EP1344196A1 - Bezahlungsverfahren und -system und in dem system verwendete telekommunikationsgeräte - Google Patents

Bezahlungsverfahren und -system und in dem system verwendete telekommunikationsgeräte

Info

Publication number
EP1344196A1
EP1344196A1 EP01995729A EP01995729A EP1344196A1 EP 1344196 A1 EP1344196 A1 EP 1344196A1 EP 01995729 A EP01995729 A EP 01995729A EP 01995729 A EP01995729 A EP 01995729A EP 1344196 A1 EP1344196 A1 EP 1344196A1
Authority
EP
European Patent Office
Prior art keywords
buyer
seller
telecommunications equipment
bank
transaction
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP01995729A
Other languages
English (en)
French (fr)
Inventor
Patrick Remery
Fabrice Desplanques
Bernard Darbour
Jacques Traore
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Orange SA
Original Assignee
France Telecom SA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by France Telecom SA filed Critical France Telecom SA
Publication of EP1344196A1 publication Critical patent/EP1344196A1/de
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems

Definitions

  • the present invention relates to a payment method. It also relates to the system for implementing this process, as well as to the telecommunications equipment used in this system.
  • the invention relates to a payment method involving a first entity called “the seller” having a first telecommunications equipment, a second entity called “the buyer” having a second telecommunications equipment, and a third entity called “account manager” grouping on the one hand the bank of the buyer, which has a third telecommunications equipment capable of establishing a link with the second telecommunications equipment belonging to the buyer, and, on the other share, the seller's bank, this process comprising a preliminary exchange which is established between the seller and the buyer via their respective first and second equipment and which is intended for the outcome of a transaction between the seller and the buyer corresponding to the payment of an amount of a service due by the seller.
  • Such a process is described for example in document FR 2 790 162. More specifically, this process requires the intervention of a gateway, such as a payment server, which has the function of authenticating the buyer and the seller and to ensure that the goods ordered will actually be paid for. This process is certainly advantageous from a purchasing confidentiality point of view.
  • a gateway such as a payment server
  • This method also has the drawback of being inflexible in terms of choice in the terms of payment likely to be offered to the buyer, given the impersonal nature of the bank-buyer relationship which is due to the interposition of the server. of payment during the exchange of information between the buyer and his bank.
  • the process includes, following the preliminary exchange between the buyer and the seller, the following exchanges: a) the buyer sends a payment order message directly to his bank, this message comprising at least: information representative of the buyer, information representative of the seller, - said amount of the service, and information representative of the transaction, b) the buyer's bank authenticates the buyer on the basis of representative data of the buyer received, authenticates the transaction on the basis of some of the representative information of the buyer received, representative information of the seller received, information representative of the transaction received and of said amount of the service received, accepts or not, respectively depending on the positive or negative result of these authentications, the order of payment of said amount of the service, and sends in response to the buyer information on whether or not to accept this order, c) the buyer checks the response from his bank and transmits this response to the seller with some of the representative information of the buyer, d) the seller authenticates the transaction by means of said certain representative information of the buyer received, checks the response from the buyer
  • the representative information of the buyer includes data characteristic of a method of payment of said amount of the service which is chosen by the buyer at the time of the exchange a);
  • the information representative of the transaction includes data which is encrypted using a first key contained in the second telecommunications equipment belonging to the buyer, this data being a function of some of said information representative of the buyer, of said representative information of the seller and said amount of the service, and the buyer's bank authenticates this signature during the exchange b); the information on whether or not to accept the payment order sent to the buyer during the exchange b) is in the form of a message signed by a second key contained in said third telecommunications equipment belonging to the buyer's bank, this signature being authenticated on the one hand by the buyer during the exchange c) by a third key contained in said second telecommunications equipment belonging to the buyer and, on the other hand, by the seller during the exchange d), by a fourth key, identical to the third key, contained in said first telecommunications equipment belonging to the seller; the second key belonging to the buyer's bank is a private key and the third and fourth keys belonging respectively to the buyer and the seller are public keys associated with said second private key;
