`
`330
`
`B2
`
`US009202
`
`a2) United States Patent
`US 9,202,330 B2
`(10) Patent No.:
`Boucher
`Dec. 1, 2015
`(45) Date of Patent:
`
`(54) PORTABLE OBJECT INCLUDING A DISPLAY
`AND APPLICATION FOR CARRYING OUT
`ELECTRONIC TRANSACTIONS
`
`Inventor: Daniel Boucher, Quebec (CA)
`(75)
`(73) Assignee: GEMALTO SA, Meudon(FR)
`(*) Notice:
`Subject to any disclaimer, the term ofthis
`patent is extended or adjusted under 35
`U'S.C. 154(b) by 80 days.
`13/131,435
`Nov. 30, 2009
`PC T/EP2009/066034
`
`(21) Appl. No.:
`(22)
`PCTFiled:
`(86) PCT No.:
`
`§ 371 (c)(1);
`(2), (4) Date:
`
`Aug. 5, 2011
`
`(87) PCT Pub. No.: WO2010/061002
`PCTPub. Date: Jun. 3, 2010
`
`(65)
`
`(30)
`
`Prior Publication Data
`US 2011/0284633 Al
`Nov. 24, 2011
`
`Foreign Application Priority Data
`
`Nov. 28, 2008
`
`(EP) wove scececsessseescsesenens 08170309
`
`(51)
`
`Int. Cl.
`G06Q 20/40
`GO06K 19/07
`
`(2012.01)
`(2006.01)
`(Continued)
`
`(52) U.S. CL
`CPCwee GO7F 7/1008 (2013.01); GO6K 19/077
`(2013.01); G06K 19/0718 (2013.01);
`(Continued)
`
`(58) Field of Classification Search
`CPC . GO6K 7/0013; GO6K 7/0021; GO6K 7/0026;
`G06K 7/003; G06K 7/0047; GO6K 7/0056;
`G06K 7/006; GO6K 9/00006; GO6K 19/0716;
`GO6K 19/0718; GO6K 19/07; GO6K 19/07707;
`GO6K 19/07743; GO6Q 20/206; GO6Q 20/341;
`G06Q 20/4012; GO6Q 20/4014; GO6Q
`20/40145
`
`USPC ou. 235/492, 379, 380, 486, 382, 441, 487,
`235/451; 705/35, 39, 41, 42, 44, 65, 67, 72,
`705/75, 17, 18; 382/115, 116, 119, 124;
`455/556.1, 557, 558, 559, 410, 411,
`455/66.1, 41.1; 340/5.4, 5.41, 5.42, 5.51,
`340/5.52, 5.53, 5.54, 5.8, 5.81, 5.82, 5.83,
`340/5.84, 5.85; 713/172, 182-186
`Sce application file for complete scarch history.
`
`(56)
`
`References Cited
`
`U.S. PATENT DOCUMENTS
`
`§,590,038 A * 12/1996 Pitroda oo 705/41
`5,802,325 A
`9/1998 Le Roux
`(Continued)
`
`FOREIGN PATENT DOCUMENTS
`
`EP
`EP
`WO
`
`0 649 547 Bl
`0980 053 A2
`WO 2008080879 Al *
`
`6/1997
`2/2000
`7/2008
`
`OTHER PUBLICATIONS
`
`International Search Report (PCT/ISA/210) issued on Mar. 31.2010,
`by European Patent Office as the International Searching Authority
`for International Application No. PCT/EP2009/066034.
`
`Primary Examiner — Michael G Lee
`Assistant Examiner — Suczu Fllis
`
`(74) Attorney, Agent, or Firm — Buchanan Ingersoll &
`Rooney PC
`ABSTRACT
`(57)
`A smart portable object including a safety component and a
`display, wherein the display is directly or indirectly interac-
`tive between a user and the safety component. The smart
`portable object also relates to implementing an electronic
`transaction, including a displaystep for displaying all or some
`ofthe information that is useful to a user for the transaction
`and/ora step of interacting with the user, wherein the display
`and/or interaction step is carried out via the interactive dis-
`play.
`
`18 Claims, 3 Drawing Sheets
`
`
`
`PIAL
`
`
`
`
`
`
`
`
`
`
`
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 1 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 1 of 11
`
`

