DE202004010932U1 - Terminal, in particular for a payment system for carrying out an electronic payment process - Google Patents

Abstract

Terminal (20) with
- A SIM card (SIM) to operate the terminal as a mobile device and
- A control device (C) and at least one input and output device (21, 22, 24, 25) for operating the terminal, characterized by
- A chip card receiving device (50) for receiving and contacting a chip card (51, MC).

Description

The Invention relates to a terminal for a payment system with the generic features of the protection claim 1.

To the Pay for services or goods or for other transfer There are a number of electronic payment systems for money. Generally a payment system with a background system is known Access to databases in which data on dealers and potential customers, in particular bank customers with bank accounts are stored. The payment system also points a first group of terminals, which are called dealer terminals are available at sales outlets or service outlets. Furthermore you know the payment system uses a second group of terminals as customer terminals on, with the customer terminals from Users are served making a payment at the merchant terminal or opposite a dealer terminal want to make. A simple encryption system is also generally known to be used in order not to transmit the data as unencrypted plain text. The payment system thus serves to carry out a monetary transaction a transfer of data between a particular first terminal of the first group of terminals and a specific second terminal of the second Group of terminals.

Problematic in such payment systems, however, the security of the authorization the payment by the customer, whereby against misuse is not ensured can be that the one who triggers the payment, too actually the one is entitled to do so. Often, a customer simply authorizes a central office to credit money from his account to a merchant's account. The The central office can be a bank, a credit card institute, etc. Usually enough the signature of the customer at the location of the action or purchase on a form that the merchant uses as a credit card receipt, Receives direct debit receipt, etc. after the customer inserts his card into an appropriate dealer terminal Has. After the customer has signed, the dealer only checks by comparison the signature on the receipt and the signature on the card of the customer, whether it is the supposedly correct cardholder is. A little higher Security is provided by entering a personal identification number (PIN), which the customer enters into the dealer terminal enters.

In In any case, there is the problem that the customer has specific data his card and, if applicable, specific personal data about his transfers own person into the dealer terminal, so that the dealer sensitive Receives data, which is abusive by the dealer can be used.

The transfer the background system data entered in the dealer terminal, can be done in different ways. Are common for transmission data telephone connections with special data transmission protocols, such as payment traffic terminals (ZVT). The is also known Use of mobile devices, whereby the advantage is used that the customer is the mobile operator is known and this has permission, as a collection company amounts move in together with the mobile phone bill. There is also the advantage that the customer stands out by transferring the cell phone number authenticated of his mobile device serving as a customer terminal or in the best case by entering another PIN or similar Identification for an additional Protection ensures.

Out DE 199 03 363 C2 a method for carrying out cashless financial transactions is known, in which essentially an infrared interface is used for the transmission of the data between the dealer terminal and the customer terminal. Such an infrared interface is set up in a standardized manner in conventional mobile radio devices, notebooks and the like. A disadvantage of such infrared interfaces, however, is a great deal of uncertainty due to the large scattering angle, since by means of the simplest and inconspicuous technology, all data can be read, copied and also generated by a separate device in the vicinity of the transmitting terminal. Security for money transactions is therefore not guaranteed. In addition, data is exchanged directly between the customer and dealer in this process. This enables manipulation in a wide variety of ways, in particular manipulation with credit card data at dubious merchants. In addition, the anonymity of the customer towards the dealer is not guaranteed. The method also has a background system with a background method for checking creditworthiness, checking authorization, etc., this method essentially corresponding to the standard methods of conventional online payments, such as when using an EC card (EC: Eurocheque) in conjunction with a PIN input.

An electronic payment system is known from WO 98/47116, which essentially corresponds to methods known per se from the field of credit card inquiries and the so-called e-cash and from loading electronic wallets. In this process, the customer terminal, dealer terminal and a server in the background system are connected to one another during the process, which is an online process. Attention is also drawn to the possibility of using encryption methods, although there is no specific description of the type of encryption ben is. However, it is disadvantageous that customer data are stored in the so-called SIM card (SIM: Subscriber Identification Module), in which the IMSI identifier (IMSI: International Mobile Subscriber Identity) that is uniquely assigned to the SIM card is also stored. The SIM card is protected against misuse by a 4-digit PIN as long as the PIN is kept secret. The storage of customer data in the SIM card is particularly disadvantageous.

Problematic The known methods involve the transmission of sensitive data in the transfer of data or data records with cashless payments, as this is a significant security risk represents. But especially when paying via the Internet at the currently usual Procedure for paying with an EC card offline, i.e. an electronic Direct debit (ELV) is manipulation, fraud and data theft an everyday Problem. The use of mobile technology using the GSM (GSM: Global System for Mobile communications) or UMTS (UMTS: Universal Mobile Telecommunications System) offers one Authentication of the SIM card holder in the customer terminal used, but prevents data misuse by, for example, interception of a data record and repeated repeated transmission of the data record for harm of the customer not.

at the known methods of paying with a cellphone as that Terminal of the customer does not require an additional PIN with which the theft of a switched on cell phone allows abuse.

The The object of the invention is to make it universally applicable Terminal, in particular a terminal for a payment system for the electronic execution of a to propose a monetary transaction.

This The task is carried out by a terminal with the characteristics of the protection claim 1 solved. Advantageous refinements are the subject of dependent claims.

Prefers accordingly becomes a terminal with a SIM card to operate the terminal as a mobile device and with a control device and at least one input and output device to operate the terminal and additionally a chip card receiving device for taking up and contacting a chip card.

