WO2008082851A1 - Method and system for monitoring secure application execution events during contactless rfid/nfc communication - Google Patents

Method and system for monitoring secure application execution events during contactless rfid/nfc communication Download PDF

Info

Publication number
WO2008082851A1
WO2008082851A1 PCT/US2007/086766 US2007086766W WO2008082851A1 WO 2008082851 A1 WO2008082851 A1 WO 2008082851A1 US 2007086766 W US2007086766 W US 2007086766W WO 2008082851 A1 WO2008082851 A1 WO 2008082851A1
Authority
WO
WIPO (PCT)
Prior art keywords
secure
transaction
events
nfc
mobile host
Prior art date
Application number
PCT/US2007/086766
Other languages
French (fr)
Inventor
Vladimir Sklovsky
Ruben R. Formoso
Lyle A. Gaastra
Original Assignee
Motorola, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Motorola, Inc. filed Critical Motorola, Inc.
Publication of WO2008082851A1 publication Critical patent/WO2008082851A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists

Definitions

  • the present invention relates to mobile devices, and more particularly, to contactless transactions using a mobile device.
  • NFC Near Field Communication technology
  • SM secure module
  • a contactless transaction ends when the credit card information, or other information, has been successfully read by the reader terminal. For example, the transaction ends successfully if the entire credit card information stored into the NFC-SM has been successfully read. However, during contactless payment transactions, it is not always guaranteed that a reader terminal will successfully read the credit card information. The contactless transaction may fail if only part of the credit card information has been read. It should also be noted, that once the reader has read the credit card information, an entity associated with the reader, such as a banking system, may accept or reject the contactless transaction. For instance, a banking system may reject the transaction if the balance of the account is insufficient for the payment even though the reading of the credit card information was technically successful. Whereas a banking transaction may fail when there is not enough money on the account, the mobile device transaction for providing the credit card information may succeed if the credit card information is read successfully.
  • the mobile device is not authorized to evaluate secure transactions between the secure module and the reader terminal. That is, the mobile device is insulated from secure transactions occurring between the secure module and the reader terminal, even though the secure module is on the mobile device. Accordingly, a user of the mobile device may not have any means of knowing whether the credit card, or other secure data, was successfully read.
  • the mobile device can only monitor radio frequency (RF) events between the mobile device and the reader. To determine if a credit card has been successfully read, in the NFC-SM or in any other embedded secured module, the mobile device can analyze RF signals and determine what happened during the contactless transaction based only on an assessment of the RF signals. However, monitoring RF signals alone does not allow the mobile device to accurately inform the user of end of transaction events.
  • RF radio frequency
  • the system 100 can include a mobile device 110 and a reader terminal 170 for processing contactless transactions.
  • the mobile device 110 can include an antenna for communicating passive or active RF signals within an RF field 150 of the reader terminal 170.
  • the reader terminal 170 may be a payment terminal for conducting financial transactions such as reading credit card information from the mobile device 110.
  • the mobile device 110 can include an application processor 120 for providing a user interface for the contactless transactions, a NFC-SM (secure module) 130 that has secure execution environment, where secure application is executed and secure data processed according to secure algorithms.
  • SM can inform the application processor 120 of secure transactions that provides secure credit card information to the reader terminal 170 via RFID/NFC communication, using modem 140
  • virtual payment cards can be used with the NFC secure module to conduct the contactless payment transaction with the reader terminal 170.
  • the virtual payment cards can be JavaCard applications or other smart card applications loaded and installed in the NFC- secure module 130. These contactless applications hold similar data as the one in a contact or contactless credit card, such as Cardholder information data, Cryptographic keys, and Cardholder authentication data (personal identification numbers, biometrics, etc).
  • the payment applications may be JavaCardTM applets. For instance a bank or credit card agency may provide a card solution such as the PayPassTM contactless payment applet. This JavaCard application is provided either by the bank or credit card agencies and installed in the NFC-SM 130.
  • data exchange between the reader terminal (payment terminal) 170 and the NFC-SM 130 can be performed over- the-air using a NFC protocol.
  • the NFC-SM 130 and modem 140 acts as a virtual contactless card and handles all external requests from the reader terminal 170 itself through the NFC modem 140 over communication link 3 (132).
  • the communication link 3 (132) is defined by the Integrated Card (IC) manufacturers and may be any suitable protocol such as a Single Wire Protocol implementation or others.
  • Any data exchange between the application processor 120 and the NFC-SM130 is performed through the physical line link 1 (122).
  • the communication link 122 may be one as defined in ISO 7816 standards.
  • Any data exchange between the application processor 120 and the NFC modem 140 is done through the communication link 2 (160).
  • the communication link 160 is typically involved during the NFC payment application initialization and termination phase to manage the NFC modem 140 resource.
  • the communication link 160 is used to monitor RF events at the NFC modem side, and may be based on standard or proprietary protocols such as I 2 C, UART, USB, etc.
  • the application processor 120 cannot access transaction information in the NFC-SM 130 during transaction process.
  • the application processor 120 can only receive relative RF field information (e.g. absence or presence of RF field) from NFC modem 140 over Link 2 160.
  • Link 2 160 only provides for monitoring of RF events as sensed by the integrated circuits in 110. That is, the Link 2 does not provide any information as to whether the NFC-SM 130 successfully received data from the Reader 170, processed all data according to secure algorithms and send data back to the reader 170 successfully via the modem 140.
  • the application processor 120 cannot confirm whether the reader 170 completed the contactless transaction, nor monitor end of transaction events directly between the NFC-SM 130, NFC modem 140 and the reader 170.
  • All data flow and transactions go through NFC-SM 130 and reader 170 via NFC modem 140, using links 132 and 150. Only RF events in the RF field 150 can be monitored by the application processor 120. Monitoring RF events in the RF field 150 does not provide a true indication of an end of transaction event due to peculiarities of movement between the mobile device and the reader terminal.
  • variations in RF field 150 strength as a result of intensity changes in the neighborhood of the reader terminal 170 can produce false end of transactions.
  • the user may move the mobile device 110 too rapidly in the RF field 150, or insufficiently close to the reader terminal 170.
  • the RF field might be cut off due to weak signal strength, signal degradations, improper distance from the reader. In such cases, the transaction protocol between reader and mobile would be terminated before completion.
  • the RF events cannot be reliably monitored through RF field detection.
  • the RF field 150 can be payment terminal-dependent such that the end of transaction notification on the mobile device 110 may vary from one terminal to another. Some terminals may not switch off their RF field 150 at the end of the transaction.
  • embodiments of the invention are directed to a system and method for monitoring secure application execution events in a mobile device during contactless RFID/NFC communication.
  • One embodiment is directed to a system for monitoring secure contactless transaction suitable for use in a mobile device.
  • the system can include a Near Field Communication (NFC) modem for providing NFC communication (e.g. low-level contactless communication) with a NFC reader, a secure controller (SC) for secure applications execution and secure data processing, SC can monitor state transitions caused by the transaction events and generate a messaging mechanism via hardware, and a mobile host communicatively coupled to the secure controller, the mobile host being capable of receiving event notifications via hardware interrupt mechanisms.
  • the secure controller can generate a message (e.g.
  • the messaging can be done in two ways.
  • the first method is to generate the interrupt to mobile host.
  • Secure application sets up the status bits flag (for instance, TCF, transaction completion flag) into the dedicated Events Status Register (ESR) upon execution of the required event, based on applet States Transition.
  • ESR can identify a status of a secure contactless transaction.
  • SC Upon setting theTCF, SC generates INT to mobile host.
  • the hardware interrupt can also signal a timeout for an event completion.
  • the second method is to send special message to mobile host upon a change in ESR.
  • One embodiment is directed to a method for secure contactless transaction.
  • the method can include monitoring state transitions of an applet during a secure contactless transaction, detecting applet state transitions caused by the event executions, and notifying of the application state transitions upon an event occurrence by a hardware messaging mechanism.
  • the method can include generating a (hardware) interrupt by setting a flag in an events status register (ESR) of a mailbox upon detecting the last state transition.
  • ESR events status register
  • the hardware interrupt can also be generated in response to a timeout.
  • the method can include providing access to the ESR at any time in order to read events out of a protected memory when an application is conducting secure contactless transactions.
  • the electronic wallet can include a NFC/RFID modem for sending and receiving RF signals of a secure contactless transaction, a secure controller communicatively coupled to the NFC/RFID modem for identifying events associated with the secure contactless transaction based on a hardware mechanism, and a mobile host for receiving a status of the events from the secure controller, the mobile host presenting the status and the events through a user interface.
  • the secure controller can notify the mobile host of secure contactless transactions in view of state transitions, and the mobile host can display information associated with the secure contactless transaction.
  • FIG. 1 is a Near Field Communication (NFC) Controller of the prior art for secure contactless transactions in accordance with the embodiments of the invention
  • FIG. 2 is a general block diagram for a NFC/RFID secure contactless transaction system in accordance with the embodiments of the invention
  • FIG. 3 is a more detailed block diagram of the secure controller for the NFC/RFID secure contactless transaction system of FIG. 2 in accordance with the embodiments of the invention
  • FIG. 4 is a method for detecting a completion of secure contactless transaction in accordance with the embodiments of the invention.
  • FIG. 5 is a method for implementing a software or hardware transaction complete flag (TCF) in accordance with the embodiments of the invention.
  • FIG. 6 is a flow chart for NFC/RFID contactless transaction based on state transitions in accordance with the embodiments of the invention.
  • the terms “a” or “an,” as used herein, are defined as one or more than one.
  • the term “plurality,” as used herein, is defined as two or more than two.
  • the term “another,” as used herein, is defined as at least a second or more.
  • the terms “including” and/or “having,” as used herein, are defined as comprising (i.e., open language).
  • the term “coupled,” as used herein, is defined as connected, although not necessarily directly, and not necessarily mechanically.
  • transaction event can be defined as an event occurring between a NFC modem and a NFC reader, the event occurring through radio frequency communication.
  • application event can be defined as an event occurring on a secure controller that is associated with a state transition, causing a transaction event.
  • state transition can be defined as a change in state of an applet that is running on a secure controller.
  • application can be defined as a process running on a mobile host.
  • mobile host can be defined as a processor or a mobile device.
  • messagesaging mechanism can be defined as hardware or software that provides an exchange of data.
  • completed transaction can be defined as one stage of completion of a secure contactless transaction, or as a final completion of the secure contactless transaction.
  • events execution can be defined as the execution of transaction events or applet events.
  • embodiments of the invention are directed to reliable monitoring of execution events.
  • the host which does not have direct access to secure controller (TD, SC, SM) events during secure application execution, can be informed of the events via a messaging mechanism (that uses hardware interrupts as a one option).
  • the hardware implementation is provided as a messaging mechanism.
  • Secure controller includes a mail-box which is accessible any time from either the mobile host or the secure controller.
  • the hardware implementation is based on an interrupt request that is generated in response to a transaction event.
  • the hardware interrupt can be generated, for instance, by signaling a transaction completion flag (TCF) in an events status register (ESR).
  • TCF transaction completion flag
  • ESR events status register
  • the mobile host can then read the value of the TCF and determine whether or not the transaction completed.
  • messages can be delivered to the host after all data processing and data transaction has been completed with the NFC Reader.
  • the mobile host can access an event status or data associated with the status. The mobile host can then make a decision regarding the occurred event.
  • the completion of data transaction can be based on the event and applet state transition, such as a completion of the required secure transaction processing in accordance with algorithms and procedures of the particular contactless payment application, and sending of a last command to NFC transceiver and external Reader.
  • Messaging between the mobile host and the secure controller can be performed via hardware interrupts.
  • the data manager sets up ESR flag and can be connected to a GPIO which can generate an interrupt request (IRQ INT) to the mobile Host CPU, signaling that the event occured or transaction completed, or timed out.
  • the mobile host can access the shared data in order to read the ESR.
  • the system 111 can include a Near Field Communication (NFC) modem 140 for communicating transaction events of a secure contactless transaction with a NFC reader 170, a secure controller (SM) 200 communicatively coupled to the NCF modem 140 for reliable monitoring of secure applet events, and a mobile host 125 communicatively coupled to the SM 200 for receiving event notifications associated with the state transitions.
  • the mobile host 125 may be an application processor or any other processor and can present a user interface to display the event notifications.
  • an applet can reside and execute in the secure controller 200 and communicate with the NFC reader 170 via the NFC modem 140.
  • the NFC modem 140 is essentially an RF front-end passing signals between the terminal 170 and NFC-SM 130.
  • the Java messaging Application Programming Interface (API) for conveying data between the mobile host 125 and secure controller 200 can be used for messaging and events monitoring.
