
The mobile telecommunication device 100 preferably comprises a display 100a for presenting visual data to a user of the mobile telecommunication device 100, a keyboard 100b for receiving typed input data from the user, a loudspeaker 100c for providing audio data to the user, and a microphone lOOd for receiving audio input from the user.
Moreover, the system includes a mobile network operator 107 which is connected to the host 101 and the mobile network 104. The main task of the mobile operator 107 is to provide services to the user of the mobile telecommunication device 100, e.g. voice communication, fax, messaging services, email and data calls.
As will be discussed in more detail below, the system may also include one or more financial institutions 108, such as a payment service provider 108, which are connected to the host 101. The mobile network operator 107 may also be connected to the financial institution 108, e.g. via the mobile telecommunication network 104 and the first network 103 or via the first network 103 only (indicated by the dashed line in Fig 1) . Alternatively, the mobile network operator 107 may be connected directly to the financial institution 108 by means of e.g. the Public Switched Telephone Network (not shown) . The system may also include a client 109 which is connected to the host 101 via the first network 103. The client 109 may be used for sending commands to the host 101. An example of a command that may be transferred from the client 109 to the host 101 is a command to initiate establishing of a communication link between the host 101 and the mobile telecommunication device 100.
In a preferred embodiment, shown in Fig. 2, both the mobile network operator 207 and the financial institution 208 communicate with the host 201 by means of a respective virtual private network (VPN) 209, 210. For the sake of simplicity only one mobile network operator 207 is shown in Fig. 2. However, it is emphasized that one or more different operators may be' connected to the host 201. The financial institution 208 may be a centralized payment service provider for electronic card transactions such as CEKAB (Centralen For Elektroniska Korttransaktioner Aktiebolag) , BOX 5212, SE-121 18, Johanneshov, Sweden, which is a Swedish service provider for distributing transactions to a number of card or bank institutions, such as VISA 210, Master Card 211, Euro Card 212 or Diners Club 213. In the scope of the present invention, additional financial institutions (not shown) may also be in communication with the host. The host 201 comprises means 201a, in the form of one or more network interfaces cards, for communication with other parts of the system. The network interfaces 201a may be adapted for wireless communication or for communication by means of cables. The host 210 moreover comprises a memory 201b for storing (possibly temporarily) e.g. credit card numbers, PIN codes and executable program code. The memory 201b is in communication with the network interface 201a making it possible to transfer information to/from the memory from/to the other parts of the system.
The mobile telecommunication device 200 comprises a memory 200a for e.g. storing information received via the mobile network operator (via a base station) . Additionally, the memory 200a may be used for storing information received from e.g. a personal computer via e.g. a USB-port, a Bluetooth link or an infrared link. In particular, the memory 200a may be used for storing executable program code received from the host 201. The executable program code may then be executed by means of a processor 200b connected to the memory 200a.
With reference to Fig. 3 a method according to a first aspect of the present invention will be disclosed. More specifically, Fig. 3 discloses a method for enabling secure transmittal of data from a mobile telecommunication device to a host. The data transmitted from the mobile telecommunication device 100 to the host 101 may relate to user account data such as a user' s credit card number and a PIN code for authorizing the same .
In step 300 the mobile telecommunication device 100 transmits a message from the mobile telecommunication device 100 to the host 101 requesting registration with the host 101. The message may be transmitted by means of sms, rams, email, wap, or any other suitable data transfer technology. The message is preferably transferred from the mobile telecommunication device 100 via the base station 105, the mobile network 104 and the first network 103 (e.g. the Internet) to the host 101. Alternatively, the host 101 may be directly connected to the mobile network 104 by means of a radio transceiver (not shown) , wherein the first network 103 becomes superfluous. Alternatively, a client 109 may transmitt the message to the host 101 via the first network 103. A user of the system may hence request registration for the mobile telecommunication device 100 with the host 101 by using the client 103 only.
In reply to the registration request transmitted from the mobile telecommunication device 100 in step 300, the host 101, in step 301, transmits executable program code to the mobile telecommunication device 101. The transmitted program code is arranged to establish an encrypted communication link between the mobile telecommunication device 100 and the host 101. The encrypted communication link is indicated by a dashed line 109 in Fig. 1. The executable program code may be in the form of Java from Sun Microsystems, Inc. or any other format suitable for transmission via the mobile network 104.
