• 专利附录
  • 专利说明
  • 权利要求
  • 类似技术
  • 同族专利
  • 引用文献
  • 法律状态
  • 优先权
    • 专利摘要:

    公开号:SE0950408A1
    申请号:SE0950408
    申请日:2009-06-04
    公开日:2010-12-05
    发明作者:Stefan Hultberg;Magnus Westling
    申请人:Accumulate Ab;
    IPC主号:
    专利说明:

    15 20 25 30 35 40 45 the transaction supports mobile payment through. NFC performs the secure transaction through mobile payment through NFC, when a selling party in the secure transaction supports mobile payment through NFC and the buying party of the secure does not support mobile payment through NFC by the buying party and the secure transaction mobile payment through NFC emulates the transaction is performed through mobile payment through NFC, and otherwise the secure transaction is performed between a selling party and the one through mobile payment through a predefined identity on a transaction server, the most buying party uses the appropriate provision of a secure transaction for all options.
    The predefined one preferably comprises the steps of: by wireless mobile payment, simultaneously the identity of a transaction server encrypted communication, the predefined initiating portable radio communication device on a transaction server, which portable radio communication device is thereby placed in an active transaction state as a purchasing party on the transaction server the radio communication device has been installed by an authenticated service provider and a user is securely identified and linked to the installation, initiating, through a transaction identity, the secure transaction between the buying party, using the user communication software in the portable radio communication device, and the selling service provider using the the party on the predefined transaction server, which the selling party is thereby put into an active transaction stand on the transaction server, sending secure transaction information related to the predefined identity from the selling party to the predefined transaction server, identifying the buying party and the selling party on the transaction server through the predefined identity and checking that the buying party and the selling party the active transaction state on the transaction server, and completing the secure transaction associated with the predefined identity based on the secure transaction information and the predefined identity. For improved security, the method preferably comprises the steps of: transmitting, by wireless encrypted communication, the information of the secure transaction associated with the predefined identity from the predefined transaction server to the purchasing party, verifying the secure transaction associated with the predefined identity of the purchasing party through a user authentication, and transmitting, through wireless encrypted communication, the authentication linked to the predefined identity of the purchasing party to the transaction server. verification is preferably performed by an personally identifiable identification number in the portable radio communication device.
    Genonx to preferably provide one. method for secure transactions whereby both parties in a transaction are linked to a predefined transaction server and independently approve the transaction, a secure transaction is achieved. held only during a specific transaction, whereby the necessary predefined transaction server can be kept, only limited for handling parallel Preferably the predefined identity unique amount of identities very low in transactions at the transaction server.
    The verification is preferably performed by entering a personal identification number (PIN) in the portable radio communication device, which PIN is selected during the installation of user transaction software.
    Additional features and advantages of the present invention will become apparent in the following description.
    BRIEF DESCRIPTION OF THE DRAWINGS The present invention will be more fully understood from the detailed description of embodiments given below and the accompanying drawings, which are given by way of illustration only and thus are not limiting of the present invention, in which: Fig. 1 schematically shows the steps of a method for secure transactions according to an embodiment of the present invention.
    Fig. 2 schematically shows the steps of a method for a predefined identity at a transaction server.
    Fig. 3 schematically shows communication between transaction parties according to an embodiment of the present invention.
    DETAILED DESCRIPTION OF EMBODIMENTS In the following description, for explanatory and non-limiting purposes, specific details are set forth, such as specific techniques and applications, to provide a thorough understanding of the present invention. However, it will be apparent to one skilled in the art that the present invention may be practiced in other embodiments that depart from these specific details. In other cases, detailed description is omitted to obscure the description of the present invention with unnecessary details.
    A method of a secure transaction according to an embodiment of well-known methods and devices for the present invention will now be described with reference to Figs. 1-3.
    The secure transaction method has a buying party and a selling party, the buying party of the secure transaction utilizing a portable radio communication device, such as a mobile phone, a personal digital assistant, a laptop or similar device with nwbil payment capacity. the selling party uses a communication device.
