ZA200307147B - Generation of vending tokens. - Google Patents
Generation of vending tokens. Download PDFInfo
- Publication number
- ZA200307147B ZA200307147B ZA200307147A ZA200307147A ZA200307147B ZA 200307147 B ZA200307147 B ZA 200307147B ZA 200307147 A ZA200307147 A ZA 200307147A ZA 200307147 A ZA200307147 A ZA 200307147A ZA 200307147 B ZA200307147 B ZA 200307147B
- Authority
- ZA
- South Africa
- Prior art keywords
- vending
- token
- generating
- operable
- key
- Prior art date
Links
- 238000000034 method Methods 0.000 claims description 43
- 238000012545 processing Methods 0.000 claims description 32
- 238000013500 data storage Methods 0.000 claims description 10
- 230000004044 response Effects 0.000 claims description 5
- 230000006870 function Effects 0.000 description 28
- 238000005516 engineering process Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 230000001010 compromised effect Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 229910000078 germane Inorganic materials 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000007639 printing Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
- 238000010200 validation analysis Methods 0.000 description 1
Description
GENERATION OF VENDING TOKENS
This invention relates to a system for generating vending tokens and, more particularly, to a system for generating vending tokens of a type which is used in a prepayment meter to effect the purchase of utilities by means of prepayment.
The invention extends to a method for generating such vending tokens.
The use of vending tokens for the purchase of utilities by means of prepayment is well known. Such a vending token is usually generated as a function of certain input parameters, namely, a desired quantity or value of a utility to be purchased, a time and date, and additional parameters that are not germane to the invention and will not be discussed further in this specification. Once generated, the token is entered into a prepayment meter, usually by means of a keypad, where it is decoded to recover therefrom the amount of the utility that has been prepurchased.
Prime concerns relating to these vending tokens are fraud and security. Mere possession of a valid vending token enables a consumer to consume a predetermined quantity of a utility that has been encoded during generation of that vending token. In an effort to alleviate these concems, the vending token is usually generated in an encrypted format. The encryption may be performed according to a format called Standard Transfer Specification (STS), which is well known in the art. This specification provides for encryption of the above input
CONFIRMATION COPY parameters on the basis of a key derived from a secure master key. The master “ key is contained in a “security module” which is located at a vending point. The security module is used to select a stored vending key (“Kv”). The selected vending key Kv is then used to generate a dispenser key ("Kd"), as a function of the abovementioned input parameters, and the dispenser key Kd is, in tum, used to generate the encrypted token.
This methodology has many disadvantages, including the following: The security module must reside at a secure location as it contains master encryption keys, which are used to generate the vending keys Kv. Further, any one of the vending keys Kv can generate dispenser keys Kd for a plurality of utility meters, giving rise to a one-to-many relationship. Any breach of security of a vending key Kv is potentially harmful to a utility provider as it could be used to fraudulently generate any number of dispenser keys Kd, thereby enabling tokens to be generated with any desired amount of credit encoded thereon. Thus, the security module must be tamperproof, which renders it bulky and expensive. In addition, traditional systems are open to cryptographic attack, and do not lend themselves to the use of technology more resistant to such attack, such as the use of smart cards.
It is an object of this invention to provide a system and a method for generating vending tokens for use with utility prepayment meters that will, at least partially, alleviate the abovementioned difficulties and disadvantages.
According to a first aspect of the invention there is provided a system for generating a vending token for use with a utility prepayment meter operable to dispense a utility to a consumer, the system including at least one portable storage means having a dispenser key stored therein, } the dispenser key being uniquely related to a predetermined prepayment meter, and data processing means locatable at a vending location and operable to receive input data, the data processing means and the portable storage means being co-operable to generate a vending token as a function of at least the said input data and the dispenser key stored on the storage means.
The input data may comprise data representative of a desired quantity of the utility to be purchased by the consumer. Instead, the input data may comprise data representative of a desired value of the utility to be purchased by the consumer.
The portable storage means may have a meter identification code stored therein, the meter identification code also being uniquely related to the predetermined prepayment meter, and the data processing means and the portable storage means may be co-operable to generate the vending token as a function also of the meter identification code stored on the storage means.
The data processing means may include a real time clock and the data processing means and the portable storage means may be co-operable to generate the vending token as a function also of a time and date. The time and date may be the time and date of generating of the vending token. The data processing means and the portable storage means may be co-operable to generate the vending token as a function also of a randomly generated number.
The vending token-generating function may be stored in the portable storage means.
The data processing means and the portable storage means may be co-operabie to generate the vending token in an encrypted format.
The portable storage means may comprise a card having a data storage device kK arranged thereon. Preferably, the card is a smart card having a digital data storage device arranged thereon. Then, the vending token may be saved in the digital data storage device of the smart card.
The system may include dispenser key generating means remote from the vending location, the dispenser key generating means being operable to generate and to provide the dispenser key to the portable storage means. The dispenser key generating means may be operable to generate the dispenser key as a function of at least a vending key. Further, the dispenser key generating means may be operable to generate the dispenser key as a function also of a utility consumption tariff. Still further, the dispenser key generating means may be operable to generate and to transmit the dispenser key to the data processing means in response to a request from the data processing means.
The system may include a vending key generating means operable to generate a plurality of different vending keys. Then, the dispenser key generating means may be operable to generate the dispenser key as a function of a selected one of the generated vending keys. Preferably, the vending key generating means is remote from the data processing means.
According to a second aspect of the invention there is provided a method for generating a vending token for use with a utility prepayment meter operable to dispense a utility to a consumer, the method including providing a portable storage means having a dispenser key stored therein, the dispenser key being uniquely related to a predetermined prepayment meter, receiving input data relating to the utility required to be purchased by the customer; and generating a vending token as a function of at least the input data and the dispenser key stored on the portable storage means.
The input data may comprise data representative of a desired quantity of the utility to be purchased. Then, the method may include generating the vending token as a function of the desired quantity of the utility to be purchased. Instead, 5 in a preferred embodiment of the invention, the input data comprises data representative of a desired value of the utility to be purchased, and the method includes generating the vending token as a function of the desired value of the utility to be purchased.
The generating of the vending token may be by means of a data processing means locatable at a vending location in co-operation with the portable storage means.
The portable storage means may have a meter identification code stored therein, the meter identification code also being uniquely related to the predetermined prepayment meter, and the method may include generating the token as a function also of the meter identification code stored on the portable storage means. The method may include generating the token as a function also of a time and date. The time and date may be the time and date of generating of the token. Thus, the data processing means may include a real time clock and may be co-operable with the portable storage means to generate the token as a function also of a time and date. Further, the method may include generating the token as a function also of a randomly generated number. Then, the random number may be generated by the portable storage means.
The vending token-generating function may be stored in the portable storage means.
The method may include applying an encryption algorithm in combination with, or applied to, at least some of the data in respect of which the vending token is a function to provide an encrypted vending token.
The portable storage means may comprise a card having a storage device arranged thereon. The card may be a smart card having a digital data storage device arranged thereon. Then, the method may include saving the vending token to the digital data storage device of the smart card.
The method may include generating the dispenser key by means of a dispenser key generating means remote from the vending location, and providing the dispenser key to the portable storage means. The dispenser key generating means may be operable to generate the dispenser key as a function of at least a vending key. The dispenser key generating means may be operable to generate the dispenser key as a function also of a utility consumption tariff.
The method may further include generating and transmitting the dispenser key to the data processing means in response to a request from the data processing means.
The method may include generating a plurality of vending keys by means of a vending key generating means. Then, the dispenser key generating means may be operable to generate the dispenser key as a function of a selected one of the generated vending keys. Preferably, the vending key generating means is remote from the data processing means.
One embodiment of the invention is described below, by way of example only, and with reference to the accompanying drawings, in which:
Figure 1 is a schematic representation of a system for generating a vending token for use with a utility prepayment meter, according to the invention; and
Figure 2 is a flow chart illustrating the various steps in generating the vending token by the system of Figure 1
Referring to Figure 1, a system for generating a vending token (not shown) for use with a utility prepayment meter (4) is indicated generally by reference numeral (1).
The system (1) includes a data processing means (2), in the form of a vending terminal, located at a vending location at which a consumer of a utility may purchase a desired quantity of the utility by means of prepayment. The vending terminal (2) is operable to generate a vending token in printed format, by means of a printer (10) on a paper slip (3). The vending token may be entered by the consumer into the prepayment meter (4) by means of a keypad (5) on the meter (4), to enable a supply of the desired quantity of the utility. The vending terminal (2) is co-operable with a removable storage means (6), in the form of a smart card. It will be appreciated that the vending token is a code, which is reduced to material form by printing or storing as electronic data, or the like.
The system (1) further includes dispenser key generating means (7), in the form of a computer processor, and vending key generating means (8), also in the form of a computer processor, the operation of which will be described in greater detail below. The dispenser key generating means (7) and vending key generating means (8) are located at a secure location remote from the vending site.
In use, a first-time purchaser, or consumer, of a utility is provided with a smart card (6). The vending terminal (2) stores in the smart card a meter identification code and a dispenser key Kd. The dispenser key Kd is a cryptographic key and is thus a parameter used in conjunction with an algorithm for the validation, authentication, enciphering or deciphering of data. The meter identification code is unique to the user's prepayment meter (4), and the dispenser key Kd is generated by the dispenser key generating means (7) and is similarly unique to the users prepayment meter (4). An encryption algorithm for generating a vending token for use with the prepayment meter (4) is executable by the vending terminal (2) when the smart card (6) is inserted therein. The encryption algorithm is executable by the vending terminal (2) to generate an encrypted vending token as a function of a desired quantity (or its equivalent in value) of the utility purchased by the consumer, the stored dispenser key Kd, the stored meter identification code, a time and date, and a randomly generated number. In another embodiment of the system (1), the meter identification code and dispenser key Kd are generated by the dispenser key generating means (7), and the smart card (6) is provided to the user with these codes already stored on the card (6). ltis to be clearly understood that for subsequent purchases of the utility, the user is required to present the smart card (6) and that the same stored meter identification code and the same stored dispenser key Kd, or a predetermined derivative thereof, will be used to generate subsequent encrypted vending tokens in the manner described above.
The use of the dispenser key Kd and meter identification code as input parameters to the encryption algorithm ensures that a vending token generated in this manner is co-operable only with the consumer's own prepayment meter (4). In an alternative embodiment of the system (1), only the dispenser key Kd is stored on the smart card (6).
The dispenser key generating means (7) communicates with the vending terminal (2) by means of a communication channel (9) in the form of a dial-up telecommunication link. The dispenser key generating means (7) is operable in response to a request signal from the vending terminal (2) to generate the dispenser key Kd and to transmit the generated dispenser key to the vending terminal (2) along the communication channel (9) for storage in the smart card (6). The dispenser key generating means (7) generates the unique dispenser key
Kd as a function of a vending key Kv and a utility consumption tariff.
The vending key Kv provided to the dispenser key generating means (7) is one of a number of different vending keys generated by the vending key generating means (8). These vending keys Kv are also cryptographic keys. A selected one of these different vending keys is utilized by the dispenser key generating means (7) to generate the dispenser key Kd.
It will be appreciated by those skilled in the art that the system (1) eliminates the requirement to implement the vending key generating means (8) and the dispenser key generating means (7) at the vending location, with the attendant security problems outlined above. The system (1) enables the implementation of a distributed vending infrastructure with only one centralized vending key and dispenser key generating means, (8) and (7) respectively, that can be adequately secured against interception or theft of the vending keys Kv.