In step 302 a processing device 200b in the mobile telecommunication device 100 executes the received program code such that an encrypted communication link is established between the mobile telecommunication device 100 and the host 101. The encrypted communication link may, as mentioned above, be established by means of a secure VPN which uses cryptographic tunneling protocols to prohibit unauthorized access to the data transmitted between the mobile telecommunication device 100 and the host 101. By the use of tunneling protocols, the routing nodes in any public network, such as the mobile network 104 and the first network 103 are unaware that the transmission is part of a private network. The data transmitted through the "tunnel" is not available to anyone on the public network without authorization to access the VPN. Secure VPN protocols available today- include: IPsec (IP security), SSL/TLS, PPTP (Point-to- Point Tunneling Protocol) , L2TP (Layer 2 Tunneling Protocol) , L2TPv3 (Layer 2 Tunneling Protocol version 3) and VPN-Q.
In step 303 the mobile telecommunication device 100 transmits a first of at least two in combination unique data sets to the host 101 via the encrypted communication link. In the embodiments disclosed herein, for reasons of simplicity, the first data set corresponds to a credit card number which a user of the mobile telecommunication device 100 has entered into the mobile telecommunication device 100 by means of e.g. the keyboard 100b arranged on the device 100. However, a skilled person realizes that the first data set may alternatively correspond to a bank account number, a user account number or any other form of information which together with a second data set, such as a PIN code, uniquely identify and authorize a user of the system. The user of the mobile telecommunication device 100 may enter the first data set as a result of an invitation from the received and executed program which is running on the mobile telecommunication device 100. The invitation to enter the first data set may alternatively be provided by the host 101 and transmitted to the mobile telecommunication device 100 via the encrypted communication link 109.
The first data set may also be provided from the user to the mobile telecommunication device 100 by means of voice data via the microphone 10Od. In this case the user of the mobile telecommunication device 100 may initially be connected to the host, and from the host receive audio or visual instructions to pronounce the digits and/or characters of the credit card number, which are then subsequently transmitted to the host 101. Software at the host may then interpret the received voice data and convert it to digital data corresponding to the credit card number.
In addition to the account number, the first data set may also comprise information identifying the source of the first data set. This information may for example be in the form of a telephone number of the mobile telecommunication device, an International Mobile Equipment Identity (IMEI) number associated with the mobile telecommunication device 100 or an International Mobile Subscriber Identity (IMSI) number associated with the subscriber of services in the mobile telecommunication system.
In step 304 the host 101 determines if the received credit card number corresponds to a valid credit card number. The determination may be done by correlating the received number with an database internal to the host 101 or by accessing an external database provided by a financial institution such as CEKAB mentioned above. If the host 101 determines that the received credit card number corresponds to a valid credit card number, the host 101 stores the credit card number in a database and transmits an acknowledge signal to the mobile telecommunication device 101 indicating the positive outcome of the determination. In case the first data set also comprises identification data identifying the source of the first data set as disclosed above, the host 101 may store the identification data together with the credit card number in the data base .
In step 305 the mobile telecommunication device 100 deletes the credit card number received in the mobile telecommunication device 100 in response to receiving the acknowledge signal. The number is then present only at the host 101.
The above method may advantageously be used in combination with pre-paid telephone cards . In this case the host 101 in step 304a additionally verifies with the mobile network operator 107 that the user is a registered subscriber of services from the mobile network operator.
With reference to Fig. 4 a method according to a second aspect of the present invention will be disclosed. More specifically, Fig. 4 discloses a method for securely- executing a charge transaction by means of a mobile telecommunication device. In the example below, a secure charge transaction from a user's credit card to a business in relation to a purchase from the business will be disclosed. However, it is understood ,that the transaction may as well be done to an account of an individual instead of to a business. For reasons of simplicity, only the transaction to a business will be disclosed, but the same priciples applies when transferring money to an individual. In one embodiment, the business is registered as a user at the host 101, wherein the host 101 receives information relating to bank or credit accounts for the business and stores the information in a database connected to the host. Together with an authorization from the business, this information may then be used for transferring money to or from the business account.
In step 400 an encrypted communication link 109 is established between the mobile telecommunication device 100 and the host 101 by utilizing executable program code in the mobile telecommunication device 100. The communication link 109 may be established as described in relation to Fig 3 above and will not be disclosed in detail below.
