Electronic payment schemes in a mobile environment for short-range transactions
First Claim
1. A method enabling a user in a mobile environment to conduct transactions via a self-service merchant terminal, comprising:
- a) maintaining a security key in a mobile phone device;
b) transferring the security key and mobile phone identification into at least one user portable fob or pilot via an initial short-range radio link;
c) transferring the security key and the mobile phone identification from the at least one user portable fob or pilot to a self-service merchant terminal through the initial short-range radio link;
d) establishing a secure short-range connection between the self-service terminal and the mobile phone based on the transferred security key and the mobile phone identification information from the at least on user portable fob or pilot, wherein the initial short-range radio link has a significantly smaller radio coverage than the secure short-range connection, ande) verifying the presence of a correct pilot by the terminal via computing and comparing an expected response from the mobile phone with the transferred security key.
2 Assignments
0 Petitions
Accused Products
Abstract
A short-range transaction system enables a user to conduct transactions with a self-service terminal in a user-friendly environment without using currency. The user carries a portable smart card, which interacts with a mobile phone. After authentication via an RFID connection, the device MAC address and a security key (K) are imprinted in the card. In operation, the user waves the smart card past the self-service terminal and activates an RFID connection. The terminal sends the card a random number. The card returns the MAC address and a result (RES) computed using the hash value and the security key. The terminal using the MAC address and security key establishes a secure connection with the device. The terminal downloads the user'"'"'s transaction interface from the device and displays the user interface at the self-service terminal. The user completes a transaction at the terminal via the user interface.
169 Citations
43 Claims
-
1. A method enabling a user in a mobile environment to conduct transactions via a self-service merchant terminal, comprising:
-
a) maintaining a security key in a mobile phone device; b) transferring the security key and mobile phone identification into at least one user portable fob or pilot via an initial short-range radio link; c) transferring the security key and the mobile phone identification from the at least one user portable fob or pilot to a self-service merchant terminal through the initial short-range radio link; d) establishing a secure short-range connection between the self-service terminal and the mobile phone based on the transferred security key and the mobile phone identification information from the at least on user portable fob or pilot, wherein the initial short-range radio link has a significantly smaller radio coverage than the secure short-range connection, and e) verifying the presence of a correct pilot by the terminal via computing and comparing an expected response from the mobile phone with the transferred security key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system for enabling a user in a mobile environment to conduct transactions via a self-service terminal, comprising:
-
a) a mobile device including a short-range communication transceiver and an RFID transceiver; b) a semi-passive RFID transponder; c) a self-service terminal including a RFID transceiver and a short-range transceiver; d) means for storing identification information and at least security information in the mobile device; e) means for transferring said stored identification and the security information of the device over an RFID connection into the user portable fob or pilot; f) means for transferring by the user fob or pilot said transferred identification and security information to the self-service terminal over an RFID connection; g) means for establishing a secure short-range connection between the self-service terminal and the device based on said transferred identification and security information of the device from the user portable fob or pilot, wherein the RFID connection has significantly smaller radio coverage than the secure short-range connection, and h) means for verifying the presence of a correct pilot by the terminal via computing and comparing an expected response from the mobile phone with the transferred security key. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26)
-
-
27. A medium, executable in a computer system, enabling a user in a mobile environment to activate a self-service terminal to conduct transactions, the medium comprising:
-
a) program code for storing at least a security key in a mobile phone device; b)program code for transferring the security key and mobile phone device identification in a user portable fob or pilot associated with the mobile phone device; c) program code for transferring the security key and the mobile phone identification from the at least one user portable fob or pilot to a self-service merchant terminal through the initial short-range radio link; d) program code for establishing a secure short-range connection between the self-service terminal and the mobile phone based on the transferred security key and the mobile phone identification information from the at least on user portable fob or pilot, wherein the initial short-range radio link has a significantly smaller radio coverage than the secure short-range connection, and e) program code for verifying the presence of a correct pilot by the terminal via computing and comparing an expected response from the mobile phone with the transferred security key. - View Dependent Claims (28, 29, 30)
-
-
31. A method of enabling a first user portable fob or pilot device to serve as a master fob or pilot for at least one second user portable fob or pilot devices as slave devices capable of interacting with a terminal, comprising:
-
installing a reader and switching means in a first user portable fob or pilot device serving as a master device and further including a processor and storage means; transferring and storing in the master fob or pilot device a phone address and a security key of a mobile phone; at least one second user portable fob or pilot device, each serving as a slave device to the master device and further including a processor and storage, each slave device capable of receiving and transmitting signals from/to the master device; transferring the phone address, security key and policy restraints in a slave device after receiving an address identifying the slave device; and using the slave device to interact with a terminal to purchase an item, after a secure connection is established between the terminal and the mobile phone. - View Dependent Claims (32, 33, 34, 35, 37, 38, 39, 40, 41, 42)
-
-
36. The method of 31 further comprising:
comparing the purchased items to prohibited items stored in the slave device.
-
43. A method enabling a user in a mobile environment to conduct transactions via a self-service merchant terminal, comprising:
-
a) maintaining a security key in a mobile phone device; b) transferring the security key and mobile phone identification into at least one user portable fob or pilot via a RFID connection between the mobile phone device and the at least associated portable pilot; c) transferring the security key and the mobile phone identification from the at least one user portable fob or pilot to a self-service merchant terminal via a RFID connection between the mobile phone device and the at least associated portable pilot; d) establishing a secure short-range connection between the self-service terminal and the mobile phone based on the transferred security key and the mobile phone identification information from the at least on user portable fob or pilot, wherein the RFID connection has a significantly smaller radio coverage than the secure short-range connection, e) storing a plurality of authentication codes for one time use in the device for establishing short-range connections between the device and the terminal; and f) receiving a user transaction interface at the terminal upon establishment of the secure short-range connection.
-
Specification