It will be further appreciated by those skilled in the art that the system (1) is advantageous for reasons of cost, as it enables the generation of vending tokens at a vending location through the use of relatively inexpensive technology, such as smart cards, which need not be resistant to cryptographic attacks. The reason for this assertion is that a vending token generated in this manner is only usable on the particular prepayment meter (4) belonging to the consumer. Thus, there is a one-to-one relationship between a dispenser key Kd and a particular prepayment meter (4). In the event of a breach of security of a dispenser key Kd such as, for example, by interception, the security of only a single prepayment meter (4) is compromised, as opposed to that of an entire prepayment infrastructure, as is the case with the prior art system described above.
We now tum to Figure 2, which illustrates the method of operation of the system MN (1).
Initially, a vending key Kv is generated by a vending key generating means (8).
The vending key generating means (8) is a secure module incorporating a computer processor. Generally, vending keys generated by the secure module are related to supply groups, i.e. distribution areas for the utility being dispensed, and are generated as a function of a supply group code. On request from the token dispensing terminal (2), the dispenser key generating means (7), which also comprises a secure module incorporating a computer processor, generates : a dispenser key Kd and communicates the code Kd to the token vending terminal (2) in which a smart card (6) has been inserted. Altematively, the dispenser key generating means (7) may provide a vending key Kd and save the key to the smart card (2), prior to use of the card (2). In either event, the dispenser key Kd is saved to the card (2). In use, a user submits the card (2) at a vending location and the card (2) is coupled to the vending terminal (2) via a card reader. The dispenser key Kd is generated as a function of the supply group code, tanff index, a unique dispenser identification number and other parameters. At the vending terminal (2) an encryption algorithm is used to generate an encrypted vending token. Input parameters encrypted by the algorithm, or used in combination with the algorithm, include the date and time of the transaction, provided by the vending terminal (2), a random number, provided by a random number generator, the quantity of the utility required or the amount of money tendered in payment therefor, the dispenser key Kd and the meter identification number. The vending token generated is printed onto a paper slip (3) via the printer (10), which is coupled to the vending terminal (2). Alternatively, the vending token may be saved to the smart card (6). As described above, the user of the utility inputs the vending token at his utility meter (4) by means of the keypad (5) or card reader, depending on the embodiment selected. Future transactions for the purchase of the utility no longer require the generation of a new dispenser key Kd by the disperser key generating means (7), and simply require the generation of a new vending token, depending on the quantity of the utility or value thereof required by the user at the time.
Numerous modifications are possible to this embodiment without departing from the scope of the invention. In particular, additional parameters may be utilized in the encryption function. Further, where the meter identification code and dispenser key Kd are pre-installed on the smart card (6), it will generally not be necessary for the dispenser key generating means (7) and the vending terminal (2) to communicate for each vending transaction or even for an initial transaction.
The random number generator, encryption algorithm and the token-generating function may reside in the vending terminal (2). Instead, they may reside in a microprocessor memory of the smart card (6).
The invention therefore provides a distributed vending system for prepayment tokens that may be implemented with smart-card technology, and does not require the inclusion of expensive security measures at point-of-sale terminals.
Claims (44)
1. A system for generating a vending token for use with a utility prepayment meter operable to dispense a utility to a consumer, the system including at least one portable storage means having a dispenser key stored therein, the dispenser key being uniquely related to a predetermined prepayment meter; and data processing means locatable at a vending location and operable to receive input data, the data processing means and the portable storage means being co-operable to generate a vending token as a function of at least the said input data and the dispenser key stored on the storage means.
2. The system as claimed in claim 1, in which the input data comprises data representative of a desired quantity of the utility to be purchased by the consumer.
3. The system as claimed in claim 1, in which the input data comprises data representative of a desired value of the utility to be purchased by the consumer.
4. The system as claimed in any one of the preceding claims, in which the portable storage means has a meter identification code stored therein, the meter identification code also being uniquely related to the predetermined prepayment meter, and in which the data processing means and the portable storage means are co-operable to generate the vending token as a function also of the meter identification code stored on the storage means.