    The stationary method according to this embodiment comprises the steps: when the selling party of the secure transaction supports mobile payment through NFC and the buying party of the secure transaction supports mobile payment through NFC, the secure transaction is performed through mobile payment through NFC, when the selling party of the secure transaction supports mobile payment through. NFC and the buying party of the secure support mobile payment through NFC mobile payment through. NFC by the buying party and the secure transaction is not emulated the transaction is performed by mobile payment through NFC, and otherwise the secure transaction between the selling party and the buying party is predefined identity on a transaction server.
    Mobile payments can be made in a number of ways and involve mobile payments through a variety of different payments, with the common feature that an Operators and the payment industry run various projects and developments in this area. The common part for all parties involved is mobile arranging is involved. however, the use of RFID / NFC in combination with mobile phones. This is linked to the problem of upgrading both buyer equipment and seller equipment.
    Advantages of connecting NFC to the mobile device and of making mobile payments is, for example, that a higher level of security the speed with which a transaction can be carried out, both versatility through utilization is improved, flexibility and cost efficiency are also improved.
    NFC is a fast and way of providing information between two parties without the need for physical contact, but at the same time requires close physical proximity. An advantage of using a mobile phone. with built-in NFC support is that it is easy to achieve, improve, the simplicity of buyers and sellers is increased, existing devices versatile transfer 10 15 20 25 30 35 40 45 control when NFC is active and to dynamically change information that It in areas of use and also reception of data. If NFC is not integrated in the mobile phone, the possibility of dynamic information and control on / off of the device is lost. send. The present invention solves this problem by combining a secure application and secure methods with a non-integrated NFC module / sticker / label. statistical information similar to NFC information is performed in a system to which the portable NFC emulation using the radio communication device connects, but when the verification is required by the publisher. of the credit card, for example, the transaction is handled as an NFC emulation transaction and the verification is required by the purchasing party, for example passively by having the portable radio communication device turned on or active by entering a PIN by the user.
    The predefined identity is known by both the buyer and a credit card number or similar identity that can find a distributed multinode system. A distributed multi-node system includes a plurality of buying parties, a plurality of selling parties, a plurality of predefined transaction servers and a plurality of publishers and the party transaction server, such as social security number, account number, for use correctly issuer in acquirer. transaction is a portable to secure all links in a user transaction software installed in the radio communication device 10 of the purchasing party in a secure manner, whereby a user is securely identified and linked to the installation. A safe way is, for example, at a bank branch or other known party, to install the user software in the portable radio communication device of the buying party or to provide a memory card or the like For the installation program of the buying party thereon. The identity of the owner / user of the portable radio communication device is checked in connection with the installation or delivery of the transaction software of the user transaction software. Instead of checking the identity directly at a bank branch or other known party, for example, a registered letter sent to the intended user can be used to verify the identity of the intended user. Finally, the user transaction software is linked to an account at a bank or other party, such as a credit card account, a user account, an electronic wallet, etc. Another secure way to install the user transaction software is to install an authentication-certified Internet bank branch or similar party, through an https connection. with a with, for example, a secure connection, for example a portable Identity radio communication device, the user transaction software in the radio communication device of the purchasing party. the owner is checked in connection with the installation by, for example, PIN.
    Finally, the user transaction software is linked to an account in a bank, a credit card account, the user account, an electronic wallet, etc. for the portable or other party, such as the User transaction software is arranged to communicate with a predefined transaction server 12 when secure transactions linked directly to the transaction server or h of the transaction server from the purchasing party transaction takes place.
    Preferably, a basic account is assumed unless another account is given when the buying party is placed in an active transaction state on the Account Balance and similar checks are performed. Account information a user transaction software is can be predefined whenever a transaction server is to. preferably before each completion of a transaction.
    When a secure Internet installation is used, a mobile phone number is preferably given to the distribution site, then a text message is sent, such as a download URL to that mobile phone number, i.e. over-air installation (OTA installation). By following that link in the mobile phone, the user transaction software is installed as a reply SMS, with a so-called mobile phone. To first start the application run by the user transaction software, an activation code is entered, given by the distribution site. Furthermore, a PIN is also required to run the application.
