WO2009127991A1 - Method and system to improve the security of a credit card - Google Patents

Method and system to improve the security of a credit card Download PDF

Info

Publication number
WO2009127991A1
WO2009127991A1 PCT/IB2009/051430 IB2009051430W WO2009127991A1 WO 2009127991 A1 WO2009127991 A1 WO 2009127991A1 IB 2009051430 W IB2009051430 W IB 2009051430W WO 2009127991 A1 WO2009127991 A1 WO 2009127991A1
Authority
WO
WIPO (PCT)
Prior art keywords
credit card
monitoring device
near field
field identification
identification device
Prior art date
Application number
PCT/IB2009/051430
Other languages
French (fr)
Inventor
Martin Lockett
Original Assignee
Nxp B.V.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nxp B.V. filed Critical Nxp B.V.
Publication of WO2009127991A1 publication Critical patent/WO2009127991A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/073Special arrangements for circuits, e.g. for protecting identification code in memory
    • G06K19/07309Means for preventing undesired reading or writing from or onto record carriers
    • G06K19/07345Means for preventing undesired reading or writing from or onto record carriers by activating or deactivating at least a part of the circuit on the record carrier, e.g. ON/OFF switches
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/0723Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips the record carrier comprising an arrangement for non-contact communication, e.g. wireless communication circuits on transponder cards, non-contact smart cards or RFIDs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/353Payments by cards read by M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/354Card activation or deactivation
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system

Definitions

  • This invention relates to a method and a system to improve the security of a credit card, whereas the credit card comprises a near field identification device.
  • the credit card comprises commonly an integrated circuit or a chip and/or a magnetic stripe to communicate for example with a cash machine whereas also identification data can be exchanged to make sure that no unauthorized person uses the credit card.
  • credit card not only implies a credit card itself but all other kinds of bank cards, money cards, smart cards or the like with which payments can be executed or other functions can be fulfilled.
  • the US 2005/0186954 Al discloses a system and a method to disable for example a mobile phone when it is lost.
  • the device may receive a signal and upon receiving this signal the device, e.g. the cellular phone disables itself to prevent a misuse.
  • An automatic transmission of such a disabling signal after a loss of the device is not disclosed.
  • some credit cards, driver's licences or the like which are equipped with an RFID-tag are able to communicate with a controller which has a scanning range. If the controller detects, that a tag is not present anymore he issues a warning. The controller is placed in a purse of a user.
  • the core of the invention lies in the fact that a credit card is equipped with a near field identification device.
  • This near field identification device is able to communicate with a monitoring device which is carried along by a user of the credit card.
  • This monitoring device can be worn underneath the clothing of the user or be kept in an inside pocket of his jacket or in any other less accessible place.
  • the credit card with the near field identification device may be carried along in a purse as usual. It is understood that a communication range between the monitoring device and the near field identification device is chosen by a person skilled in the art to be long enough to make a communication possible when both devices are carried along by a user, that means up to two meters for example.
  • a communication between both devices is done wirelessly with electro-magnetic waves preferably. Also encoding data or identification signals between both devices may be exchanged to make sure that the correct credit card with its near field identification device is monitored by the monitoring device.
  • the credit card with its near field identification device is brought out of communication range with the monitoring device the credit card is designed to be disabled automatically. That means that if the near field identification device registers, that there is no further communication with the monitoring device a self-disabling of the credit card is executed. That means that for example no more payments can be done with this card.
  • Such a communication can be done in both directions, that means that the near field identification device sends out signals itself and receives other signals from the monitoring device or the near field identification device registers that it is no longer within the communication range of the monitoring device when it does not receive any signals during a predetermined period of time.
  • the monitoring device shall be switched off for example when the batteries have to be recharged first a "switch-off'-signal is transmitted so that no undesired disabling of the credit card occurs since the respective near field identification device would receive no more signals.
  • the monitoring device can be integrated into another device like a cellular phone or a palm computer or the like.
  • the advantage of the invention lies in the fact that a common credit card, preferably as described below, has to be modified only slightly in its hardware and/or its stored software to fulfil the functions as described above. Further a user has only to carry along with him a small and lightweight monitoring device.
  • the near field identification device is an RFID-tag with its common communication protocol.
  • RFID-tag with its common communication protocol.
  • Such credit cards are already available as described above. Further the required monitoring devices corresponding to such an RFID-tag are known to a person skilled in the art.
  • this credit card or its respective near field identification device can be selectively disconnected from the monitoring device. If the user wishes to give away the credit card to another authorized person he may select this credit card via an input unit on his monitoring device. After this respective disconnection signals are exchanged with the near field identification device so that the credit card will not be disabled when it is brought out of communication range. If the user receives this certain credit card back it is understood that a reactivation of the monitoring can be executed automatically or on request via the input unit. To call the attention of the user to the fact, that he has lost his credit card or it was stolen the monitoring device may display an alarm signal if it is registered that the near field identification device is no more within the communication range. For example a light signal can be displayed and/or an acoustic signal like a beep.
  • FIG 1 is depicted a system 100 comprising a credit card 10 with a near field identification device, which is preferably an RFID-tag 11.
  • This RFID-tag 11 is able to communicate with a monitoring device 12 which is carried along by a user as well as the credit card 10.
  • a communication range between the monitoring device 12 and the RFID-tag 11 is for example two meters.
  • the monitoring device 12 comprises an input unit 13 for example a key pad. With this input unit 13 a list of credit cards 10 can be administrated. Further the monitoring device 12 comprises a radio transmitter 14 designed to communicate with the RFID-tag 11 as made clear by the connecting double arrows.
  • the credit card 10 is brought out of communication rage with the radio transmitter 14 of the monitoring device 12 an automatic disabling of a chip or integrated circuit 15 of the credit card 10 is executed as made clear by the connecting double arrows. This prohibits a misuse of the credit card 10 by an unauthorized person. Further it is possible, that the credit card 10 is brought out of communication range intentionally. In order to prevent an undesired disabling of the credit card 10 first a respective signal can be transmitted from the radio transmitter 14 to the RFID-tag 11 upon an input into the monitoring device via the input unit 13. Then the RFID-tag 11 may retransmit a respective acknowledgement signal that the credit card 10 will not be disabled. If the credit card 10 is brought back into the communication range with the monitoring device 12 the monitoring may start again automatically or upon a request which also is done via the input unit 13 by a user.