`

`US 9,202,330 B2
`
`Page 2
`
`(51)
`
`(52)
`
`(56)
`
`(2006.01)
`20120)
`(2006.01)
`(2012.01)
`(2006.01)
`
`Int. Cl.
`GO7F 7/10
`Gig 2084
`G6K 19/077
`G06Q 20/12
`GO7F 7/08
`US.C1
`a
`CPC.... @06K19/07703 (2013.01); GO6K 19/07707
`(2013.01); GO6Q 20/12 (2013.01); G06Q
`20/341 (2013.01); G06Q 20/4012 (2013.01);
`.
`C06Q 2040145 eeeCOBOL)
`:
`
`.
`References Cited
`
`U.S. PATENT DOCUMENTS
`6,234,389 BL*
`5/2001 Valliani et al.
`.............. 235/380
`
`6,257,487 BL*
`7/2001 Hayashida .
`. 235/380
`1/2003 Tognazzini 0.0.0... 382/119
`6,512,840 BL*
`
`6,547,130 BL*
`4/2003 Shen oe eeeeccee ees . 235/380
`
`6,616,035 B2*
`9/2003 Ehrensvard et al.
`... 235/380
`
`Spenl4 Bly
`73004 Lien
`nn, ONG
`7,440,771 B2* 10/2008 Purk .......
`455/556.
`9/2010 Kisliakav .
`. 235/492
`7,802,728 B2*
`
`9/2014 Coller etal
`235/380
`8,820,638 B1*
`
`. 705/39
`2002/0077974 AL*
`6/2002 Ortiz .....
`. 705/67
`2002/0178124 Al* 11/2002 Lewis
`...
`2002/0180584 Al* 12/2002 McGregoretal. ........... 340/5.26
`2004/0235450 Al* 11/2004 Rosenberg vce 455/406
`2006/0131393 Al
`ooeen Cok et al.
`2007/0027804 Al
`2/2007 Vega
`2007/0158408 AL*
`7/2007 Wang et ale acces 235/380
`2008/0110977 A1*
`5/2008 Bonalle etal.
`235/380
`
`
`5/2008 Cox etal. .....
`. 705/67
`2008/0126260 A1*
`235/380
`9/2008 Saitoet al.
`2008/0223925 A1*
`235/380
`2009/0173784 Al*
`7/2009. Yang.....
`
`. 705/41
`2009/0307132 Al* 12/2009 Phillips
`7/2010 Lo Iacono
`235/375
`2010/0170942 A1*
`
`6/2011 Bonaetal. occ 340/5.83
`2011/0140841 Al*
`
`* cited by examiner
`
`
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 2 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 2 of 11
`
`

`

`U.S. Patent
`
`Dec. 1, 2015
`
`Sheet 1 of 3
`
`US 9,202,330 B2
`
`
`
` GOOG-1017
`
`Google LLC v. RFCyber Corp. / Page 3 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 3 of 11
`
`

`

`U.S. Patent
`
`Dec. 1, 2015
`
`Sheet2 of 3
`
`US 9,202,330 B2
`
`yoRsesueay
`
`IPssenrg
`
`(3C2Le)
`
`oor
`
`O0&
`
`Wild
`
`bok§
`
`GANIC
`
`aaa2D°3oO
`
`LLa>Oo
`
`i®2>Oo
`
`xS©°°o
`=—°s®D©oO—ai°Oo
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 4 of 11
`
`
`
`
`