    When a secure transaction 13 is to take place based on the predefined transaction between the buying party and the selling party, the identity of includes the following steps. The user of that radio communication device, i.e. the purchasing party, a user transaction software selects that the purchasing transaction server, portable "mobile payment" part for connecting the purchasing party to the transaction server, the party 10 activates itself, through an encrypted / encrypted wireless communication, on the transaction server 12, which transaction server 12 thereby places the purchasing party 10 in an active transaction state on the transaction server 12.
    The buying party 10 preferably remains in the active transaction state on the transaction server 12 until the buying party 10 requests an inactive transaction state.
    Alternatively, the purchasing party 10 will be put in an inactive transaction state by the transaction server 12 after an excess of time. Furthermore, the transaction server 12 may also put the buying party 10 in an inactive state after completion of a transaction. By waiting for a request before an inactive state is obtained, several subsequent purchasing party can be put in the advantage of the user transactions without having to re-select the "mobile payment" part in performing the user transaction software. However, this is preferably combined with a time limit which gives the advantage that the user does not forget to put the portable radio communication device in an inactive transaction state, which would be risky if another person gets hold of the portable radio communication device. From a safe perspective, it would be beneficial to put the buying party in an inactive transaction state even after a transaction has been completed.
    The wireless communication can for example be performed through GPRS, 3G data, Wi-Fi or WiMAC, built-in identity verification, and also infrared or Bluetooth, all of which would have some kind which however are anonymous and may require some added identity verification.
    To initiate the secure transaction, the buying party provides the predefined identity to the selling party 11 by NFC means 16 to the radio communication device. The selling party 11 assumes that this is an NFC-supported transaction and contacts the issuer 17 for, for example, the credit card number. the predefined separately from portable The issuer of the identity receives information about the secure transaction genonx NFC funds from the selling party and recognizes that this secure transaction should be handled as an NFC emulation. the identity thus requests 19 verification of the predefined transaction server of the secure transaction. The purchasing party is identified on the transaction server by the predefined identity and it is checked that the buying party is in the Secure Issuer of the predefined active transaction state on the transaction server. the transaction associated with the predefined identity is completed based on secure predefined identity.
    If the selling party does not support NFC, the buying party provides the predefined identity to the selling party, for example orally or through a keypad. The selling party 11 activates itself on transaction server 12, which transaction server 12 thereby puts the selling party 11 in an active transaction state on the transaction server 12.
    It then sends 4, 15 information about the transaction associated with the predefined identity to transaction server 12, preferably encrypted. Activation and the following information about the transaction can also be performed as an action, so that the transmission of information about the transaction to the transaction and that information about the entry on the selling party 10 15 20 25 30 35 40 45 transaction server also puts the selling party in an active transaction state on the transaction server.
    The transaction information from the selling party sent with a transaction may vary, but typically includes the name of the selling party and the transaction amount, and possibly also the product name. The name of the selling party can alternatively be extracted from the login of the selling party to a purchase. the system instead of being sent together with the transaction, to ensure that This is usually performed via a land line, but can also be performed via such information is not distorted. wireless communication. The selling party has previously registered an account with the transaction server, or with another party in a distributed multi-node system including the transaction server, whereby the selling party is known in a similar manner performed for the buying account information or similar information about the buying transaction server, the party. the party does not need to be given to the selling party and vice versa, since such information is known by the transaction server, and thus such information should not be given to the selling party and vice versa.
    The transaction server 12 identifies the buying party through the predefined identity sent by the selling party and encrypted / encrypted wirelessly that party of to the User transaction software requests 6, for example one such as the name of request 5 preferably, through a communication, a verification of the buying transaction information linked to the predefined identity .
    PIN as verification of the transaction information, the seller and the transaction amount. The verification is returned, via an encrypted / encrypted wireless communication, to the transaction server linked to the predefined identity. The party An alternative to requesting verification by the purchasing party, active permission on is to only check that the portable radio communication device for the buying party is on, which is performed without any active action by the user thereof.