In step 401 the host transmits data related to a charge request to the mobile telecommunication device via the encrypted communication link. The data related to the charge request may be in the form of a transaction number, or some other form of identifier, and the amount to transfer, e.g. "Transfer $25 to Business X, Ok?" or "Transaction #1234, $25, pay now?". It is understood the charge transaction request may include additional information for internal use by the host 101 and the business and that all information related to the charge request need not be transmitted to and/or shown at the mobile telecommunication device 100. Such information may¬ be e.g. time limit during which the charge transaction request is valid, check sums for ensuring that the charge transaction request is transferred without problems, digital certificates for validating the business as receiver of the payment, etc. The charge transaction request is preferably presented on the display 100a in the mobile telecommunication device 100. A user of the mobile telecommunication device 100 may then authorize the transaction by entering e.g. a PIN code by typing the PIN code on the keyboard 100b or providing the PIN code in the form of audio data as spoken words via the microphone 10Od. Alternatively, the charge request may be presented as spoken words to the user of the mobile telecommunication device 100 by means of the loudspeaker 100c, wherein the user may authorize the transaction by providing the PIN code by either using the keyboard 100b or the microphone 10Od.
In step 402 the host transmits a second of at least two in combination unique data sets from the mobile telecommunication device 100 to the host 101 via the encrypted communication link as authorization for the charge transaction to be executed. The second data set may be in the form of a PIN code which in combination with the previously transmitted credit card number authorizes the host 101 to transfer money from the credit card to the business. Alternatively, in similarity with the disclosure above, the second data set may be provided to a user of the mobile telecommunication device 100 in the form of audio data via the loudspeaker 100c. The user may then enter the PIN code by pressing the correct keys on the keyboard 100b or providing the PIN code in the form of audio data as spoken words via the microphone 10Od.
In step 403 the host 101 transmits data related to the charge request to a financial institution such as a payment service provider 108. The charge request is transmitted to the payment service provider 108 together with the received second data set and a, in combination with the received second data set unique first data set stored at the host 101. The charge request comprises inter alia information about the amount of money to transfer from the credit card. Together with the credit card number and the PIN code all information necessary for authorizing a transaction of money from the credit card to the business is provided to the payment service provider 108. It is emphasized in this context that the charge request may include the first and second data set or that the first and second data set may be transmitted to the payment service provider 108 as separate components of the message to the payment service provider 108.
As mentioned above in relation to Fig 2, the communication link between the host 101 and the payment service provider 208 may be in the form of a VPN, wherein the data transmitted between the two units are protected from unauthorized access. Additionally, the host 101 may store the PIN code in a memory thereof for subsequent use, or the host 101 may directly transfer the PIN code to the financial institution without storing the PIN code (besides temporary storage in transfer registers as realized by the skilled person) .
In step 404 the charge transaction is completed if the first and second data sets in combination authorize the transaction. The transaction may be done by transferring money to an account which the operator of the host 101 has registered with the payment service provider 108. The operator of the host may then subsequently transfer the money to the business. By this procedure the business need not to register an account with the payment service provider 108. Alternatively, the business is registered with the payment service 108, wherein the charge transaction request comprises information about the business' registered account so that the transaction may be completed without transferring the money to the host 101.
In case the transaction is not authorized, i.e. the PIN code, the account number or any other relevant information is erroneous, the transaction is not completed and the routine either ends or returns to step 401, wherein a new charge request is transmitted to the mobile telecommunication device 100.
The above method may advantageously be used in combination with pre-paid telephone cards . In this case the host 101 in step 400a additionally verifies with the mobile network operator 107 that the user of the mobile telecommunication device 100 is a registered subscriber of services from the mobile network operator. Money transferred from the credit card is then received at the mobile network operator. Alternatively, the operator of the host 101 may in advance purchase licenses corresponding to units of phone time from the mobile network operator 107. The payment is then received at the host, wherein the host 101 informs the mobile network operator 107 to update the available phone time for the user of the mobile telecommunication device 100.
The invention has mainly been described above with reference to a few embodiments. However, as is readily appreciated by a person skilled in the art, other embodiments than the ones disclosed above are equally possible within the scope of the invention, as defined by the appended patent claims .

