(19)
(11)EP 2 976 739 B1

(12)EUROPEAN PATENT SPECIFICATION

(45)Mention of the grant of the patent:
06.05.2020 Bulletin 2020/19

(21)Application number: 14718448.5

(22)Date of filing:  19.03.2014
(51)International Patent Classification (IPC): 
G06Q 20/38(2012.01)
G06Q 20/42(2012.01)
(86)International application number:
PCT/GB2014/050866
(87)International publication number:
WO 2014/147399 (25.09.2014 Gazette  2014/39)

(54)

A METHOD AND SYSTEM FOR TRANSFERRING DATA

VERFAHREN UND SYSTEM ZUR DATENÜBERTRAGUNG

PROCÉDÉ ET SYSTÈME POUR UN TRANSFERT DE DONNÉES


(84)Designated Contracting States:
AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

(30)Priority: 19.03.2013 GB 201305040

(43)Date of publication of application:
27.01.2016 Bulletin 2016/04

(73)Proprietor: Visa Europe Limited
London W2 6TT (GB)

(72)Inventor:
  • TARATINE, Boris
    London Greater London W2 6TT (GB)

(74)Representative: EIP 
EIP Europe LLP Fairfax House 15 Fulwood Place
London WC1V 6HU
London WC1V 6HU (GB)


(56)References cited: : 
WO-A1-2012/073014
US-A1- 2008 147 564
US-A1- 2010 017 334
US-A1- 2002 178 122
US-A1- 2009 100 499
US-A1- 2012 072 346
  
      
    Note: Within nine months from the publication of the mention of the grant of the European patent, any person may give notice to the European Patent Office of opposition to the European patent granted. Notice of opposition shall be filed in a written reasoned statement. It shall not be deemed to have been filed until the opposition fee has been paid. (Art. 99(1) European Patent Convention).


    Description

    Field of the Invention



    [0001] The present invention relates to systems and methods for transferring data where data of a first type is transferred to a node using a protocol, and where second data, of a type not included in the protocol, is made available for retrieval by the node.

    Background



    [0002] In communications systems, protocols are defined to enable the transfer of data between different network nodes. Any given protocol may specify a number of aspects of how data is to be transferred. Data of a first type, included in the protocol, can be transferred using that protocol. Data of a second type, not included in the protocol, may not be transferable.

    [0003] Any number of factors may differentiate the data of the first type from that of the second. For example, a given protocol may specify certain data fields. Data capable of being transferred according to the protocol, i.e. data of the first type, must correspond to one of the specified fields. Data which does not correspond to a specified field, i.e. data of the second type, is not included in the protocol and therefore cannot be easily transferred.

    [0004] When it is desired for data of this second type to be transferred from a first to a second node, the typical solution is to update the protocol to include this second type of data; in other words by updating a legacy protocol standard to include new fields. However this can be difficult for a number of reasons. For example, any given first node (the sending node) may need to be able to communicate with multiple second (receiving) nodes. Where only a subset of the second nodes require the data of the second type, ensuring compatibility between the first node and all of the second nodes can be difficult. Additionally, in some systems, the data is transferred from the first to the second node via one or more third nodes. Therefore, updating the protocol requires updating not only the first and second nodes, but all the third nodes as well. This can be difficult, especially when the third nodes are operated by organisations other than those operating the first and second nodes.

    [0005] Therefore, it is desirable to provide methods and systems which enable the transfer of such data.

    [0006] US 2012/072346 discusses a payment processing network utilising a dual number payment card that includes two numbers that are required for complete identification and authentication of the card. When making an online transaction, the first card number is supplied to the commercial website during payment, and subsequently a second card number is supplied, along with an order number received from the commercial website, to a validation system by telephone. The validation system then obtains the first card number from the commercial website and validates the transaction.

    Summary of the Invention



    [0007] In accordance with the invention, there is provided a method of transferring transaction data in a payment processing system as claimed in independent claim 1.

    [0008] In many communications systems, protocols are set up to allow for data to be transferred from one node to another. The protocols establish the type of the content which may be transferred using the protocol. Once established, protocols become difficult to change, as each node needs to be updated to be able to use a modified protocol. Accordingly it is difficult to change the types of data which can be transferred (i.e. by adding new fields, or expanding existing fields).

    [0009] Embodiments of the invention overcome this problem by using a first protocol to transfer first data of a first type supported by the first protocol, while storing second data, which is not included in the data sent according to the first protocol, in a memory. This second data can then be retrieved by a second node as required. This provides the advantage that additional data, i.e. data of the second type, can be provided without having to modify the protocol.