    After verification by that party, the transaction server completes the transaction associated with the predefined sender and sends a transaction receipt to both it through. an encrypted / encrypted wireless communication, and the selling party directly or the transaction is completed only provided that the accounts of both the buying party and the selling party accept the transaction.
    In this case, the PIN or other password does not need to be transferred directly between the buying party and the selling party. Furthermore, the PIN does not need to be transferred between the transaction server and the one who is in the predefined transaction server, the purchasing identity and the purchasing party, the issuer. either through the selling party. The selling party only receives a confirmation that the identification has been verified.
    It is obvious that the present invention can be varied in a number of different ways. Such variations should not be construed as departing from the scope of the present invention, as defined by the appended claims. All such variations as would be apparent to one skilled in the art are intended to be included within the scope of the present invention as defined by the appended claims.
    权利要求:
    Claims (7)
    [1]
    A secure transaction method, wherein a buying party of said secure transaction utilizes a portable radio communication device (10), comprising the steps of: when a selling party of said secure transaction supports mobile payment through NFC and said buying party of said secure transaction supports mobile payment through NFC, said secure transaction through mobile payment through NFC, when a selling party of said secure transaction supports mobile payment through NFC and said buying party of said secure supports NFC mobile payment through NFC by said buying party and said secure transaction is performed through mobile payment through NFC, and performing said secure transaction. between a selling mobile payment through a transaction not mobile payment through otherwise emulated and said buying party through predefined identity on a predefined transaction server.
    [2]
    A method according to claim 1, a predefined identity on a transaction server comprising said mobile payment through the steps of: - initiating, by wireless encrypted communication, said portable radio communication device on said predefined transaction server (12), which portable radio communication device is thereby placed in an active transaction state purchasing party on said transaction server, wherein a user transaction software in said portable radio communication device has been installed by an authenticated service provider and a user is securely identified and linked to the installation, - initiating, by said predefined identity, said (13) user transaction software in said buying party, utilizing portable (11), said said radio communication device, selling party utilizing a service provider software, - initiating said selling transaction server (12), which selling party thereby placed in an active transaction state on said transaction server, - sending (15) information about said transaction linked to said predefined identity from said selling party to said predefined transaction server, - identifying said buying party and said selling predefined party on said party on said transaction server identity and checking that said buying party and said selling party are in said active transaction state on said transaction server, and completing said secure transaction associated with said predefined identity based on said information about said secure transaction and said predefined identity.
    [3]
    The method of claim 2, comprising the steps of: - transmitting (14), by wireless encrypted communication, said information about said secure transaction associated with said predefined identity from said predefined transaction server to said buying party, - verifying said secure transaction associated with said predefined identity of said purchasing party through a user authentication (6), and - transmitting (14), via wireless encrypted communication, the authentication linked to said predefined identity from said purchasing party to said transaction server.
    [4]
    The method of claim 3, wherein said verifying is performed by entering a personal identification number in said portable radio communication device.
    [5]
    A method according to any one of claims 1-4, wherein the emulating comprises the steps of: initiating, through wirelessly encrypted communication, said portable radio communication device on said predefined transaction server (12), which portable radio communication device is thereby set to an active transaction state as said purchasing server party on , wherein a user transaction software in said portable radio communication device has been installed by an authenticated service provider and a user is securely identified and linked to the installation, and NFC means separate radio communication device, identity being transferred between said NFC means and said selling party to initiate said secure .