Claims

1. A method for enabling secure transmittal of data from a mobile telecommunication device to a host, said method comprising: transmitting a message to the host requesting registration with the host, transmitting executable program code from the host to the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, executing the received program code in the mobile telecommunication device such that an encrypted communication link is established between the mobile telecommunication device and the host, transmitting, from the mobile telecommunication device, a first of at least two in combination unique data sets to the host via the encrypted communication link, determining, at the host, if the first data set corresponds to a valid account number, and if the determination is positive, storing the account number and transmitting an acknowledge signal to the mobile telecommunication device, indicating the positive outcome of the determination, and deleting the first data set in the mobile telecommunication device in response to receiving the acknowledge signal.
2. The method according to claim 1, wherein the message is transmitted from the mobile telecommunication device .
3. The method according to claim 1, wherein the message is transmitted from a client connected to the host .
4. The method according to claim 1, comprising receiving, in the mobile telecommunication device, user input data comprising the first of at least two in combination unique data sets .
5. The method according to claim 1, wherein the first data set comprises a credit card number.
6. The method according to claim 1, wherein the first data set comprises information identifying the source of the first data set.
7. The method according to claim 1, wherein the host, when determining if the first data set corresponds to a valid account number, receives data from a third party, such as a financial institution.
8. The method according to claim 1, wherein the message transmitted from the mobile telecommunication device is transmitted by means of sms, rams or email.
9. The method according to claim 1, wherein the program code received in the mobile telecommunication device is a Java program.
10. A method for securely executing a charge transaction by means of a mobile telecommunication device, said method comprising: establishing an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code in the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, transmitting data related to a charge transaction request from the host to the mobile telecommunication device via the encrypted communication link, transmitting a second of at least two in combination unique data sets from the mobile telecommunication device to the host via the encrypted communication link as authorization for the charge transaction to be executed, transmitting, from the host to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and completing the charge transaction if the first and second data sets in combination authorize the charge transaction .
11. The method according to claim 10, wherein the establishing of the encrypted communication link is initiated by a message from the host.
12. The method according to claim 10, wherein the establishing of the encrypted communication link is initiated by a message from the mobile telecommunication device .
13. The method according to claim 10, wherein the second data set corresponds to a PIN code.
14. The method according to claim 10, wherein the first data set corresponds to a credit card number.
15. The method according to claim 10, wherein the completion of the charge transaction comprises transferring funds from the credit card account to a business or an individual.
16. The method according to claim 15, wherein the business is a mobile network operator and that the host verifies with the mobile network operator that the mobile telecommunication device is a registered subscriber of services from the mobile network operator.
17. A system for enabling secure transmittal of data from a mobile telecommunication device to a host, said system comprising: means for transmitting a message to the host requesting registration with the host, the host being arranged to transmit executable program code from the host to the mobile telecommunication device, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, the mobile telecommunication device being arranged to execute the received program code such that an encrypted communication link is established between the mobile telecommunication device and the host, the mobile telecommunication device being arranged to transmit a first of at least two in combination unique data sets to the host via the encrypted communication link, the host being arranged to determine if the first data set corresponds to a valid account number, and if the determination is positive, store the account number and transmit an acknowledge signal to the mobile telecommunication device, indicating the positive outcome of the determination, and the mobile telecommunication device being arranged to delete the first data set in the mobile telecommunication device in response to receiving the acknowledge signal.