  • API Java messaging Application Programming Interface
  • the mobile host 125, secure controller 200, and NFC modem 140 may be integrated in a mobile device such as a cell phone.
  • the mobile device may also be a portable music player, a personal digital assistant, a mobile data storage unit, a personal security device or any other suitable electronic or communication device.
  • the mobile host 125 can be an application processor that exposes a user interface to a user of the mobile device, or any other processor.
  • the user interface can present event notification associated with a secure contactless transaction.
  • the mobile host 125 has access to the mobile device's computing and user interface resources, such as the display, audio features, memory and processor.
  • the mobile host 125 can provide information through the user interface to expose to the user events associated with the secure contactless transaction.
  • the NFC/SIM contactless transaction system 111 can conduct financial transactions which can include reading credit card information from a secure module in the mobile device.
  • the secure controller 200 can inform upper layers of applications on the mobile host 125 of events or status during the secure contactless transactions.
  • the secure controller 200 can expose an Applications Programming Interface (API) which allows applications to access the events and status.
  • API Applications Programming Interface
  • the secure controller 200 provides a software and hardware implementation for exposing features of the API.
  • the hardware consists of a data manager having a mailbox and a secure protected memory.
  • the mailbox can include an events status register and data registers for identifying an occurrence of events and for storing event information, respectively.
  • an application can sign up for notification events from the mobile host 125 through the secure controller 200.
  • the secure controller 200 can inform the mobile host 125 of transaction events, which can in turn be presented to a listener implementing the API.
  • the NFC/SIM contactless transaction system 111 can be used for applications such as ticketing, access control, loyalty programs, that can be hosted by contactless applications on the mobile device.
  • the mobile host 125 can receive status and event notifications from the secure controller 200 regarding events of a secure contactless transaction.
  • the secure module can be a SIM based on GSM, or a USIM based on UMTS, or SD card.
  • the secure controller 200 can identify state transitions of applications and transaction protocols between the NFC modem 140 and the NFC reader 170, and determine events associated with the state transitions. As an example, a state transition can be a request to make a payment, enable a payment, or cancel a payment.
  • the secure controller can monitor the state transactions and send event notifications to the mobile host 125.
  • the secure controller 200 can include CPU 270 for applications execution and data processing, a RFID/NFC communication interface 250 to the NFC modem for sending and receiving transaction data, a data manager 220 for control access to secure protected memory 232, memory mailbox 230 and handling event notifications, and a communication interface (CIF) 260 operatively coupled to the mobile host 125 for communication link between mobile host and secure controller and sending messages to the mobile host regarding event notifications.
  • the secure controller 200 can also include a timer 280 communicatively coupled to the CPU 270 and data manager 220 for generating timeout signal to data manager, resulting in messages to the mobile host in case of any failure events.
  • Secure controller memory includes the secure protected memory 240, data manager 220, a mailbox 230 for messaging exchange between mobile host and secure controller during secure application execution.
  • the mailbox 230 can include an events status register (ESR) 232 for specifying various flags associated with monitored transaction events and a status of the events, and at least one data register 234 indexed by the ESR for identifying a transaction event parameter in the secure protected memory.
  • ESR events status register
  • mobile host sends request for specific event monitoring to ESR via CIF 260 and Data manager 220.
  • data manager 220 updates ESR and corresponding data registers EDR 234, and sends request to CIF for messaging to mobile host.
  • mobile host can access the mailbox registers ESR 232 and EDR 234 in order to read the data in secure protected memory 240, even during execution of secure application by CPU 270, without termination and any timing violation.
  • the data manager 220 can set up a Transaction Complete Flag (TCF) in the ESR to indicate a completion of a secure contactless transaction.
  • TCF Transaction Complete Flag
  • a method 300 for detecting a completion of secure contactless transaction is shown.
  • the method 300 is directed to reliably monitoring secure application execution events based on state transitions.
  • the method 300 can be practiced with more or less than the number of steps shown.
  • FIG. 3 Although it is understood that the method 300 can be implemented in any other manner using other suitable components.
  • the method 300 can contain a greater or a fewer number of steps than those shown in FIG. 4.
  • the method 300 can start.
  • state transitions caused by events execution can be monitored.
  • applet state transitions are generated in response to secure contactless transactions between an NFC modem and a NFC reader.
  • a transition event can be a change of RF signals, which signifies a change in events.
  • a state transition can be a change of a state in an applet.
  • a state transition may identify request to make a payment, confirm a payment, or cancel a payment.
  • applet state transitions caused by the event executions can be detected.
  • the secure controller 200 can determine when the NFC modem 140 sends a command 205 to the NFC reader 170 by monitoring state transitions.
  • the secure controller data manager 220 can identify the applet's state transition and last instructions, which corresponds to the event of sending the last data packet to the reader 170 via NFC modem 140.
  • the timer 280 can also inform the secure controller 200 of the timing between state transitions of the start transaction and expected completion in order to generate the event of transaction completion.
  • the data manager 220 can set a flag in the event status register (ESR) 260 in response to detecting a state transition.
  • ESR event status register
  • an application can be notified of the applet state transitions by a messaging mechanism upon an event occurrence.
  • the mobile host can be notified of secure contactless transaction based on the secure controller 200 identifying an event execution.
  • the mobile host 125 can receive an event notification via a message from the data manager 220 through the CIF 260.
  • the CIF 260 can send a message to the mobile host 125 to inform the mobile host 125 of events. This allows the mobile host to present a status of the secure contactless transaction to a user through a user interface. For example, the mobile host can visually present steps of the secure contactless transaction as they occur.
  • a message can be displayed informing the user that a credit card payment has been initiated, the credit card payment is being authorized, or a confirmation that the credit card transaction has been processed.
  • the event notification also allows the mobile host to present additional data associated with the transaction, such as a card association logo or merchant name.
  • the method 300 can end.
  • the implementation 310 is directed to introducing a transaction complete flag (TCF) for signaling a completion of a transaction event.
  • TCF transaction complete flag
  • the implementation 310 provides the underlying hardware and software for a TCF. That is, the implementation 310 provides a native implementation of the method 300 for identifying a completion of secure contactless transaction.
  • the secure controller 200 can set up a transaction completion flag (TCF) in response to detecting the applet's command.
  • TCF transaction completion flag
  • the secure controller 200 can generate the TCF in response to state transitions caused by event execution between the secure controller via NFC modem 140 and the NFC reader 170. For example, as shown in FIG. 5, the secure controller 200 can identify a command 205 sent to the NFC reader 170. The secure controller 200 can then set up the software-based TCF in the ESR 232. The TCF is used to indicate a status of the transaction. As an example, the status can indicate progress of the secure contactless transaction or a completion of the secure contactless transaction.
  • the secure controller 200 can notify the mobile host 125 by sending a message to the mobile host 125. After receiving the message from secure controller 200 through the CIF 260, the mobile host 125 can then read the value of the TCF in the ESR 232 and determine a status of the transaction.
  • the TCF would normally be reset to NOT COM PLETE at the start of every transaction.
  • the secure controller 200 or an application running on the mobile host 125 receiving messages through the CIF 260, can monitor state transitions caused by event execution between the NFC controller 200 and the NFC reader 170.
  • the application can monitor the state transitions through event notifications sent from the secure controller 200 to the mobile host 125 according a prescribed protocol of a particular payment transaction.
  • the secure controller 200 can set the value of the TCF to COMPLETE. Eventually, the secure controller 200 can send a message to the mobile host 125.
  • the secure controller 200 can generate a hardware interrupt when TCF flag is set to notify a status of the secure contactless transaction.
  • the setting of the TCF flag in the ESR 232 can generate an interrupt.
  • the mobile host 125 can send an appropriate command to the CIF 260 to read the TCF from the ESR 232. That is, mobile host 125 can check the status of a contactless transaction by accessing the events status register ESR and ERB in the mailbox 230. In such regard, the mobile host 125 proactively inquires the data manager 220 as to event status. For example, the mobile host 125 can access the ESR 232 for changes in the TCF.
  • the secure contactless transaction is considered complete, and the mobile host 125 can present status and event notifications to the user interface.
  • the mobile host 120 can indicate a payment application's branding information or logo to the user.
  • the interrupt can be timer driven.
  • the Timer 280 can determine if a timeout occurs, and the secure controller 200 can notify the mobile host 125 of the time out. This can allow the mobile host to display information, such as a wait status, or an in-progress timer to the user.
  • the secure controller 200 can detect a last command sent to the NFC modem 170, set up a transaction completion flag (TCF) upon identifying the last command, and inform the mobile host of a completion of the contactless transaction.
  • TCF transaction completion flag
  • the flowchart 350 includes the Transaction Complete Flag (TCF) as an interrupt mechanism 372 to indicate a status of a secure contactless transaction.
  • TCF Transaction Complete Flag
  • the flowchart identifies the commands and transactions associated with a NFC/RFID contactless payment.
  • a reliable monitoring of secure applet events is based on the applet states transitions, caused by the events execution.
  • a secure applet notifies the host upon the event occurrence by messaging mechanism. This allows an application running on the host to receive status information with respect to secure contactless transaction events.
  • the secure controller 200 provides a hardware messaging interface that allows the mobile host to access data and events associated with secure applet execution. For example, the secure controller 200 can save data within a shared protected memory 240 during secure transactions. The mobile device can also access the data during the secure transaction. Notably, this allows an application on a host to receive event notifications during secure transactions.
  • Prior art systems cannot provide the data until the transaction is complete; transaction events may be received only after all data processing and data transaction have been completed by the NFC Reader 170: the mobile device has to identify an operating state without exact knowledge; for instance, based on a guaranteed time interval, which usually exceeds significantly the real time transaction due to large differences of execution transactions.
  • the proposed secure controller 200 provides the mobile device access to applet data to read the status of required events immediately after they have occurred, such as the completion of data transaction event, or any other.
  • the completion of a data transaction can be indicated based on the completion of required secure processing algorithms, protocol, and sending the commands to NFC transceiver and external Reader 170.
  • the application sets up a software-based Transaction Completion Flag (TCF) into Events Status register (ESR).
  • TCF Transaction Completion Flag
  • ESR Events Status register
  • a user can initiate a secure contactless transaction.
  • the mobile host 125 can expose a user interface 125 which allows the user to perform a contactless payment.
  • the mobile host 125 can send an enable payment command to the secure controller 200.
  • the NFC reader 170 can detect that the user has placed the handset in front of the NFC reader 170.
  • the secure controller 200 and the NFC reader 170 can exchange transactions.
  • the transactions can include the exchange of credit card information, account information, or any other information associated with the transaction for making a payment.
  • the NFC reader 170 can authenticate the payment.
  • the secure controller 200 can monitor state transitions in the applet that are associated with an execution of transaction events between the NFC modem 140 and the NFC reader 170. In one aspect, the secure controller 200 can determine when a command is sent to the NFC reader 170, or when an execution event causes a state transition. In response to a specific state transition, the secure controller 200 can set the TCF in the ESR 232 of the mailbox 230. This action can generate an interrupt, which at step 372, can inform the mobile host 125 of an event notification. In such regard, the TCF identifies a status of a transaction event, wherein the status may indicate a progress or a completion of a secure contactless transaction.
  • the mobile host 125 can retrieve data associated with the end of transaction.
  • the data is available in the from the shared protected memory 240.
  • the data may be a confirmation receipt or additional information such as an electronic coupon.
  • the secure controller 200 can inform the mobile host 125 of the completed transaction status.
  • the mobile host 125 can present an audio, animation, or logo through the user interface 127 to the user, to inform the user of the completed transaction.
  • the mobile host 125 can inform the user interface of all transactions processed by the secure controller 200 and made available to the mobile host 125.
  • the mobile host 125 can disable payment application as completed application execution event
  • the present embodiments of the invention can be realized in hardware, software or a combination of hardware and software. Any kind of computer system or other apparatus adapted for carrying out the methods described herein are suitable.
  • a typical combination of hardware and software can be a mobile communications device with a computer program that, when being loaded and executed, can control the mobile communications device such that it carries out the methods described herein.
  • Portions of the present method and system may also be embedded in a computer program product, which comprises all the features enabling the implementation of the methods described herein and which when loaded in a computer system, is able to carry out these methods.