According to more preferred Embodiments includes the terminal has a chip card receiving device for recording and contacting a chip card according to ISO 7816. Preferred a terminal in which the control device is designed in connection with one of the input and output devices and the chip card data from the chip card to and / or to the chip card from another terminal transferred to. The other terminal is preferably a mobile radio device or a Cash register terminal, in particular a cash register terminal of a paying agent. The other terminal can also be part of a background system to manage data and / or payment transactions.

The The terminal is in particular an otherwise common mobile radio device, preferably a folding mobile radio with an upper part and an adjustable connected lower part.

Went out with a payment system, for that the terminal is preferably designed by an electronic Payment system with a background system, which has access enabled on databases. In the usual Data in the databases is required for dealers and customers as well as in particular from bank accounts of these dealers and customers. Access from outside this data is blocked. The payment system is also inventive in its own right.

The Payment system also shows two groups of terminals on, a first group of terminals, that serve as dealer terminals, and a second group of terminals that serve as customer terminals whereby a payment from the operator of a customer terminal to the Operator of a dealer terminal is initiated. The term terminal is widely seen and includes passive devices with an electronic chip, which when contacted by a from the outside active field is activated to carry out a data exchange. Furthermore, for example, mobile terminals with a are under a terminal SIM card to identify it in a specific mobile network, mobile computers with radio network interfaces and network terminals to understand network access to a remote data source.

The Payment system also has an encryption system for encrypting the to be transferred Data or parts of the data so that it is not transmitted as plain text can be and this makes interception and direct recycling difficult. The payment system is used to carry out a monetary transaction through a transfer of data or data records between a first terminal of the first group of terminals and a second terminal of the second group of terminals, the Data does not necessarily have to be exchanged directly between the affected terminals have to.

To increase security, an encryption system is used to encrypt the data used between the first terminal, the second terminal and / or the background system, which provides unique key pairs, each with a public key and a private key. The public key is used to have data or data records encrypted by a third-party device before the data is transmitted. The encrypted data is then decrypted by the recipient using the private key. An encryption system with, for example, a so-called RSA key pair is therefore used.

Next the use of an individual key or key pair for all or some of the individual compounds are also more inventive according to the invention Design of the use of a special, possibly independent of the connection key advantageous if the data on a Mobile radio interface transmitted to the first or second terminal become. So a system key used when charging from electronic exchanges arranged in the terminal and the like can be carried out should.

The Using a key pair is particularly advantageous if the transfer of data between the first terminal and the background system, between the second Terminal and the background system and / or between the second Terminal and the first terminal each with one or preferred two such key pairs is performed. With two key pairs becomes a key pair provided per connection direction, so that in an ideal design each of the facilities for any special connection to any of the other facilities unique key pair has to deal with a public Key data to encrypt which exclusively from the receiving end Setup decrypted can be.

Next of direct transmission of data from a facility, which this data with a public key encoded has to the receiving device or station which the assigned private key is also a transfer so encrypted Data packets without an increased Security risk about third facilities and stations possible. Such a third facility can in particular the other facility available in the payment system be, for example, by the background system after a check for the customer terminal encrypted as the second terminal First transfer data to the first terminal or dealer terminal to be finally to be forwarded from the first terminal to the second terminal. In the second terminal you can the data is then decrypted with the private key, while in the dealer terminal only a forwarding of those that cannot be decrypted there and data that can no longer be used is possible. Such a transfer can of course in any direction between the three institutions involved, Dealer terminal, Customer terminal and Background system, with the interposition of the third of these Facilities are carried out if a corresponding number of individually and uniquely assigned key pairs is provided in the appropriate facilities. This enables in particular also the transfer of Customer data through the second terminal to the dealer terminal if the second Terminal currently or in principle or no direct data connection can build up to the background system. The dealer terminal manages the data from the customer terminal any communication connection to the background system further. Nevertheless, an abuse in the area is ensured of the dealer terminal or the data connections are not enabled.

advantageously, can Payment data also from the second or customer terminal regardless of the first or dealer terminal transferred to the background system become. This case enables e.g. Constellations in which data from the dealer terminal or an article, which is assigned to the dealer terminal is, manually or via an automated interface can be transferred to the second terminal. In the second terminal, the data is used as payment data with the public key of the background system is encrypted and transferred to this. The background system can then execute a transaction with or without previous inquiry at the first and / or the second terminal.

Advantageously, data that are to be transmitted from the first or second terminal are supplemented prior to the transmission by additional data that were previously requested and received by the background system for the special payment process. This additional data consists in particular of a transaction number clearly assigned to the process, which can be uniquely assigned to the case process and the originally requesting device by the background system upon receipt of corresponding data. The additional data thus represent a transaction number. Data which are transmitted from the first terminal to the second terminal or vice versa can be provided with such a transaction number, in particular in order subsequently to be forwarded from the receiving terminal to the background system. In connection with the forwarding, the receiving station can be supplemented again, with this supplementary data or the total combination of the supplementary data and the encrypted original data are in turn encryptable.

The Background data can especially as a key or code to encrypt others to be transferred Data are used.

The encode advantageously takes place in one of the interfaces for transmission independent and from the outside inaccessible encryption / or Control device instead. A smart card can advantageously be used for this purpose may be used with a cryptocoprocessor. For particularly good protection be the encryption device one or two individual key pairs assigned which for securing the connection to the background system for the transmission of data from the background system. The keys, in particular the private key, are not in one from the outside accessible storage area and only accessible from the smart card stored.