5. The system as claimed in claim 4, in which the data processing means includes a real time clock and the data processing means and the portable storage means are co-operable to generate the vending token as a function also of a time and date.
6. The system as claimed in claim 5, in which the time and date are the time and date of generating of the vending token.
7. The system as claimed in claim 4, in which the data processing means and the portable storage means are co-operable to generate the vending token as a function also of a randomly generated number.
8. The system as claimed in any one of the preceding claims, in which the vending token-generating function is stored in the portable storage means.
9. The system as claimed in any one of the preceding claims, in which the data processing means and the portable storage means are co-operable to generate the vending token in an encrypted format.
10. The system as claimed in any one of the preceding claims, in which the portable storage means comprises a card having a data storage device arranged thereon.
11. The system as claimed in claim 10, in which the card is a smart card having a digital data storage device arranged thereon.
12. The system as claimed in claim 11, in which the vending token is saved in the digital data storage device of the smart card.
13. The system as claimed in any one of the preceding claims, which includes dispenser key generating means remote from the vending location, the dispenser key generating means being operable to generate and to provide the dispenser key to the portablé storage means.
14. The system as claimed in claim 13, in which the dispenser key generating 9 means is operable to generate the dispenser key as a function of at least a vending key.
15. The system as claimed in claim 14, in which the dispenser key generating means is operable to generate the dispenser key as a function also of a utility consumption tariff.
16. The system as claimed in any one of claims 13 to 15, in which the dispenser key generating means is operable to generate and to transmit the dispenser key to the data processing means in response to a request from the data processing means.
17. The system as claimed in any one of claims 13 to 16, which includes a vending key generating means operable to generate a plurality of different vending keys.
18. The system as claimed in claim 17, in which the dispenser key generating means is operable to generate the dispenser key as a function of a selected one of the generated vending keys.
19. The system as claimed in claim 17, in which the vending key generating means is remote from the data processing means.
20. A method for generating a vending token for use with a utility prepayment meter operable to dispense a utility to a consumer, the method including providing a portable storage means having a dispenser key stored therein, the dispenser key being uniquely related to a predetermined prepayment meter;
receiving input data relating to the utility required to be purchased by the customer; and generating a vending token as a function of at least the input data and the dispenser key stored on the portable storage means.
21. The method as claimed in claim 20, in which the input data comprises data representative of a desired quantity of the utility to be purchased.
22. The method as claimed in claim 20, in which the input data comprises data representative of a desired value of the utility to be purchased.
23. The method as claimed in claim 21 or claim 22, in which the generating of the vending token is by means of a data processing means locatable at a vending location in co-operation with the portable storage means.
24. The method as claimed in claim 23, in which the portable storage means has a meter identification code stored therein, the meter identification code also being uniquely related to the predetermined prepayment meter, and in which the method includes generating the token as a function also of the meter identification code stored on the portable storage means.
25. The method as claimed in claim 23, which includes generating the token as a function also of a time and date.
26. The method as claimed in claim 25, in which the time and date are the time and date of generating of the token.
27. The method as claimed in claim 25 or claim 26, in which the data processing means includes a real time clock and is co-operable with the portable storage means to generate the token as a function also of a time and date. J
28. The method as claimed in claim 23, which includes generating the token as a function also of a randomly generated number.
29. The method as claimed in claim 28, in which the random number is generated by the portable storage means.
30. The method as claimed in claim 28, in which the random number is generated by the data processing means.
31. The method as claimed in any one of claims 23 to 30, in which the vending token-generating function is stored in the portable storage means.
32. The method as claimed in any one of claims 20 to 31, which the method includes applying an encryption algorithm in combination with at least some of the data in respect of which the vending token is a function to provide an encrypted vending token.
33. The method as claimed in any one of claims 20 to 32, in which the portable storage means comprises a card having a storage device arranged thereon.
34. The method as claimed in claim 33, in which the card is a smart card having a digital data storage device arranged thereon.
