Method of debiting an electronic payment means
First Claim
1. A method of performing a transaction between an electronic payment mechanism and a payment station, comprising:
- requesting, by said payment station, payment data from said payment mechanism;
generating a plurality of authentication codes in which each authentication code of said plurality of authentication codes is linked to a preceding authentication code in a same transaction between said payment mechanism and said payment station; and
transmitting, by said payment mechanism, said requested payment data including a respective authentication code of said plurality of authentication codes, to said payment station.
2 Assignments
0 Petitions
Accused Products
Abstract
The invention provides a method for protectedly debiting an electronic payment mechanism, such as a telephone card. In the communication protocol between the payment mechanism and payment station, an authentication is used to identify the payment mechanism during various steps of the protocol. According to the invention, the authentications are mutually related by states of a cryptographic process in order to be capable of detecting an interference in the protocol. The method may be applied to existing payment cards having a dynamic memory, it being guaranteed that the contents of the dynamic memory, in which there is located information related to the authentication, is not lost during the protocol.
82 Citations
17 Claims
-
1. A method of performing a transaction between an electronic payment mechanism and a payment station, comprising:
-
requesting, by said payment station, payment data from said payment mechanism; generating a plurality of authentication codes in which each authentication code of said plurality of authentication codes is linked to a preceding authentication code in a same transaction between said payment mechanism and said payment station; and transmitting, by said payment mechanism, said requested payment data including a respective authentication code of said plurality of authentication codes, to said payment station. - View Dependent Claims (2, 3, 4)
-
-
5. A method of performing a transaction between an electronic payment mechanism and a payment station, comprising:
-
transferring, by said payment station, a first random value to said payment mechanism; determining a first authentication code using at least a first value, the first random value, and a first balance of said payment mechanism; generating a first end value corresponding to said first authentication code; transferring, by said payment mechanism in response to said first random value transferred by said payment station, said first authentication code to said payment station; transferring, by said payment station, a debiting command to said payment mechanism; reducing said first balance of said payment mechanism to a second balance using said debiting command; transferring, by said payment station, a second random value to said payment mechanism; determining a second authentication code using at least a second start value, the second random value, and said second balance of said payment mechanism; and transferring, by said payment mechanism in response to said second random value transferred by said payment station, said second authentication code to said payment station, wherein in said step of determining said second authentication code, said second start value is based on said first end value. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A smart card, comprising:
-
a memory which stores data corresponding to a balance of said smart card; a feedback shift register which produces at least one authentication code for said smart card; a logic circuit connected to the memory and the feedback shift register, said logic circuit combines data from said memory and feedback data from said feedback shift register and inputs said combined data to said feedback shift register; and a clock generator which generates a clock pulse which controls an operation of said memory and said feedback shift register, wherein contents of said feedback shift register are maintained by varying at least one of a frequency and a ratio of said generated clock pulses. - View Dependent Claims (16)
-
-
17. A smart card, comprising:
-
a memory which stores data corresponding to a balance of said smart card; a feedback shift register which produces at least one authentication code for said smart card; a logic circuit connected to the memory and the feedback shift register, said logic circuit combines data from said memory and feedback data from said feedback shift register and inputs said combined data to said feedback shift register; and a clock generator which generates a clock pulse which controls an operation of said memory and said feedback shift register, wherein contents of said feedback shift register are maintained by repeatedly writing said data corresponding to said balance to said memory between 50 and 150 times.
-
Specification