For the transfer between the first terminal and the second terminal is advantageously an interface for Short distances are used to overcome the disadvantages of wide-ranging interfaces avoid. In particular, this can be an interface according to ISO 14443 be able to communicate directly with the smart card if designed as a dual interface smart card with such an interface is.

to For further security, it is advantageous to transfer the data to be transferred before the transfer with one from the device independent personal Encrypt the user's PIN number additionally, whereby the PIN only for the operator of the first or second terminal is known on the one hand and on the other hand in a secure database of the Background system is deposited.

Especially the transfer is advantageous a time information as additional data together with the data, wherein such time information data also as a key for encryption the data or as a further key to further encryption can be used. The time information is advantageously as Additional data on request from the background system or the respective Terminal provided process-individually, so that the background system based on the time information received data can check whether a too long Time has elapsed since the process started. This prevents, for example the malicious Interception and repeated sending of a payment record. Also otherwise the time information can be sent to the receiver after the data has been transmitted, which is not only to be understood as the background system, but also also the other terminal communicating with one terminal, regarding a maximum allowable Operation duration can be checked. advantageously, is the time information together with the data to be transmitted with the unique key encrypted so that one the encrypted Data transferring other facility is unable to view the attached time information to decrypt and manipulate it before sending it on.

in principle is with such a system also the transfer of data as application data possible to a terminal. Can from the background system such application data to the terminal, in particular to the Customer terminal are transmitted, so its functionality or its area of application can be expanded. Application data can next to Data for refreshing an electronic wallet including concert tickets or tickets for public Be transportation. In particular, the application data the functionality manipulate one of the control devices of the received terminal directly to expand its area of application or functionality. The data can next to or advantageously also instead of in the actual terminal in an independent and possibly exchangeable processor chip card or smart card become. Also in other storage media, e.g. a removable memory card, can the data is advantageously loaded.

advantageously, real money flows only within the background system, but not about the connections to the first or to the second terminal take place. There is no real cash flow between the two terminals either instead of just a transfer of encrypted Data, which is then forwarded in the background system to trigger the actual monetary financial transaction can be used.

advantageously, has one as the first terminal for such a transaction system provided an interface to the background system and another interface, especially the output interface to the second terminal. The output interface to the second terminal can be done in the simplest way in the form of a displayed website with to be transferred by hand Data. However, interfaces are preferred, which is a direct automatic transmission, especially encrypted Enable data. Moreover the terminal has a control device for receiving, processing and transfer of data as well as for encryption the data with from outside inaccessible key in a secured memory.

In a similar way is a terminal constructed as a second terminal for such a transaction system, which in its simplest embodiment only has an interface to either the background system or the first terminal. In a preferred embodiment, however, the second terminal also has two interfaces to the background system on the one hand and the first terminal on the other hand. In principle, the two interfaces can also be based on the same interface protocol, so that they can be provided structurally as a single interface. Of course, this also applies to the first terminal. The second terminal as a customer terminal has, in particular, a control device for receiving, processing and transmitting data and a control device for encrypting the data with a secure key of a key pair.

to increase the security is the control device, which the transmission via an interface coordinates, and at the control device, which is the encryption who performs data around two different control devices, although in principle too a single control device can take over the entire functions. The keys, especially the private keys though advantageously also the public key be in one from the outside inaccessible memory or directly at or in the for encryption or decryption competent Control device from the outside deposited inaccessible.

Next equipping one for known mobile device or mobile computers with such functionality, in particular by installing a second processor as a second control device next to one for known SIM card, simple devices can also be provided as a second terminal. For example, an SMS pad (SMS: Short Massage) can also be used Service / short message service) which, in contrast to the mobile phone no speech functionality having. The encryption device is also an independent chip in such a simple device, especially with cryptocoprocessor, which has sufficient performance for complex encryption who provides data. The installation of a known one is preferred Dual interface smart card. The independent chip is in addition to a SIM card that enables the Communication about serves the mobile radio networks. Using the short message service offers the further advantage that short messages do not have a permanently installed connection between the participating data terminals Need to become.

On enables such a system in particular, the actual payment process through the transfer of data through the second or customer terminal which from the payer is operated to trigger advantageously even a direct integration of the dealer terminal can be left out.

Especially It is also advantageous to load data into applications of the Terminals in particular in its control device, which is part of a Chip card or dual interface smart card according to a particularly preferred embodiment is.

embodiments are explained in more detail with reference to the drawing. Show it:

1 a preferred terminal in the form of a mobile radio device for use in a payment system in particular; and

2 schematically a payment system with a large number of devices and transmission links, the procedure of a payment process by SMS in a shop being also schematically outlined.

1 shows a terminal 20 in the manner of a mobile device.

In a manner known per se, the terminal has a keyboard 24 and a display 25 on. A microphone is also used for voice communication 52 and a speaker 53 in a manner known per se. Internally, the terminal includes 20 in particular a control device C, an integrated memory M and a slot with a SIM card SIM used during operation. The terminal shown is a folding mobile radio device consisting of two mutually adjustable parts, an upper part 56 and a bottom 57 , The top 56 and the bottom 57 are about a hinge joint 55 connected with each other. Other constellations are also possible, in particular an upper part without elements that are accessible from the outside, so that no switching elements lie unprotected in the folded state.

To be highlighted at the terminal 20 is a chip card holder 50 for taking up and contacting a chip card 51 , MC. In particular, this is a chip card MC according to ISO 7816, which is used to transmit data using the communication interface of the terminal 20 from the MC chip card to a background system 30 ( 2 ) is designed. Alternatively or additionally, data can also be transferred between the chip card MC in the terminal 20 to another chip card in another terminal with a comparable function or in the opposite direction.