    [0010] Moreover, only second nodes which desire the second type of data need retrieve the second data. Any second node which does not desire the additional second type of data, does not need to change any part of its operation, as the data provided by the first protocol will still be provided in the usual manner.

    [0011] The first data may comprise a plurality of first data items, and the second data may comprise a plurality of second data items associated with corresponding first data items. Furthermore, the request may comprise data identifying at least one second data item. This data identifying at least one second data item may correspond to an identity of said at least one second node. Alternatively or additionally, the data identifying at least one second data item may correspond to data included in a corresponding first data item. In some embodiments, the first data items may comprise identifiers, and the at least one second data item may be stored in association with an identifier of a corresponding first data item.

    [0012] In other words, data items within the first data are associated with data items within the second data. This may be enabled using identifiers shared between corresponding first and second data items. This in turn enables a second node to easily retrieve second data corresponding to first data received using the first protocol. In some embodiments, the identity of the second node may be used to access the data, with a plurality of second data parts being provided to the second node based on that identity.

    [0013] The method comprises generating at least a part of a second data item using at least a part of a corresponding first data item as an input to a data processing algorithm. The data processing algorithm computes a hash function. Additionally, the data processing algorithm computes a digital signature. This digital signature is computed using a cryptographic key.

    [0014] In embodiments, the first data, that is the data which is supported by the first protocol, is used to generate the second data. The second data is subsequently be used to determine whether the first data has been modified in transit between the first and second nodes. To generate this data, the first node generates a hash function of the data and subsequently signs the output of the hash function. The hashed and/or signed data is then be stored in the memory.

    [0015] The first node and the second node may have a trust relationship. Furthermore, the first data may be sent via at least a third node which does not have a trust relationship with the first and the second node. The first data sent using the first protocol may be sent in accordance with a format, said format being one that can be interpreted by the third node. The first, the second and the third node may be arranged to cooperate in an interaction for which both the second node and the third node require said first data.

    [0016] By having a trust relationship, the at least one second node knows that data sent, and stored in the memory, by the first node can be trusted, i.e. is correct and can be relied upon. However this may not be the case for the third node, and therefore any data sent via the third node cannot be trusted. This is particularly significant when the protocol specifies that the data is readable, and therefore editable, by the third node (this can be contrasted with a network node which merely routes the data on towards the second node). The third node may require the data to be readable because the first, at least one second and at least one third nodes are arranged to cooperate in an interaction or which the first data is required. It will be apparent that when the second data is encrypted or hashed, and signed, the memory can be made publicly available, and the second data may be sent via an alternative route which involves transmitting data to and from untrusted nodes

    [0017] The first data may be transferred to the plurality of second nodes via one or more further network nodes, each supporting the first protocol. At least one of the one or more further network nodes may not support a protocol capable of transferring data of the second type.

    [0018] As described above, the network, and in particular the nodes between the first and second nodes, do not need to be able to support the second type of data, and indeed may not do so. This means that with changes only to the first node, and any relevant second node, both the first and second types of data may be transferred to the second node. This makes it easier to transfer the second data, as the modifications to the existing system are small and, in some cases, may not be required at all.

    [0019] The first protocol may define a plurality of fields, and the first data may comprise data corresponding to at least one of the fields.

    [0020] In embodiments, the network may comprise a payment processing network, and the first data may comprise transaction data. Furthermore, the network may comprise one or more third nodes between the first and second nodes, the one or more nodes may comprise at least one of: a merchant data processing system; a payment service provider (PSP); an acquiring bank data processing system; and a card system data processing system. Additionally, the at least one second node comprises an issuing bank computing system.

    [0021] Further features and advantages will become apparent from the following description of preferred embodiments, given by way of example only, which is made with reference to the accompanying drawings.

    Brief Description of the Drawings



    [0022] Systems, apparatuses and methods will now be described as embodiments, by way of example only, with reference to the accompanying figures in which:

    Figure 1 shows a schematic diagram of a communications system by way of example which is not part of the present invention;

    Figure 2 illustrates a method by way of example which is not part of the present invention;

    Figure 3 shows a further schematic diagram of a communications system by way of example which is not part of the present invention;

    Figure 4 shows a system in which payment data may be transferred and in which embodiments of the invention may be practised; and

    Figure 5 shows a schematic diagram of a network node which may be used in embodiments of the invention.



    [0023] Some parts, components and/or steps appear in more than one Figure; for the sake of clarity the same reference numeral will be used to refer to the same part, component or step in all of the Figures.