35. The method as claimed in claim 35, which includes saving the vending token to the digital data storage device of the smart card.
36. The method as claimed in any one claims 20 to 35, which includes generating the dispenser key by means of a dispenser key generating means remote from the vending location, and providing the dispenser key to the portable storage means.
37. The method as claimed in claim 36, in which the dispenser key generating means is operable to generate the dispenser key as a function of at least a vending key.
38. The method as claimed in claim 37, in which the dispenser key generating means is operable to generate the dispenser key as a function also of a utility consumption tariff.
39. The method as claimed in any one of claims 36 to 38, which includes generating and transmitting the dispenser key to the data processing means in response to a request from the data processing means.
40. The method as claimed in any one of claims 36 to 39, which includes generating a plurality of vending keys by means of a vending key generating means.
41. The method as claimed in claim 40, in which the dispenser key generating means is operable to generate the dispenser key as a function of a selected one of the generated vending keys.
42. The method as claimed in claim 40, in which the vending key generating means is remote from the data processing means.
43. A system for generating a vending token for use with a utility prepayment meter operable to dispense a utility to a consumer, substantially as herein described and illustrated with reference to the accompanying diagrammatic drawings.
44. A method for generating a vending token for use with a utility prepayment M) meter operable to dispense a utility to a consumer, substantially as herein described with reference to the accompanying diagrammatic drawings.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| ZA200307147A ZA200307147B (en) | 2001-03-13 | 2003-09-12 | Generation of vending tokens. |
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| ZA200102064 | 2001-03-13 | ||
| ZA200307147A ZA200307147B (en) | 2001-03-13 | 2003-09-12 | Generation of vending tokens. |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| ZA200307147B true ZA200307147B (en) | 2003-11-12 |
Family
ID=32600372
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| ZA200307147A ZA200307147B (en) | 2001-03-13 | 2003-09-12 | Generation of vending tokens. |
Country Status (1)
| Country | Link |
|---|---|
| ZA (1) | ZA200307147B (en) |
-
2003
- 2003-09-12 ZA ZA200307147A patent/ZA200307147B/en unknown
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US6078888A (en) | Cryptography security for remote dispenser transactions | |
| US5621796A (en) | Transferring information between transaction networks | |
| US5596642A (en) | Network settlement performed on consolidated information | |
| US5544086A (en) | Information consolidation within a transaction network | |
| US5559887A (en) | Collection of value from stored value systems | |
| US5832090A (en) | Radio frequency transponder stored value system employing a secure encryption protocol | |
| US5633930A (en) | Common cryptographic key verification in a transaction network | |
| US5623547A (en) | Value transfer system | |
| AU653721B2 (en) | Value transfer system | |
| US5577121A (en) | Transaction system for integrated circuit cards | |
| EP0172670A2 (en) | An apparatus for effecting and recording monetary transactions | |
| JPH11102405A (en) | Method of issuing lottery ticket and converting it into money in computer network | |
| CA2967984C (en) | Method and system for linking web-based secondary features to a lottery ticket validation file by an encrypted registration code | |
| US20040083182A1 (en) | Electronic cash implementing method and equipment using user signature and recording medium recorded thereon a program for the method | |
| KR20090031588A (en) | Method for managing micropayment transactions | |
| EP0420466B1 (en) | Credit supply system | |
| WO2002080119A1 (en) | Generation of vending tokens | |
| ZA200307147B (en) | Generation of vending tokens. | |
| KR20010069539A (en) | Vending machine with issuance and transfer of securities individual number code | |
| US8874488B2 (en) | Process for carrying out a transaction between a payment module and a security module | |
| US20020035694A1 (en) | Method and apparatus for anonymous remote transactions | |
| US20070226151A1 (en) | Method for Processing a Cashless Payment Transaction | |
| Read | EFTPOS: electronic funds transfer at point of sale | |
| AU8349998A (en) | Secure transactions | |
| EP1374193B1 (en) | Method for conducting secure e-commerce transactions |