Abstract

A system (211) and method (300) for reliable monitoring of secure application execution events is provided. The system can include a Near Field Communication (NFC) modem (140) for communicating transaction events of a secure contactless transaction (358) with a NFC reader (170), a secure controller (200) for monitoring state transitions caused by the transaction events, and a mobile host communicatively coupled to the secure controller for receiving hardware event notifications of the state transitions. The secure controller can generate message using a hardware interrupt to a mobile host based on secure applet state transition monitoring by setting up the events flag such as a Transaction Completion Flag (TCF) (372) into an Events Status Register (232) to identify a status of a secure contactless transactions

Description

METHOD AND SYSTEM FOR MONITORING SECURE APPLICATION EXECUTION EVENTS DURING CONTACTLESS RFID/NFC COMMUNICATION
FIELD OF THE INVENTION
The present invention relates to mobile devices, and more particularly, to contactless transactions using a mobile device.
INTRODUCTION
The use of portable electronic devices and mobile communication devices has increased dramatically in recent years. Moreover, the demand for mobile devices that allow users to conduct contactless transactions is increasing. Near Field Communication technology (NFC) enables mobile devices to act as an electronic data transaction device. As one example, NFC can be used to perform contactless financial transactions such as those requiring a credit card. The user may select credit card information stored in the mobile device and perform contactless payments in a quick way by "tapping" or "waving" the mobile device in front of a contactless reader terminal. A reader terminal can read the credit card information and process a financial transaction. In practice, NFC can be coupled with a secure module (SM) to provide contactless payment transactions. The secure module can provide secure credit card information to the reader terminal using the NFC technology.
A contactless transaction ends when the credit card information, or other information, has been successfully read by the reader terminal. For example, the transaction ends successfully if the entire credit card information stored into the NFC-SM has been successfully read. However, during contactless payment transactions, it is not always guaranteed that a reader terminal will successfully read the credit card information. The contactless transaction may fail if only part of the credit card information has been read. It should also be noted, that once the reader has read the credit card information, an entity associated with the reader, such as a banking system, may accept or reject the contactless transaction. For instance, a banking system may reject the transaction if the balance of the account is insufficient for the payment even though the reading of the credit card information was technically successful. Whereas a banking transaction may fail when there is not enough money on the account, the mobile device transaction for providing the credit card information may succeed if the credit card information is read successfully.
Due to security restriction requirements, the mobile device is not authorized to evaluate secure transactions between the secure module and the reader terminal. That is, the mobile device is insulated from secure transactions occurring between the secure module and the reader terminal, even though the secure module is on the mobile device. Accordingly, a user of the mobile device may not have any means of knowing whether the credit card, or other secure data, was successfully read. In current NFC secure module technology, the mobile device can only monitor radio frequency (RF) events between the mobile device and the reader. To determine if a credit card has been successfully read, in the NFC-SM or in any other embedded secured module, the mobile device can analyze RF signals and determine what happened during the contactless transaction based only on an assessment of the RF signals. However, monitoring RF signals alone does not allow the mobile device to accurately inform the user of end of transaction events.
For example, referring to FIG. 1 , a system of the prior art for NFC is shown. The system 100 can include a mobile device 110 and a reader terminal 170 for processing contactless transactions. The mobile device 110 can include an antenna for communicating passive or active RF signals within an RF field 150 of the reader terminal 170. In one arrangement, the reader terminal 170 may be a payment terminal for conducting financial transactions such as reading credit card information from the mobile device 110. The mobile device 110 can include an application processor 120 for providing a user interface for the contactless transactions, a NFC-SM (secure module) 130 that has secure execution environment, where secure application is executed and secure data processed according to secure algorithms. SM can inform the application processor 120 of secure transactions that provides secure credit card information to the reader terminal 170 via RFID/NFC communication, using modem 140
As per existing banking standards, virtual payment cards can be used with the NFC secure module to conduct the contactless payment transaction with the reader terminal 170. The virtual payment cards can be JavaCard applications or other smart card applications loaded and installed in the NFC- secure module 130. These contactless applications hold similar data as the one in a contact or contactless credit card, such as Cardholder information data, Cryptographic keys, and Cardholder authentication data (personal identification numbers, biometrics, etc). The payment applications may be JavaCard™ applets. For instance a bank or credit card agency may provide a card solution such as the PayPass™ contactless payment applet. This JavaCard application is provided either by the bank or credit card agencies and installed in the NFC-SM 130.
In a contactless payment scenario, data exchange between the reader terminal (payment terminal) 170 and the NFC-SM 130 can be performed over- the-air using a NFC protocol. The NFC-SM 130 and modem 140 acts as a virtual contactless card and handles all external requests from the reader terminal 170 itself through the NFC modem 140 over communication link 3 (132). The communication link 3 (132) is defined by the Integrated Card (IC) manufacturers and may be any suitable protocol such as a Single Wire Protocol implementation or others. Any data exchange between the application processor 120 and the NFC-SM130 is performed through the physical line link 1 (122). The communication link 122 may be one as defined in ISO 7816 standards. Any data exchange between the application processor 120 and the NFC modem 140 is done through the communication link 2 (160). The communication link 160 is typically involved during the NFC payment application initialization and termination phase to manage the NFC modem 140 resource. The communication link 160 is used to monitor RF events at the NFC modem side, and may be based on standard or proprietary protocols such as I2C, UART, USB, etc.
Due to security restrictions, the application processor 120 cannot access transaction information in the NFC-SM 130 during transaction process. In particular, as shown in FIG. 1 , the application processor 120 can only receive relative RF field information (e.g. absence or presence of RF field) from NFC modem 140 over Link 2 160. Link 2 160 only provides for monitoring of RF events as sensed by the integrated circuits in 110. That is, the Link 2 does not provide any information as to whether the NFC-SM 130 successfully received data from the Reader 170, processed all data according to secure algorithms and send data back to the reader 170 successfully via the modem 140. In such regard, the application processor 120 cannot confirm whether the reader 170 completed the contactless transaction, nor monitor end of transaction events directly between the NFC-SM 130, NFC modem 140 and the reader 170. All data flow and transactions go through NFC-SM 130 and reader 170 via NFC modem 140, using links 132 and 150. Only RF events in the RF field 150 can be monitored by the application processor 120. Monitoring RF events in the RF field 150 does not provide a true indication of an end of transaction event due to peculiarities of movement between the mobile device and the reader terminal.
As an example, variations in RF field 150 strength as a result of intensity changes in the neighborhood of the reader terminal 170 can produce false end of transactions. For example, the user may move the mobile device 110 too rapidly in the RF field 150, or insufficiently close to the reader terminal 170. The RF field might be cut off due to weak signal strength, signal degradations, improper distance from the reader. In such cases, the transaction protocol between reader and mobile would be terminated before completion. The RF events cannot be reliably monitored through RF field detection. Moreover, the RF field 150 can be payment terminal-dependent such that the end of transaction notification on the mobile device 110 may vary from one terminal to another. Some terminals may not switch off their RF field 150 at the end of the transaction.
SUMMARY
Broadly stated, embodiments of the invention are directed to a system and method for monitoring secure application execution events in a mobile device during contactless RFID/NFC communication. One embodiment is directed to a system for monitoring secure contactless transaction suitable for use in a mobile device. The system can include a Near Field Communication (NFC) modem for providing NFC communication (e.g. low-level contactless communication) with a NFC reader, a secure controller (SC) for secure applications execution and secure data processing, SC can monitor state transitions caused by the transaction events and generate a messaging mechanism via hardware, and a mobile host communicatively coupled to the secure controller, the mobile host being capable of receiving event notifications via hardware interrupt mechanisms. The secure controller can generate a message (e.g. hardware interrupt) for indicating a completion of data transaction or any other required to monitor events during secure application execution. The messaging can be done in two ways. The first method is to generate the interrupt to mobile host. Secure application sets up the status bits flag (for instance, TCF, transaction completion flag) into the dedicated Events Status Register (ESR) upon execution of the required event, based on applet States Transition. The ESR can identify a status of a secure contactless transaction. Upon setting theTCF, SC generates INT to mobile host. The hardware interrupt can also signal a timeout for an event completion. The second method is to send special message to mobile host upon a change in ESR.
One embodiment is directed to a method for secure contactless transaction. The method can include monitoring state transitions of an applet during a secure contactless transaction, detecting applet state transitions caused by the event executions, and notifying of the application state transitions upon an event occurrence by a hardware messaging mechanism. The method can include generating a (hardware) interrupt by setting a flag in an events status register (ESR) of a mailbox upon detecting the last state transition. The hardware interrupt can also be generated in response to a timeout. The method can include providing access to the ESR at any time in order to read events out of a protected memory when an application is conducting secure contactless transactions.
Another embodiment is directed to an electronic wallet for secure contactless transactions. The electronic wallet can include a NFC/RFID modem for sending and receiving RF signals of a secure contactless transaction, a secure controller communicatively coupled to the NFC/RFID modem for identifying events associated with the secure contactless transaction based on a hardware mechanism, and a mobile host for receiving a status of the events from the secure controller, the mobile host presenting the status and the events through a user interface. The secure controller can notify the mobile host of secure contactless transactions in view of state transitions, and the mobile host can display information associated with the secure contactless transaction.
BRIEF DESCRIPTION OF THE DRAWINGS
The features of the system, which are believed to be novel, are set forth with particularity in the appended claims. The embodiments herein, can be understood by reference to the following description, taken in conjunction with the accompanying drawings, in the several figures of which like reference numerals identify like elements, and in which:
FIG. 1 is a Near Field Communication (NFC) Controller of the prior art for secure contactless transactions in accordance with the embodiments of the invention;
FIG. 2 is a general block diagram for a NFC/RFID secure contactless transaction system in accordance with the embodiments of the invention;
FIG. 3 is a more detailed block diagram of the secure controller for the NFC/RFID secure contactless transaction system of FIG. 2 in accordance with the embodiments of the invention;
FIG. 4 is a method for detecting a completion of secure contactless transaction in accordance with the embodiments of the invention;
FIG. 5 is a method for implementing a software or hardware transaction complete flag (TCF) in accordance with the embodiments of the invention; and
FIG. 6 is a flow chart for NFC/RFID contactless transaction based on state transitions in accordance with the embodiments of the invention;
DETAILED DESCRIPTION
While the specification concludes with claims defining the features of the embodiments of the invention that are regarded as novel, it is believed that the method, system, and other embodiments will be better understood from a consideration of the following description in conjunction with the drawing figures, in which like reference numerals are carried forward.
As required, detailed embodiments of the present method and system are disclosed herein. However, it is to be understood that the disclosed embodiments are merely exemplary, which can be embodied in various forms. Therefore, specific structural and functional details disclosed herein are not to be interpreted as limiting, but merely as a basis for the claims and as a representative basis for teaching one skilled in the art to variously employ the embodiments of the present invention in virtually any appropriately detailed structure. Further, the terms and phrases used herein are not intended to be limiting but rather to provide an understandable description of the embodiment herein.
The terms "a" or "an," as used herein, are defined as one or more than one. The term "plurality," as used herein, is defined as two or more than two. The term "another," as used herein, is defined as at least a second or more. The terms "including" and/or "having," as used herein, are defined as comprising (i.e., open language). The term "coupled," as used herein, is defined as connected, although not necessarily directly, and not necessarily mechanically.
The term "transaction event" can be defined as an event occurring between a NFC modem and a NFC reader, the event occurring through radio frequency communication. The term "applet event" can be defined as an event occurring on a secure controller that is associated with a state transition, causing a transaction event. The term "state transition" can be defined as a change in state of an applet that is running on a secure controller. The term "application" can be defined as a process running on a mobile host. The term "mobile host" can be defined as a processor or a mobile device. The term "messaging mechanism" can be defined as hardware or software that provides an exchange of data. The term "completed transaction" can be defined as one stage of completion of a secure contactless transaction, or as a final completion of the secure contactless transaction. The term "events execution" can be defined as the execution of transaction events or applet events.
Broadly stated, embodiments of the invention are directed to reliable monitoring of execution events. In one arrangement, the host, which does not have direct access to secure controller (TD, SC, SM) events during secure application execution, can be informed of the events via a messaging mechanism (that uses hardware interrupts as a one option). The hardware implementation is provided as a messaging mechanism. Secure controller includes a mail-box which is accessible any time from either the mobile host or the secure controller. In one arrangement the hardware implementation is based on an interrupt request that is generated in response to a transaction event. The hardware interrupt can be generated, for instance, by signaling a transaction completion flag (TCF) in an events status register (ESR). The mobile host can then read the value of the TCF and determine whether or not the transaction completed. In another arrangement, messages can be delivered to the host after all data processing and data transaction has been completed with the NFC Reader. After receiving the message, upon the completion of data transaction, the mobile host can access an event status or data associated with the status. The mobile host can then make a decision regarding the occurred event.
The completion of data transaction can be based on the event and applet state transition, such as a completion of the required secure transaction processing in accordance with algorithms and procedures of the particular contactless payment application, and sending of a last command to NFC transceiver and external Reader. Messaging between the mobile host and the secure controller can be performed via hardware interrupts. For example, the data manager sets up ESR flag and can be connected to a GPIO which can generate an interrupt request (IRQ INT) to the mobile Host CPU, signaling that the event occured or transaction completed, or timed out. The mobile host can access the shared data in order to read the ESR.
