USING A SECURE ELEMENT COUPLED TO A MOBILE DEVICE AS A POS TERMINAL FOR PROCESSING NFC TRANSACTIONS
A method and system for conducting an online payment transaction through a point of sale device. The method includes receiving input from a user selecting an item for purchase through the point of sale device; calculating a total purchase amount for the item in response to a request from the user to purchase the item; and sending payment authorization for the total purchase amount from the point of sale device to a payment entity, in which the payment authorization is sent to the payment entity via a mobile communication device of the user. The method further includes receiving a result of the payment authorization from the payment entity through the mobile communication device; and completing the payment transaction based on the result of the payment authorization.
Latest BLAZE MOBILE, INC. Patents:
This application is a continuation of application Ser. No. 11/948,903, filed Nov. 30, 2007, titled METHOD AND SYSTEM FOR CONDUCTING AN ONLINE PAYMENT TRANSACTION USING A MOBILE COMMUNICATION DEVICE, all of which is incorporated by reference herein in its entirety.
FIELD OF INVENTIONThe present invention relates to data communications and wireless devices.
BACKGROUND OF THE INVENTIONMobile communication devices—e.g., cellular phones, personal digital assistants, and the like—are increasingly being used to conduct payment transactions as described in U.S. patent application Ser. No. 11/933,351, entitled “Method and System For Scheduling A Banking Transaction Through A Mobile Communication Device”, and U.S. patent application Ser. No. 11/467,441, entitled “Method and Apparatus For Completing A Transaction Using A Wireless Mobile Communication Channel and Another Communication Channel, both of which are incorporated herein by reference. Such payment transactions can include, for example, purchasing goods and/or services, bill payments, and transferring funds between bank accounts.
BRIEF SUMMARY OF THE INVENTIONIn general, this specification describes a method and system for conducting an online payment transaction through a point of sale device. The method includes receiving input from a user selecting an item for purchase through the point of sale device; calculating a total purchase amount for the item in response to a request from the user to purchase the item; and sending payment authorization for the total purchase amount from the point of sale device to a payment entity, in which the payment authorization is sent to the payment entity via a mobile communication device of the user. The method further includes receiving a result of the payment authorization from the payment entity through the mobile communication device; and completing the payment transaction based on the result of the payment authorization.
Particular implementations can include one or more of the following features. The point of sale device can be a desktop computer, a laptop computer, or a terminal. The mobile communication device can be a cellular phone, a wireless personal digital assistant (PDA), or a laptop computer. The cellular phone can be an NFC-enabled phone. Sending payment authorization for the total purchase amount from the point of sale device to a payment entity can include sending the payment authorization securely to the payment entity. The payment entity can be a person, a computer system, or a bank. The method can further include maintaining a shopping list on the mobile communication device of the user, in which the shopping list includes a listing of one or more items to be purchased by the user. The payment authorization can be an authorization for payment with a credit card, a debit card, or a prepaid card.
The details of one or more implementations are set forth in the accompanying drawings and the description below. Other features and advantages will be apparent from the description and drawings, and from the claims.
Like reference symbols in the various drawings indicate like elements.
DETAILED DESCRIPTION OF THE INVENTIONIn one implementation, authorizations for payment transactions that are made through the point of sale device 104 are sent from the point of sale device 104 to an issuer authorization (e.g., management server 106) through the mobile communication device 102 (as shown in
In one implementation, the mobile application 200 running on the mobile communication device 102 is configured to receive artifacts (e.g., advertisements, receipts, tickets, coupons, media, content, and so on) from the management server 106. In one implementation, the management server 106 sends artifacts to the mobile application based on user profile information and/or a transaction history (or payment trends) associated with a user of the mobile communication device 102 as described in U.S. patent application Ser. No. 11/944,267, entitled “Method and System For Delivering Information To a Mobile Communication Device Based On Consumer Transactions”, which is incorporated herein by reference.
In one implementation, the mobile communication device 102 is an NFC-enabled phone. The mobile communication device 102 can be NFC-enabled, for example, through an embedded chip or a sticker that is affixed to the cellular phone, as described in U.S. application Ser. No. 11/933,321, entitled “Method and System For Adapting a Wireless Mobile Communication Device For Wireless Transactions”, which is incorporated herein by reference. In one implementation, the NFC chip (or sticker) on the cellular phone can be used in conjunction with a merchant's point of sale device as described in greater detail below.