18. The system according to claim 17, wherein the mobile telecommunication device is arranged to transmit the message.
19. The system according to claim 17, wherein the a client connected to the host is arranged to transmit the message .
20. The system according to claim 17, wherein the mobile telecommunication device is arranged to receive user input data comprising the first of at least two in combination unique data sets .
21. The system according to claim 17, wherein the first data set comprises a credit card number.
22. The system according to claim 17, wherein the first data set comprises information identifying the source of the first data set.
23. The system according to claim 17, wherein the host is arranged to, when determining if the first data set corresponds to a valid account number, receive data from a third party, such as a financial institution.
24. A system for securely executing a charge transaction by means of a mobile telecommunication device, said system comprising: the mobile telecommunication device being arranged to establish an encrypted communication link between the mobile telecommunication device and a host by utilizing executable program code, said program code being arranged to establish an encrypted communication link between the mobile telecommunication device and the host when executed in the mobile telecommunication device, the host being arranged to transmit data related to a charge transaction request to the mobile telecommunication device via the encrypted communication link, the mobile telecommunication device being arranged to transmit a second of at least two in combination unique data sets to the host via the encrypted communication link as authorization for the charge transaction to be executed, the host being arranged to transmit, to a payment service provider, data related to the charge transaction request, the received second data set and a, in combination with the received second data set unique first data set stored at the host, and means for completing the charge transaction if the first and second data sets in combination authorize the charge transaction.
25. The system according to claim 24, wherein the host is arranged to initiate the establishing of the encrypted communication link.
26. The system according to claim 24, wherein the mobile telecommunication device is arranged to initiate the establishing of the encrypted communication link.
27. The system according to claim 24, wherein the second data set corresponds to a PIN code.
28. The system according to claim 24, wherein the first data set corresponds to a credit card number.
29. The system according to claim 24, wherein the means for completing the charge transaction is arranged to transfer funds from the credit card account to a business or an individual.
30. The method according to claim 29, wherein the business is a mobile network operator and that the host verifies with the mobile network operator that the mobile telecommunication device is a registered subscriber of services from the mobile network operator.
PCT/SE2008/000030 2007-01-26 2008-01-16 Method and system for securely executing a charge transaction WO2008091191A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US12/523,575 US20100049655A1 (en) 2007-01-26 2008-01-16 Method and system for securely executing a charge transaction
EP20080705203 EP2115675A4 (en) 2007-01-26 2008-01-16 Method and system for securely executing a charge transaction

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US89765207P 2007-01-26 2007-01-26
SE0700224-9 2007-01-26
US60/897,652 2007-01-26
SE0700224A SE531960C2 (en) 2007-01-26 2007-01-26 Method of securely executing a payment transaction

Publications (1)

Publication Number Publication Date
WO2008091191A1 true WO2008091191A1 (en) 2008-07-31

Family

ID=39644701

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/SE2008/000030 WO2008091191A1 (en) 2007-01-26 2008-01-16 Method and system for securely executing a charge transaction

Country Status (6)

Country Link
US (1) US20100049655A1 (en)
EP (1) EP2115675A4 (en)
CN (1) CN101232710A (en)
SE (1) SE531960C2 (en)
TW (1) TW200838258A (en)
WO (1) WO2008091191A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
AU2009100984B4 (en) * 2008-09-29 2009-12-03 Mchek India Payment System Pvt. Ltd. A Method and System of Financial Instrument Authentication in a Communication Network
CN102769851A (en) * 2011-05-06 2012-11-07 中国移动通信集团广东有限公司 Method and system for monitoring service provider services
US10380583B1 (en) * 2012-12-17 2019-08-13 Wells Fargo Bank, N.A. System and method for interoperable mobile wallet