    Detailed Description of Illustrative Embodiments



    [0024] Figure 1 shows, by way of example which is not part of the present invention only, a communications system 10 in which data of a first type can be sent from a first node 11 to a plurality of second nodes 12A and 12B using a first protocol, and in which data of a second type, not included in the first protocol, can be transferred to one of the second nodes 12A.

    [0025] The first node 11 is connected to the second nodes 12A and 12B via a network 13. The network 13 may comprise any number of third nodes, with one, node 14, being shown. First node 11 is connected to the third node 14, which in turn is connected to second nodes 12A and 12B. All of first, second and third nodes 11, 12A/12B and 14 are capable of transferring data according to a first protocol. In addition, the first node 11, and second node 12A have connections to a memory 16.

    [0026] A method of transferring data in the communications system 10 will now be described with reference to Figure 2. As stated above, the communications system comprises a first node 11 which is arranged to send data to the second nodes 12A and 12B.

    [0027] In a first step 21, the first node 11 may generate, identify or otherwise determine data to be sent to second node 12A. While some of the data will be sent using a first protocol, the second node 12A requires data which is not included in this first protocol. As such, the data may be separated into two types, a first type of data which can be sent using the first protocol, and a second type, at least a part of which is not included in the first protocol and therefore cannot be sent using the first protocol. Step 21 may include the steps of identifying that the data is to be sent to a second node 12A which requires the second data, and separating the data accordingly.

    [0028] Subsequently, in steps 22 and 23, first data, being of the first type included in the protocol, is transferred from the first node 11 to the second node 12A via the third node 14. In addition, as shown by step 24, the second data, being of the second type and not included in the protocol, is stored in the memory 16. Following these steps, in steps 25 and 26, the second node 12A may access the second data stored in the memory 16. To enable this access, the second node 12A may, in step 25, determine that first data has been received, and accordingly, in step 26, request access to the second data in the memory 16.

    [0029] In addition, the first node 11 may transfer data to a further second node 12B. This further second node 12B does not require data of the second type. As such, in step 27, analogous to step 21, the first node 11 generates the data to be sent to the further second node 12B. This step may include the first node 11 identifying the further second node 12B, and determining that the further second node 12B does not require data of the second type, i.e. data not included in the protocol. Following step 27, in step 28, the first node 11 may transfer first data (of the first type) to the third node 14, from where, in step 29, it is transferred to the further second node 12B.

    [0030] As such, it is possible to transfer the data of the second type to the second node 12A which requires it, without any other changes in the protocol. In particular, neither the further second node 12B, nor the third node or nodes 14 in the network 13 required modification for the above to operate.

    [0031] To enable the effective transfer of the data, the first and second data may comprise a plurality of first and second data items respectively. The second data items may be associated with corresponding first data items. As such, in step 26, the second node 12A may make a request comprise data identifying one or more of the second data items which are desired by the second node 12A.

    [0032] This identifying data may be the identity of the second node 12A. In response, the memory 16 may provide all second data items which are associated with first data items sent to that particular second node 12A. Alternatively, the identifying data may correspond to data included in a corresponding first data item. As such, the second node 12A, in step 25, may use a received first data item to determine the identifying data to be provided in the request in step 26. One method by which this may be done is to include an identifier in the first data item, and store the second data item in association with the provided identifier.

    [0033] The first protocol may define a plurality of fields, and the first data accordingly may comprise data corresponding to at least one of the fields. As such, the second data may comprise at least some data which does not correspond to the fields of the first protocol. This out-of-protocol data may include information which is only relevant to the second node 12A.

    [0034] However, the second data items may be generated from the first data items. For example, at least a part of a second data item may be generated using at least a part of a corresponding first data item as an input to a data processing algorithm. This data processing algorithm may compute a hash function of the first data. Alternatively, or additionally, the data processing algorithm may compute a digital signature. In order to generate the signature, the first node may use a private key. Alternatively, the first and the second node may share a secret and the digital signature may be computed using the shared secret.

    [0035] By storing this hashed and/or signed data in the memory 16, the second node 12A is able to determine whether the first data has been modified in transit between the first and second nodes, i.e. by the third node 14. The hashed/signed data may be stored in association with an identifier which is provided in the corresponding first data item. For example, the first data item (D1) may have the following format:

    where ID is an identifier and F1 etc. represent fields within the first data. As will be apparent, these fields are included in the first protocol.

    [0036] The corresponding second data item (D2) may have the following format:

    where the functions S() and H() represent functions for generating a digital signature and hashing respectively.

    [0037] By signing the first data, or a hash of the first data, the second node 12A may subsequently be able to confirm that the first data received using the protocol via the network 13 was the same as that originally sent by the first node 11. This is because the digital signing will be performed using the first node's private key, and therefore only the first node's public key will return the appropriate first data (or hash of the first data, which can be compared against a similarly generated hash of the received first data).