For example, with reference to
In one implementation, the mobile communication device 102 is a non NFC-enabled phone. In this implementation, the consumer connects his phone to the PC 404 via some non radio frequency method (e.g., IR, Bluetooth, USB cable, etc.). When a consumer is shopping online and they are ready to pay for their products, the consumer opens his mobile wallet and selects one of the payment methods (e.g., credit card, debit card, prepaid card, etc.) from their mobile wallet. If a default card has been selected already, this step is not necessary. The consumer then pushes, e.g., a “Buy now” button and the consumer's payment credentials are transferred from the phone to the merchant website (e.g., online store application 410) using the protocol between the phone and the PC 404 which can be radio frequency, for example. If the consumer has coupons in their mobile wallet the consumer can either elect to manually apply the coupon, save the coupon for a future use, or have the coupon automatically applied during the transaction and the transaction amount is updated. After the consumer enters any necessary validation information (e.g., pin) to provide multi-factor authentication and confirms the transaction, the online purchase is processed as normal by the merchant's online processor. The mobile wallet can retrieve transaction data and account balance from the management server 408.
In one implementation, the management server 408 and merchant portal (e.g., online store 408) are maintained by trusted parties and use an encrypted tunnel to transfer financial data. When the consumer is ready to pay for their online product, they enter their cell phone number on the merchant portal. The merchant portal (which has an MCD applet (e.g., MCD POS plugin 414) installed on its server) securely connects to the management server 408 (that in one implementation is maintained by Mobile Candy Dish (MCD)). In one implementation, the management server 408 identifies the consumer through their cell phone number, and verifies the consumer's authenticity by sending a unique transaction code to the consumer mobile wallet on their cell phone. The consumer then enters this unique transaction code onto the merchant's web portal. The merchant portal sends this transaction number to the management server 408 for authentication. Upon authentication, the consumer's virtual wallet and payment methods (e.g., credit card, debit card, prepaid card, etc.) are securely retrieved from the management server 408 and are displayed to the consumer in a window on a website associated with the merchant portal. The consumer selects one of these payment methods to pay for their transaction. If a default card has been selected already, this step is not necessary. If the consumer has coupons in their mobile wallet the consumer can either elect to manually apply the coupon, save the coupon for a future use, or have the coupon automatically applied during the transaction and the transaction amount is updated. After the consumer enters any necessary validation information to provide a multi-factor authentication and confirms the transaction, the online purchase is processed as normal by the merchant's online processor. The mobile wallet can retrieve transaction data, account balance from the management server 408.
Referring to
In interaction (2), when the user chooses to purchase with the mobile communication device 402, the online store application 410 sends the transaction information for authorization to the POS vendor plugin (e.g., MCD POS plugin 414). In one implementation, the POS vendor plugin is installed in the merchant's online store and enables the merchant to accepts MCD Blaze payments as an alternative form of payment, similar to accepting credit cards for payment. As shown by interaction (3), the POS vendor plugin formats, encrypts, and cryptographically signs the purchase authorization request which is sent via a secure SSL link (e.g., HTTPS, Bluetooth, IR, USB, or other suitable protocol) established by the browser/web application 416 back to the mobile communication device 402. As with the first scenario, all communications is over secure channels. (It may be required that the mobile wallet application be opened prior to beginning a phone online purchase.) The POS midlet 412 is a component of the mobile wallet application that executes PayPass or other payment authorization protocol between itself and the SE payment applications on the mobile communication device 402 (interaction (4)). The results of the request are sent back to the POS vendor plugin.
As shown by interaction (5), the POS midlet 412 then forwards the properly formatted authorization request to a payment entity (e.g., issuer authorization 418) for authorization. The results of the request are then sent back to the POS component of the mobile wallet. Through interaction (6), the POS midlet 412 then forwards the results back to the MCD POS plugin 414 to complete the purchase. The MCD POS plugin 414 then forwards the purchase transaction information to the management server 408 for later customer viewing (interaction (7)). As indicated by interaction (8), users (or customers) will then be able to query the management server 408 and immediately obtain purchase information, either by phone or PC.
One or more of method steps described above can be performed by one or more programmable processors executing a computer program to perform functions by operating on input data and generating output. Generally, the invention can take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment containing both hardware and software elements. In one implementation, the invention is implemented in software, which includes but is not limited to firmware, resident software, microcode, etc. Furthermore, the invention can take the form of a computer program product accessible from a computer-usable or computer-readable medium providing program code for use by or in connection with a computer or any instruction execution system. For the purposes of this description, a computer-usable or computer readable medium can be any apparatus that can contain, store, communicate, propagate, or transport the program for use by or in connection with the instruction execution system, apparatus, or device. The medium can be an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system (or apparatus or device) or a propagation medium. Examples of a computer-readable medium include a semiconductor or solid state memory, magnetic tape, a removable computer diskette, a random access memory (RAM), a read-only memory (ROM), a rigid magnetic disk and an optical disk. Current examples of optical disks include compact disk—read only memory (CD-ROM), compact disk—read/write (CD-R/W) and DVD.