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8543496B2 (en) * 2007-04-27 2013-09-24 American Express Travel Related Services Company, Inc. User experience on mobile phone
US8688570B2 (en) 2007-04-27 2014-04-01 American Express Travel Related Services Company, Inc. System and method for performing person-to-person funds transfers via wireless communications
EP2040413B1 (en) * 2007-09-21 2013-06-19 Nokia Siemens Networks Oy Subscription and advice of charge control
US11694178B2 (en) 2021-02-23 2023-07-04 Block, Inc. Embedded card reader security
US11640595B2 (en) * 2021-02-23 2023-05-02 Block, Inc. Embedded card reader security
US11582208B1 (en) * 2021-10-11 2023-02-14 Cisco Technology, Inc. Detecting domain fronting through correlated connections

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2000031699A1 (en) * 1998-11-22 2000-06-02 Easy Charge Cellular (Pty) Limited Method of, and apparatus for, conducting electronic transactions
US6415156B1 (en) * 1998-09-10 2002-07-02 Swisscom Ag Transaction method
US20030171993A1 (en) * 2000-08-01 2003-09-11 Pierre Chappuis Electronic payment transaction via sms
US6671810B1 (en) * 1997-09-18 2003-12-30 Intel Corporation Method and system for establishing secure communication over computer networks
US20040172362A1 (en) * 2001-04-12 2004-09-02 Rudiger Hausmann Optimised recharging of prepaid accounts
GB2404126A (en) * 2002-01-17 2005-01-19 Toshiba Res Europ Ltd Secure communications using a secret key valid for a certain period and verified using a time stamp
WO2006101760A2 (en) * 2005-03-23 2006-09-28 E2Interactive, Inc. D/B/A E2Interactive, Inc. Delivery of value identifiers using short message service (sms)
US20070011099A1 (en) * 2005-07-11 2007-01-11 Conrad Sheehan SECURE ELECTRONIC TRANSACTIONS BETWEEN A MOBILE DEVICE AND OTHER MOBILE, FIXED, or VIRTUAL DEVICES

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6512754B2 (en) * 1997-10-14 2003-01-28 Lucent Technologies Inc. Point-to-point protocol encapsulation in ethernet frame
US6636833B1 (en) * 1998-03-25 2003-10-21 Obis Patents Ltd. Credit card system and method
US6496491B2 (en) * 1998-05-08 2002-12-17 Lucent Technologies Inc. Mobile point-to-point protocol
CA2349251A1 (en) * 1998-11-06 2000-05-18 Telefonaktiebolaget Lm Ericsson Layer 2 tunneling for data communications in wireless networks
WO2001006734A2 (en) * 1999-07-16 2001-01-25 3Com Corporation Mobile internet protocol (ip) networking with home agent and/or foreign agent functions distributed among multiple devices
US20010047335A1 (en) * 2000-04-28 2001-11-29 Martin Arndt Secure payment method and apparatus
US20050080875A1 (en) * 2003-08-20 2005-04-14 Jethi Rashesh J. Architecture that enables a Mobile Virtual Network Operator (MVNO) to create a branded wireless offering