According to alternative embodiments can such a chip card receiving device 50 also elsewhere in the mobile device or terminal 20 be provided. For example, the chip card receiving device can be arranged below an otherwise closed component, in particular below an accumulator, which is used to power the terminal 20 serves. In addition, it can be a conventional one-piece mobile radio device without a division of components into two mutually adjustable components 56 . 57 act.

The terminal 20 is preferably designed for use in connection with a preferred payment system of an inventive design, which is described below 2 is described.

Like this 2 As can be seen, an electronic payment system consists of a large number of facilities and components as well as transmission links. In addition to the payment system shown, variants with additional or alternative facilities and transmission links as well as procedures can also be implemented.

The payment system shown has a first terminal as a merchant terminal as basic system components 10 , a second terminal as a customer terminal 20 and a background system 30 on that over transmission links 41 - 43 exchange data or data records with each other. The terminals are there 10 . 20 representative of a multitude of different devices and facilities which are suitable for the purposes of payment by electronic means. The dealer terminal is a cash register, for example 11 which data, in particular a price, to an interface device 12 transfers. To control the operation, the dealer terminal also has a control device C. Data is stored in a memory M, which is part of an independent storage device in the dealer terminal 10 or can be part of a processor of the control device.

The customer terminal shown as an example 20 is an SMS pad 21 , which is essentially comparable to a mobile phone without a voice transmission function. The customer terminal 20 has in particular an integrated first interface device 21 to set up a transmission link 43 to the interface device 12 of the dealer terminal 10 on. Over this transmission link 43 For example, price information, a transaction number TAN, time information T and / or dealer identification information HID are transmitted as data. The customer terminal also points 20 a second interface device 22 on that to build one from the first terminal 10 independent transmission path 42 to the background system 30 is trained. The customer terminal expediently has an input keyboard 24 for manual entry of data and commands as well as a display device 25 to view data, information, and prompts. In order to enable a functionality for the transmission of short messages SMS, the customer terminal 20 in addition, a corresponding control and identification device with the correspondingly required components and data of a mobile radio device. In particular, this includes a SIM card SIM. The customer terminal provides instructions for further control functions and in particular encryption functions 20 also a separate control device C, which in particular as an additional chip in the customer terminal 20 is integrated. This additional chip is preferably a dual interface chip card with a cryptocoprocessor. The customer terminal preferably points to the dealer terminal for setting up the transmission link 10 as the first interface device 21 a commercial facility.

The background system 30 essentially has a central computer or host 31 on. This is with one or more interfaces 32 to set up a first transmission link 41 to the dealer terminal 10 or a second transmission link 42 to the customer terminal 20 fitted. For communication with the interface device 32 of the background system 30 points out the dealer terminal 10 a suitable interface device 13 on.

In addition to the provision of various interface devices in the individual main facilities, the dealer terminal 10 , the customer terminal 20 or the host 31 to set up the first, second and third transmission path 41 . 42 . 43 , a single interface device with a double function can be provided to set up two different transmission links. In particular, it is in principle also possible to operate all transmission links with the same transmission standard, so that each device has only a single interface device with an addressing option for contacting the desired other device.

The host 31 of the background system 30 expediently has a central control device C for controlling its own operating sequence and for providing and processing transmitted or to be transmitted data. The background system also points 30 a timer or a clock for outputting time information or a time stamp T, to each Time to have a current reference time available. The background system points to intermediate processing 30 expediently also a memory, in particular a temporary memory M. For storing data from the dealer terminals 10 as well as the dealer data or operator of the dealer terminals 10 is a dealer database 34 provided. Correspondingly, data from customer terminals 20 or by operators of the customer terminals in a customer database 35 stored.

The background system has further components 30 expediently external interfaces to a personalization device 36 and external institutions 37 , such as banks, credit card companies, and security information publishers. A connection between the background system is also advantageous 30 and a so-called call center 38 for direct customer support compared to the background system 30 ,

To provide a secure payment system, the individual facilities or the retailer terminal 10 , the customer terminal 20 and the background system 30 Encryption and decryption devices, which are formed by the control device C or a special processor. The key is for the individual transmission links 41 - 43 used a first and a second key pair, each key pair consisting of a private and a public key. Data is encrypted with the public key, and decryption is only possible with the private key. To ensure security for the operator of the customer terminal 20 for transfers between the customer terminal 20 and the background system 30 a pair of keys with a private key PSK and a public key ÖSK is provided. This key pair is used for transfers of data between only the customer terminal 20 and the background system 30 used. This enables ÖSK encrypted data to be encrypted during the transmission over the second transmission link 42 intercepted by third parties, cannot be decrypted by these third parties. Even with a transmission over the third transmission path 43 the dealer terminal 10 and from there over the first transmission line 41 to the background system 30 is the dealer and the dealer terminal 10 denied usable access via the encrypted data. In this simple example, the public key is ÖSK in the customer terminal 20 and the private key PSK in the background system 30 deposited.

In principle, the same pair of keys can also be used for encrypting data that is provided by the background system 30 to be transferred to the customer terminal. In this case, both in the background system and in the customer termianal 20 Both the private key PFK and the public key ÖFK must be stored.

According to the particularly preferred embodiment, however, for the individual transmission links 41 - 43 two key pairs are provided. For the encryption of data in the customer terminal 20 there is thus a first public key ÖSK for encryption of the data to be transmitted to the background system and possibly a second public key ÖSK for encryption of data that goes to the dealer terminal 10 are to be transferred. It is also in the customer terminal 20 a private key PSK is deposited, which is used to decrypt data stored in the background system 30 with the public key ÖSK for a transfer to the customer terminal 20 were encrypted. Provided a key pair for transfers between the customer terminal 20 and the dealer terminal 10 is provided is in the customer terminal 20 In addition, a private key PHK for decrypting data is stored, which in the dealer terminal 10 were encrypted with a public key ÖHK.