Referring to FIG. 2, a block diagram for a NFC/SIM contactless transaction system 111 is shown. The system 111 can include a Near Field Communication (NFC) modem 140 for communicating transaction events of a secure contactless transaction with a NFC reader 170, a secure controller (SM) 200 communicatively coupled to the NCF modem 140 for reliable monitoring of secure applet events, and a mobile host 125 communicatively coupled to the SM 200 for receiving event notifications associated with the state transitions. The mobile host 125 may be an application processor or any other processor and can present a user interface to display the event notifications. As one example, an applet can reside and execute in the secure controller 200 and communicate with the NFC reader 170 via the NFC modem 140. The NFC modem 140 is essentially an RF front-end passing signals between the terminal 170 and NFC-SM 130. The Java messaging Application Programming Interface (API) for conveying data between the mobile host 125 and secure controller 200 can be used for messaging and events monitoring.
In one arrangement, the mobile host 125, secure controller 200, and NFC modem 140 may be integrated in a mobile device such as a cell phone. The mobile device may also be a portable music player, a personal digital assistant, a mobile data storage unit, a personal security device or any other suitable electronic or communication device. The mobile host 125 can be an application processor that exposes a user interface to a user of the mobile device, or any other processor. The user interface can present event notification associated with a secure contactless transaction. Notably, the mobile host 125 has access to the mobile device's computing and user interface resources, such as the display, audio features, memory and processor. The mobile host 125 can provide information through the user interface to expose to the user events associated with the secure contactless transaction. As one example, the NFC/SIM contactless transaction system 111 can conduct financial transactions which can include reading credit card information from a secure module in the mobile device.
Contactless upper layers of applications can run on the mobile host 125, the secure contactless low layers applets run on secure controller 200. The secure controller 200 can inform upper layers of applications on the mobile host 125 of events or status during the secure contactless transactions. In one arrangement, the secure controller 200 can expose an Applications Programming Interface (API) which allows applications to access the events and status. In particular, the secure controller 200 provides a software and hardware implementation for exposing features of the API. The hardware consists of a data manager having a mailbox and a secure protected memory. The mailbox can include an events status register and data registers for identifying an occurrence of events and for storing event information, respectively. For example, an application can sign up for notification events from the mobile host 125 through the secure controller 200. The secure controller 200 can inform the mobile host 125 of transaction events, which can in turn be presented to a listener implementing the API. As an example, the NFC/SIM contactless transaction system 111 can be used for applications such as ticketing, access control, loyalty programs, that can be hosted by contactless applications on the mobile device.
The mobile host 125 can receive status and event notifications from the secure controller 200 regarding events of a secure contactless transaction. The secure module can be a SIM based on GSM, or a USIM based on UMTS, or SD card. The secure controller 200 can identify state transitions of applications and transaction protocols between the NFC modem 140 and the NFC reader 170, and determine events associated with the state transitions. As an example, a state transition can be a request to make a payment, enable a payment, or cancel a payment. The secure controller can monitor the state transactions and send event notifications to the mobile host 125.
Referring to FIG. 3, a more detailed block diagram of the secure controller for the NFC/RFID secure contactless transaction system of FIG. 2 is shown. All components can be in hardware (HW) besides the data manager 220 and ESR 232. The secure controller 200, can include CPU 270 for applications execution and data processing, a RFID/NFC communication interface 250 to the NFC modem for sending and receiving transaction data, a data manager 220 for control access to secure protected memory 232, memory mailbox 230 and handling event notifications, and a communication interface (CIF) 260 operatively coupled to the mobile host 125 for communication link between mobile host and secure controller and sending messages to the mobile host regarding event notifications. The secure controller 200 can also include a timer 280 communicatively coupled to the CPU 270 and data manager 220 for generating timeout signal to data manager, resulting in messages to the mobile host in case of any failure events.
Secure controller memory includes the secure protected memory 240, data manager 220, a mailbox 230 for messaging exchange between mobile host and secure controller during secure application execution. The mailbox 230 can include an events status register (ESR) 232 for specifying various flags associated with monitored transaction events and a status of the events, and at least one data register 234 indexed by the ESR for identifying a transaction event parameter in the secure protected memory. In one arrangement, mobile host sends request for specific event monitoring to ESR via CIF 260 and Data manager 220. Upon application execution and the event occurrence, data manager 220 updates ESR and corresponding data registers EDR 234, and sends request to CIF for messaging to mobile host. Receiving the message from SC 200 (through INT or message), mobile host can access the mailbox registers ESR 232 and EDR 234 in order to read the data in secure protected memory 240, even during execution of secure application by CPU 270, without termination and any timing violation. As one example, the data manager 220 can set up a Transaction Complete Flag (TCF) in the ESR to indicate a completion of a secure contactless transaction.
Referring to FIG. 4, a method 300 for detecting a completion of secure contactless transaction is shown. Briefly, the method 300 is directed to reliably monitoring secure application execution events based on state transitions. The method 300 can be practiced with more or less than the number of steps shown. To describe the method 300, reference will be made to FIG. 3 although it is understood that the method 300 can be implemented in any other manner using other suitable components. In addition, the method 300 can contain a greater or a fewer number of steps than those shown in FIG. 4.
At step 301 , the method 300 can start. At step 302, state transitions caused by events execution can be monitored. For example, applet state transitions are generated in response to secure contactless transactions between an NFC modem and a NFC reader. As one example, a transition event can be a change of RF signals, which signifies a change in events. A state transition can be a change of a state in an applet. With regard to an application, a state transition may identify request to make a payment, confirm a payment, or cancel a payment.
At step 304, applet state transitions caused by the event executions can be detected. For example, referring to FIG. 3, the secure controller 200 can determine when the NFC modem 140 sends a command 205 to the NFC reader 170 by monitoring state transitions. The secure controller data manager 220 can identify the applet's state transition and last instructions, which corresponds to the event of sending the last data packet to the reader 170 via NFC modem 140. The timer 280 can also inform the secure controller 200 of the timing between state transitions of the start transaction and expected completion in order to generate the event of transaction completion. In one aspect, the data manager 220 can set a flag in the event status register (ESR) 260 in response to detecting a state transition.
At step 306, an application can be notified of the applet state transitions by a messaging mechanism upon an event occurrence. For example, the mobile host can be notified of secure contactless transaction based on the secure controller 200 identifying an event execution. Referring to FIG. 3, the mobile host 125 can receive an event notification via a message from the data manager 220 through the CIF 260. The CIF 260 can send a message to the mobile host 125 to inform the mobile host 125 of events. This allows the mobile host to present a status of the secure contactless transaction to a user through a user interface. For example, the mobile host can visually present steps of the secure contactless transaction as they occur. For instance, a message can be displayed informing the user that a credit card payment has been initiated, the credit card payment is being authorized, or a confirmation that the credit card transaction has been processed. The event notification also allows the mobile host to present additional data associated with the transaction, such as a card association logo or merchant name. At step 309, the method 300 can end.
Briefly referring to FIG. 5, one exemplary implementation 310 for the method step 304 of FIG. 4 is shown. In particular, the implementation 310 is directed to introducing a transaction complete flag (TCF) for signaling a completion of a transaction event. It should be noted that the implementation 310 provides the underlying hardware and software for a TCF. That is, the implementation 310 provides a native implementation of the method 300 for identifying a completion of secure contactless transaction.
At step 312, the secure controller 200 can set up a transaction completion flag (TCF) in response to detecting the applet's command. In practice, the secure controller 200 can generate the TCF in response to state transitions caused by event execution between the secure controller via NFC modem 140 and the NFC reader 170. For example, as shown in FIG. 5, the secure controller 200 can identify a command 205 sent to the NFC reader 170. The secure controller 200 can then set up the software-based TCF in the ESR 232. The TCF is used to indicate a status of the transaction. As an example, the status can indicate progress of the secure contactless transaction or a completion of the secure contactless transaction. The secure controller 200 can notify the mobile host 125 by sending a message to the mobile host 125. After receiving the message from secure controller 200 through the CIF 260, the mobile host 125 can then read the value of the TCF in the ESR 232 and determine a status of the transaction.
In the case of a contactless application, the TCF would normally be reset to NOT COM PLETE at the start of every transaction. The secure controller 200, or an application running on the mobile host 125 receiving messages through the CIF 260, can monitor state transitions caused by event execution between the NFC controller 200 and the NFC reader 170. As one example, the application can monitor the state transitions through event notifications sent from the secure controller 200 to the mobile host 125 according a prescribed protocol of a particular payment transaction. When the data exchange has been performed, the secure controller 200 can set the value of the TCF to COMPLETE. Eventually, the secure controller 200 can send a message to the mobile host 125.
At step 314, the secure controller 200 can generate a hardware interrupt when TCF flag is set to notify a status of the secure contactless transaction. For example, the setting of the TCF flag in the ESR 232 can generate an interrupt. In response to the interrupt, the mobile host 125 can send an appropriate command to the CIF 260 to read the TCF from the ESR 232. That is, mobile host 125 can check the status of a contactless transaction by accessing the events status register ESR and ERB in the mailbox 230. In such regard, the mobile host 125 proactively inquires the data manager 220 as to event status. For example, the mobile host 125 can access the ESR 232 for changes in the TCF.
If the TCF is set to COMPLETE, the secure contactless transaction is considered complete, and the mobile host 125 can present status and event notifications to the user interface. For example, the mobile host 120 can indicate a payment application's branding information or logo to the user. It should also be noted that the interrupt can be timer driven. For example, the Timer 280 can determine if a timeout occurs, and the secure controller 200 can notify the mobile host 125 of the time out. This can allow the mobile host to display information, such as a wait status, or an in-progress timer to the user. In one embodiment, referring to FIG. 2, the secure controller 200 can detect a last command sent to the NFC modem 170, set up a transaction completion flag (TCF) upon identifying the last command, and inform the mobile host of a completion of the contactless transaction.
Referring to FIG. 6, a flowchart for conducting NFC/RFID contactless transaction based on state transitions is shown. Briefly, the flowchart 350 includes the Transaction Complete Flag (TCF) as an interrupt mechanism 372 to indicate a status of a secure contactless transaction. The flowchart identifies the commands and transactions associated with a NFC/RFID contactless payment.
A reliable monitoring of secure applet events is based on the applet states transitions, caused by the events execution. A secure applet notifies the host upon the event occurrence by messaging mechanism. This allows an application running on the host to receive status information with respect to secure contactless transaction events. The secure controller 200 provides a hardware messaging interface that allows the mobile host to access data and events associated with secure applet execution. For example, the secure controller 200 can save data within a shared protected memory 240 during secure transactions. The mobile device can also access the data during the secure transaction. Notably, this allows an application on a host to receive event notifications during secure transactions. Prior art systems cannot provide the data until the transaction is complete; transaction events may be received only after all data processing and data transaction have been completed by the NFC Reader 170: the mobile device has to identify an operating state without exact knowledge; for instance, based on a guaranteed time interval, which usually exceeds significantly the real time transaction due to large differences of execution transactions. The proposed secure controller 200 provides the mobile device access to applet data to read the status of required events immediately after they have occurred, such as the completion of data transaction event, or any other. The completion of a data transaction can be indicated based on the completion of required secure processing algorithms, protocol, and sending the commands to NFC transceiver and external Reader 170. Notably, the application sets up a software-based Transaction Completion Flag (TCF) into Events Status register (ESR). At step 352, a user can initiate a secure contactless transaction. For example, the mobile host 125 can expose a user interface 125 which allows the user to perform a contactless payment. At step 354, the mobile host 125 can send an enable payment command to the secure controller 200. At step 356, the NFC reader 170 can detect that the user has placed the handset in front of the NFC reader 170. At step 358, the secure controller 200 and the NFC reader 170 can exchange transactions. The transactions can include the exchange of credit card information, account information, or any other information associated with the transaction for making a payment. In one arrangement, at step 370, the NFC reader 170 can authenticate the payment.
During the exchange, the secure controller 200 can monitor state transitions in the applet that are associated with an execution of transaction events between the NFC modem 140 and the NFC reader 170. In one aspect, the secure controller 200 can determine when a command is sent to the NFC reader 170, or when an execution event causes a state transition. In response to a specific state transition, the secure controller 200 can set the TCF in the ESR 232 of the mailbox 230. This action can generate an interrupt, which at step 372, can inform the mobile host 125 of an event notification. In such regard, the TCF identifies a status of a transaction event, wherein the status may indicate a progress or a completion of a secure contactless transaction.
At step 374, the mobile host 125 can retrieve data associated with the end of transaction. The data is available in the from the shared protected memory 240. The data may be a confirmation receipt or additional information such as an electronic coupon, At step 376, the secure controller 200 can inform the mobile host 125 of the completed transaction status. At step 378, the mobile host 125 can present an audio, animation, or logo through the user interface 127 to the user, to inform the user of the completed transaction. Notably, the mobile host 125 can inform the user interface of all transactions processed by the secure controller 200 and made available to the mobile host 125. At step 380, the mobile host 125 can disable payment application as completed application execution event
Where applicable, the present embodiments of the invention can be realized in hardware, software or a combination of hardware and software. Any kind of computer system or other apparatus adapted for carrying out the methods described herein are suitable. A typical combination of hardware and software can be a mobile communications device with a computer program that, when being loaded and executed, can control the mobile communications device such that it carries out the methods described herein. Portions of the present method and system may also be embedded in a computer program product, which comprises all the features enabling the implementation of the methods described herein and which when loaded in a computer system, is able to carry out these methods.
While the preferred embodiments of the invention have been illustrated and described, it will be clear that the embodiments of the invention is not so limited. Numerous modifications, changes, variations, substitutions and equivalents will occur to those skilled in the art without departing from the spirit and scope of the present embodiments of the invention as defined by the appended claims.
What is claimed is:

