Point-of-sale and automated teller machine transactions using trusted mobile access device

US 8,881,977 B1
Filed: 03/13/2013
Issued: 11/11/2014
Est. Priority Date: 03/13/2013
Status: Active Grant

First Claim

Patent Images

1. A method for a mobile communication device to conduct a transaction with an unattended point-of-transaction device, comprising:

establishing a secure wireless telecommunications link between the mobile communication device and an entity that manages the unattended point-of-transaction device;

transmitting, by the mobile communication device, confidential information over the link, the confidential information comprising information that establishes the authorization of the mobile communication device to interact with the unattended point-of-transaction device and information regarding an action the unattended point-of-transaction device is requested to perform in conducting the transaction, wherein the action the unattended point-of-transaction device is requested to perform and at least a portion of the information that establishes the authorization of the mobile communication device to interact with the unattended point-of-transaction device have been entered into a user interface on the mobile communication device;

in response to receiving the confidential information from mobile communication device, verifying, by the entity that manages the unattended point-of-sale transaction device, that the mobile communication device is authorized to interact with the unattended point-of-transaction device;

in response to the verifying, creating, by the entity that manages the unattended point-of-sale transaction device, a transaction file that specifies the action the unattended point-of-transaction device is to perform in conducting the transaction;

assigning, by the entity that manages the unattended point-of-sale transaction device, a transaction identifier that uniquely identifies the transaction to the transaction file;

sending, from the entity that manages the unattended point-of-sale transaction device, the transaction file to the unattended point-of-transaction device;

receiving, by the mobile communication device, the transaction identifier from the entity that manages the unattended point-of-sale transaction device;

verifying, by the mobile communication device, the unattended point-of-transaction device by looking up an identity of a proximate unattended point-of-transaction device and comparing the identity of the proximate unattended point-of-transaction device to an identity of the unattended point-of-transaction device;

transmitting, by the mobile communication device, the transaction identifier to the unattended point-of-transaction device via a near field communication (NFC) transmission;

comparing, by the unattended point-of-transaction device, the transaction identifier received from the mobile communication device to the transaction identifier made available in the transaction file; and

when the transaction identifier received from the mobile communication device matches the transaction identifier made available in the transaction file, performing, by the unattended point-of-sale transaction device, the action specified in the transaction file.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for a mobile device to conduct a transaction with an unattended point-of-transaction device is disclosed. The method comprises transmitting to the unattended point-of-transaction device, via near field communication (NFC), information indicating that the transaction is being initiated; receiving from the unattended point-of-transaction device, via NFC, credentials indicating that the unattended point-of-transaction device is authorized to engage in the transaction; and transmitting to the unattended point-of-transaction device, via NFC, secure information indicating to the unattended point-of-transaction device that the mobile communication device is authorized to conduct the transaction. The secure information may be a PIN entered into the mobile device or a data record specifying an action to be performed by the unattended point-of-transaction device. The data record may be generated by the mobile device based on the entry into the mobile device of the PIN and information specifying the action to be performed by the unattended point-of-transaction device.

Citations

18 Claims

1. A method for a mobile communication device to conduct a transaction with an unattended point-of-transaction device, comprising:
- establishing a secure wireless telecommunications link between the mobile communication device and an entity that manages the unattended point-of-transaction device;
  
  transmitting, by the mobile communication device, confidential information over the link, the confidential information comprising information that establishes the authorization of the mobile communication device to interact with the unattended point-of-transaction device and information regarding an action the unattended point-of-transaction device is requested to perform in conducting the transaction, wherein the action the unattended point-of-transaction device is requested to perform and at least a portion of the information that establishes the authorization of the mobile communication device to interact with the unattended point-of-transaction device have been entered into a user interface on the mobile communication device;
  
  in response to receiving the confidential information from mobile communication device, verifying, by the entity that manages the unattended point-of-sale transaction device, that the mobile communication device is authorized to interact with the unattended point-of-transaction device;
  
  in response to the verifying, creating, by the entity that manages the unattended point-of-sale transaction device, a transaction file that specifies the action the unattended point-of-transaction device is to perform in conducting the transaction;
  
  assigning, by the entity that manages the unattended point-of-sale transaction device, a transaction identifier that uniquely identifies the transaction to the transaction file;
  
  sending, from the entity that manages the unattended point-of-sale transaction device, the transaction file to the unattended point-of-transaction device;
  
  receiving, by the mobile communication device, the transaction identifier from the entity that manages the unattended point-of-sale transaction device;
  
  verifying, by the mobile communication device, the unattended point-of-transaction device by looking up an identity of a proximate unattended point-of-transaction device and comparing the identity of the proximate unattended point-of-transaction device to an identity of the unattended point-of-transaction device;
  
  transmitting, by the mobile communication device, the transaction identifier to the unattended point-of-transaction device via a near field communication (NFC) transmission;
  
  comparing, by the unattended point-of-transaction device, the transaction identifier received from the mobile communication device to the transaction identifier made available in the transaction file; and
  
  when the transaction identifier received from the mobile communication device matches the transaction identifier made available in the transaction file, performing, by the unattended point-of-sale transaction device, the action specified in the transaction file.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein the transaction identifier becomes invalid after the transaction is complete.
  - 3. The method of claim 1, wherein a limit is imposed on a length of time the transaction identifier remains available for transmission by the mobile communication device after being received by the mobile communication device.
  - 4. The method of claim 1, wherein a time window is imposed for the availability of the transaction identifier to be transmitted by the mobile communication device, the time window comprising a start time for availability for transmission and a length of time after the start time.
  - 5. The method of claim 1, wherein the transaction identifier is restricted to being transmitted by the mobile communication device only in at least one designated geographic location.
  - 6. The method of claim 5, wherein the information that establishes the authorization of the mobile communication device to interact with the unattended point-of-transaction device is at least one of:
    - account information for an account associated with the transaction and a personal identification number (PIN) associated with the account information;
      
      a user identifier and a password; and
      
      biometric information.
  - 7. The method of claim 1, wherein the unattended point-of-transaction device provides at least one credential to the mobile communication device to thereby verify that the unattended point-of-transaction device is legitimate.
  - 8. The method of claim 1, wherein the mobile communication device self-locates and after self-location, looks up the proximate unattended point of transaction device.
  - 9. The method of claim 1, wherein the transaction identifier becomes invalid after one use.
  - 10. The method of claim 1, wherein a user of the mobile communication device designates a time period during which the transaction identifier will be valid.

11. A system for conducting a transaction with an unattended point-of-transaction device, comprising:
- a telecommunications device comprising;
  
  a memory;
  
  a processor; and
  
  an application stored in the memory and executable by the processor to;
  
  establish a secure wireless telecommunications link between the telecommunications device and an entity that manages an unattended point-of-transaction device,transmit confidential information over the link, the confidential information comprising information that establishes the authorization of the telecommunications device to conduct the transaction with the unattended point-of-transaction device and information regarding an action the unattended point-of-transaction device is requested to perform in conducting the transaction, wherein the information regarding the action the unattended point-of-transaction device is requested to perform and at least a portion of the information that establishes the authorization of the telecommunications device to interact with the unattended point-of-transaction device have been entered into a user interface on the telecommunications device,receive from the entity that manages the unattended point-of-transaction device a transaction identifier that uniquely identifies the transaction,verify the unattended point-of-transaction device by looking up an identity of a proximate unattended point-of-transaction device and comparing the identity of the proximate unattended point-of-transaction device to an identity of the unattended point-of-transaction device, andtransmit the transaction identifier to the unattended point-of-transaction device via a near field communication (NFC) transmission;
  
  a system of the entity that manages an unattended point-of-transaction device configured to;
  
  in response to receiving the confidential information from the telecommunications device, verify that the telecommunications device is authorized to interact with the unattended point-of-transaction device,in response to the verification, create a transaction file that specifies the action the unattended point-of-transaction device is to perform in conducting the transaction,assign the transaction identifier that uniquely identifies the transaction to the transaction file, andmake the transaction file available to the unattended point-of-transaction device; and
  
  the unattended point-of-transaction device configured to;
  
  compare the transaction identifier received from the telecommunications device to the transaction identifier made available in the transaction file, andwhen the transaction identifier received from the telecommunications device matches the transaction identifier made available in the transaction file, perform the action specified in the transaction file.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
- - 12. The system of claim 11, wherein the validity of the transaction identifier is limited by at least one of:
    - a limit imposed on a length of time the transaction identifier remains available for transmission by the telecommunications device after being received by the telecommunications device;
      
      a time window imposed for the availability of the transaction identifier to be transmitted by the telecommunications device, the time window comprising a start time for availability for transmission and a length of time after the start time; and
      
      the transaction identifier being restricted to being transmitted by the telecommunications device only in at least one designated geographic location.
  - 13. The system of claim 11, wherein the information that establishes the authorization of the telecommunications device to interact with the unattended point-of-transaction device is at least one of:
    - account information for an account associated with the transaction and a personal identification number (PIN) associated with the account information;
      
      a user identifier and a password; and
      
      biometric information.
  - 14. The system of claim 11, wherein the application is further configured to manage at least one of:
    - storage and retrieval of at least a portion of the information that establishes the authorization of the telecommunications device to interact with the unattended point-of-transaction device;
      
      transmission of the confidential information over the secure wireless telecommunications link, reception of the transaction identifier over the secure wireless telecommunications link, and transmission of the transaction identifier to the unattended point-of-transaction device via NFC; and
      
      erasure of secure information entered into or received by the telecommunications device.
  - 15. The system of claim 11, wherein the unattended point-of-transaction device is further configure to provide at least one credential to the telecommunications device to thereby verify that the unattended point-of-transaction device is legitimate.
  - 16. The system of claim of claim 11, wherein the telecommunications device self-locates and after self-location, looks up the proximate unattended point of transaction device.
  - 17. The system of claim of claim 11, wherein the transaction identifier becomes invalid after one use.
  - 18. The system of claim of claim 11, wherein a user of the telecommunications device designates a time period during which the transaction identifier will be valid.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
T-Mobile Innovations LLC (Deutsche Telekom AG)
Original Assignee
Sprint Communications Company LP (Deutsche Telekom AG)
Inventors
Paczkowski, Lyle W., Parsel, William M., Persson, Carl J., Schlesener, Matthew Carl
Primary Examiner(s)
Marshall, Christle I

Application Number

US13/802,383
Time in Patent Office

608 Days
Field of Search

705/43, 902/8, 235/379
US Class Current

235/379
CPC Class Codes

G06Q 20/1085   involving automatic teller ...

G06Q 20/204   comprising interface for re...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/3278   RFID or NFC payments by mea...

Point-of-sale and automated teller machine transactions using trusted mobile access device

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Point-of-sale and automated teller machine transactions using trusted mobile access device

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links