Are also advantageous for the transfer of data between the background system 30 and the dealer terminal 10 one or advantageously two key pairs are provided. The background system 30 has a public key ÖSH for encryption and a private key PHS for decrypting data that goes to and from the dealer terminal 10 be transmitted. The dealer terminal 10 accordingly has a first private key PSF and a first public key ÖSH for decrypting or encrypting. of data on to and from the background system 30 be transmitted.

In the event of encrypted communication between the dealer terminal 10 and customer terminal 20 can also one or advantageously two corresponding key pairs with a private key PHK and a public key ÖKH for transmission to or from the customer terminal 20 be provided. Encryption from between dealer terminal 10 and customer terminal 20 The data to be transmitted, if used at all, is especially for the dealer terminal 10 / Customer terminal 20 -Convenient combinations where a particular customer with his customer terminal 20 regularly with a specific dealer or his dealer terminal 10 comes into contact. This can be of interest, for example, if a customer terminal is used to pay petrol station bills when using a company vehicle which is used by different drivers, so that there are firm business contacts with changing people.

The storage of private and public keys in the background system 30 expediently takes place in the customer database 35 or the dealer database 34 , whereby these two databases must then be secured against unauthorized access.

following is an exemplary payment process between a customer and a dealer described a point of sale.

In a first step 1 finds an action between the till 11 of the dealer terminal 10 and its interface device 12 as a terminal instead. A price indication is used as a data record between the cash register and the interface device 12 transfer. The data can be transmitted in accordance with the RS 323 standard, for example.

In a second step 2 finds a transmission via the first transmission route 41 from the terminal 12 of the dealer terminal 10 to the interface 32 of the background system 30 instead of. The price data and, in addition, the dealer identification information or dealer identification number HID are optionally encrypted together and then transmitted.

The dealer terminal uses encryption 10 or from its control device or from a special chip C, in particular a cryptocoprocessor, which uses the public key ÖSH of the background system-dealer key pair ÖSH, PSH. The public key ÖSH is stored in the memory M or in the special chip C so that it cannot be read from the outside. The key pair ÖSH, PSH is expediently a key pair for a so-called RSA encryption or a comparable secure encryption principle.

The transmission link 41 can be, for example, a radio connection for transmitting short messages SMS, data call (bidirectional data call) or a connection-oriented line in a fixed network. In addition to such connection-oriented telecommunication networks, packet-oriented data networks can also be used for transmission.

After receiving the data, the received data is in the background system 30 decrypted with the appropriate private key PSH, which is in the memory, especially in the dealer database 34 of the background system 30 is stored securely and cannot be accessed from the outside. It is then checked whether the dealer identification number HID in the dealer database 34 is registered as a system partner permitted for the requested transaction. This can be done with data from a blacklist 39 , which can be part of a further internal or external storage device, are carried out in order to check whether the corresponding dealer or the corresponding dealer terminal 10 is not blocked for individual, special or all transactions. If the check is successful, the control device C generates the background system 30 a transaction number TAN, which is assigned to the special transaction process. The received data and the generated data made available for dispatch are expediently stored in the temporary memory M.

According to one particularly preferred embodiment will also current time data as time information T provided by the system clock and as separate data T or as an integral part of the transaction number TAN for uses the current transaction process.

The data provided, in particular the price data, the transaction number TAN and possibly the time information T are then encrypted and transmitted to the dealer terminal 10 at the interface device 32 of the background system 30 provided. For encryption, either the dealer-background system-key pair ÖSH, PSH or, preferably, a separate background-system-dealer key pair ÖHS, PHS is used. In principle, depending on the configuration, only some or all of the transmitted data can be encrypted. The encryption for this and also the other transmissions is expediently carried out in such a way that the recipient side of the encrypted data can recognize which of the private keys is to be used.

In a third step, the data encrypted in this way is then sent from the background system 30 over the first transmission link 41 to the dealer terminal 10 transfer. Any type of transmission link can again be used for the transmission, a short message service or landline connection being particularly preferred.

In the dealer terminal 10 According to one embodiment, the data received in this way are decrypted with the appropriate private key PHS of the dealer terminal and for further transmission via the third transmission path 43 to the customer terminal 20 processed. The data is then transferred over the third link 43 to the customer terminal 20 transfer.

According to a further and particularly preferred embodiment, the data which are provided in the background system are already in the background system 30 encrypted with a public key ÖKS of a background system customer key pair ÖKS, PKS. The data encrypted in this way then becomes the customer terminal 20 transfer.

The transfer of the public keys ÖKS encrypted with the background system customer key pair from, for example, the customer database 35 optionally takes place directly to the customer terminal 20 over the second transmission link 42 or according to a preferred embodiment via the first transmission link 41 to the dealer terminal 10 , From the dealer terminal 10 , which cannot decrypt this data due to the lack of a suitable private key, this encrypted data is then transmitted over the third transmission link 43 to the customer terminal 20 forwarded. In the customer terminal 20 the received data is then decrypted and processed with the corresponding private key PKS.

If embodiments are implemented, in which the dealer terminal 10 or a central computer assigned to this at the dealer, on which several dealer terminals 10 or interfaces are connected so that transaction processes can be carried out with several customers at the same time, are to be carried out or if transactions are to be carried out at different times, it is advisable to send an additional identifier together with the price and dealer identification data in the second step to the background system 30 where the background system 30 then makes a return in the third step such that the dealer terminal 10 can assign this additional identifier to the appropriate customer so that the encrypted data received is sent to the correct customer terminal 20 be forwarded.