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6671810B1 (en) * 1997-09-18 2003-12-30 Intel Corporation Method and system for establishing secure communication over computer networks
US6415156B1 (en) * 1998-09-10 2002-07-02 Swisscom Ag Transaction method
WO2000031699A1 (en) * 1998-11-22 2000-06-02 Easy Charge Cellular (Pty) Limited Method of, and apparatus for, conducting electronic transactions
US20030171993A1 (en) * 2000-08-01 2003-09-11 Pierre Chappuis Electronic payment transaction via sms
US20040172362A1 (en) * 2001-04-12 2004-09-02 Rudiger Hausmann Optimised recharging of prepaid accounts
GB2404126A (en) * 2002-01-17 2005-01-19 Toshiba Res Europ Ltd Secure communications using a secret key valid for a certain period and verified using a time stamp
WO2006101760A2 (en) * 2005-03-23 2006-09-28 E2Interactive, Inc. D/B/A E2Interactive, Inc. Delivery of value identifiers using short message service (sms)
US20070011099A1 (en) * 2005-07-11 2007-01-11 Conrad Sheehan SECURE ELECTRONIC TRANSACTIONS BETWEEN A MOBILE DEVICE AND OTHER MOBILE, FIXED, or VIRTUAL DEVICES

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP2115675A4 *

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
AU2009100984B4 (en) * 2008-09-29 2009-12-03 Mchek India Payment System Pvt. Ltd. A Method and System of Financial Instrument Authentication in a Communication Network
CN102769851A (en) * 2011-05-06 2012-11-07 中国移动通信集团广东有限公司 Method and system for monitoring service provider services
CN102769851B (en) * 2011-05-06 2015-07-01 中国移动通信集团广东有限公司 Method and system for monitoring service provider services
US10380583B1 (en) * 2012-12-17 2019-08-13 Wells Fargo Bank, N.A. System and method for interoperable mobile wallet
US11694192B1 (en) 2012-12-17 2023-07-04 Wells Fargo Bank, N.A. System and method for interoperable mobile wallet

Also Published As

Publication number Publication date
SE0700224L (en) 2008-07-27
TW200838258A (en) 2008-09-16
US20100049655A1 (en) 2010-02-25
EP2115675A1 (en) 2009-11-11
CN101232710A (en) 2008-07-30
SE531960C2 (en) 2009-09-15
EP2115675A4 (en) 2015-03-18

Similar Documents

Publication Publication Date Title
US7069001B2 (en) Method for supporting cashless payment
US8924290B2 (en) Method and apparatus enabling improved protection of consumer information in electronic transactions
US7275685B2 (en) Method for electronic payment
US7490062B2 (en) Method of payment by means of an electronic communication device
US7379920B2 (en) System and method for facilitating electronic financial transactions using a mobile telecommunication device
US7565321B2 (en) Telepayment method and system
US20030055738A1 (en) Method and system for effecting an electronic transaction
US20100049655A1 (en) Method and system for securely executing a charge transaction
US20090248582A1 (en) System to enable a telecom operator provide financial transactions services and methods for implementing such transactions
US20040267618A1 (en) Method and system for secured transactions over a wireless network
WO2004049621A1 (en) Authentication and identification system and transactions using such an authentication and identification system
KR100325416B1 (en) Method of real time sattlement with Phone & Phone, and make use of short message service for second confirmation
US8380574B2 (en) Method and system for validating a transaction, corresponding transactional terminal and program
WO2006004441A2 (en) Electronic banking
RU2371877C2 (en) System allowing operator to render services of financial transactions, and methods of implementing such transactions
KR20020010160A (en) System & Method for Wireless Electronic Commerce Payment service
KR100413596B1 (en) Payment method using some of credit information
NO336856B1 (en) Data transfer method and system
WO2005066907A1 (en) Transaction processing system and method
KR20010091827A (en) A remittance system via telecommunication terminal number and remittance method using the same
KR20030055056A (en) System and Method for Automatic settlement service in the various services using Bluetooth
UA23036U (en) Method for implementation of payment operations by users of mobile electronic communication devices
WO2006044213A2 (en) A method for electronic payment
NZ544070A (en) Electronic transaction authorisation with authentic terminal verification

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08705203

Country of ref document: EP

Kind code of ref document: A1

DPE1 Request for preliminary examination filed after expiration of 19th month from priority date (pct application filed from 20040101)
WWE Wipo information: entry into national phase

Ref document number: 12523575

Country of ref document: US

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2008705203

Country of ref document: EP