Method of debiting an electronic payment means
First Claim
1. A method of performing a transaction between an electronic payment mechanism associated with a first payment institution, and a payment station associated with a second payment institution, comprising:
- requesting, by said payment station, payment data from said payment mechanism;
generating a plurality of authentication codes in which each authentication code of said plurality of authentication codes is linked to a preceding authentication code in a same transaction between said payment mechanism and said payment station;
transmitting, by said payment mechanism, said requested payment data including a respective authentication code of said plurality of authentication codes, to said payment station; and
exchanging payment institution data, which is derived from payment data transacted between the payment mechanism and the payment station, between the first payment institution and the second payment institution.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention provides a method for protectedly debiting an electronic payment mechanism, such as a telephone card. In the communication protocol between the payment mechanism and a payment station, an authentication is used to identify the payment mechanism during various steps of the protocol. According to the invention, the authentications are mutually related by states of a cryptographic process in order to be capable of detecting an interference in the protocol. The method may be applied to existing payment cards having a dynamic memory, it being guaranteed that the contents of the dynamic memory, in which there is located information related to the authentication, is not lost during the protocol.
24 Citations
41 Claims
-
1. A method of performing a transaction between an electronic payment mechanism associated with a first payment institution, and a payment station associated with a second payment institution, comprising:
-
requesting, by said payment station, payment data from said payment mechanism; generating a plurality of authentication codes in which each authentication code of said plurality of authentication codes is linked to a preceding authentication code in a same transaction between said payment mechanism and said payment station; transmitting, by said payment mechanism, said requested payment data including a respective authentication code of said plurality of authentication codes, to said payment station; and exchanging payment institution data, which is derived from payment data transacted between the payment mechanism and the payment station, between the first payment institution and the second payment institution. - View Dependent Claims (2, 3, 4)
-
-
5. A method of performing a transaction between an electronic payment mechanism associated with a first payment institution, and a payment station associated with a second payment institution, comprising:
-
transferring, by said payment station, a first random value to said payment mechanism; determining a first authentication code using at least a first value, the first random value, and a first balance of said payment mechanism; generating a first end value corresponding to said first authentication code; transferring, by said payment mechanism in response to said first random value transferred by said payment station, said first authentication code to said payment station; transferring, by said payment station, a debiting command to said payment mechanism; reducing said first balance of said payment mechanism to a second balance using said debiting command; transferring, by said payment station, a second random value to said payment mechanism; determining a second authentication code using at least a second start value, the second random value, and said second balance of said payment mechanism; transferring, by said payment mechanism in response to said second random value transferred by said payment station, said second authentication code to said payment station; and exchanging payment institution data, which is derived from payment data transacted between the payment mechanism and the payment station, between the first payment institution and the second payment institution, wherein in said step of determining said second authentication code, said second start value is based on said first end value. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A smart card, comprising:
-
means for storing data corresponding to a balance of said smart card; feedback means for producing at least one authentication code for said smart card; means for combining, which is connected to said means for storing and said feedback means, data from said means for storing and feedback data from said feedback means, and for inputting said combined data to said feedback means; and means for generating a clock pulse which controls an operation of said means for storing and said feedback means, wherein contents of said feedback means are maintained by varying at least one of a frequency and a ratio of said generated clock pulses. - View Dependent Claims (16)
-
-
17. A smart card, comprising:
-
means for storing data corresponding to a balance of said smart card; feedback means for producing at least one authentication code for said smart card; means for combining, which is connected to the means for storing and the feedback means, data from said means for storing and feedback data from said feedback means, and for inputting said combined data to said feedback means; and means for generating a clock pulse which controls an operation of said means for storing and said feedback means, wherein contents of said feedback means are maintained by repeatedly writing said data corresponding to said balance to said means for storing between 50 and 150 times.
-
-
18. A system of performing a transaction between an electronic payment mechanism and a payment station, comprising:
-
means for requesting, by said payment station, payment data from said payment mechanism; means for generating a plurality of authentication codes in which each authentication code of said plurality of authentication codes is linked to a preceding authentication code in a same transaction between said payment mechanism and said payment station; and means for transmitting, by said payment mechanism, said requested payment data including a respective authentication code of said plurality of authentication codes, to said payment station. - View Dependent Claims (19, 20, 21)
-
-
22. A system of performing a transaction between an electronic payment mechanism and a payment station, comprising:
-
means for transferring, by said payment station, a first random value to said payment mechanism; means for determining a first authentication code using at least a first value, the first random value, and a first balance of said payment mechanism; means for generating a first end value corresponding to said first authentication code; means for transferring, by said payment mechanism in response to said first random value transferred by said payment station, said first authentication code to said payment station; means for transferring, by said payment station, a debiting command to said payment mechanism; means for reducing said first balance of said payment mechanism to a second balance using said debiting command; means for transferring, by said payment station, a second random value to said payment mechanism; means for determining a second authentication code using at least a second start value, the second random value, and said second balance of said payment mechanism; and means for transferring, by said payment mechanism in response to said second random value transferred by said payment station, said second authentication code to said payment station; wherein in said means for determining said second authentication code, said second start value is based on said first end value. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31)
-
-
32. A payment station used in a transaction with an electronic payment mechanism, comprising:
-
a first mechanism configured to generate and transfer a first random value to the payment mechanism; and a second mechanism configured to determine whether or not an authentication code received from said payment mechanism is linked to a preceding authentication code in a same transaction between the payment mechanism and the payment station. - View Dependent Claims (33, 34)
-
-
35. An electronic payment mechanism used in a transaction with a payment station, comprising:
-
a first mechanism configured to generate a plurality of authentication codes in which each authentication code of the plurality of authentication codes is linked to a preceding authentication code in a same transaction between the payment mechanism and the payment station; and a second mechanism configured to transfer a respective authentication code generated by said first mechanism to said payment station in response to a random value received from the payment station. - View Dependent Claims (36, 37, 38, 39, 40, 41)
-
Specification