Claims

1. A system for reliable monitoring of secure applet events suitable for use in a mobile device, comprising: a Near Field Communication (NFC) modem for providing NFC communication, including transaction events, with a NFC reader; a secure controller (SC) for secure applications execution and secure data processing, monitoring state transitions caused by the transaction events and generating a messaging mechanism via hardware, the SC communicatively coupled to the NCF modem; and a mobile host communicatively coupled to the SC for receiving event notifications of the state transitions.
2. The system of claim 1 , wherein the secure controller generates a hardware interrupt or a message for indicating a completion of data transaction.
3. The system of claim 2, wherein the secure controller sets up a Transaction Completion Flag (TCF) or any other flags of Events into an Events Status Register (ESR) to identify a status of a secure contactless transaction.
4. The system of claim 2, wherein the a timeout generates hardware interrupt signals for an event completion.
5. The system of claim 1 , wherein the secure controller includes: a RFID/NFC communication interface to the NFC modem for communicating transaction events between a mobile host and a secure controller; a data manager operatively coupled to the RFID/NFC communication interface for signaling transaction event occurrences and handling transaction event data for control access to a secure protected memory, and a memory mailbox; and a communication interface (CIF) operatively coupled to the data manager for conveying messages to the mobile host in response to transaction event occurrences.
6. The system of claim 5, wherein the secure controller includes: a timer communicatively coupled to the data manager for identifying transaction event times, wherein the data manager generates timeout signal messages to the mobile host in case of any event failures to notify mobile host on an occurred transaction.
7. The system of claim 6, wherein the data manager includes: a secure protected memory for storing data and transaction events communicated between the NFC modem and the NFC reader; and a mailbox for messaging exchange between the mobile host and the secure controller during secure applications execution.
8. The system of claim 7, wherein the mailbox includes: an events status register (ESR) for specifying a number of transaction event parameters and a status of the transaction events.
9. The system of claim 7, wherein the mailbox includes: at least one data register for identifying data and transaction events in the secure protected memory.
10. An electronic wallet for secure contactless transactions, comprising: a NFC/RFID modem for reliable monitoring of secure application execution events of a secure contactless transaction; a secure controller communicatively coupled to the NFC/RFID modem for identifying events associated with the secure contactless transaction based on a hardware mechanism, and a mobile host for receiving a status of the events from the secure controller, the mobile host presenting the status and the events through a user interface.
11. The electronic wallet of claim 10, wherein the secure controller notifies the mobile host of secure contactless transactions in view of a state transitions, and the mobile host displays information associated with the secure contactless transaction.
12. The electronic wallet of claim 10, wherein the secure controller includes: a processor communicatively coupled to the RFID/NFC CIF for coordinating secure contactless events; and a timer communicatively coupled to the processor for identifying transaction event times.
13. The electronic wallet of claim 10, wherein the secure controller includes: a RFID/NFC communication interface (CIF) to the NFC modem for sending and receiving messages; and a data manager for processing transaction events and notifying a mobile host of event occurrences via an interrupt mechanism.
14. The electronic wallet of claim 10, wherein the data manager comprises: a secure protected memory for sharing data associated with the transaction events; and a mailbox operatively coupled to the secure protected memory, the mailbox having: an Event Status Register that sets a Transaction Completion Flag (TCF) for completed transaction events, and a set of data registers for accessing shared data in the secure protected memory; and a communication interface (CIF) for sending messages to the mobile host.
15. The electronic wallet of claim 10, wherein the secure controller further includes: a queue line of monitored events; and a NFC RF stack for buffering transaction events.
PCT/US2007/086766 2006-12-29 2007-12-07 Method and system for monitoring secure application execution events during contactless rfid/nfc communication WO2008082851A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US11/618,135 2006-12-29
US11/618,135 US10311427B2 (en) 2006-12-29 2006-12-29 Method and system for monitoring secure application execution events during contactless RFID/NFC communication

Publications (1)

Publication Number Publication Date
WO2008082851A1 true WO2008082851A1 (en) 2008-07-10

Family

ID=39402891

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2007/086766 WO2008082851A1 (en) 2006-12-29 2007-12-07 Method and system for monitoring secure application execution events during contactless rfid/nfc communication

Country Status (2)

Country Link
US (1) US10311427B2 (en)
WO (1) WO2008082851A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8068011B1 (en) 2010-08-27 2011-11-29 Q Street, LLC System and method for interactive user-directed interfacing between handheld devices and RFID media
CN103593631A (en) * 2013-10-09 2014-02-19 北京兆信信息技术股份有限公司 Mobile network digital identity recognition system utilizing NFC (near field communication) technology