`

`zq
`C4
`/ C3
`|
`C7
`fore
`peAe ee fee
`\
`|
`C5
`\
`C1
`N08
`\
`
`j
`
`~~
`
`WiFi,
`
`Bitar
`
`interne
`
`i
`
`VA
`
`418
`
`U.S. Patent
`
`Dec. 1, 2015
`
`Sheet3 of 3
`
`US 9,202,330 B2
`
`INTERNET
`
`Receiving
`Payment
`Issuing
`gateway
`bank
`
`
`bank
`
`
`
`eS =
`
`A C5
`(
`\
`coc ‘\7
`a
`S_
`o
`WS merchant
`
`server of
`
`“
`
`2
`
`,
`
`f.
`
`2
`
`’
`
`Ke
`
`7
`
`customer
`card
`
`Payment
`terminal
`
`LOSEa C2
`
`
`“
`“network of
`merchant
`
`Fig. 3
`
`
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 5 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 5 of 11
`
`

`

`1
`PORTABLE OBJECT INCLUDING A DISPLAY
`AND APPLICATION FOR CARRYING OUT
`ELECTRONIC TRANSACTIONS
`
`US 9,202,330 B2
`
`2
`active transactions with a distant unit such as a bank, through
`the interactive display and underthe direct or indirect control
`of a security component.
`The data typed by the user on the sereen are received and
`‘The invention concerns a portable object comprising a
`decoded bya secure graphical controller and/or a chip com-
`display, use thereof for implementing steps in an electronic
`prising a secure controller and/or using security operations.
`transaction method and the associated system.
`‘Thus the interactive display, for example touch sensitive,
`In particular, the invention applies to the implementation of
`makesit possible to performthe transactiondirectly between
`secure clectronic transactions such as payments by means of
`the chip card anda processing unit, making fraudulent allacks
`a protected portable object such as a chip card, USBkey,etc.
`moredifficult and thus improving security. Where applicable,
`The payments may be local by meansofpayment terminals or
`a secure communication protocol, in particular enciphered,
`online on theInternet in relation to merchantsites and servers
`can be shared between the processor of the object and the
`or a distant or local associated processing unit. The object is
`processing unit.
`in the form ofa chip card inapreferred embodiment.
`e 5
`The user can thus dialogue with his portable object in
`Although described in relation to an example financial
`complete confidence directly. The object has the advantage of
`transaction, the term transaction designates here anybidirec-
`dispensing with a keypador other man/machineinterface and
`tional exchange betweenthe portable object and the process-
`offers a larger useful display surface or makesit possible to
`ing unit, for example a consultation of a database or a secure
`make the object smaller, for example to the Mini UICC or
`personal base, access to shared files, downloading, access
`n> D
`Mini SIM format while incorporating a man/machineinter-
`control, processing of data of the monetary type such as 2
`face MMI.
`transfers of funds, etc.
`Such portable objects are known among chip cards for
`In the case of a card, the use of a reader of the transparent
`displaying in particular transaction balances, the content ofa
`type of the applicant, illustrated in the figures, or a radio-
`memory or an OTP (One Time Password) number. Such cards
`frequencyreader not covering the card or the object, makes
`Nea
`may beself-contained and have a battery and a button for :
`the surface of the object where the interactive screen is situ-
`ated visible and accessible.
`actuating the generation of the OTP. Somecards contain a
`display of the OLED typefor presenting alphanumeric infor-
`Interactivity can be obtained for example by pressure or
`mation.
`other sensors, capacitive, resislive ormagnelic, placed behind
`Electronic labels for supermarkets or window displays are
`or combined with a flexible screen.
`also known, comprising a display and an interface capable of
`Accordingto otherfeatures, the portable object comprises,
`receiving in particular price and updating information by
`alone or combined:
`radio-frequency communication with a central data loading
`an interface for communication with a terminal, this being
`unit.
`able to be an interface of any nature, contact or radio
`Communicating portable equipment is also known such as
`frequency, or even for example simple electrical connec-
`personal assistant devices and telephones (PDA Phones)
`tors for a connection of the ohmic type with a terminal
`comprising sensitive displays, such as iPhones from the
`port;
`Apple company.
`communication means able to establish communication
`Bank terminals are also known reading chip cards and
`with a distant processing unit and/orto display informa-
`those with a magnelicstrip, capable of performing an elec-
`tion coming fromthe distant processing unit;
`tronic transaction. Such terminals are liable to have Trojan
`the portable object is able to make data entered on the
`horses and do not have sufficient guarantee and safety for a
`user.
`screentransit to a distant unit;
`it is able to interact directly via the screen with a user;
`it comprises a program or protocolfor displaying data of a
`transaction coming from the distant unit for approval
`and/or checking by interaction on a zone displayed on
`the screen;
`it comprises a program or protocol for displaying at least
`one payment mode and transmitting a mode selected by
`interaction on a zone displayed on the screen;
`it comprises a program for displaying at least one interac-
`tive keypad for entering a PIN code andtransmitting the
`selected PIN codefor verification byinteraction with the
`zones displayed on the screen:
`it comprises a program capable of displaying at least one
`writing zonc and transmitting, for verification, param-
`eters for entering the writing by interaction with the
`screen.
`
`2
`
`36
`
`50
`
`55
`
`
`
`To protect transactions, recourse is had to online transac-
`tions in accordance with the EMVstandard (e.g. Mastercard
`EMV-CAP). Currently there exist three domain authentica-
`tion models (3-D protected by Visa, secureCode by Master-
`card, or J/secure by JCB International).
`However, online transactions are more complex than trans-
`actions in shops since it is necessary to enter more data.
`The object of the inventionis to solve the aforementioned
`drawbacks.
`The present invention proposes in principle a portable
`object the structure ofwhich makes such frauds moredifficult
`in transactions with payment terminals, as well as a novel
`transaction schemeusing this portable object.
`According to the invention, the portable object comprises
`an interactive screen able to display at least some of the data
`uscful to the transaction. Thusthe data entered bythe user can
`be sent directly from the trustworthy portable object to a
`trustworthy processing unit, in particular to a body issuing the
`object or accrediting it. Likewise, the data sent from the
`trustworthy processing unit can be received directly by the
`portable object and presented with confidence under the con-
`trol ofthe object.
`To this end, the invention concermsanintelligent portable
`object comprising a security component and an interactive
`display; it is characterised in that it is able to perform inter-
`
`Another subject of the invention is a method (and corre-
`) sponding system) for performing an electronic transaction
`comprising an exchangeof data between a distant processing
`unit and a portable object, the unit being connected to the
`portable object, said method using;
`a displaystep for presenting all or some ofthe information
`useful to the transactionto a user,
`and/or a step of interaction with the user, characterised in
`that the portable abject usedis in accordance with one of
`
`65
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 6 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 6 of 11
`
`

`

`US 9,202,330 B2
`
`q
`
`
`
`4
`means such as personalisation laser. Thus the card can com-
`prise, ona faceorvisible by transparency of the layers, all the
`necessary conventional graphical protection elements.
`In a variant embodiment, the object can function in inde-
`pendent mode byitself without communicating with the ter-
`minal; in particular,
`it can be made to fulfil functions of
`consultations of an internal memory, or generation of an OTP
`number, other entry or backup functions, or as a calculator.
`In the case of a USBkey, the key can befitted in a com-
`munication terminal, PC, PDA,portable telephoneetc port. In
`the example, the card is connected to the terminal by means of
`an ISO card reader.
`The chip card formatis preferred in particular for reasons
`security and portability of the card and other possible
`of
`parallel uses: prepaid or loyalty card, etc.
`The object comprises or is connectedto a display (screen),
`preferably graphical, but could simply be ofthe alphanumeric
`type.
`According to one feature of the invention, the display is
`interactive. The interactivity ofthe screen can be obtained for
`example by pressure or other sensors, capacitive, resistive or
`magnetic, placed behind or combined with the screen,pref-
`erably flexible.
`In the example, use is preferably made of a display sensi-
`tive to the touch ofa finger or other associated utensil, stylus
`or pen.
`The display comprises in the example a display layer 4 of
`the electronic paper (OLED) type combined witha sensitive
`or touch layer 5.
`The display preferably extends over a surface of around
`or ¥ of the surface of the card on a surface portion and
`comprises a distant zone of the module to allow visibility of
`the card whenit is inserted in the connector.
`Advantageously the connector C/L associated with the
`card is arranged structurally so as to allow interaction of the
`user with the interactive display. Here the reader comprises
`arms 11, 12 scalloped in a “V” (FIG. 2). The display is
`therefore not covered by the connector casing. The reader is
`also arranged with respect to the card so as to leave the
`interactive display ofthe card accessible and visible to the
`user once placed in the communicationpositioninthe reader.
`Ilowever, the display could cover almostall or all of this
`surface. Any connector with electrical contacts can be located
`preferably on the sameside as the display but could be placed
`on the opposite face in order to gain surface area.
`The object is able to interact directly via the screen with a
`user.
`
`
`
`3
`the preceding claims and in that the display step and/or
`the interaction are performed via said interactive dis-
`play.
`The system comprises a card reader that is arranged with
`respect to the card so asto leave the interactive display usable
`(accessible) and visible to the user once placed in the com-
`munication position in the reader.
`Byvirtue of the invention,
`the bank terminals can be
`replaced by any conventional card reader since the transac-
`tion takes place directly between the chip card and the bank-
`ing organisation issuing the card. If necessary the reader can
`be a simple connector without electronics or without imple-
`menting a softwareinterface.
`Ti also allows convergence of all payment systems via
`internet whether the purchases/transactions be performed ina
`shop or onlinevia the internet once the merchant has obtained
`the identification data of his financial institution or secure
`payment gateway. In addition, the method based on a trans-
`action model based on the internet avoids any telephone com-
`munication costs.
`Byvirtue ofthe card reader connected to the computer, the
`user can now have the same online transaction experience as
`if he were making a local transaction in the shop without
`needing to enter his card number or other information
`required by current online merchants.
`An important advantageofthe inventionis that the identity
`of the purchaser and the payment method are knownsolely to
`the user and the issuing bank. The only information known to
`the payment gateway and the merchant are the issuing bank
`and confirmation of the amountofthe transaction.
`The customer can use one or more payment methods in the
`sametransactionin the case in particular where an accountis
`insufficiently provisioned.
`Otherparticularities and advantages of the invention will
`emerge from a reading of the description given by way of
`non-limitative example and with regard to the accompanying
`drawings, in which:
`FIG. 1 illustrates schematically the structure of a portable
`object in accordance with the invention;
`FIG.2 illustrates schematically a use ofthe object accord-
`ing to the invention using a connector/reader;
`TG.3 illustrates schematically the network of the mer-
`chantsite for using the invention according to one embodi-
`ment.
`
`ie)D
`
`36
`
`35
`
`40
`
`45
`
`50
`
`the portable object used for describing an
`In FIG. 1,
`example embodimentis a chip card 1 in particular to the ISO
`7816 format; however, it could be any intelligent portable
`The two layers are connected respectively in a known
`object with a microcircuit such as a USB keyor card to other
`manner to electronic means or microcircuits 2 able to fulfil
`PCMCIAor MMCformats. The microcircuit preferably has
`functions of presentation of information to a user and to
`security functions particular to chip cards (physical and/or
`interactively receive interactions of the user, in particular by
`logic protections, for example enciphering key, anti-intrusion
`pressing onthe touchlayer 5.
`means, authentication, production ofcertificate, generation
`
`of randomdata, scrambling ofdata, etc); it is housed here in ‘The electronic means comprise in the exampleafirst stan-
`a module with electrical contacts 2 but could have other
`dard chip card microcontroller 6 connected to at least a sec-
`55
`communication interfaces or functions such as a contactless
`ond. microcontroller 7 of the sensitive screen and/or of the
`function, in particular radio frequency RFID in accordance
`graphical screen by a connection I/O2 to the second serialport
`with ISO 14443. The portable object is in principle intended
`of the microcontroller of the chip card, the first port being
`to communicate with a communication terminal directly or
`used for communication via the contacts, in particular ISO
`by means of an associated connector and/or reader. The
`7812-2). The second microcontroller 7 controls respectively
`microcircuit may be in a card connected to an object or
`the two layers by meansof an address decoderorinterface 8,
`9.
`soldered to an electronic circuit of the object.
`
`Since the electronic paper or OLED layer could be trans-
`lucent, in particular whenthere is no current, layers 4 and/or
`5 or 10 could comprise security elements such as logos,
`graphics and holograms printed under these layers in a con-
`ventional mannerin order to increase security of the card or
`object. These security elements can be achieved by other
`
`60
`
`65
`
`Physically, itis possible to have one chip per microcontrol-
`ler, connected together to one another and housed together in
`a chip card module. Where applicable, all the functions
`described above can be integrated in a single component or
`distributed through several components positioned and
`embedded in the plastic body 10 of the chip card in accor-
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page7 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 7 of 11
`
`

`

`US 9,202,330 B2
`
`2
`
`ie)D
`
`6
`5
`It comprises a PIN program P6 for displaying at least one
`dance with a multi-componentchip card technologyin which
`the components are connected by electrical tracks imple-
`interactive keypad for entering a PIN code and transmitting
`mented on a flexible substrate, in particular by etching or
`for verification the PIN code selected by interaction with the
`screen printing or inkjet, etc.
`zones displayed on the screen.
`Preferably interaction with the user takes place directly or
`The verification can be made preferably by an official
`indirectly between the screen and a security component. In
`distant server (bank, etc) but maytake place in the card ina
`the example, the data goesto the security component6 via the
`more conventional manner. In the latter case, the terminal
`graphical and/or touch controller 7, which can also be pro-
`receives the response from the card or a certificate for per-
`tected.
`formingthe transaction. Preferably, the card validates the PIN
`The data goes directly into a security component or pass
`itself for pre-validation before transmitting to the bank. It
`where applicable through a component preferably also pro-
`should be noted that software for processing a change of PIN
`tected. There may exist a mutualor reciprocal authentication
`with synchronisation with the bank can also be envisaged as
`procedure between the two componentsin order to avoid for
`an option.
`example chip substitution.
`The card comprises a program P7 for biometric entry such
`In a variant embodiment, the card may be a card of the
`as handwriting or a signature. The signature can be done on
`PCMCIA or other type and comprise a shared memory
`the touch screen with a pen.In particular, the programis able
`directly accessible to a host processing unit and to a micro-
`to display at least one writing, zone on the screen and to
`controller ofthe card. ‘he data to be exchanged withthe host
`transmit for verification writing entry parameters byinlerac-
`and then a distant unit pass throughthis memory. I'unctioning
`tion with the screen. The card can alsofor this purpose com-
`such as that of the input/output communication device
`
`prise means of analysing and diagnosing entered data, for
`described in patent EP 0 649 547 can be adopted in orderto
`example a comparisonor calculation of the dynamics of the
`implementthe invention, wherein the display and screen can
`be considered to be an input/outputinterface.
`signature. Where applicable, a biometric and/or fingerprint
`Theselections on the screen are perceived and decoded or
`sensor can be associated with the surface ofthe card or along-
`interpreted by the microcontroller 7. For example, a PIN code :
`side the touch screen; these data may supplement a PIN code
`typed optionallyin accordance with a logic knownto the user
`entry or constitute the data to be verified for the transaction.
`and shared by the microcontroller 7 is deduced by the micro-
`The card can comprise a programfor static recognition of a
`controller. The microcontroller 7 optionally transposes the
`signature and/or dynamic writing ofa signature onasensilive
`screen.
`signals perceived into data representing the PIN code.
`These data are next compared either in the same secure
`Use of the object according to the invention is now
`componentor transmitted to another secure component 6 for
`described in relation to FIG. 2, which illustrates the method
`comparison or transmission ta an external device (bank
`and/or system for performing an clectronic transaction com-
`server) for comparison with a pre-recorded PIN code.
`prising an exchangeof data between a distant processing unit
`The data representing the PIN code are communicated to
`connected to a portable object.
`the component 7, where applicable using a security mecha-
`‘The method usesa display step for presentingall or some of
`nism (enciphering, etc).
`the information usefulto the transaction toa user and/ora step
`For functioning thereofthe portable object comprises func-
`tions and/or means described below in a cumulative or iso-
`of interaction and/or validation of the user. Although it is
`lated manner.
`preferable to perform these operations by meansoftheinter-
`active displayofthe invention, the invention makesit possible
`According to another feature, the portable object com-
`to use this interactive display for performing all or part of at
`prises communication means able to establish communica-
`least the displaystep and at least that ofthe secureinteraction.
`tion with a distant processing unit and/orto display informa-
`Thus, for example, confirmation of the amount and/orselec-
`tion coming from the distant processing unit. The card
`tion of the method could always be performed. on a keypad
`comprises in particular meansfor establishing a communica-
`otherthan that of the card. The various steps and interactions
`tion on the internet directly or indirectly via the terminal. In
`could be distributed between the card and the system (PC
`the example, the internet IP protocol is integrated therein and
`screen, PC keyboard or keypad of the display of the POS
`direct communication is available on the internet by means of
`terminal).
`the terminal, the latter becoming transparent or acting as a
`In order to make a transaction on the internet, the user
`modem by implementing just the physical communication
`connects to 4 communication network such as the intemet
`interface between the network and the card.
`with his PC computer and selects on a merchantsile a product
`According to onefeature, the card is able to make the dala
`or service to be purchased. The PC comprises a chip card
`entered onthe screentransit to the distant unit. In particular,
`interface implemented here by a connector or reader C/L. The
`the data entered are interpreted and/or decoded by the second
`controller with its decoder and transmittedto the first control-
`connector can be connected also by a USB cable to the PC and
`the communication and USB function can be implemented
`ler in order to be conveyed over the internet to a distant unit,
`which maybe a server of a merchant site. An interpretation
`cither bythe card itself or by an ISO/USBadaptation function
`of the reader.
`program P2 andatransfer program P3 for the entered data are
`present
`in the second microcontroller 7 or distributed
`During the transaction or before, the user introduces his
`between the two 7,8.
`card into an adapted connector connected to the terminal and
`According to otherfeatures, the card comprises a program
`the data and operations necessaryto the transaction are then
`or protocol P4 for displaying data of a transaction coming
`performed betweenthe card and the network. The user can be
`from the distant unit for approval and/or checking by inter-
`invited to introduce his card by a message sent or conveyed
`action on a zonedisplayed onthe screen.
`from the merchant site and displayed onthe screen of the PC
`According to other features, the card comprises a program
`as if it were in particular a supermarkettill.
`or protocol P5 for displaying at least one payment method and
`The user introduceshis card, whichis then detected by the
`transmitting a method selected by interaction on a zonedis-
`PC, and communication can be switched directly betweenthe
`card and the network via the terminal connections. In the
`played on the screen.
`
`50
`
`35
`
`55
`
`)
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 8 of 11
`
`GOOG-1017
`Google LLC v. RFCyber Corp. / Page 8 of 11
`
`

`

`US 9,202,330 B2
`
`e 5
`
`ie)D
`
`36
`
`35
`
`40
`
`7
`contrary case, communication can be made via the PC as a
`logic and physical interface that relays the communications to
`the card.
`The payment gateway has previously made a request to the
`bank ofthe customer, which next establishes communication
`with the card in order to performa securetransactionas ifthe
`card were in a portable payment reader POS.
`This is then a secure communication C§, the establishment
`of which is described subsequently, between the card and the
`issuing bank of the customer.
`Next paymentitself is made in the following manner:
`At step 100, the merchantsite having communicated to the
`bank (in particular through a request for paymentto a
`payment gateway 16 explained below) the data of the
`transaction to the card, for example an amount of
`$12.50,the bank displays the amountofthis information
`by meansof a display command intendedfor the card
`and including the amountto be displayed as data linked
`to the order.
`”
`The questions “continue” and two replies “yes”, “no
`within or facing two distinct interactive windowsof the sen-
`sitive displayare also displayedeitherat the initiative of the
`bank by means of a command equivalentto the previous one
`orat the initiative ofthe card, which comprises a program able
`to display these questions triggered by the reception of the :
`preceding command.
`At step 200, the user having selected “yes”, a correspond-
`ing signal is picked up bythe card controller and returned to
`the bank.
`The bank then causes to be displayed or conveyed to the
`card a menufor selecting the payment method comprising for
`example: by electronic purse, debit card, credit card or loyalty
`
`points credit card. These optionsare displayed in interactive
`
`
`zones respectively El, E2, E3, E4 of the interactive layer
`opposite the display.
`Alternatively, the initiative may comefrom the card, which
`in advance comprises a list of the payment possibilities
`offered to the user and triggers itself by means of a suitable
`application program executed by the microcontroller of the
`card in responseto the selection ofthe reply “yes”.
`Once selected, the loyalty points zone is detected by the
`merchant site, which returns a PIN code entry keypad with
`interactive keys. The keypad is preferably scrambled or enci-
`phered. and deciphered in the card.
`Alternatively,
`the initiative for the display of a PIN code
`may comefrom the card by meansof a programthat displays
`a PIN code, optionally modified at each display in accordance
`with a sequence knownto the user. The displayis triggered in
`response to the previous selection of the payment method
`caplured bythe card.
`Stars are displayed on the screen each time the numberis
`entered and a validation on “OK”triggers the sending ofthe
`PIN code over the network to the bank,this preferably being
`performed in enciphered form by meansof enciphering keys
`previously loaded or generated and algorithms for encipher-
`ing and/or verifying the card certificate.
`Alternatively, the card itself reecives the PIN code and
`checks ititself, and then communicatesa positive result ofthe
`check preferably in enciphered form to the bank or with an
`associated certificate.
`At step 400, the bank of the customer has checked the PIN
`received, which it has, where applicable, previously deci-
`phered and displays informationindicating the success ofthe
`transaction destined for the card also in the formofa display
`command, and the bank then proceeds with the payment.
`Alternatively, the card has checked the PIN code internally
`and communicates, preferably in enciphered form, the posi-
`
`
`
`45
`
`50
`
`55
`
`60
`
`8
`tive result of the comparison of the PIN code typed to the
`bank, which locally deciphers and proceeds with payment.
`Next, payment confirmation messages take place between
`the bank and the payment gateway (see connection C6, C7),
`whichinforms the merchant server of this, and a transfer of
`fundsandfinalisation of the transaction takes place from the
`bank of the customer to that of the merchant.
`FIG. 3 illustrates schematically the network of the mer-
`chant site for using the invention in accordance with one
`embodiment.
`By simplification, the payment gatewayalso acts as a cer-
`tification authority.
`For online transactions, the payment terminal may be a PC
`connected via an internet connection.
`In the case ofreimbursement, the serverofthe issuing bank
`and the server of the debiting bank are switched.
`‘The system of the invention comprises the PC terminal
`connected to the card in order to connectto a distant process-
`ing unit 15, 16 such as a merchantserver 15 via any network
`such as WiFi, Ethernet, internet 15, 17 and/oran issuing bank
`ofthe user 17. These units 15, 17 are able to use a communi-
`cation protocol and/or set of commands with the portable
`object allowing the display and/or recovery of the data
`entered on the screen directly and/or after processing and/or
`checking bythe portable object.
`The merchant server 15 is in communication relationship
`with a receiving bank 18 on the one hand and a payment
`gateway 16 onthe other hand. The payment gateway 16 is in
`relationship with the bank ofthe customer 17 and the bank 18
`of the merchant.
`Thesteps are as follows:
`C1: A secure communication C1 such as of the TSL/SSL
`type is established between the merchant server 15 and the
`payment gateway 16;
`C2: The amount of the transaction, the identity of the
`server, the identity of the issuing bank andthe identity of the
`server of the receiving bank are enciphered and transmitted
`C2 to the payment galeway 16 using the public key of the
`payment galeway;
`C3: A secure communication C3 suchas that of the TSL/
`SSLtypeis established betweenthe payment gateway 16 and
`the merchantser