  • said steps a), b), c) and d) of the transaction are carried out identically, the seller, the seller's bank, and, the buyer, respectively playing the role of the buyer, the buyer's bank, and the seller.
  • the second telecommunications equipment belonging to the purchaser comprises first transmission means capable of directly addressing the third telecommunications equipment belonging to the bank from the purchaser a payment order message for said amount of the service, said message comprising at least: information representative of 1 'buyer, information representative of the seller, said amount of the service, and - information representative of the transaction
  • the third telecommunications equipment (E3) belonging to the bank of the buyer comprises: first means of authentication capable of authenticating the buyer on the basis of information representative of the buyer received, information representative of the seller received, information representative of the transaction received and of the amount of the service received, validation means able to accept or not, respectively according to the positive or negative result of these authentications, the order of payment of said amount of the service, and second transmission means capable of sending to the second telecommunications equipment belonging to the buyer information on acceptance or not
  • the buyer's second telecommunications equipment including in addition, first verification means capable of verifying the response of the buyer'
  • the third telecommunications equipment consists of a server.
  • FIG. 1 illustrates the general architecture of the payment system of the invention and the various exchanges established between the various telecommunications equipment.
  • the reference numeral E1 designates a first telecommunications equipment belonging to a seller V
  • the reference numeral E2 a second telecommunications equipment belonging to a buyer A
  • the reference numeral E3 a third telecommunications equipment belonging to a bank Bl of the purchaser A
  • the reference numeral B2 a bank of the seller V.
  • banks Bl and B2 are grouped together within the same entity called “account manager” B.
  • the payment transaction which relates more particularly to the invention is preceded by a preliminary exchange between the seller V and the buyer A, this exchange being symbolized by the arrows 1 and 2 in the figure.
  • buyer A sends a good order message 1 to seller V, and seller V communicates in response to buyer A a message 2 indicating the amount MT corresponding to the service due, as well as the bid.
  • Such an exchange can be done in multiple ways which depend on the telecommunications equipment of buyer A and seller V.
  • the first telecommunications equipment El of seller V and the second telecommunications equipment E2 of buyer A each consist of a terminal connectable to a telephone network.
  • the first and second telecommunications equipment can consist independently of one another, for example, a mobile telephone of the GSM type, a Minitel (registered trademark), or a personal computer PC connected to the network. Internet.
  • the preliminary exchange between seller V and buyer A, as well as subsequent exchanges can be carried out for example: - between the mobile phone of buyer A and the terminal of seller V,
  • the first telecommunications equipment El belonging to the seller V is a terminal connectable to a telephone network
  • the second telecommunications equipment E2 belonging to the buyer A is a mobile telephone of the GSM type capable of receiving the buyer's secure module A.
  • buyer A sends seller V a good order message 1, via his mobile phone El.
  • this message essentially comprises: non-confidential information representative of the seller V, such as the identifier of the account of the seller V, the date and time of the transaction, a chronological number of the transactions carried out by the seller V, and confidential information representative of the seller V which is the above information and the commercial offer grouped confidentially, for example by means of a condensation algorithm known as such, this digest, designated by the CV reference, intended to keep the commercial offer proposed to the buyer confidential, in particular with respect to the buyer's bank.
  • non-confidential information representative of the seller V such as the identifier of the account of the seller V, the date and time of the transaction, a chronological number of the transactions carried out by the seller V
  • confidential information representative of the seller V which is the above information and the commercial offer grouped confidentially, for example by means of a condensation algorithm known as such, this digest, designated by the CV reference, intended to keep the commercial offer proposed to the buyer confidential, in particular with respect to the buyer's bank.
  • the confidential information representative of the seller V can also be represented in the form of a signed message sign (CV) using a secret key (symmetric algorithm), or, private (public key algorithm), calculated in the terminal El of the seller V, so as to guarantee the content of the commercial offer.
  • CV signed message sign
  • Buyer A then introduces his secure module, for example, his bank card with a chip CB, into his mobile phone E2 and types his confidential code CC so as to be authenticated by said module.
  • his secure module for example, his bank card with a chip CB
