METHOD, DEVICE AND SECURE ELEMENT FOR CONDUCTING A SECURED FINANCIAL TRANSACTION ON A DEVICE
First Claim
1. A secure element for installation in a device used as a payment terminal, the device running a point of sale (POS) application, the POS application comprising a payment control application, the payment control application comprising control instructions to control the secure element, the device comprising a processor, an interface and a communication interface, the secure element comprising instructions accessed from a non-transitory computer readable storage medium to cause the secure element, upon executing the instructions, to run:
- an Europay, MasterCard, and Visa (EMV) transaction module that is configured to process data acquired by the interface of the device from a payment apparatus, the interface being a contactless interface configured to receive data contactlessly from the payment apparatus;
an operating system (OS) configured to process data provided by the EMV transaction module;
wherein the EMV transaction module is configured to execute;
a reception of a request to conduct a secured financial transaction;
an acquisition, by the secure element, via the interface of the device, of data relating to a financial account from the payment apparatus, the acquisition comprising (i) a sending of a Select Proximity Payment System Environment (PPSE) request to the payment apparatus, (ii) a receiving of a response from the payment apparatus indicating payment applications supported by the payment apparatus and (iii) a selection of a payment application amongst those available;
an establishment of a secured communication channel with a server of a financial institution related to the financial account through the communication interface of the device, the establishment comprising a sending, by the secure element, of a request to establish the secured communication channel by the payment control application;
a sending over the secured communication channel to the server of an authorization request to perform the secured financial transaction, the authorization request comprising at least a portion of the data relating to the financial account;
a reception over the secured communication channel from the server of a response to the authorization request; and
a processing of the response to the authorization request to generate a status of the secured financial transaction.
6 Assignments
0 Petitions
Accused Products
Abstract
A device and a secure element for conducting a secured financial transaction are disclosed. The device comprises a central processing unit; a communication interface for establishing a communication between the device and a financial institution related to a financial account; an interface for acquiring data relating to the financial account; the secure element for processing at least a portion of the data relating to the financial account acquired by the interface; and control logic for acquiring a purchase amount to be debited from the financial account and for obtaining a transaction authorization from the financial institution related to the financial account, the transaction authorization being based, at least partially, on data processed solely by the secure element independently of data processed by the central processing unit. A method of conducting the secured financial transaction, and a computer program product for execution by the secure element are also disclosed.
21 Citations
20 Claims
-
1. A secure element for installation in a device used as a payment terminal, the device running a point of sale (POS) application, the POS application comprising a payment control application, the payment control application comprising control instructions to control the secure element, the device comprising a processor, an interface and a communication interface, the secure element comprising instructions accessed from a non-transitory computer readable storage medium to cause the secure element, upon executing the instructions, to run:
-
an Europay, MasterCard, and Visa (EMV) transaction module that is configured to process data acquired by the interface of the device from a payment apparatus, the interface being a contactless interface configured to receive data contactlessly from the payment apparatus; an operating system (OS) configured to process data provided by the EMV transaction module; wherein the EMV transaction module is configured to execute; a reception of a request to conduct a secured financial transaction; an acquisition, by the secure element, via the interface of the device, of data relating to a financial account from the payment apparatus, the acquisition comprising (i) a sending of a Select Proximity Payment System Environment (PPSE) request to the payment apparatus, (ii) a receiving of a response from the payment apparatus indicating payment applications supported by the payment apparatus and (iii) a selection of a payment application amongst those available; an establishment of a secured communication channel with a server of a financial institution related to the financial account through the communication interface of the device, the establishment comprising a sending, by the secure element, of a request to establish the secured communication channel by the payment control application; a sending over the secured communication channel to the server of an authorization request to perform the secured financial transaction, the authorization request comprising at least a portion of the data relating to the financial account; a reception over the secured communication channel from the server of a response to the authorization request; and a processing of the response to the authorization request to generate a status of the secured financial transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A non-transitory computer readable storage medium comprising computer-executable instructions for execution by a secure element of a device used as a payment terminal, the device running a point of sale (POS) application, the POS application comprising a payment control application, the payment control application comprising control instructions to control the secure element, the computer-executable instructions, upon execution by a processor, causing the secure element to run:
-
an Europay, MasterCard, and Visa (EMV) transaction module that is configured to process data acquired by an interface of the device from a payment apparatus, the interface being a contactless interface configured to receive data contactlessly from the payment apparatus; an operating system (OS) configured to process data provided by the EMV transaction module; wherein the EMV transaction module is configured to execute; a reception of a request to conduct a secured financial transaction; an acquisition, by the secure element, via the interface of the device, of data relating to a financial account from the payment apparatus, the acquisition comprising (i) a sending of a Select Proximity Payment System Environment (PPSE) request to the payment apparatus, (ii) a receiving of a response from the payment apparatus indicating payment applications supported by the payment apparatus and (iii) a selection of a payment application amongst those available; an establishment of a secured communication channel with a server of a financial institution related to the financial account through the communication interface of the device, the establishment comprising a sending, by the secure element, of a request to establish the secured communication channel by the payment control application; a sending over the secured communication channel to the server of an authorization request to perform the secured financial transaction, the authorization request comprising at least a portion of the data relating to the financial account; a reception over the secured communication channel from the server of a response to the authorization request; and a processing of the response to the authorization request to generate a status of the secured financial transaction. - View Dependent Claims (13, 14)
-
-
15. A device, the device comprising a processor, a non-transitory computer readable storage medium and a secure element, the device running a point of sale (POS) application, the POS application comprising a payment control application, the payment control application comprising control instructions to control the secure element, the non-transitory computer readable storage medium comprising computer-executable instructions for execution by the secure element, the computer-executable instructions, upon execution by the secure element, causing the secure element to run:
-
an Europay, MasterCard, and Visa (EMV) transaction module that is configured to process data acquired by an interface of the device from a payment apparatus, the interface being a contactless interface configured to receive data contactlessly from the payment apparatus; an operating system (OS) configured to process data provided by the EMV transaction module; wherein the EMV transaction module is configured to execute; a reception of a request to conduct a secured financial transaction; an acquisition, by the secure element, via the interface of the device, of data relating to a financial account from the payment apparatus, the acquisition comprising (i) a sending of a Select Proximity Payment System Environment (PPSE) request to the payment apparatus, (ii) a receiving of a response from the payment apparatus indicating payment applications supported by the payment apparatus and (iii) a selection of a payment application amongst those available; an establishment of a secured communication channel with a server of a financial institution related to the financial account through the communication interface of the device, the establishment comprising a sending, by the secure element, of a request to establish the secured communication channel by the payment control application; a sending over the secured communication channel to the server of an authorization request to perform the secured financial transaction, the authorization request comprising at least a portion of the data relating to the financial account; a reception over the secured communication channel from the server of a response to the authorization request; and a processing of the response to the authorization request to generate a status of the secured financial transaction. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification