`
`(12) UK Patent Application (19) GB (11) 2 390 211 (13) A
`
`(43) Date of A Publication
`
`31.12.2003
`
`(21) Application No:
`
`(22) Date of Filing:
`
`0215113.2
`
`29.06.2002
`
`(51)
`
`INT CL7:
`G07B 15/00
`
`(71) Applicant(s):
`Prepayment Cards Limited
`(Incorporated in the United Kingdom)
`Steam Packet House, Cross Street,
`MANCHESTER, M2 4JG, United Kingdom
`
`(72)
`
`lnventor(s):
`Christopher John Stanford
`
`(74) Agent and/or Address for Service:
`Marks & Clerk
`Sussex House, 83-85 Mosley Street,
`MANCHESTER, M2 3LG, United Kingdom
`
`(52) UK CL (Edition V ):
`G4V VAKC V301 V302A V302C V302D V302E V303
`V306D V307 V308 V310
`G4TTAE
`
`(56) Documents Cited:
`GB2376786 A
`EP 1333406 A
`WO 2003/034409 A
`JP2002123730 A
`
`GB 2361570 A
`EP 1318470 A
`WO 2000/062260 A
`
`(58) Field of Search:
`UK CL (Edition V) G4TTAE, G4V VAKC
`Other: Online: EPODOC, JAPIO, WPI
`
`(54) Abstract 1itle: licket and authentication data stored on portable handset
`
`(57) A portable handset, such as a mobile phone 3, PDA or
`pager, is used to store both ticket information,
`representing
`a ticket purchased from a ticket provider, and authentication
`information so that authentication of the ticket at the point
`of use does not involve communication with the ticket
`provider. The ticket information can be stored on a SIM card
`together with authentication security software.
`Authentication may involve an authentication string or
`graphics displayed on a screen and recognised by the
`software held by a ticket inspector. The ticket may be bought
`from the Internet using WAP software and paid for by credit
`card or funds stored in an e-purse in the handset.
`
`Customer Selects -
`----- STEP 1
`Ticket
`J,
`
`Customer Buys
`Ticket
`
`...
`-----
`
`STEP 2
`
`• i,
`Customer
`Receives Ticket
`
`------STEP
`
`3
`
`I I
`Customer
`Uses Ticket
`
`i
`
`-----
`
`STEP 4
`
`Authentication
`of Ticket
`
`,- ----- STEP 5
`
`FIG. 2
`
`G)
`llJ
`
`)>
`
`IPR2022-01239
`Apple EX1011 Page 1
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`1
`
`3
`
`3
`I
`I
`t_ ___ l __ , __ t_ ____ j
`
`I
`I
`
`I
`
`I
`
`I
`I
`L __ ~-.
`
`FIG . 1
`
`4
`
`IPR2022-01239
`Apple EX1011 Page 2
`
`
`
`Generated by PDFKit.NET Evaluation
`
`. (
`
`1.\s
`
`Customer Selects ______ STEP 1
`Ticket
`
`Customer Buys
`Ticket
`
`------
`
`STEP 2
`
`Customer
`Receives Ticket
`
`~-----STEP
`
`3
`
`Customer
`Uses Ticket
`
`.
`
`~----- STEP 4
`
`Authentication
`of Ticket
`
`~-----
`
`STEP 5
`
`FIG. 2
`
`IPR2022-01239
`Apple EX1011 Page 3
`
`
`
`FIG • 3
`
`3
`
`Generated by PDFKit.NET Evaluation
`
`~
`v3
`
`12
`
`---
`
`IPR2022-01239
`Apple EX1011 Page 4
`
`
`
`FIG. 4
`
`/J"'
`-:!:,
`
`30
`
`SIM Token space rental fee
`
`apphcahon ser111ce fee
`
`Generated by PDFKit.NET Evaluation
`
`-
`
`31
`
`32
`
`SIM EMV space Rental ree
`
`25
`
`IPR2022-01239
`Apple EX1011 Page 5
`
`
`
`FIG. 5
`
`23
`
`20
`
`v' -- U'
`
`30
`
`SIM Token space rental fee
`
`Generated by PDFKit.NET Evaluation
`
`-
`
`jtf a
`
`IPR2022-01239
`Apple EX1011 Page 6
`
`
`
`Generated by PDFKit.NET Evaluation
`
`2390211
`
`AUTHENTICATION METHOD
`
`The present invention re1ates to method for authenticating tickets stored on a portable
`handset.
`
`The ubiqmty of consumer electronics has affected very many aspects of everyday life.
`In particular,
`the recent
`increase
`in the ownersh1p of portahle devices with
`telecommunications
`capabihty has transfom1ed personal communications. Such
`devices include mobile telephones, personal digital assistants (PDAs), and pagers.
`
`Mobile telephones are now used in a number of different ways, and are no longer
`limited to voice communications. Mobile telephones are used to send text messages
`between hand sets usmg the short message service (SMS) protocol, and are also
`connected to portable computers, either by wired or wireless connection to allow
`connect10n to computer networks such as the Internet.
`
`It is known to use the SMS protocol to dehver advertising and other promotional
`content to mobile telephones. Using market research, 1t 1s possible
`to tailor the
`information to a particular target audience so as to increase the effectiveness of this
`advertising.
`
`It is also known to deliver coupons to a mobile telephone using the SMS service. Such
`a system is operated by Clikadeal Jnc. As descrihed on the Clickadcal website
`(www.clickadeal.com/faq.shtmi)
`i11 February 2002, in that system a user first registers
`and establishes a profile, by using web browser software to access an Internet web
`site. A server then periodically dispatches coupons to the user's mobile telephone in
`confonnity with the established profile. Such coupons will typically take the fom1 of
`discounts applicable in shops, restaurants or similar outlets. Each coupon contams an
`identification number, which is quoted at the point at which the coupon is to be
`redeemed. Redemption is then effected by entering the identification number mto a
`tenninal at the point of redemption. While this system is functional in delivering
`
`IPR2022-01239
`Apple EX1011 Page 7
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`2
`
`relatively low value special offer coupons, it is relatively insecure. This means that
`
`the system is not suitable for higher value applications.
`
`Another known electromc coupon distribution system is described in WO 00/39657.
`
`Herc coupons are sent from a central database
`
`to a user's mobile
`
`telephone.
`
`Redemption of a coupon is achieved either by manually reading an identification
`
`number from the screen of the mobile telephone, and inputting this number mto an
`
`appropriate
`
`terminal at the point of sale, or altemattVely, by scanning a barcode
`
`appearing on the mobile telephone screen into the terminal using a suitable bar code
`
`reader. The tem1inal then transmits the coupon number to the remote database, and
`
`the coupon is marked as used in the database. The coupon is also marked as used in
`
`the mobile telephone. The identification number transmitted to the remote database
`
`does not itself provide authentication, but merely provides a key by which the central
`
`database may be searched.
`
`EP1150228Al discloses a further method of distributing coupons to mobile devices.
`
`This system is similar to that described m W0/39657, but it is also disclosed that the
`
`coupon 1s validated using the remote database, so as to ensure that fraudulent coupons
`
`are not redeemed. Again, the identification number is merely a key by which the
`
`central database may be searched. In each of these systems, the authentication of
`
`tokens is not of great concern, given the relatively low value of the coupons involved.
`
`US6094640 (which is a continuation of US5724520) descrihes a system suitahle for
`
`Ji~Lribuling air1int.: tickels lo users. Each user is allocated a card hearing a unique
`
`1dent1fication number. When a booking is made, the reservation data is stored in a
`
`central database with a link to the user's u111que identifier. When lhe ticket is to be
`
`used, the user presents the card, allowing the reservation data to be accessed. Given
`
`the high value environment
`
`in which this system is employed, greater emphasis 1s
`
`placed upon authentication, which is achieved by consulting infonnatlon stored in the
`
`central database.
`
`IPR2022-01239
`Apple EX1011 Page 8
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`3
`
`Each of the systems described above either has no secure authentication method due
`
`to the low value environment in which it is used, or alternatively, 1s provided with
`
`authentication by means of remote database lookup. While the latter option does
`
`provide secure authentication, it requires high bandwidth connectivity to ensure that
`
`communication between the mobile telephones and the remote database can be
`
`successfully carried out. Such bandwidth is expensive to provide, and the system 1s
`
`likely to be slow at times of high usage. Furthermore, such handw1dth must he
`
`provided securely so as to prevent interference from unauthorised third parties who
`
`could potentially undermine the purpose of the authentication system.
`
`It is an object of the first, second, third and fourth aspects of the present mvention to
`
`obviate or mitigate one or more the problems outlmed above.
`
`According to a first aspect of the present invention, there is provided a portable
`
`handset, comprismg a memory for storing ticket data including ticket authentication
`
`data, input means for accepting an input representing a ticket authentication request,
`
`and means for producing an output which identifies a ticket represented by the ticket
`
`data and includes data derived from the stored authentication data.
`
`The handset may further comprise means to produce the output in response to the
`
`authentication request. The input may comprise a first authentication string, and the
`
`output may compnse a second authentication strmg generated using
`
`the first
`
`authentication stnng and the stored authentication data.
`
`The handset may further comprise a user readable display, and the means for
`
`producmg the output may be configured to display the output on the user readable
`
`display. The stored authentication data may comprise characters, and/or graphics,
`
`and/or ammated graphics which can be generated only by an authorised issuer of the
`
`ticket.
`
`The handset may comprise at least one communications channel, which may use infra
`
`red communication, or radio frequency communication. The means for producing the
`
`IPR2022-01239
`Apple EX1011 Page 9
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`4
`
`output may be configured to direct the data derived from the stored authentication
`
`data to the communications channel.
`
`The input means may be a keypad of the portable handset, or a communications
`
`channel of the portable handset.
`
`The handset may also function as a mobile
`
`telephone.
`
`According to a second aspect of the present invention, there is provided a method for
`
`authenticating
`
`ticket data including authentication data stored
`
`in a memory of a
`
`portable handset, the method comprising accepting an input to the portable handset
`
`representing a ticket authentication request, and producing an output from the portable
`
`handset which identifies a ticket represented by the ticket data and includes data
`
`derived from the stored authentication data.
`
`The output may be displayed on a display screen of the device, allowing the ticket to
`
`be identified by visual inspection of the said display screen. The data derived from the
`
`stored authentication data may be displayed on a display screen of the device,
`
`allowing the ticket to be authenticated by visual inspection of the said display screen.
`
`The stored authenticatton data may comprise characters, and/or graphics and/or
`
`animated graphics which can be generated only by an authorised
`
`issuer of the ticket
`
`data.
`
`The output may be transmitted from the handset using a communications channel of
`
`the portable handset. The data derived from the stored autheulical1on dala may also he
`
`transmitted
`
`from the handset using the commumcations
`
`channel of the portable
`
`handset.
`
`Input may he effected using a keypad of the portable handset or a communications
`
`channel of the portable handset. The input may be generated by a separate electronic
`
`device, and communicated
`
`to the portable handset using the said communications
`
`channel. The input may be generated by a point of service tem1inal. The stored
`
`authentication data may be communicated to the point of service terminal.
`
`IPR2022-01239
`Apple EX1011 Page 10
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`5
`
`The invention also provides a computer program for carrying out the method set out
`
`above.
`
`According to a third aspect of the present invention, there 1s provided a carrier
`
`medium carrying computer program code means to cause a portable handset, having
`
`access to a memory for storing ticket data which includes authentication data, to
`
`execute procedure to:
`
`accept an input representing a ticket authentication request; and
`
`produce an output which identifies a ticket represented by the ticket data and
`
`includes data derived from the stored authentication data.
`
`The memory may form part of the earner medium. The earner medium may be a
`
`smart card. The smart card may be a mob1le telephone SIM card.
`
`According to a fourth aspect of the present invention, there is provided a device for
`
`authenticating ticket data stored on a portable handset, the device comprismg means
`
`to generate an output signal suitable for commumcation with the portable handset
`
`placed adjacent the device, means for receiving an authentication signal from the
`
`portable handset and means for authenticating
`
`the ticket data in response
`
`to the
`
`received authentication signal.
`
`The means to generate the output signal may be a transmitter using radio frequency
`
`communication, or
`
`infrc1 red communication. The means
`
`for receiving
`
`the
`
`authentication signal may be a receiver usmg rad10 frequency communication, or
`
`using infra red commumcation. The device may further compric:;e a connection to a
`
`database server such that ticket authentication operations are communicated
`
`to the
`
`database server.
`
`The mcreased use of mobile telephones also makes purchasing goods and services
`
`through a mobile telephone viable. Such a system 1s particularly suitable for
`
`purchasing tickets which can be stored electronically, as set out above.
`
`IPR2022-01239
`Apple EX1011 Page 11
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`6
`
`tickets will need to
`
`However, a user wanting to purchase a number of different
`navigate to a number of different ticket providers' web sites to obtam the tickets
`which they desire. Such a system is disadvantageous because the user will need to
`know an Internet address for each provider. Furthermore, a user may be unhappy to
`disclose credit or debit card details to some ticket providers, for fear of unauthorised
`use of their credit or debit card details.
`
`It is an object of the fifth, sixth and seventh aspects of the present invention to obviate
`or m1t1gate one or more of the problems outlined above.
`
`Accordmg to a fifth aspect of the present invention, there 1s provided a computer
`system for allowmg a user to obtam a ticket, the system comprising:
`a connection to a portable handset operated by a user; a connection to a
`to a payment
`ticket server operated by an authorised ticket provider; a connection
`server operable to authorise payment transactions; means to receive a ticket purchase
`to direct ticket
`request from the portable handset operated by the user; means
`purchase requests to the ticket server; means to receive payment details from the
`portable handset operated by the user; means to direct payment details to the payment
`server; means to receive ticket data representing the requested ticket from the ticket
`server, and means to transmit the said ticket data to the portable handset of the user.
`
`The connection to at least one of the ticket server and the payment server may be a
`\vircd connection. The wired connection may bi:: provided hy the Internet The
`connection to the portable handset 1s preferably a wireless connection. The wireless
`connection may use a mobile telephony network.
`
`The computer system may further compnse means to receive data from the portable
`handset indicating that the ticket has been used. The computer system may also
`comprise a connection to a tenninal at a point of service, and means to receive data
`from the tern1inal indicating that the ticket has been used.
`
`IPR2022-01239
`Apple EX1011 Page 12
`
`
`
`Generated by PDFKit.NET Evaluation
`
`7
`
`The computer system may compnse connect10ns to a plurality of ticket servers, each
`ticket server being operated by a respective authonsed
`ticket provider, and may
`comprise selection means to select to which of the plurahty of ticket servers a ticket
`purchase request should he directed
`
`According
`
`to a sixth aspect of the present invention,
`there is provided a method for
`allowing a user to obtain a ticket, the method comprising: rece1Ving a ticket purchase
`request from a portable handset operated by a user; directing
`
`the ticket purchase
`
`request
`
`to a ticket server;
`
`receiving payment details
`from the portable handset
`operated by the user; directmg the payment details to the payment server; receiving
`ticket data representing
`the requested ticket from the ticket server, and transmitting
`the said ticket data to the portable handset of the user.
`
`There is also provided a computer program for carrying out a method m accordance
`with the sixth aspect of the present invention.
`
`According to a seventh aspect of the present invention, there is provided a method for
`purchasmg a ticket using a portable device, the method comprismg sending a signal to
`a remote server representing a request for the ticket, sending data to the remote server,
`said data representing a means of payment
`
`for the requested
`
`ticket, receiving data
`the ticket from the server, and storing the saved ticket in a memory of the
`portable device.
`
`representmg
`
`Throughout
`
`this document,
`
`the tem1 "ticket" and "tokt:n" aml "coupon" are used
`interchangeably, and are considered to be funct10nally 1dent1cal
`
`An embodiment of the present invention will now be described, hy way of example,
`with reference to the accompanymg drawings, 111 which:
`
`Figure 1 is a schematic illustration showing a top-level view of a system operating in
`accordance with the present invention;
`
`IPR2022-01239
`Apple EX1011 Page 13
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`8
`
`Figure 2 is a flowchart showing the operat10n of the system of figure 1;
`
`Figure 3 1s a schematic illustration of a system implementing
`
`the process illustrated
`
`in
`
`figure 2;
`
`Figure 4 1s a schematic illustration of a business model showing how operation of the
`
`system of figure 3 may be distnbuted between a plurality of companies; and
`
`Figure 5 is a schematic illustration of an alternative business model to that shown in
`
`figure 4.
`
`Refemng
`
`to figure 1 there is illustrated a process for issuing and redeeming
`
`tickets in
`
`accordance with the present invention. A user purchases a ticket from a ticket issuer
`
`h~.ving a central database 1. The central database manages the distribution of tickets
`
`which are represented by ticket data stored therein. Such ticket data is distributed by a
`
`wireless communication network 2 to one of a number of portable devices 3 which
`
`could be for example mobile telephone handsets. Each wireless device includes a non(cid:173)
`
`volatile storage device upon which ticket data received from the central database
`
`l
`
`can be stored. In one embodiment of the present
`
`invention,
`
`the ticket data is stored
`
`within memory cells provided by the SIM card of a mobile telephone.
`
`A user of one of the devices 3 which holds ticket data presents
`
`the device 3 to a
`
`system 4 for authentication when the ticket is to be used. The authent1cat10n
`
`takes
`
`place
`
`through communication
`
`between
`
`the
`
`tlt.:vice 3 and
`
`the system 4 without
`
`intervention
`
`from any external system and in particular, without commumcat10n
`
`between the system 4 and the database I
`
`Operation of the system of figure 1 will he described with reference to figure 2. First a
`
`user selects a ticket which they wish to buy (STEP
`
`l ). This can be achieved by the
`
`user telephoning a call centre, where an operator advises of ticket availability, or
`
`alternatively by accessing an Internet web site through a personal computer
`
`and
`
`selecting the ticket using web browser software. Altemat1vely, the user may view a
`
`IPR2022-01239
`Apple EX1011 Page 14
`
`
`
`Generated by PDFKit.NET Evaluation
`
`9
`
`and select available tickets by accessmg the Internet using their portable handset by
`
`means of WITeless Application Protocol (WAP) software.
`
`Having selected a ticket which they wish to purchase,
`
`the user is required
`
`to pay the
`
`ticket issuer for the ticket (STEP 2). The form of payment will vary depending on the
`
`method used to select the ticket. If the ticket was selected using a call centre, the user
`
`will provide payment means in the form of credit or debit card details to the operator.
`
`If the ticket was selected using weh browser software running on a personal computer,
`
`the user will be prompted to enter the necessary credit or debit card details into fields
`
`provided by an Internet web page, and the entered data w111 then be transmitted
`
`to the
`
`ticket issuer. It is desirable that the transfer of data over the internet 1s effected in a
`
`secure way so as to prevent unauthorised
`
`third parties accessing
`
`the credit or debit
`
`card data
`
`lf the ticket was selected using a portable handset by means of the W AP system, the
`
`portable handset may contain payment means
`
`in the form card details stored in a
`
`storage device ,vithin the portable handset. These details can then be transmitted
`
`to
`
`the ticket issuer using the SMS protocol.
`
`It will he appreciated
`
`that
`
`the storage device containing
`
`card details could
`
`conveniently
`
`take the form of a card containing a memory cell. Such a card could be
`
`inserted into an appropriate slot in the portable handset. One known card particularly
`
`suitable for th1s apphcation
`
`is the EMV (Europay, Mastercard, Visa) Card which is
`
`available
`
`from Proton World of Rue du Planeur
`
`l 0, 1130 Brussels, Belgium.
`
`Alternatively, s11mlar technology allows implementation of what 1s known as e-purse
`
`\.vhereby users effectively store cash on a smart card, and the amount
`
`stored 1s
`
`decreased as tickets are purchased. Thee-purse system will he particularly suitable for
`
`relatively
`
`low value ticket purchases, such as cinema and other leisure
`
`tickets. A
`
`suitable e-purse system is again available from Proton World.
`
`IPR2022-01239
`Apple EX1011 Page 15
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`10
`
`If the storage device 1s to take the form of such a card, the card may also be inserted
`into a card reader connected to a personal computer, so as to allow payment by means
`of the EMV card when purchase is made via a web browser as described above.
`
`Having selected and paid for the ticket, the ticket 1s sent from the central database ( 1
`in figure 1) to the user's handset. This transmission can conveniently take the form of
`a suitably secured SMS message. (STEP 3). Standard SMS messaging is protected by
`commercial security systems of medium strength, which usually provide adequate
`
`security for such applications.
`
`When the ticket is to be redeemed the user presents the portable handset
`operator at the point of sale (STEP 4) and the ticket is authenticated (STEP 5 ). It may
`be sufficient that the token is visible on the screen of the portable handset, and that the
`operator visually inspects the ticket for authentication. Alternatively, the operator may
`have a device which communicates with the handset to effect validation, and also
`cancels the ticket. The process of authentication is descnbed in further detail below.
`
`to an
`
`It has already been described that ticket data transmitted to a portable handset can
`telephone
`the handset. Mobile
`conveniently be stored on a smart card within
`conventionally include a Subscriber Identity Module (SIM) card which includes some
`telephone
`to identify the particular
`software, together with identification details
`number. This SIM card can be replaced with a Prisma STM card (available
`Proton World). The specification of such cards is given in tv,lo documents puh1ished
`to Proton
`by Proton World: "The Proton Prisma Guille" anJ "An mtroduction
`Prisma." The detailed specification of the Prisma SIM card will therefore not be
`descnbed in further detail here. However, 1t should be noted that the Pnsma SfM card
`can mclude the tradit10nal SIM card funct1onal1ty alongside storage capacity to hold
`ticket data, and EMY and E-purse modules as descnbed above, and software to allow
`authentication of ticket data. The authentication software is described in further detail
`remotely,
`below. The software contained on the Prisma SIM can be programmed
`using a wireless communications network. However, considerable complexity can
`It 1s
`arise in such remote programmmg, which reqmres high bandwidth connectivity.
`
`from
`
`IPR2022-01239
`Apple EX1011 Page 16
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`11
`
`therefore desirable that the system is des1gned so as to minimise the reprogramming
`necessary.
`
`A messaging system aIJowing the selection and downloading of ticket data to a
`mobile handset is ilJustrated in figure 3. To obtain a ticket, the portable handset 3
`sends a message over the wireless communication network 2 to a proxy server 5. The
`mobile handset 1s equipped with a Prisma SIM
`card contaming WAP browser
`software, EMV functionality and the ability to store ticket data. The message 1s
`denoted by an arrow 6 and 1s in the form of an encoded Unique Resource Locator
`(URL) message from a WAP browser of the portable handset to the Hypertext
`Transfer Protocol (HTTP) proxy of the proxy server 3. The message 6 is received by
`the proxy server 5 and transferred to an apphcation server 7 in the form of a further
`URL message, denoted by an arrow 8. The operation of the proxy server 3 is such that
`it is completely transparent to both the portable handset and the application server 7.
`
`On receiving the message 8, the application server 7 sends basic ticket data to the
`proxy server 5 by means of a message 9. The basic ticket data is then transmitted
`the WAP browser of the portable handset 3 by means ofan encoded message 10.
`
`to
`
`transmitted
`
`The basic information
`
`to the portable handset thus far is sufficient
`to
`inform the user of tickets that are available. The data transmitted may either be
`generated from a database stored within the application server 7, or alternatively, may
`be obtained from a ticket issuer, having a server 11. For example, in the case of air
`travel tickets, the server 11 is operated by an airline.
`
`If the user wishes to proceed with the purchase of a ticket, the exact selection is made
`by means of the WAP browser, and suitable messages (denoted by the arrow 6) are
`
`sent to the proxy server 5 for onward transmission (denoted by the arrow 8) to the
`Application Server 7. The message received by the application server 7 will include
`payment details transmitted from the EMV module within the Pnsma SIM Card. The
`application server attempts
`
`to authorise payment with the card issuer, using the
`supphed payment details. The card JSsuer has a payment authonsatlon server 12, and
`the application server 7 sends an authorisation request 13 to the payment authonsation
`
`IPR2022-01239
`Apple EX1011 Page 17
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`12
`
`server 12. The payment authorisation server responds with an accept or reject signal
`
`14.
`
`If a reject signal is received by the application server, the transaction can not continue
`
`and an appropriate message is sent to the portable handset 3 via the proxy server 5. If
`
`an accept signal is received, the apphcation server 7 informs the ticket issuer's server
`
`1 l of the sale by means of a message 15. The ticket issuer responds with a message 16
`
`containing detailed ticket information (such as a serial number for example) which
`
`can be transmitted to the portable handset 3 via the proxy server 5. Funds are then
`
`transferred from the payment authonsation server 12 to the hcket issuer 11.
`
`It will be appreciated that a real world implementation of the ticket acquisition system
`
`described above will require co-operation by a number of different companies, each
`
`operating part of the system. For example, the provision of portable handsets 1s hkely
`to be best handled by a major manufacturer of mobile telephones, while provision of
`
`the Pnsma SIM cards is best handled by a major mobile telephone SIM card
`
`manufacturer. The payment authorisation server is best operated by one of the maJor
`
`banks, which has the necessary communications
`
`lmks to the banking networks for
`
`cleanng payment. Similarly, a major bank is required to provide
`
`the necessary
`
`functionality within the EMV card described above. The mobile telephone network
`
`operators would be best placed to ensure that the necessary W AP functionality
`
`is
`
`supported by both the handsets and their network. The application server, which 1s
`
`central to the operation of the system, could be handled hy a dedicated application
`
`server operator. This server plays a pivotal
`
`rol~ in connecting
`
`the necec;sary
`
`components of the system together. The th1rd party ticket servers would each be
`
`operated by a ticket issuer. Tn the case of railway tickets withm the United Kingdom,
`
`it 1s envisaged that the rail settlement plan (RSP) would operate a server 11 for the
`
`issue of tickets, and that payment would be made to the RSP for distribution between
`
`the rail operating companies.
`
`IPR2022-01239
`Apple EX1011 Page 18
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`13
`
`Each of the companies outlined above will need to derive revenue from the system. A
`
`smtable business model 1s illustrated
`
`in figure 4. Each of the arrows of figure 4
`
`denotes a transfer of money from one party to another.
`
`A user 17 pays a SMS charge 18 to the an operator 19 of the mobile network. This
`
`charge covers use of the SMS system for receiving
`pays a telephone distribution company 20 a distribution charge 21 for including
`
`ticket data. In turn the operator
`
`enhanced
`
`functionality within the SIM cards. A management
`
`fee 22 is paid to the
`
`operator 23 of the application server 7. A bank 24 providing the EMV functionahty
`
`pays the operator 23 of the application 7 a rental charge 25 for use of the SIM within
`
`the mobile handsets.
`
`The operator 23 of the application server 7 pays two charges 26, 27 to the mobile
`
`network provider 19. A first charge 26 covers the use of the SMS system by the
`
`system of the invention, and the second charge 27 is a subsidy for the increased
`
`functionality SIM cards used by the network's handsets.
`
`A ticket issuer 28 wishing to use the service must pay for SIM rental space to store
`
`ticket data within the portable handset, and also pay a service fee for use of the
`
`system. These charges are denoted by two arrows 29, 30 respectively. The final
`
`relationships
`
`involve the payment authorisation server 12. A banking organisation 31
`
`operating the server 12 pays the operator 23 for each transaction
`
`that is passed to 1t
`
`This payment 1s denoted by an arrow 32 Payments authorised hy the payment
`
`authorisation server 12 are paid to the ticket issuer 28 (di,::11ott,,;u by an arrow'.,'.,), and a
`
`conventional merchant fee 34 1s paid to the payment authorisation server operator 31
`
`by the ticket issuer 28 to cover banking costs.
`
`The system descrihed above with reference to figures 3 and 4 assumes
`
`that payment
`
`for tickets is to be made using an EMV card or an e-purse system, both of which are
`
`outlined above. However, referring back to figure 2, it will be recalled
`
`that 1t was
`
`dcscnbed
`
`that payment could be effected using a separate method than that used for
`
`ticket acquisition. A business model
`
`for a system without
`
`integrated
`
`payment
`
`IPR2022-01239
`Apple EX1011 Page 19
`
`
`
`Generated by PDFKit.NET Evaluation
`
`(
`
`14
`
`capability is shown in figure 5. It can be seen that the business relationships and
`
`payments made are as those illustrated in figure 4, excepting those mvolved with the
`
`payment scheme. In the cases of figure 4 and 5, it can be seen that the position of the
`
`operator 23 of the application server is viable, as streams of income exist to cover
`
`costs incurred.
`
`Havmg described the process of tickets select10n and acquisition, methods of securing
`
`and authenticating
`
`tickets will now be descnhed. The first area of the system as
`
`descnbed above which requires security is the provision of the EMV module withm
`
`the Prisma SIM card. The ex1sting Prisma World technology provides sufficient
`
`security features to satisfy this requirement. The second area requiring security is the
`
`transmission of tokens, and more importantly the provision of mechanisms
`
`to ensure
`
`that what appears on a portable handset as a token is a token issued by the appropriate
`
`ticket issuer, and not an SMS message from an unauthorised thlfd party.
`
`The system of the present invention incorporates a security application module as
`
`software on the Prisma SIM card. This module is called upon to authenticate tickets as
`
`required. In essence, the security application module adds a security framework fo