  • the secure module CB of the buyer A authenticates the seller V and the associated purchase offer, by verifying the signature sign (CV), only in the event that the message sign (CV) has been sent to buyer A, checks the CV digest of the confidential information received, by CV calculation, then by checking the CV calculated digest with the CV digest received, calculates a CA digest of the information confidential representative of buyer A, which essentially includes the identifier of the account of buyer A, the date and time of the transaction, a chronological number of the transactions carried out by buyer A, the digest CA intended to keep the bank information of the buyer confidential, in particular with regard to the seller, calculates a summary CT of the transaction based on said condensed CA, CV and some of the non-confidential information representative of the seller V, and calculates the signature ST of the information representative of the transaction, namely the digest CT and the amount MT of the service, which are signed by a first secret or private key contained in the chip card CB.
  • CV signature sign
  • the confidential information representative of buyer A also includes the choice of a payment method MP which is offered to buyer A, namely payment on credit, payment with deferred debit, payment with immediate debit or others.
  • a payment method MP which is offered to buyer A, namely payment on credit, payment with deferred debit, payment with immediate debit or others.
  • Such modalities are presented, for example, in the form of options contained in the same menu which is displayed on the screen of the mobile phone E2, and which the purchaser A selects.
  • representative of seller V is positive, the following exchange a) takes place.
  • the SIM card (“Subscriber Identification Module”) of the mobile phone E2 of buyer A directly addresses the third telecommunications equipment E3 of bank Bl of buyer A, which equipment is a server, a message 3 of order of payment of the amount MT of the service, this message including:
  • non-confidential information with respect to the bank representative of buyer A such as the identifier of the account of buyer A, the date and time of the transaction, a chronological number of the transactions carried out by the buyer A,
  • the payment order message does not contain any data relating to the offer to purchase, thus ensuring the confidentiality of the nature of the goods ordered by buyer A.
  • this payment order message 3 is sent directly by the buyer A to his bank Bl thus makes it possible to reduce repudiation of the order by the buyer as much as possible.
  • the bank Bl of buyer A accepts or not the payment order of said amount MT of the service.
  • the server E3 of the bank Bl of the buyer A sends to the SIM card of the mobile phone E2 of the buyer A a message 4 which contains information on the acceptance or not of the order, which group together the summary CT of the transaction, the amount MT of the transaction, the chronological number of the transactions carried out by the seller V, as well as a datum "status of the transaction", S.
  • This data S can correspond to one of the following states: - transaction accepted with credit, transaction accepted with deferred debit, transaction accepted with immediate debit, transaction refused.
  • Information on whether or not to accept the payment order may be recorded in the buyer's smart card A and / or the seller's terminal, and be subsequently deleted when buyer A and / or seller V considers this order obsolete.
  • the message 4 is advantageously signed using a second key, preferably private, contained in the server E3 of the bank Bl. This thus makes it possible to guarantee the authenticity of the transaction.
  • the payment of the amount MT of the service is made automatically by the bank Bl of the buyer A for the benefit of the bank B2 of the seller V, by through a clearing agency C known per se, such as the interbank service of telecompensation.
  • exchange c) takes place.
  • Buyer's CB chip card A authenticates the AT signature by means of a third key contained in the CB chip card, which is a public key associated with the private key contained in the server E3 of bank Bl, then checks the SW data. Once these operations have been carried out, the SIM card of the mobile phone of the buyer A sends a message 5 to the terminal El of the seller V, this message comprising:
  • exchange d takes place.
  • the vendor's terminal El authenticates the transaction by calculating the digest CT from the digest CA received and the digest CV calculated during the sending of the message 2 at the start of the transaction.
  • the terminal El of the seller V authenticates the signature AT by means of a fourth key, which is identical to the third key contained in the smart card CB of the mobile phone E2 of buyer A,
  • the seller V delivers the service with confidence. It then sends the buyer A a message 6 confirming the delivery of the service.
  • V plays the role of buyer A, and buyer A that of seller V.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
EP01995729A 2000-12-22 2001-12-18 Bezahlungsverfahren und -system und in dem system verwendete telekommunikationsgeräte Withdrawn EP1344196A1 (de)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
FR0017078 2000-12-22
FR0017078A FR2818778A1 (fr) 2000-12-22 2000-12-22 Procede et systeme de paiement, et equipements de telecommunications mis en oeuvre dans ce systeme
PCT/FR2001/004029 WO2002052517A1 (fr) 2000-12-22 2001-12-18 Procede et systeme de paiement et equipements de telecommunications mis en oeuvre dans ce systeme