After from the dealer terminal 10 by forwarding the data to the customer terminal 20 The operator of the customer terminal can already give indirect approval to the transaction 20 now process the received data. This further processing includes in particular a review and approval of the planned transaction. Thereupon the received data with possibly further data of the customer terminal, which a sufficient identification of the customer terminal 20 in the background system 30 allow encrypted. A public key ÖSK of the background system customer key pair ÖSK, PSK is used for encryption. In particular, a cryptocoprocessor of the customer terminal is used for encryption 20 used for this purpose as an independent chip in the customer terminal 20 is used. The encrypted data provided in this way then become one of the interface devices 22 for transmission to the background system 30 provided.

In principle, the data provided in this way can optionally be via the third transfer point 43 and the dealer terminal 10 as an intermediate device and from this further over the first transmission path 41 to the background system 30 be transmitted. However, preference is given to a fifth step 5 the transmission of the encrypted data from the customer terminal 20 via the second interface device 22 directly to the background system 30 or its interface device 32 , The short message service SMS is preferably used for this transmission, although other types of transmission links and transmission systems can in principle also be used. The customer terminal instructs for the transmission with the help of the short message service SMS 20 the SIM card SIM, which is the transmission over the second transmission path 42 controls or provides data that are required for transmission using the short message service SMS.

For transmission over the third transmission path 43 transmission systems are preferably used which prevent recording or interception of the transmitted data as well as possible. Accordingly, an interface in accordance with ISO 14443 is preferred, although other systems in accordance with, for example, Bluetooth, infrared interface can also be used as further examples of interface systems.

At the fifth step 5 In addition to the price, the transaction number TAN, the dealer identification number HID and possibly the time information T, further data are transmitted. This additional data is used to identify the customer terminal 20 compared to the background system 30 and are in particular a SIM number, a card number of the corresponding smart card, a personal identification number PIN, which is preferably assigned to the user of the customer terminal, and preferably information about the desired payment method.

If such information about the desired payment method in the fifth step 5 is transmitted to the user of the customer terminal 20 in the event that different payment methods via different payment systems or via Different accounts are possible for the user, preferably corresponding payment methods are proposed. The user of the customer terminal 20 can then display the possible payment methods on the display device 25 read and using the input keyboard 24 select one of the desired payment methods.

While in the first four, in particular the first three procedural steps, simple encryption is sufficient in principle, and encryption may even be entirely omitted, the data is transferred from the customer terminal 20 encrypted outgoing. Again, step five 5 some of the data to be transmitted or preferably all of the data to be transmitted are encrypted.

The background system 30 decrypted the in the fifth step 5 received data with the corresponding private key PSK and checks the data for admissibility of the transaction. This check includes, for example, a check of the customer terminal 20 and / or the user of the customer terminal 20 based on the corresponding data from the customer database 30 , the entered PIN and the block list 39 , Possibly. are also reviews at external institutions 37 possible. In addition, the transaction number TAN is based on that in the temporary memory M of the background system 30 previously cached data checked. Ultimately, a credit check is carried out by the customer terminal 20 communicated payment method instead. If these and any other verification steps are positive, the corresponding transaction is initiated. This can be done either in the background system 30 yourself or preferably by sending the appropriate data to your external institution.

Ultimately, in a sixth step 6.1 . 6.2 Confirmation messages from the background system 30 via the interface device 32 sent. A first confirmation message is sent over the second link 42 especially via short message service SMS to the customer terminal 20 sent to on its display device 25 to display a confirmation of the transaction. In addition to a payment confirmation OK, in particular the price, the dealer identification number HID and the payment method are confirmed. In addition, the first transmission link 41 a confirmation to the dealer terminal 10 sent that the payment has been made. As data to the dealer terminal 10 In addition to the payment confirmation OK, the transaction number and the price are preferably also transferred. In the dealer terminal 10 can then provide a corresponding receipt for delivery to the user of the customer terminal 20 can be printed out.

The payment confirmations are preferably also each in encrypted form, whereby for the transmission to the customer terminal 20 a corresponding public key ÖKS of the customer-background system key pair ÖKS, PKS is used. A public key ÖHS of the dealer-background system key pair ÖHS, PHS is used accordingly for the transmission to the dealer terminal.

In embodiments which use the time information T as an additional variable, those in the background system 30 incoming data is checked before performing a transaction with regard to the time elapsed since the original time information T was sent. In this way, it can be prevented that in particular on the second transmission link 42 from the customer terminal 20 to the background system 30 intercepted data record with intention to damage multiple times to the background system 30 is forwarded, which could possibly result in the transaction being executed multiple times.

Between the background system 30 and other external institutions, provided that corresponding activities are not in the background system 30 data exchange with external institutions instead. This concerns, for example, the personalization of a customer terminal and / or a dealer terminal by a personalization device 36 , In addition to the assignment of personal identification numbers PIN, Smartcard with corresponding clearly assigned identification information, this can also include checking the respective user.

Furthermore, the background system 30 a so-called call center 38 be connected, via which a customer contacts the background system by telephone call or possibly other communication channels such as the short message service or electronic mails 30 can be included. In addition to using a call center 38 to cause a block in the event of theft of the customer terminal, for example 20 can be such a call center 38 can also be used to order a transaction by telephone.