Families Citing this family (134)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8019365B2 (en) * 2005-12-31 2011-09-13 Michelle Fisher Conducting a payment using a secure element and SMS
US8290433B2 (en) * 2007-11-14 2012-10-16 Blaze Mobile, Inc. Method and system for securing transactions made through a mobile communication device
EP2018741B1 (en) * 2006-05-15 2013-02-20 Nokia Corporation Contactless programming and testing of memory elements
BRPI0806457A2 (en) 2007-01-09 2011-09-06 Visa Usa Inc Method mobile phone and system
EP1976248B1 (en) * 2007-03-29 2011-10-19 Vodafone Holding GmbH Mobile terminal and method for operating a mobile terminal
CN101647034B (en) * 2007-03-30 2015-11-25 法国电信公司 For the method passed on transmit the message relevant to the transaction of contactless application, terminal, security module and the system that is associated
US8813182B2 (en) * 2008-01-30 2014-08-19 Ebay Inc. Near field communication activation and authorization
US20110087907A1 (en) * 2008-06-25 2011-04-14 Iiro Kristian Jantunen Power saving method and apparatus
US8447669B2 (en) 2008-08-26 2013-05-21 Visa U.S.A. Inc. System and method for implementing financial assistance programs
US8523053B2 (en) * 2008-09-03 2013-09-03 First Data Corporation Enabling consumer choice on contactless transactions when using a dual-branded payment instrument
JP5413637B2 (en) * 2008-09-12 2014-02-12 ソニー株式会社 IC chip, information processing apparatus, software module control method, information processing system and method, and program
EP2197167B1 (en) * 2008-12-12 2017-07-12 Vodafone Holding GmbH Device and method for short range communication
US8121543B2 (en) * 2008-12-26 2012-02-21 Nokia Corporation Power management
US8706628B2 (en) * 2009-02-25 2014-04-22 Mastercard International Incorporated Automated opening of electronic wallet function in mobile device
US8989705B1 (en) 2009-06-18 2015-03-24 Sprint Communications Company L.P. Secure placement of centralized media controller application in mobile access terminal
US20100330904A1 (en) * 2009-06-30 2010-12-30 Nokia Corporation Method, apparatus, and computer program product for refreshing a configuration of a contactless frontend device
KR100926165B1 (en) * 2009-08-18 2009-11-10 (주)애니쿼터스 The apparatus and method of one shot mode with nfc controller
EP2388731A1 (en) * 2010-05-20 2011-11-23 Gemalto SA Method and system for communicating information originating from a contact-less communicating device and a contact-less communicating device
EP2390817A1 (en) * 2010-05-27 2011-11-30 Gemalto SA Method of managing communications with a nfc controller
CN101980309B (en) * 2010-10-14 2013-06-12 中兴通讯股份有限公司 Near field communication (NFC) mobile terminal and NFC safety payment realizing method
EP2445170B1 (en) * 2010-10-19 2014-10-08 Vodafone Holding GmbH Device and method for contactless short range communication
WO2012054786A1 (en) 2010-10-20 2012-04-26 Playspan Inc. Flexible monetization service apparatuses, methods and systems
US20120143702A1 (en) * 2010-12-07 2012-06-07 Mediatek Inc. Transaction Information Keeping Methods and Mobile Devices Thereto
US9104690B2 (en) * 2011-01-27 2015-08-11 Micron Technology, Inc. Transactional memory
US20120197787A1 (en) * 2011-01-31 2012-08-02 Bank Of America Corporation Mobile wallet experience for resolving conflicts between different financial institutions and payment vehicles
US10204327B2 (en) 2011-02-05 2019-02-12 Visa International Service Association Merchant-consumer bridging platform apparatuses, methods and systems
US9953334B2 (en) 2011-02-10 2018-04-24 Visa International Service Association Electronic coupon issuance and redemption apparatuses, methods and systems
BR112013021059A2 (en) 2011-02-16 2020-10-27 Visa International Service Association Snap mobile payment systems, methods and devices
US10586227B2 (en) 2011-02-16 2020-03-10 Visa International Service Association Snap mobile payment apparatuses, methods and systems
BR112013021057A2 (en) 2011-02-22 2020-11-10 Visa International Service Association universal electronic payment devices, methods and systems
US9773212B2 (en) 2011-02-28 2017-09-26 Visa International Service Association Secure anonymous transaction apparatuses, methods and systems
WO2012122060A1 (en) 2011-03-04 2012-09-13 Visa International Service Association Cloud service facilitator apparatuses, methods and systems
WO2012155081A1 (en) 2011-05-11 2012-11-15 Visa International Service Association Electronic receipt manager apparatuses, methods and systems
WO2012167202A2 (en) 2011-06-03 2012-12-06 Visa International Service Association Virtual wallet card selection apparatuses, methods and systems
US9355393B2 (en) 2011-08-18 2016-05-31 Visa International Service Association Multi-directional wallet connector apparatuses, methods and systems
WO2013006725A2 (en) 2011-07-05 2013-01-10 Visa International Service Association Electronic wallet checkout platform apparatuses, methods and systems
US9582598B2 (en) 2011-07-05 2017-02-28 Visa International Service Association Hybrid applications utilizing distributed models and views apparatuses, methods and systems
US10438176B2 (en) 2011-07-17 2019-10-08 Visa International Service Association Multiple merchant payment processor platform apparatuses, methods and systems
US10242358B2 (en) 2011-08-18 2019-03-26 Visa International Service Association Remote decoupled application persistent state apparatuses, methods and systems
US9710807B2 (en) 2011-08-18 2017-07-18 Visa International Service Association Third-party value added wallet features and interfaces apparatuses, methods and systems
US10825001B2 (en) 2011-08-18 2020-11-03 Visa International Service Association Multi-directional wallet connector apparatuses, methods and systems
US10318941B2 (en) 2011-12-13 2019-06-11 Visa International Service Association Payment platform interface widget generation apparatuses, methods and systems
US9117225B2 (en) 2011-09-16 2015-08-25 Visa International Service Association Apparatuses, methods and systems for transforming user infrastructure requests inputs to infrastructure design product and infrastructure allocation outputs
US10223730B2 (en) 2011-09-23 2019-03-05 Visa International Service Association E-wallet store injection search apparatuses, methods and systems
US9496925B2 (en) 2011-09-30 2016-11-15 Nokia Technologies Oy Method, apparatus, and computer program product for remote wireless powering and control of an electronic device
EP2767110A4 (en) * 2011-10-12 2015-01-28 C Sam Inc A multi-tiered secure mobile transactions enabling platform
US10482457B2 (en) 2011-10-17 2019-11-19 Capital One Services, Llc System and method for token-based payments
US9183490B2 (en) 2011-10-17 2015-11-10 Capital One Financial Corporation System and method for providing contactless payment with a near field communications attachment
US9105025B2 (en) 2011-10-17 2015-08-11 Capital One Financial Corporation Enhanced near field communications attachment
WO2013090611A2 (en) 2011-12-13 2013-06-20 Visa International Service Association Dynamic widget generator apparatuses, methods and systems
US9953378B2 (en) 2012-04-27 2018-04-24 Visa International Service Association Social checkout widget generation and integration apparatuses, methods and systems
US10223710B2 (en) 2013-01-04 2019-03-05 Visa International Service Association Wearable intelligent vision device apparatuses, methods and systems
US10262148B2 (en) 2012-01-09 2019-04-16 Visa International Service Association Secure dynamic page content and layouts apparatuses, methods and systems
US11308227B2 (en) 2012-01-09 2022-04-19 Visa International Service Association Secure dynamic page content and layouts apparatuses, methods and systems
AU2013214801B2 (en) 2012-02-02 2018-06-21 Visa International Service Association Multi-source, multi-dimensional, cross-entity, multimedia database platform apparatuses, methods and systems
US9337899B2 (en) * 2012-02-13 2016-05-10 Qualcomm Incorporated Methods and apparatus for secure updates to persistent data in a near field communication controller
US8712407B1 (en) * 2012-04-05 2014-04-29 Sprint Communications Company L.P. Multiple secure elements in mobile electronic device with near field communication capability
US9027102B2 (en) 2012-05-11 2015-05-05 Sprint Communications Company L.P. Web server bypass of backend process on near field communications and secure element chips
US8862181B1 (en) 2012-05-29 2014-10-14 Sprint Communications Company L.P. Electronic purchase transaction trust infrastructure
US9282898B2 (en) 2012-06-25 2016-03-15 Sprint Communications Company L.P. End-to-end trusted communications infrastructure
US9066230B1 (en) 2012-06-27 2015-06-23 Sprint Communications Company L.P. Trusted policy and charging enforcement function
US8649770B1 (en) 2012-07-02 2014-02-11 Sprint Communications Company, L.P. Extended trusted security zone radio modem
US8667607B2 (en) 2012-07-24 2014-03-04 Sprint Communications Company L.P. Trusted security zone access to peripheral devices
US8863252B1 (en) 2012-07-25 2014-10-14 Sprint Communications Company L.P. Trusted access to third party applications systems and methods
US9183412B2 (en) 2012-08-10 2015-11-10 Sprint Communications Company L.P. Systems and methods for provisioning and using multiple trusted security zones on an electronic device
US9215180B1 (en) 2012-08-25 2015-12-15 Sprint Communications Company L.P. File retrieval in real-time brokering of digital content
US9015068B1 (en) 2012-08-25 2015-04-21 Sprint Communications Company L.P. Framework for real-time brokering of digital content delivery