In one implementation, a network adapter 510 is coupled to data processing system 500 to enable data processing system 500 to become coupled to other data processing systems or remote printers or storage devices through communication link 512. Communication link 512 can be a private or public network. Modems, cable modems, and Ethernet cards are just a few of the currently available types of network adapters.
Although the present invention has been particularly described with reference to implementations discussed above, various changes, modifications and substitutes are can be made. Accordingly, it will be appreciated that in numerous instances some features of the invention can be employed without a corresponding use of other features. Further, variations can be made in the number and arrangement of components illustrated in the figures discussed above.
Claims
1. A method comprising:
- receiving payment credentials by using a secure element interface included in a secure element in response to a near field communication trigger at the secure element, the secure element including a secure element memory, a secure element processor, a secure element mobile device connector, and a secure element near field communication transceiver, the secure element mobile device connector configured for physical insertion and mechanical connection to the body of the mobile device, the mobile device including, a mobile device display, a mobile device memory, a mobile device transceiver, and a mobile device processor configured to execute a mobile operating system platform based payment application preinstalled or downloaded and installed by a user of the mobile device; and
- transferring payment credentials to the mobile device from the secure element through the secure element mobile device connector, wherein the mobile device receives a request from the user for purchase of an item and generates a payment authorization, wherein the payment authorization is wirelessly transmitted to a remote server for authorizing payment for a credit card, debit card, or a prepaid card.
2. The method of claim 1, wherein the payment application is configured to store banking information including payment account numbers, security codes, and personal identification numbers.
3. The method of claim 1, wherein the result of a data exchange between the payment application running on the mobile device and a remote server authorizes the user to conduct a payment transaction.
4. The method of claim 3, wherein the data exchange includes exchanging an identification code.
5. The method of claim 4, wherein the identification code is a personal identification number (PIN).
6. The method of claim 1, wherein the mobile device transceiver communicates via a Wireless Fidelity (WiFi) interface.
7. The method of claim 1, wherein the mobile device transceiver communicates via a cellular radio interface.
8. The method of claim 1, wherein the payment application is further configured to allow payment for electronic transactions.
9. The method of claim 1, wherein the mobile application displays transaction history, receipts, and payment accounts.
10. The method of claim 1, wherein the mobile application sends a request for the digital artifact for a specific page ID to the remote server, the pageID corresponding to a specific screen, scene, or real estate property and further wherein the remote server stores a plurality of user profiles and a plurality of digital artifacts and selects the digital artifact based on correlating two or more targeting parameters from personal information and transaction history for the user.
11. A secure element comprising:
- a secure element input interface configured to receive payment credentials in response to a near field communication trigger at the secure element;
- a secure element mobile device connector configured for physical insertion and mechanical connection to the body of the mobile device, the mobile device including, a mobile device display, a mobile device memory, a mobile device transceiver, and a mobile device processor configured to execute an operating system platform based payment application preinstalled or downloaded and installed by a user of the mobile device;
- a secure element memory;
- a secure element processor configured to generate a payment authorization in response to a request from the user for purchase of an item; and
- a secure element near field communication transceiver;
- wherein the payment authorization is wirelessly transmitted to a remote server for authorizing payment for a credit card, debit card, or a prepaid card.
12. The secure element of claim 11, wherein the payment application is configured to store banking information including payment account numbers, security codes, and personal identification numbers.
13. The secure element of claim 11, wherein the result of a data exchange between the payment application running on the mobile device and a remote server authorizes the user to conduct a payment transaction.
14. The secure element of claim 13, wherein the data exchange includes exchanging an identification code.
15. The secure element of claim 14, wherein the identification code is a personal identification number (PIN).
16. The secure element of claim 11, wherein the mobile device transceiver communicates via a Wireless Fidelity (WiFi) interface.
17. The secure element of claim 11, wherein the mobile device transceiver communicates via a cellular radio interface.
18. The secure element of claim 11, wherein the payment application is further configured to allow payment for electronic transactions.
19. The secure element of claim 11, wherein the mobile application displays transaction history, receipts, and payment accounts.
20. The method of claim 11, wherein the mobile application sends a request for the digital artifact for a specific page ID to the remote server, the pageID corresponding to a specific screen, scene, or real estate property and further wherein the remote server stores a plurality of user profiles and a plurality of digital artifacts and selects the digital artifact based on correlating two or more targeting parameters from personal information and transaction history for the user.
Type: Application
Filed: Dec 5, 2012
Publication Date: Apr 18, 2013
Applicant: BLAZE MOBILE, INC. (Berkeley, CA)
Inventor: Blaze Mobile, Inc. (Berkeley, CA)
Application Number: 13/706,341
International Classification: G06Q 20/34 (20120101);