    [6]
    The method of claim 5, said portable predefined utilization of said comprising the steps of: a predefined identity issuer information about said secure transaction and recognizing said secure transaction to be treated as an NFC emulation, identity requesting said issuer of said predefined authentication of said transaction server of said secure transaction, identifying the buying party on the transaction server by the predefined identity and checking that the buying party is in the active transaction state on the transaction server, and completing the secure transaction associated with the predefined identity based on the secure transaction information and the predefined identity. 10 15 20 25 30 12
    [7]
    A method of secure transaction, wherein a selling party of said secure transaction supports mobile payment through NFC and a buying party of said secure transaction uses a mobile payment device not supporting mobile payment through NFC, comprising the steps of: initiating, through wireless encrypted communication, said portable radio communication device on said predefined transaction server (12), which portable radio communication device is thereby placed in an active transaction state as said buying party on said transaction server, a user transaction software in said portable radio communication device being installed by an authenticated service provider and a user is a secure provider and NFC means from radio communication device, portable identity is transferred between said NFC means and said selling party for use separately said wherein a predefined initiate said secure transaction, a u issuer of said predefined identity receives information about said secure transaction through NFC means of said selling party and recognizes that this secure transaction is to be treated as an NFC emulation, said issuer of said predefined identity requests verification of said transaction server for said secure transaction, identifying the purchasing party on the transaction server through the predefined identity and checking that the buying party is in the active transaction state on the transaction server, and completing the secure transaction associated with the predefined identity based on information about the secure transaction and the predefined identity.
    类似技术:
    公开号 | 公开日 | 专利标题
    US11151543B2|2021-10-19|Methods for secure transactions
    SE0950408A1|2010-12-05|Method of secure transactions
    JP6128565B2|2017-05-17|Transaction processing system and method
    EP2438560A1|2012-04-11|A method for secure transactions
    KR20110039947A|2011-04-20|System and method for on-line wireless settlement and program recording medium
    US20140081860A1|2014-03-20|Near field contactless system and method for online transactions
    KR20120076654A|2012-07-09|Card payment relay system using mobile phone number and method thereof
    SE0950409A1|2010-09-28|Method of secure transactions
    KR20120076337A|2012-07-09|Method and apparatus for processing cost payment service by using identification card
    SE533421C2|2010-09-21|Method for secure transactions
    同族专利:
    公开号 | 公开日
    SE533880C2|2011-02-22|
    US20120072309A1|2012-03-22|
    WO2010140969A1|2010-12-09|
    引用文献:
    公开号 | 申请日 | 公开日 | 申请人 | 专利标题
    US6889325B1|1999-04-28|2005-05-03|Unicate Bv|Transaction method and system for data networks, like internet|
    US7784684B2|2002-08-08|2010-08-31|Fujitsu Limited|Wireless computer wallet for physical point of sale transactions|
    US20050222961A1|2004-04-05|2005-10-06|Philippe Staib|System and method of facilitating contactless payment transactions across different payment systems using a common mobile device acting as a stored value device|
    ES2662254T3|2005-03-07|2018-04-05|Nokia Technologies Oy|Method and mobile terminal device that includes smart card module and near field communications media|US9047601B2|2006-09-24|2015-06-02|RFCyber Corpration|Method and apparatus for settling payments using mobile devices|
    CN102184593A|2011-02-25|2011-09-14|惠州Tcl移动通信有限公司|One-card system based on mobile communication terminal|
    US10242368B1|2011-10-17|2019-03-26|Capital One Services, Llc|System and method for providing software-based contactless payment|
    KR20140140079A|2012-04-18|2014-12-08|구글 인코포레이티드|Processing payment transactions without a secure element|
    CN110414950A|2012-07-09|2019-11-05|英特尔公司|System and method for the enabled Secure Transaction using mobile device|
    KR101570354B1|2015-03-05|2015-11-19|엘지전자 주식회사|Mobile terminal and method for controlling the same|
    JP6005889B1|2016-06-29|2016-10-12|インテル コーポレイション|System and method for enabling secure transactions with mobile devices|
    法律状态:
    2021-10-05| NUG| Patent has lapsed|
    优先权:
    申请号 | 申请日 | 专利标题
    SE0950408A|SE533880C2|2009-06-04|2009-06-04|Method for secure transactions|SE0950408A| SE533880C2|2009-06-04|2009-06-04|Method for secure transactions|
    US13/321,735| US20120072309A1|2009-06-04|2010-06-04| method for secure transactions|
    PCT/SE2010/050613| WO2010140969A1|2009-06-04|2010-06-04|A method for secure transactions|
    [返回顶部]