Smart card load and purchase transactions using wireless telecommunications network
First Claim
1. A method of loading value onto a subscriber identification module (SIM) located within a mobile telephone handset of a user, said method comprising:
- sending a funds request message from said SIM to a bank system that controls an account of said user, said funds request message including a load value and a funding account identifier that identifies said account of said user;
sending a funds response message from said bank system to said SIM indicating an approval to debit said user account by said load value;
sending a load request message from said SIM to an issuer system, said load request message including a first cryptographic signature, wherein said first cryptographic signature is generated using a first cryptographic key shared between said SIM and an issuer;
validating said first cryptographic signature by said issuer system and authenticating said SIM;
sending a load response message from said issuer system to said SIM including a second cryptographic signature, wherein said second cryptographic signature is generated using a second cryptographic key shared between said SIM and said issuer;
validating, by said SIM, said second cryptographic signature; and
loading said load value into a stored-value application of said SIM.
0 Assignments
0 Petitions
Accused Products
Abstract
A smart card transaction allows a consumer to load value onto a smart card and to make purchases using a smart card with a mobile telephone handset over the telecommunications network. For loading, the system includes: a mobile telephone handset including a card reader; a gateway computer; a funds issuer computer; and an authentication computer. The mobile telephone handset receives a request from a user to load a value onto the smart card. The handset generates a funds request message which includes the value and sends the funds request message to a funds issuer computer. The funds issuer computer debits an account associated with the user. Next, the handset generates a load request message with a cryptographic signature and sends the load request message to an authentication computer which authenticates the smart card. The handset receives a response message which includes a cryptographic signature and an approval to load. Finally, the handset validates the second cryptographic signature and loads the value onto the smart card. For payment, the system includes a merchant server and a payment server. First, the handset sends an order request message to the merchant server computer, and in return receives a purchase instruction message. The handset processes the purchase instruction message locally, and then sends a draw request message to a payment server computer. The payment server computer sends a debit message which includes a cryptographic signature and an approval to debit the smart card. Finally, the handset validates the cryptographic signature and debits the smart card.
80 Citations
11 Claims
-
1. A method of loading value onto a subscriber identification module (SIM) located within a mobile telephone handset of a user, said method comprising:
-
sending a funds request message from said SIM to a bank system that controls an account of said user, said funds request message including a load value and a funding account identifier that identifies said account of said user; sending a funds response message from said bank system to said SIM indicating an approval to debit said user account by said load value; sending a load request message from said SIM to an issuer system, said load request message including a first cryptographic signature, wherein said first cryptographic signature is generated using a first cryptographic key shared between said SIM and an issuer; validating said first cryptographic signature by said issuer system and authenticating said SIM; sending a load response message from said issuer system to said SIM including a second cryptographic signature, wherein said second cryptographic signature is generated using a second cryptographic key shared between said SIM and said issuer; validating, by said SIM, said second cryptographic signature; and loading said load value into a stored-value application of said SIM. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of loading value over a wireless telecommunications network onto a subscriber identification module (SIM) located within a mobile telephone handset, said method comprising:
-
receiving at said SIM within said mobile telephone handset a request from a user to load a load value onto said SIM; generating, by said SIM, a cryptographic signature S1 using a first cryptographic key shared between said SIM and an issuer; preparing a load data message that includes said load value, a funding account identifier, and said cryptographic signature S1; sending said load data message over said telecommunications network from said SIM of said handset to a gateway server computer; receiving an approval response message from said gateway server computer at said SIM of said handset, said approval response message including a cryptographic signature S2 and an approval to load said load value, wherein said cryptographic signature S2 is generated using a second cryptographic key shared between said SIM and said issuer; validating, by said SIM, said cryptographic signature S2; and loading said load value into a stored-value application of said SIM. - View Dependent Claims (8, 9, 10, 11)
-
Specification