In embodiments in which a selection of the payment method is possible, the fourth step 4 as additional information to the customer terminal 20 be communicated which payment methods with a view of the communicating dealer terminal 10 or its operators are permitted. On the display device 25 then only the payment methods are displayed for selection, which is an intersection between those with a view of the merchant terminal 10 and with a view to the customer term nal 20 possible payment methods.

With the positive confirmation from the operator of the customer terminal 20 that the number data in the fifth step 5 to the background system 30 further encryption may be connected. For example, the customer's personal identification number PIN can also be encrypted. The encryption takes place directly in the chip card, in particular in the cryptocoprocessor C. Advantageously, the card number or internal number also becomes the background system when it is formed 30 data set to be transferred. In the case of a transmission via short message service SMS, a data record with usual SMS header data, in particular the telephone number of the SIM card, and subsequently the actual encrypted data is sent in the usual way. The dispatch is preferably carried out directly from the customer terminal 20 to a short message service router and from there to the background system 30 ,

Alternatively, the use of such a terminal is also possible in connection with the payment of an offer on the Internet or television using a corresponding customer terminal 20 , Transaction numbers and article numbers are shown on a corresponding dealer terminal by means of a display or an Internet homepage, which are then in the customer terminal 20 can be entered. The customer enters the relevant data into his customer terminal 20 and transmits the data with appropriate encryption to the background system, which then in connection with the possibly only virtual dealer terminal 10 occurs.

According to yet another alternative embodiment, in which a missing current mobile radio connection is assumed, there is also the possibility that the customer is from the dealer terminal 10 Data via an interface in his customer terminal 20 takes over in the customer terminal 20 in accordance with 1 Data is confirmed and encrypted and then via the interface to the dealer terminal 10 return transfers. The dealer terminal 10 then builds a connection to the background system 30 for confirmation from the background system 30 to obtain. The one from the customer terminal 20 encrypted data can be sent through the dealer terminal 10 be decrypted.

Claims (34)