Publications (1)

Publication Number Publication Date
EP1344196A1 true EP1344196A1 (de) 2003-09-17

Family

ID=8858242

Family Applications (1)

Application Number Title Priority Date Filing Date
EP01995729A Withdrawn EP1344196A1 (de) 2000-12-22 2001-12-18 Bezahlungsverfahren und -system und in dem system verwendete telekommunikationsgeräte

Country Status (3)

Country Link
EP (1) EP1344196A1 (de)
FR (1) FR2818778A1 (de)
WO (1) WO2002052517A1 (de)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2847053B1 (fr) * 2002-11-08 2005-12-30 France Telecom Procede et systeme d'echange de biens entre particuliers par l'intermediaire d'un reseau de transmission de donnees numeriques

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6029150A (en) * 1996-10-04 2000-02-22 Certco, Llc Payment and transactions in electronic commerce system
US7231372B1 (en) * 1998-09-22 2007-06-12 Siemens Aktiengesellschaft Method and system for paying for goods or services
FR2790162B1 (fr) 1999-02-19 2001-04-13 France Telecom Procede de telepaiement et systeme pour la mise en oeuvre de ce procede

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO02052517A1 *

Also Published As

Publication number Publication date
WO2002052517A1 (fr) 2002-07-04
FR2818778A1 (fr) 2002-06-28

Similar Documents

Publication Publication Date Title
EP1153376B1 (de) Verfahren zum fernbezahlen und system zur durchführung des verfahrens
EP1014317B1 (de) Gesichertes Bezahlungsverfahren
WO2000049554A2 (en) Method and apparatus for conducting commerce between individuals
WO2002065414A1 (fr) Procede et systeme de telepaiement
WO2001043092A1 (fr) Procede et systeme de gestion d'une transaction securisee a travers un reseau de communication
EP1754205A1 (de) Anonymes und sicheres verfahren für zahlungen über internet und mobile vorrichtungen
EP1323140B1 (de) Verfahren zum liefern von identifikationsdaten einer bezahlkarte an einen anwender
EP1428183B1 (de) Verfahren und system mit einer vom benutzer tragbaren einrichtung zum validieren einer anforderung mit einer entität
FR2829647A1 (fr) Procede et systeme permettant a un utilisateur d'authentifier une transaction relative a l'acquisition de biens ou de services, au moyen d'un terminal nomade
WO2002029742A1 (fr) Mandataire de paiement securise internet avec validation par telephone mobile
EP1344196A1 (de) Bezahlungsverfahren und -system und in dem system verwendete telekommunikationsgeräte
EP1354288B1 (de) Verfahren mit elektronischen bankdaten zur durchführung sicherer transaktionen
FR2823882A1 (fr) Procede et systeme de validation de paiement
WO2001073706A1 (fr) Systeme de paiement permettant de ne pas divulguer d'information bancaire sur le reseau public et quasi-public
EP2800072A2 (de) Verfahren zur Ausgabe über einen Automaten von Mobiltelefonkarten (SIM-Karten) mit Prepaid- oder Postpaid-Abonnement
FR2914763A1 (fr) Cryptogramme dynamique
FR2867585A1 (fr) Dispositif de transaction a efficacite amelioree
CA2325895C (fr) Procede de paiement securise
FR2828966A1 (fr) Procede pour communiquer de facon securisee des donnees d'identification d'une carte de paiement
FR2819127A1 (fr) Procede et installation de securisation de transactions a distance par confirmation de transaction
FR2750275A1 (fr) Procede de gestion dans un systeme telematique distribue et systeme de mise en oeuvre de ce procede
FR2828040A1 (fr) Procede de paiement en toute confiance
EP1417656A1 (de) Verfahren zum eintragen eines käufers auf einem bezahlungsserver und das auf dem eintrag basierende telebezahlungsverfahren
EP1156620A1 (de) Verbesserte Vorrichtung zur Datenaustausch in einem Netzwerk, und zugehörige Zahlungskarte und zugehöriges Verfahren
KR20020006191A (ko) 인터넷을 이용한 가상은행의 운용방법

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20030603

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE TR

AX Request for extension of the european patent

Extension state: AL LT LV MK RO SI

RIN1 Information on inventor provided before grant (corrected)

Inventor name: TRAORE, JACQUES

Inventor name: DARBOUR, BERNARD

Inventor name: DESPLANQUES, FABRICE

Inventor name: REMERY, PATRICK

17Q First examination report despatched

Effective date: 20040202

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20040615