MOBILE TERMINAL, TRANSACTION TERMINAL, AND METHOD FOR CARRYING OUT A TRANSACTION AT A TRANSACTION TERMINAL BY MEANS OF A MOBILE TERMINAL
First Claim
1. A method for carrying out a transaction at a transaction terminal (40) by means of a mobile terminal (20), wherein the method comprises the following steps:
- identifying a user by means of the transaction terminal (40); and
authenticating the identified user with respect to the transaction terminal (40) by checking whether a password, in particular a PIN, input by the identified user using an input device (22, 24) of the mobile terminal (20) matches a password stored for the identified user in the transaction terminal (40) or in a background system (80) connected to the transaction terminal,wherein a processor unit (33) is provided in the mobile terminal (20), in which processor unit a normal runtime environment (NZ) and a secure runtime environment (TZ) are implemented, wherein an input device driver (34) is implemented in the secure runtime environment (TZ) and is configured to securely forward inputs, via the input device (22, 24) of the mobile terminal (20), to the secure runtime environment (TZ) of the processor unit (33) of the mobile terminal (20) for further processing.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a method for carrying out a transaction at a transaction terminal (40) by means of a mobile terminal (20), to such a transaction terminal (40), and to such a mobile terminal (20). The method has the step of identifying a user by means of the transaction terminal (40) and the step of authenticating the user with respect to the transaction terminal (40). The method is characterized in that the user is authenticated by checking whether a password, in particular a PIN, which is entered by the user via an input device (22, 24) of the mobile terminal (20) matches a password which is stored for the user in the transaction terminal (40) or in a background system (80) that is connected to said transaction terminal. A processor unit (33) in which a normal runtime environment (NZ) and a secured runtime environment (TZ) are implemented is provided in the mobile terminal (20), wherein an input device driver (34) is implemented in the secured runtime environment (TZ), said driver being designed to transmit inputs via the input device (22, 24) of the mobile terminal (20) to the secured runtime environment (TZ) of the processor unit (33) of the mobile terminal (20) in a secured manner for further processing.
-
Citations
12 Claims
-
1. A method for carrying out a transaction at a transaction terminal (40) by means of a mobile terminal (20), wherein the method comprises the following steps:
-
identifying a user by means of the transaction terminal (40); and authenticating the identified user with respect to the transaction terminal (40) by checking whether a password, in particular a PIN, input by the identified user using an input device (22, 24) of the mobile terminal (20) matches a password stored for the identified user in the transaction terminal (40) or in a background system (80) connected to the transaction terminal, wherein a processor unit (33) is provided in the mobile terminal (20), in which processor unit a normal runtime environment (NZ) and a secure runtime environment (TZ) are implemented, wherein an input device driver (34) is implemented in the secure runtime environment (TZ) and is configured to securely forward inputs, via the input device (22, 24) of the mobile terminal (20), to the secure runtime environment (TZ) of the processor unit (33) of the mobile terminal (20) for further processing. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A mobile terminal (20) for carrying out a transaction at a transaction terminal (40), wherein the mobile terminal (20) comprises:
-
an input device (22, 24) for inputting a password, in particular a PIN, by a user; and a processor unit (33) in which a normal runtime environment (NZ) and a secure runtime environment (TZ) are implemented, wherein an input device driver (34) is implemented in the secure runtime environment (TZ) and is configured to securely forward inputs, via the input device (22, 24) of the mobile terminal (20), to the secure runtime environment (TZ) of the processor unit (33) of the mobile terminal (20) for further processing, and wherein an application (36) is also implemented in the secure runtime environment (TZ) of the processor unit (33) and is configured to make it possible to authenticate the user with respect to the transaction terminal (40) by checking whether the password input by the user using the input device (22, 24) of the mobile terminal (20) matches a password stored for this user in the transaction terminal (40) or in a background system (80) connected to the transaction terminal.
-
-
11. A transaction terminal (40) for carrying out a transaction by means of a mobile terminal (20), wherein the transaction terminal (40) comprises:
-
a control unit (50) which is configured to identify a user; and a communication module (46) for forming a secure communication channel between the mobile terminal (20) and the transaction terminal (40), wherein the transaction terminal (40) is configured to authenticate the user in such a manner that a check is carried out in order to determine whether a password, in particular a PIN, input by the user using an input device (22, 24) of the mobile terminal (20) matches a password stored for the identified user in the transaction terminal (40) or in a background system (80) connected to the transaction terminal. - View Dependent Claims (12)
-
Specification