Terminal ( 20 ) with - a SIM card (SIM) for operating the terminal as a mobile device and - a control device (C) and at least one input and output device ( 21 . 22 . 24 . 25 ) for operating the terminal, characterized by - a chip card receiving device ( 50 ) for taking up and contacting a chip card ( 51 , MC). Terminal according to claim 1 with the chip card receiving device ( 50 ) for taking up and contacting a chip card ( 51 , MC) according to ISO 7816. Terminal according to Claim 1 or 2, in which the control device (C) is designed in connection with one of the input and output devices ( 21 . 22 ) and the chip card ( 51 , MC) Data from the chip card ( 51 , MC) to and / or to the chip card from another terminal ( 10 . 12 ; 30 . 32 ) transferred to. A terminal according to claim 3, wherein the other terminal ( 10 ) is a mobile device. Terminal according to claim 4 or 5, wherein the other terminal ( 10 ) a POS terminal ( 12 ) a paying agent ( 10 - 12 ) is. A terminal according to claim 3, wherein the other terminal ( 10 ) a background system ( 30 . 32 ) to manage data and / or payment transactions. Terminal according to one of the preceding claims, in which the terminal is a mobile radio device with an upper part ( 56 ) and an adjustable connected lower part ( 57 ) is. Terminal according to a preceding claim for a payment system or payment system with - a background system ( 30 ) with access to databases ( 34 . 35 . 39 . 37 ), - a first group of terminals, in particular with at least one dealer terminal ( 10 ), - a second group of terminals, in particular at least one customer terminal ( 20 ), and - an encryption system - for performing a monetary transaction in the area of the background system ( 30 ) by transferring data between a first terminal ( 10 ) the first group of terminals and a second terminal ( 20 ) of the second group of terminals, characterized in that - in the encryption system for transmitting at least part of the data between the first terminal ( 10 ), the second terminal ( 20 ) and / or the background system ( 30 ) Bowl (ÖSK, PSK; ÖKS, PKS; ÖSH, PSH; ÖHS, PHS; ÖKH, PKH; ÖHK, PHK) with an individual key (ÖSK, ÖKS, ÖHS, ÖSH, ÖKH, ÖHK, PKS, PSK, PSH, PHS, PHK, PKH) are provided and used. Terminal according to a preceding claim for a payment system or payment system, in particular dere according to claim 8, with - a background system ( 30 ) with access to databases ( 34 . 35 . 39 . 37 ), - a first group of terminals, in particular with at least one dealer terminal ( 10 ), - a second group of terminals, in particular at least one customer terminal ( 20 ), and - an encryption system - for performing a monetary transaction in the area of the background system ( 30 ) by transferring data between a first terminal ( 10 ) the first group of terminals and a second terminal ( 20 ) of the second group of terminals, characterized in that - in the encryption system for transmitting at least part of the data between the first terminal ( 10 ), the second terminal ( 20 ) and / or the background system ( 30 ) at least one bowl (ÖSK, PSK; ÖKS, PKS; ÖSH, PSH; ÖHS, PHS; ÖKH, PKH; ÖHK, PHK, ÖSK, ÖKS, ÖHS, ÖSH, ÖKH, ÖHK, PKS, PSK, PSH, PHS, PHK , PKH) is provided and used, the data being transmitted to the first or second terminal via a mobile radio interface. Terminal according to one of the preceding claims for a payment system or payment system according to claim 8 or 9, in which for the transmission of the data between the first terminal ( 10 ) and the background system ( 30 ), the second terminal ( 20 ) and the background system ( 30 ) and / or the second terminal ( 20 ) and the first terminal ( 10 ) at least one, in particular two pairs of keys are provided in a clearly assigned manner to the encryption and decryption devices involved. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8-10, wherein the data for the transmission of the data between the first terminal ( 10 ) and the background system ( 30 ) from the first terminal ( 10 ) via the second terminal ( 20 ) and from the second terminal ( 20 ) to the background system ( 30 ) are transmitted and from the first terminal ( 10 ) before transmission with a public key (ÖSH) of the background system ( 30 ) or the first terminal ( 10 ) are encrypted, the encrypted data from the second terminal ( 20 ) cannot be decrypted. Terminal according to a preceding claim for a payment system or payment system according to claim 11, wherein the key (ÖSH) a unique and only between the first terminal ( 10 ) and the background system ( 30 ) sent key pair (ÖSH, PSH). Terminal according to a preceding claim for a payment system or payment system according to claim according to one of claims 8 - 12, wherein the data for the transmission of the data between the second terminal ( 20 ) and the background system ( 30 ) from the second terminal ( 20 ) via the first terminal ( 10 ) and the background system ( 30 ) are transmitted and from the second terminal ( 20 ) before transmission with a public key (ÖSK) of the background system in particular ( 30 ) or the second terminal ( 20 ) are encrypted, the encrypted data from the first terminal ( 10 ) cannot be decrypted. Terminal according to a preceding claim for a payment system or payment system according to claim 13, wherein the public key (ÖSH) a unique and only between the second terminal ( 20 ) and the background system ( 30 ) sent key pair (ÖSH, PSH). Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 14, in which the data as payment data from the second terminal ( 20 ) regardless of the first terminal ( 10 ) to the background system ( 30 ) be transmitted. Terminal according to one of the preceding claims for a payment system or payment system according to claim 15, in which part of the data previously from the first terminal ( 10 ) to the second terminal ( 20 ) manually or via automatic interface ( 12 ) is transmitted. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 16, in which the first terminal ( 10 ) or the second terminal ( 20 ) transferred data before transferring data from the background system ( 30 ) additional data (TAN, T) received can be supplemented. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 17, in which between the first terminal ( 10 ) and the second terminal ( 20 ) transferred data before the transfer by previously from the background system ( 30 ) additional data received are supplemented and encrypted together with the additional data (TAN, T). Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 18, in which the encryption in each case in one of the interfaces ( 12 . 32 . 22 . 23 , SIM) independent encryption and / or control device (C) that cannot be accessed from the outside. Terminal according to one of the preceding claims for a payment system or payment system according to claim 19, in which the encryption device (C) a separate individual key pair is assigned. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8-19, in which in the second terminal ( 20 ) a dual interface smart card is used as an encryption device and private and / or public keys (PKS, ÖSK, PKH, ÖHK) are stored in memory areas (M) that are not accessible from the outside. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8-21, in which the first terminal ( 10 ) and the second terminal ( 20 ) an interface ( 12 . 22 ) to transmit the data over only a short, tap-proof distance, especially an interface according to ISO 14443. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 22, in which the data are supplemented before transmission with a device-independent personal identification number (PIN) which is only available to the operator of the first terminal ( 10 ) or the second terminal ( 20 ) on the one hand and on the other hand the background system ( 30 . 34 ; 30 . 35 ) is known. Terminal according to a preceding claim for a payment system or payment system according to one of Claims 8-23, in which time information (T) transmitted encrypted together with the data and / or as an additional key for the Data when encrypting is used. Terminal according to one of the preceding claims for a payment system or payment system according to claim 24, in which the time information (T) from the background system ( 30 ) is used individually as a security feature. Terminal according to a preceding claim for a payment system or payment system according to claim 24 or 25, wherein the time information (T) after transfer of the data on the recipient side with regard to a maximum allowable Operation duration is checked. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 26, in which application data from the background system ( 30 ) encrypted to the first or second terminal ( 10 . 20 ) be transmitted. Terminal according to one of the preceding claims for a payment system or payment system according to claim 27, in which the application data is a control device of the first or second terminal ( 10 . 20 ) manipulate. Terminal according to one of the preceding claims for a payment system or payment system according to one of claims 8 - 28, in which, when the data is transmitted, there is no real flow of monetary value over the transmission links from and to the first terminal ( 10 ) and from or to the second terminal ( 20 ) takes place. Terminal, in particular terminal according to one of claims 1 - 7, as the first terminal ( 10 ) for a payment system according to one of claims 8 - 29 with an interface ( 23 ) to the background system ( 30 ) and another interface, especially the output interface ( 12 ), as well as a control device (C) for receiving, processing and transmitting data as well as for encrypting the data and with a memory for keys that is not accessible from the outside. Terminal, in particular terminal according to one of claims 1-7, as a second terminal ( 20 ) for a payment system according to one of claims 8 to 29 with an interface ( 23 ; 22 ; 25 ) to the background system ( 30 ) and another interface, especially the input interface ( 22 ; 23 ; 24 ), for entering data of the first terminal ( 10 ) and a control device (C) for receiving, processing and transmitting the data and for encrypting the data and with a memory (N) for keys that is not accessible from the outside. Terminal according to claim 31 with the interface device, in particular a short message transmitting and / or receiving device (SIM, 24), and a control and encryption device (C), wherein the interface device, especially the short message Sending and / or receiving device, and the encryption device are structurally separate facilities. 33. The terminal of claim 32, wherein the encryption device (C) a standalone chip is, in particular a dual interface smart card with a cryptocoprocessor and / or another suitable smart card. Terminal according to one of Claims 31 to 33, in which an input device for triggering the encryption and outputting the data after the transfer of data to the second terminal ( 20 ) is designed.