The assignee for this patent application is Izettle Hardware Ab.
Reporters obtained the following quote from the background information supplied by the inventors: "Every day an incredible number of credit card payments are made around the world, and the number of payments are steadily increasing.
"EMV is the leading payment system specification for credit cards on the market and was jointly developed by the companies
"The majority of credit card payments are still made in stores using bulky and stationary EMV-approved point-of-sale (POS) terminals.
"However, in the last couple of years the interest, both from the public and from companies, of being able to make payments with portable hand-held devices such as mobile phones have grown rapidly. However, the mobile phone alone is not considered to be a secure device and does not fulfill the requirements for conducting a secure EMV-approved payment.
"It has been shown that a credit card payment can be made secure and EMV-approved using a specialized card reader device that can be attached to an unsecure mobile phone in the manner presented in the International patent application with the application number PCT/EP2010/066186 by the iZettle company. However, the method presented in PCT/EP2010/066186 relies on that the cardholder has a payment card with an integrated EMV-approved chip which can be read by the card reader device, which today is not always the case. There are instances when the payment card can't be read in a card reader, for instance when the payment card only has a magnetic strip, if the chip has been damaged or if a card reader device is missing.
"Thus, finding a way to be able to make secure and EMV-approved electronic credit card payments using an ordinary unsecure mobile phone without any secure card reader device also without using a payment card with a microchip is therefore highly sought after."
In addition to obtaining background information on this patent application, VerticalNews editors also obtained the inventors' summary information for this patent application: "With the above description in mind, then, an aspect of the present invention is to provide a way to make secure and EMV-approved electronic credit card payments without using a secure card reader device which seek to mitigate, alleviate, or eliminate one or more of the above-identified deficiencies in the art and disadvantages singly or in any combination with a sustained level of payment security.
"A first aspect of the present invention relates to a method of conducting an electronic card payment between a merchant, having a merchant's device, and a cardholder, having a payment card and a cardholder's device, characterized in that it comprises entering payment card information associated with said payment card, comprising at least a first part of a personal account number (PAN), and purchase information in the merchant's device and transmitting said purchase information and payment card information to a payment server, entering a second part of said PAN in said card holder's device, and submitting said second part of said PAN to said payment server, concatenating said first and second parts of said PAN to a complete PAN in a payment server, and transmitting said purchase information and an updated payment card information comprising at least said complete PAN to a bank server conducting said card payment.
"By splitting up the PAN into at least two sequences an improved level of security is achieved in comparison to allowing the merchant to enter the complete PAN. In this way the cardholder always have to be an active part of the payment sessions which dramatically improves the security of the payment session.
"The method may further comprise that in said payment sever retrieving, from previously stored payment card information, at least one contact information associated with said received payment card information, and transmitting a request for PAN message to said cardholder's device (103), using said contact information.
"The invention further relates to a method wherein said request for PAN message may contain a web address of a secure web page on said payment server (105) and wherein the step of submitting the second part of said PAN may comprise submitting said second part of said PAN via said web page.
"The method further comprises the combination of using a user signature in the merchant's device and PAN input using the cardholder's device, will increase the security further, because this solution requires proximity (i.e. being in the same physical location) between the merchant's device and the cardholder's device since the cardholder is required to enter the second part of the PAN in the cardholder's device and sign the receipt message in the merchant's device.
"The invention further relates to a method wherein the contact information may be at least one phone number or one email address.
"The method may further comprise transmitting said at least one contact information associated with said payment card to said merchant's device, and selecting in said merchant's device a contact information to use for communication with said cardholder's device and transmitting information about said selection to said payment server, and wherein said request for PAN message is transmitted to said cardholder's device, using said selected contact information.
"The method may further comprise transmitting a receipt message and a signature request from said payment server to said merchant's device, and signing said receipt message and transmitting said signed receipt message to said payment server.
"The method may further comprise starting a time-limited payment session in the payment server when said purchase information and payment card information is received from said merchant's device.
"A second aspect of the present invention relates to a system for conducting an electronic card payment between a merchant and a cardholder, the system comprising a merchant's device, a cardholder's device and a payment server characterized in that said merchant's device, cardholder's device and payment server, are adapted to perform the steps described in the first aspect of the present invention related to a method for conducting an electronic card payment between a merchant and a cardholder as described above.
BRIEF DESCRIPTION OF THE DRAWINGS
"Further objects, features, and advantages of the present invention will appear from the following detailed description of some embodiments of the invention, wherein some embodiments of the invention will be described in more detail with reference to the accompanying drawings, in which:
"FIG. 1 shows a block diagram of a system for conducting electronic card payments using an ordinary mobile device, according to an embodiment of the present invention;
"FIG. 2 shows a flow chart describing the steps in a method for conducting an electronic card payment, according to the embodiment of the present invention."
For more information, see this patent application:
Keywords for this news article include: Izettle Hardware Ab.
Our reports deliver fact-based news of research and discoveries from around the world. Copyright 2014, NewsRx LLC
Most Popular Stories
- Dmytro Firtash, Ukrainian Billionaire, Arrested in Vienna
- Obama, Ukraine Discuss Russian Incursion in Crimea
- Federal Gov't Deficit Continues to Decline
- Russia Holds Large Military Drills in South
- Calumet Photo Files for Bankruptcy
- Venezuela Death Toll Reaches 28
- Ukraine Moves Closer to Joining E.U.
- Ukraine Loan Delayed While Congress Goes on Vacation
- Herbalife Puts Off Meeting for Icahn Talks
- Navarro Celebrates 2 Years of Vida Mia