US8954588B1 (en) 2012-08-25 2015-02-10 Sprint Communications Company L.P. Reservations in real-time brokering of digital content delivery
US8752140B1 (en) 2012-09-11 2014-06-10 Sprint Communications Company L.P. System and methods for trusted internet domain networking
WO2014113960A1 (en) * 2013-01-24 2014-07-31 华为终端有限公司 Method, device, and terminal device for near field communication radiofrequency discovery control
US9578664B1 (en) 2013-02-07 2017-02-21 Sprint Communications Company L.P. Trusted signaling in 3GPP interfaces in a network function virtualization wireless communication system
US9161227B1 (en) 2013-02-07 2015-10-13 Sprint Communications Company L.P. Trusted signaling in long term evolution (LTE) 4G wireless communication
US9104840B1 (en) 2013-03-05 2015-08-11 Sprint Communications Company L.P. Trusted security zone watermark
US8881977B1 (en) 2013-03-13 2014-11-11 Sprint Communications Company L.P. Point-of-sale and automated teller machine transactions using trusted mobile access device
US9613208B1 (en) 2013-03-13 2017-04-04 Sprint Communications Company L.P. Trusted security zone enhanced with trusted hardware drivers
US9049186B1 (en) 2013-03-14 2015-06-02 Sprint Communications Company L.P. Trusted security zone re-provisioning and re-use capability for refurbished mobile devices
US9049013B2 (en) 2013-03-14 2015-06-02 Sprint Communications Company L.P. Trusted security zone containers for the protection and confidentiality of trusted service manager data
US9374363B1 (en) 2013-03-15 2016-06-21 Sprint Communications Company L.P. Restricting access of a portable communication device to confidential data or applications via a remote network based on event triggers generated by the portable communication device
US9191388B1 (en) 2013-03-15 2015-11-17 Sprint Communications Company L.P. Trusted security zone communication addressing on an electronic device
US9021585B1 (en) 2013-03-15 2015-04-28 Sprint Communications Company L.P. JTAG fuse vulnerability determination and protection using a trusted execution environment
US8984592B1 (en) 2013-03-15 2015-03-17 Sprint Communications Company L.P. Enablement of a trusted security zone authentication for remote mobile device management systems and methods
US9454723B1 (en) 2013-04-04 2016-09-27 Sprint Communications Company L.P. Radio frequency identity (RFID) chip electrically and communicatively coupled to motherboard of mobile communication device
US9171243B1 (en) 2013-04-04 2015-10-27 Sprint Communications Company L.P. System for managing a digest of biographical information stored in a radio frequency identity chip coupled to a mobile communication device
US9324016B1 (en) 2013-04-04 2016-04-26 Sprint Communications Company L.P. Digest of biographical information for an electronic device with static and dynamic portions
US9838869B1 (en) 2013-04-10 2017-12-05 Sprint Communications Company L.P. Delivering digital content to a mobile device via a digital rights clearing house
US9443088B1 (en) 2013-04-15 2016-09-13 Sprint Communications Company L.P. Protection for multimedia files pre-downloaded to a mobile device
US9069952B1 (en) 2013-05-20 2015-06-30 Sprint Communications Company L.P. Method for enabling hardware assisted operating system region for safe execution of untrusted code using trusted transitional memory
US9560519B1 (en) 2013-06-06 2017-01-31 Sprint Communications Company L.P. Mobile communication device profound identity brokering framework
US9183606B1 (en) 2013-07-10 2015-11-10 Sprint Communications Company L.P. Trusted processing location within a graphics processing unit
US9208339B1 (en) 2013-08-12 2015-12-08 Sprint Communications Company L.P. Verifying Applications in Virtual Environments Using a Trusted Security Zone
US9185626B1 (en) 2013-10-29 2015-11-10 Sprint Communications Company L.P. Secure peer-to-peer call forking facilitated by trusted 3rd party voice server provisioning
US9191522B1 (en) 2013-11-08 2015-11-17 Sprint Communications Company L.P. Billing varied service based on tier
US9161325B1 (en) 2013-11-20 2015-10-13 Sprint Communications Company L.P. Subscriber identity module virtualization
US9118655B1 (en) 2014-01-24 2015-08-25 Sprint Communications Company L.P. Trusted display and transmission of digital ticket documentation
US9226145B1 (en) 2014-03-28 2015-12-29 Sprint Communications Company L.P. Verification of mobile device integrity during activation
US9449346B1 (en) 2014-05-21 2016-09-20 Plaid Technologies, Inc. System and method for programmatically accessing financial data
US9595023B1 (en) 2014-05-21 2017-03-14 Plaid Technologies, Inc. System and method for facilitating programmatic verification of transactions
US9230085B1 (en) 2014-07-29 2016-01-05 Sprint Communications Company L.P. Network based temporary trust extension to a remote or mobile device enabled via specialized cloud services
JP6025125B2 (en) * 2014-08-07 2016-11-16 パナソニックIpマネジメント株式会社 Payment processing device
SG10201406045PA (en) * 2014-09-24 2016-04-28 Vertical Software Asia Pte Ltd Authentication system and method
US9779232B1 (en) 2015-01-14 2017-10-03 Sprint Communications Company L.P. Trusted code generation and verification to prevent fraud from maleficent external devices that capture data
US9838868B1 (en) 2015-01-26 2017-12-05 Sprint Communications Company L.P. Mated universal serial bus (USB) wireless dongles configured with destination addresses
US11216468B2 (en) 2015-02-08 2022-01-04 Visa International Service Association Converged merchant processing apparatuses, methods and systems
US9699594B2 (en) * 2015-02-27 2017-07-04 Plantronics, Inc. Mobile user device and method of communication over a wireless medium
US9473945B1 (en) 2015-04-07 2016-10-18 Sprint Communications Company L.P. Infrastructure for secure short message transmission
US10163083B2 (en) 2015-04-13 2018-12-25 Bank Of America Corporation Account activity management system
EP4006755A1 (en) 2015-09-08 2022-06-01 Plaid Inc. Secure permissioning of access to user accounts, including secure deauthorization of access to user accounts
US9819679B1 (en) 2015-09-14 2017-11-14 Sprint Communications Company L.P. Hardware assisted provenance proof of named data networking associated to device data, addresses, services, and servers
US9330383B1 (en) 2015-09-23 2016-05-03 Square, Inc. Message dispatcher for payment system
US10248940B1 (en) 2015-09-24 2019-04-02 Square, Inc. Modular firmware for transaction system
IL242762A0 (en) * 2015-11-24 2016-04-21 Moti Maimon Method and system for creating a communication channel between a smart object and a smart phone
US10282719B1 (en) 2015-11-12 2019-05-07 Sprint Communications Company L.P. Secure and trusted device-based billing and charging process using privilege for network proxy authentication and audit
US9817992B1 (en) 2015-11-20 2017-11-14 Sprint Communications Company Lp. System and method for secure USIM wireless network access
US10726491B1 (en) 2015-12-28 2020-07-28 Plaid Inc. Parameter-based computer evaluation of user accounts based on user account data stored in one or more databases
US10984468B1 (en) 2016-01-06 2021-04-20 Plaid Inc. Systems and methods for estimating past and prospective attribute values associated with a user account
US10108412B2 (en) 2016-03-30 2018-10-23 Square, Inc. Blocking and non-blocking firmware update
US11010765B2 (en) 2016-06-29 2021-05-18 Square, Inc. Preliminary acquisition of payment information
US10817869B2 (en) 2016-06-29 2020-10-27 Square, Inc. Preliminary enablement of transaction processing circuitry
US10417628B2 (en) 2016-06-29 2019-09-17 Square, Inc. Multi-interface processing of electronic payment transactions
US10499249B1 (en) 2017-07-11 2019-12-03 Sprint Communications Company L.P. Data link layer trust signaling in communication network
US10878421B2 (en) 2017-07-22 2020-12-29 Plaid Inc. Data verified deposits
US11468085B2 (en) 2017-07-22 2022-10-11 Plaid Inc. Browser-based aggregation
US11488141B2 (en) * 2017-09-29 2022-11-01 Apple Inc. Command-based timer for wireless transactions
KR102455913B1 (en) * 2018-02-08 2022-10-20 삼성전자주식회사 Method for providing service using near field communication and electronic device supporting the same
US11316862B1 (en) 2018-09-14 2022-04-26 Plaid Inc. Secure authorization of access to user accounts by one or more authorization mechanisms
WO2020072670A1 (en) * 2018-10-02 2020-04-09 Capital One Services, Llc Systems and methods for cryptographic authentication of contactless cards
US10860814B2 (en) 2018-10-02 2020-12-08 Capital One Services, Llc Systems and methods for cryptographic authentication of contactless cards
US11080085B2 (en) * 2018-12-17 2021-08-03 International Business Machines Corporation Watchdog timer for a multi-stage computing environment
US10762196B2 (en) 2018-12-21 2020-09-01 Square, Inc. Point of sale (POS) systems and methods with dynamic kernel selection
US10990969B2 (en) 2018-12-21 2021-04-27 Square, Inc. Point of sale (POS) systems and methods for dynamically processing payment data based on payment reader capability
US11049095B2 (en) 2018-12-21 2021-06-29 Square, Inc. Point of sale (POS) systems and methods with dynamic kernel selection
EP3696759A1 (en) * 2019-02-15 2020-08-19 Nxp B.V. Method of managing priority in the context of a secure element domain with multiple interfaces, electronic device and communication system
US11887069B2 (en) 2020-05-05 2024-01-30 Plaid Inc. Secure updating of allocations to user accounts
US11327960B1 (en) 2020-10-16 2022-05-10 Plaid Inc. Systems and methods for data parsing

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030189096A1 (en) * 2002-04-08 2003-10-09 Nokia Corporation Mobile terminal featuring smart card interrupt
EP1503352A1 (en) * 2003-07-31 2005-02-02 Matsushita Electric Industrial Co., Ltd. Portable device, IC module, IC card, and method for using services
US20050108317A1 (en) * 2003-09-30 2005-05-19 Sony Corporation Mobile terminal apparatus
WO2006095212A1 (en) * 2005-03-07 2006-09-14 Nokia Corporation Method and mobile terminal device including smartcard module and near field communications means
US20060279410A1 (en) * 2003-12-19 2006-12-14 Vodafone K.K. Method for information display, mobile information apparatus, and contactless communication device
WO2007068993A1 (en) * 2005-12-16 2007-06-21 Nokia Corporation Method and device for controlling and providing indications of communication events

Family Cites Families (35)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FI99071C (en) * 1995-02-15 1997-09-25 Nokia Mobile Phones Ltd Procedure for use of applications in a mobile telephone as well as a mobile telephone
US6076075A (en) * 1995-09-25 2000-06-13 Cardis Enterprise International N.V. Retail unit and a payment unit for serving a customer on a purchase and method for executing the same
US5758190A (en) * 1996-04-09 1998-05-26 International Business Machines Corporation Control unit threshold timeout controls for software missing interrupt handlers in operating systems
US5761492A (en) * 1996-05-07 1998-06-02 Lucent Technologies Inc. Method and apparatus for uniform and efficient handling of multiple precise events in a processor by including event commands in the instruction set
US5923884A (en) * 1996-08-30 1999-07-13 Gemplus S.C.A. System and method for loading applications onto a smart card
US6369855B1 (en) * 1996-11-01 2002-04-09 Texas Instruments Incorporated Audio and video decoder circuit and system
US6004276A (en) * 1997-03-03 1999-12-21 Quinton Instrument Company Open architecture cardiology information system
US6145009A (en) * 1997-05-20 2000-11-07 Kabushiki Kaisha Toshiba Event controlling system for integrating different event driven systems
US6477559B1 (en) * 1998-08-21 2002-11-05 Aspect Communications Corporation Method and apparatus for remotely accessing an automatic transaction processing system
JP3572571B2 (en) * 1999-06-30 2004-10-06 富士通株式会社 Multi-tier management system and local monitoring device
US7376583B1 (en) * 1999-08-10 2008-05-20 Gofigure, L.L.C. Device for making a transaction via a communications link
US6532023B1 (en) * 1999-08-12 2003-03-11 International Business Machines Corporation Recording selected applet events of a user interaction sequence
US6591375B1 (en) * 2000-06-30 2003-07-08 Harris Corporation RF transmitter fault and data monitoring, recording and accessing system
GB2367934B (en) 2000-10-13 2004-07-07 Nokia Mobile Phones Ltd Electronic authorisations
US6950939B2 (en) * 2000-12-08 2005-09-27 Sony Corporation Personal transaction device with secure storage on a removable memory device
US20020073025A1 (en) * 2000-12-08 2002-06-13 Tanner Robert G. Virtual experience of a mobile device
US6751753B2 (en) * 2001-02-27 2004-06-15 Sun Microsystems, Inc. Method, system, and program for monitoring system components
US7493288B2 (en) * 2001-07-10 2009-02-17 Xatra Fund Mx, Llc RF payment via a mobile device
US7320126B2 (en) * 2001-11-06 2008-01-15 Sandisk Corporation Implementation of in system programming to update firmware on memory cards
US20030135382A1 (en) * 2002-01-14 2003-07-17 Richard Marejka Self-monitoring service system for providing historical and current operating status
US20040019564A1 (en) * 2002-07-26 2004-01-29 Scott Goldthwaite System and method for payment transaction authentication
CN1203403C (en) * 2003-01-17 2005-05-25 天图信息技术(上海)有限公司 Background downloading device and method in net video network advertiing system
FR2864297B1 (en) * 2003-12-17 2006-04-14 Gemplus Card Int FULLY SIMULTANEOUS INFORMATION OF STATUS VARIATIONS FOR A DUAL INTERFACE OBJECT
JP2005229273A (en) * 2004-02-12 2005-08-25 Fujitsu Ltd Server backup system
FR2870412B1 (en) * 2004-05-13 2006-09-15 Gemplus Sa TRANSFER OF DATA BETWEEN TWO CHIP CARDS
US7581678B2 (en) * 2005-02-22 2009-09-01 Tyfone, Inc. Electronic transaction card
US7657486B2 (en) * 2005-12-09 2010-02-02 Mastercard International Incorporated Techniques for co-existence of multiple stored value applications on a single payment device managing a shared balance
US20070145135A1 (en) * 2005-12-28 2007-06-28 Fabrice Jogand-Coulomb Methods used in a nested memory system with near field communications capability
US20070156436A1 (en) * 2005-12-31 2007-07-05 Michelle Fisher Method And Apparatus For Completing A Transaction Using A Wireless Mobile Communication Channel And Another Communication Channel
US7775442B2 (en) * 2006-07-12 2010-08-17 Nokia Corporation Method for accessing after-operation information of secure element applications
US9021375B2 (en) * 2006-08-15 2015-04-28 International Business Machines Corporation Notification of state transition of an out-of-focus application
US7527208B2 (en) * 2006-12-04 2009-05-05 Visa U.S.A. Inc. Bank issued contactless payment card used in transit fare collection
US8523069B2 (en) * 2006-09-28 2013-09-03 Visa U.S.A. Inc. Mobile transit fare payment
US20080140667A1 (en) * 2006-12-07 2008-06-12 Sony Ericsson Mobile Communications Ab Device and method for creating a transaction log of data exchanges between a portable mobile communications device and other wireless devices
US20080162312A1 (en) * 2006-12-29 2008-07-03 Motorola, Inc. Method and system for monitoring secure applet events during contactless rfid/nfc communication

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030189096A1 (en) * 2002-04-08 2003-10-09 Nokia Corporation Mobile terminal featuring smart card interrupt
EP1503352A1 (en) * 2003-07-31 2005-02-02 Matsushita Electric Industrial Co., Ltd. Portable device, IC module, IC card, and method for using services
US20050108317A1 (en) * 2003-09-30 2005-05-19 Sony Corporation Mobile terminal apparatus
US20060279410A1 (en) * 2003-12-19 2006-12-14 Vodafone K.K. Method for information display, mobile information apparatus, and contactless communication device
WO2006095212A1 (en) * 2005-03-07 2006-09-14 Nokia Corporation Method and mobile terminal device including smartcard module and near field communications means
WO2007068993A1 (en) * 2005-12-16 2007-06-21 Nokia Corporation Method and device for controlling and providing indications of communication events

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8068011B1 (en) 2010-08-27 2011-11-29 Q Street, LLC System and method for interactive user-directed interfacing between handheld devices and RFID media
US8395486B2 (en) 2010-08-27 2013-03-12 Q Street, LLC System and method for interactive user-directed interfacing between handheld devices and RFID media
US9858455B2 (en) 2010-08-27 2018-01-02 Q Street, LLC System and method for interactive user-directed interfacing between handheld devices and RFID media
CN103593631A (en) * 2013-10-09 2014-02-19 北京兆信信息技术股份有限公司 Mobile network digital identity recognition system utilizing NFC (near field communication) technology

Also Published As

Publication number Publication date
US10311427B2 (en) 2019-06-04
US20080162361A1 (en) 2008-07-03

Similar Documents

Publication Publication Date Title
US10311427B2 (en) Method and system for monitoring secure application execution events during contactless RFID/NFC communication
US20080162312A1 (en) Method and system for monitoring secure applet events during contactless rfid/nfc communication
US20080121687A1 (en) Method and system for detecting an end of transaction for contactless transactions on a mobile device
US9224146B2 (en) Apparatus and method for point of sale terminal fraud detection
RU2427917C2 (en) Device, system and method to reduce time of interaction in contactless transaction
US20120089507A1 (en) Device, system and transaction method for integrating payment function and receipt function
CN102547682A (en) Method and device for operational control of internal functions and protected applications embedded in chip cards for mobile terminals
EP2201541A1 (en) Selectively switching antennas of transaction cards
SG183653A1 (en) Methods and systems using contactless card
US20230054157A1 (en) Near field communication nfc communication method and apparatus, and electronic device
US20210174365A1 (en) Secure automated teller machines
US7963443B2 (en) Systems, methods, and computer program products for mitigating signal noise at a wireless smart device reader
US20100145819A1 (en) Wireless communication terminal suspending interrupt during rf payment and method thereof
CN105894280A (en) Mobile terminal and method capable of hiding payment code
EP2869230A1 (en) Method of operating a security token, computer program product and security token
US11403639B2 (en) Method of auto-detection of an attempted piracy of an electronic payment card, corresponding card, terminal and program
KR20100061628A (en) Auto teller machine
US11803837B2 (en) Intelligent real time card alert system to detect suspicious contactless card reader
EP3148158A1 (en) Monitoring a transaction and apparatus for monitoring a mobile payment transaction
KR20190017041A (en) How to manage security elements
CN109872148B (en) Trusted data processing method and device based on TUI and mobile terminal
CN112613872A (en) Type 4NFC tag as protocol interface
CA2681226C (en) Apparatus and method for payment terminal fraud detection
CN114548996A (en) Card payment method and related device
EP4302254A1 (en) Method for managing a transaction with a smart card

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07865368

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07865368

Country of ref document: EP

Kind code of ref document: A1