Abstract

A credit card comprises a near field identification device. In order to improve its security a system (100) comprises a monitoring device (12), which is carried along by a user, whereas the near field identification device is designed to disable the credit card (10) when the communication range of the monitoring device (12) is left.

Description

DESCRIPTION
Method and system to improve the security of a credit card
FIELD OF THE INVENTION
This invention relates to a method and a system to improve the security of a credit card, whereas the credit card comprises a near field identification device.
BACKGROUND OF THE INVENTION
With credit cards especially the execution of payments is made easier and no cash is required. For this purpose the credit card comprises commonly an integrated circuit or a chip and/or a magnetic stripe to communicate for example with a cash machine whereas also identification data can be exchanged to make sure that no unauthorized person uses the credit card.
In the sense of the invention the term "credit card" not only implies a credit card itself but all other kinds of bank cards, money cards, smart cards or the like with which payments can be executed or other functions can be fulfilled.
Such credit cards which are carried along by a user in his pocket or in a purse are very much in danger to be stolen or to be forgotten in a shop or to be lost because of the carelessness of the user. If then an unauthorized person finds the credit card this card could be misused. From the RFID Journal 1646, 2007-08-02 it is known that regular credit cards comprise an RFID transponder (Radio Frequency Identification Device) to facilitate payments by bringing such a credit card into the vicinity of a respective RFID reader.
The US 2005/0186954 Al discloses a system and a method to disable for example a mobile phone when it is lost. For these purpose the device may receive a signal and upon receiving this signal the device, e.g. the cellular phone disables itself to prevent a misuse. An automatic transmission of such a disabling signal after a loss of the device is not disclosed. Further it is known from the US 2005/018415081 Al that some credit cards, driver's licences or the like which are equipped with an RFID-tag are able to communicate with a controller which has a scanning range. If the controller detects, that a tag is not present anymore he issues a warning. The controller is placed in a purse of a user.
SUMMARY OF THE INVENTION
It is an object of the invention to provide a method and a system to improve the security of a credit card with a simple configuration and an easy handling.
These problems are solved with a method as described in claim 1 and a system as described in claim 6 respectively.
The core of the invention lies in the fact that a credit card is equipped with a near field identification device. This near field identification device is able to communicate with a monitoring device which is carried along by a user of the credit card. This monitoring device can be worn underneath the clothing of the user or be kept in an inside pocket of his jacket or in any other less accessible place. The credit card with the near field identification device may be carried along in a purse as usual. It is understood that a communication range between the monitoring device and the near field identification device is chosen by a person skilled in the art to be long enough to make a communication possible when both devices are carried along by a user, that means up to two meters for example.
In the scope of the invention a communication between both devices is done wirelessly with electro-magnetic waves preferably. Also encoding data or identification signals between both devices may be exchanged to make sure that the correct credit card with its near field identification device is monitored by the monitoring device.
If the credit card with its near field identification device is brought out of communication range with the monitoring device the credit card is designed to be disabled automatically. That means that if the near field identification device registers, that there is no further communication with the monitoring device a self-disabling of the credit card is executed. That means that for example no more payments can be done with this card. Such a communication can be done in both directions, that means that the near field identification device sends out signals itself and receives other signals from the monitoring device or the near field identification device registers that it is no longer within the communication range of the monitoring device when it does not receive any signals during a predetermined period of time.
It is obvious that if the monitoring device shall be switched off for example when the batteries have to be recharged first a "switch-off'-signal is transmitted so that no undesired disabling of the credit card occurs since the respective near field identification device would receive no more signals. To make the handling of the system easier the monitoring device can be integrated into another device like a cellular phone or a palm computer or the like.
The advantage of the invention lies in the fact that a common credit card, preferably as described below, has to be modified only slightly in its hardware and/or its stored software to fulfil the functions as described above. Further a user has only to carry along with him a small and lightweight monitoring device.
In a preferred embodiment the near field identification device is an RFID-tag with its common communication protocol. Such credit cards are already available as described above. Further the required monitoring devices corresponding to such an RFID-tag are known to a person skilled in the art.
To make it possible to bring the credit card out of communication range with the monitoring device this credit card or its respective near field identification device can be selectively disconnected from the monitoring device. If the user wishes to give away the credit card to another authorized person he may select this credit card via an input unit on his monitoring device. After this respective disconnection signals are exchanged with the near field identification device so that the credit card will not be disabled when it is brought out of communication range. If the user receives this certain credit card back it is understood that a reactivation of the monitoring can be executed automatically or on request via the input unit. To call the attention of the user to the fact, that he has lost his credit card or it was stolen the monitoring device may display an alarm signal if it is registered that the near field identification device is no more within the communication range. For example a light signal can be displayed and/or an acoustic signal like a beep.
BRIEF DESCRIPTION OF THE DRAWING
An embodiment of the invention is hereinafter described with reference to the according drawing. The only figure shows a schematic view of a system according to the invention.
DETAILED DESCRIPTION OF THE DRAWING
In figure 1 is depicted a system 100 comprising a credit card 10 with a near field identification device, which is preferably an RFID-tag 11. This RFID-tag 11 is able to communicate with a monitoring device 12 which is carried along by a user as well as the credit card 10.
A communication range between the monitoring device 12 and the RFID-tag 11 is for example two meters.
The monitoring device 12 comprises an input unit 13 for example a key pad. With this input unit 13 a list of credit cards 10 can be administrated. Further the monitoring device 12 comprises a radio transmitter 14 designed to communicate with the RFID-tag 11 as made clear by the connecting double arrows.
If the credit card 10 is brought out of communication rage with the radio transmitter 14 of the monitoring device 12 an automatic disabling of a chip or integrated circuit 15 of the credit card 10 is executed as made clear by the connecting double arrows. This prohibits a misuse of the credit card 10 by an unauthorized person. Further it is possible, that the credit card 10 is brought out of communication range intentionally. In order to prevent an undesired disabling of the credit card 10 first a respective signal can be transmitted from the radio transmitter 14 to the RFID-tag 11 upon an input into the monitoring device via the input unit 13. Then the RFID-tag 11 may retransmit a respective acknowledgement signal that the credit card 10 will not be disabled. If the credit card 10 is brought back into the communication range with the monitoring device 12 the monitoring may start again automatically or upon a request which also is done via the input unit 13 by a user.
LIST OF REFERENCE SIGNS
10 credit card 11 RFID-tag
12 monitoring device
13 input unit
14 radio transmitter
15 integrated circuit
100 system

Claims

CLAIMS:
1. A method to improve the security of a credit card (10) whereas the credit card (10) comprises a near field identification device, comprising the inspection whether the near field identification device is still within a communication range of a monitoring device (12) which is carried along by a user and, if not, disabling the credit card (10).
2. Method according to claim 1, characterised in that the near field identification device is an RFID-tag (11).
3. Method according to claim 1 or 2, characterised in that the credit card (10) is selectively disconnected from the monitoring device (12).
4. Method according to one of the claims 1 to 3 characterised by displaying an alarm signal by the monitoring device (12).
5. Method according to any of the claims 1 to 4 characterised by an enabling of the credit card (10) upon a request by the user.
6. System (100) to improve the security of a credit card (10) whereas the credit card (10) comprises a near field identification device, comprising a monitoring device (12) which is carried along by a user, whereas the near field identification device is designed to disable the credit card (10) when a communication range of the monitoring device (12) is left.
7. System 100 according to claim 6, characterised in that the near field identification device is an RFID-tag (11).
8. System 100 according to claim 6 or 7, characterised in that the credit card (10) is selectively disconnectable from the monitoring device (12).
9. System 100 according to any of the claims 6 to 8, characterised in that an alarm signal is displayable by the monitoring device (12).
10. System 100 according to any of the claims 6 to 9, characterised in that the credit card (10) can be enabled upon request.
PCT/IB2009/051430 2008-04-16 2009-04-06 Method and system to improve the security of a credit card WO2009127991A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP08103573 2008-04-16
EP08103573.5 2008-04-16

Publications (1)

Publication Number Publication Date
WO2009127991A1 true WO2009127991A1 (en) 2009-10-22

Family

ID=40921980

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2009/051430 WO2009127991A1 (en) 2008-04-16 2009-04-06 Method and system to improve the security of a credit card

Country Status (1)

Country Link
WO (1) WO2009127991A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9208634B2 (en) 2008-12-19 2015-12-08 Nxp B.V. Enhanced smart card usage

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050006462A1 (en) * 2003-07-10 2005-01-13 Rouille David W. Security system
US20050186954A1 (en) * 2004-02-20 2005-08-25 Tom Kenney Systems and methods that provide user and/or network personal data disabling commands for mobile devices
US20050184150A1 (en) * 2004-02-24 2005-08-25 Welte Gregory A. Device to prevent credit card loss

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050006462A1 (en) * 2003-07-10 2005-01-13 Rouille David W. Security system
US20050186954A1 (en) * 2004-02-20 2005-08-25 Tom Kenney Systems and methods that provide user and/or network personal data disabling commands for mobile devices
US20050184150A1 (en) * 2004-02-24 2005-08-25 Welte Gregory A. Device to prevent credit card loss

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
GEETHAPRIYA VENKATARAMANI ET AL: "Mobile phone based RFID architecture for secure electronic Payments using RFID credit cards", AVAILABILITY, RELIABILITY AND SECURITY, 2007. ARES 2007. THE SECOND IN TERNATIONAL CONFERENCE ON, IEEE, PI, 1 April 2007 (2007-04-01), pages 610 - 620, XP031079637, ISBN: 978-0-7695-2775-8 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9208634B2 (en) 2008-12-19 2015-12-08 Nxp B.V. Enhanced smart card usage

Similar Documents

Publication Publication Date Title
AU2013318559B2 (en) Mobile retail peripheral platform for handheld devices
JP4711039B2 (en) Method for ensuring the safety of a multipurpose portable terminal having a plurality of functions
US9082056B2 (en) Token and reader
CN105447691A (en) E-card transaction authorization based on geographic location
CN105447969A (en) Messaging customer mobile device when electronic bank card used
CN103856245A (en) Method and system for controlling operations in a mobile communication device that is enabled for near field communication (NFC)
WO2015020835A2 (en) Electronic payment transponder
CN104123793B (en) Money withdrawing system based on NFC function, money withdrawing method of money withdrawing system based on NFC function and money withdrawing machine
CN105447694A (en) Receiving fingerprints through touch screen of ce device
EP2095297B1 (en) Apparatus and method for action control of rfid system
KR20120098550A (en) Information processing device, portable terminal and recording medium
CN105447696A (en) Automatic notification of transaction by bank card to customer device
US20150142652A1 (en) Portable terminal, terminal function management system, terminal function management method, terminal function management program, and computer-readable recording medium upon which said program has been recorded
CN107040870A (en) encrypted wireless device with NFC function
CN101661654A (en) Method for securing a transaction performed with a programmable portable device
EP2915346B1 (en) Communications system and method in connection with vehicle
WO2013001133A1 (en) Bank-card fraud detection and prevention for bank automats
WO2009127991A1 (en) Method and system to improve the security of a credit card
JP2007150668A (en) Apparatus authentication control system and its program
CN105447701A (en) Using biometrics to recover password in customer mobile device
CA2835537C (en) Mobile station including a short-range radio section and corresponding method
US8248245B2 (en) Propinquity detection by portable devices
CN205827378U (en) Finance social security self-aided terminal and monitoring system thereof
JP4309209B2 (en) Communication system, card reader, card device
JP2002334306A (en) Equipment processor, ic equipment system, processing method of ic equipment, and card processor

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09733018

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 09733018

Country of ref document: EP

Kind code of ref document: A1