    [0038] The first node may also encrypt the second data, using the public key of the second node 12A. In addition, if data integrity and non-repudiation is important, the first node may also sign the second data using the private key of the first node 11), this can be done to ensure that only the second node 12A is able to interpret the second data. Encryption may not be necessary where the only objective is for the second node 12A to be able to confirm the first data has not been modified, as a hash of the first data - from which the first data cannot be derived - may be sufficient. However, where the second data contains data which is not supported by the first protocol (i.e. additional data), then the second data may be encrypted to ensure that this data cannot be read by any node other than the second node 12A.

    [0039] The first node and the second node have a trust relationship. Moreover, the third node or nodes 14, via which the first data is sent, may not have a trust relationship with the first and the second node. As such, while the second node 12A can trust the second data in the memory 16, the second node cannot trust the first data sent via the untrusted third nodes 14. This may be particularly relevant when the first data, sent using the first protocol, is sent in accordance with a format which can be interpreted by the third node 14. This requirement may be specified by the first protocol. It will be apparent that, being able to interpret the first data, the third node 14 may additionally modify the data. One reason for the third node 14 being able to interpret the data is because the first, the second and the third node are arranged to cooperate in an interaction for which both the second node and the third node require the first data.

    [0040] It will be apparent that if encryption and/or signing are used, then the memory 16 itself may be publicly available, as only the first node can create the appropriately signed or encrypted data. It will be appreciated that if non-repudiation - that is the ability to confirm the source of the data - is required, then the second data may be signed. Equally if confidentiality is required, then the data may be encrypted. It will be apparent that one or both may be used together.

    [0041] As mentioned above, the first data is transferred to the second nodes 12A and 12B via one or more third network nodes 14. It will be apparent that each third node 14 will support the first protocol. As such, it may be the case that the one or more third nodes 14 do not support a protocol capable of transferring data of the second type. Nevertheless, any such third node 14 does not require modification for the second data to be transferred to the second node 12A. This makes it easier to transfer the second data, as the modifications to the existing system are small.

    [0042] An alternative to system 10 will be described, by way of example which is not part of the present invention, with reference to Figure 3. Many components of system 10 are the same, and therefore have the same reference numerals. In this alternative system 10', the first node 11 transfers data to the second nodes 12A and 12B via a network 13. The network in turn comprises third node 14 and a fourth node 15. Fourth node 15 differs from third node 14 in that the fourth node 15 comprises memory 16'.

    [0043] In use, the first node 11 transmits the first data to the third node 14, and the second data to the fourth node 15. The fourth node 15 may maintain the second data in the memory 16' until it is requested by the second node 12A. However, the fourth node 15 may combine the first and second data and provide the combination to the second node 12A, i.e. the fourth node allows access to the second data by sending the same to the second node 12A with the corresponding first data. This arrangement allows the third node 14 to be bypassed by the second data, which may be required if the third node 14 is not trusted, or is incapable of handling the second data - i.e. if the third node 14 only supports protocols which are incapable of transferring the second data.

    [0044] In some embodiments, the communications system comprises a payment processing network. As such, the first data may comprise transaction data. An example of a payment processing system 40 in which embodiments may be practised will be described with reference to Figure 4.

    [0045] As with the above description, data - in this case transaction data - is sent from a first node 11 to second nodes 12A and 12B via a network 13. The data comprise first data, sent using a first protocol and second data which is stored in a memory 16.

    [0046] The first node 11 may be a source of transaction data or payment data. For example, the first node may be a trusted intermediary arranged to provide transaction data on behalf of a customer. The trusted intermediary may store details of payment methods, such as a primary account number or PAN from a credit card, and may be accessed by a customer as part of an online transaction. In accordance with the invention, in an embodiment the first node 11 is a mobile telephone, capable of communicating both the first and second data. In particular, the mobile telephone is arranged to provide the first data to a merchant to effect a transaction. This first data is transferred using near-field communications. Additionally, the first node 11 provides second data via a mobile communications network.

    [0047] The second nodes 12A and 12B may be issuing bank payment processing systems (henceforth issuing banks).

    [0048] In this embodiment, the network 13 comprises a plurality of Payment Service Providers, or PSPs, 41A and 41B; a plurality of acquiring bank payment processing systems 42A and 42B (henceforth acquiring bank); and a card system data processing system 43. It will be understood that this list of possible entities making up the nodes is not limiting, and the nodes within the network may include, for example, a merchant processing system.

    [0049] In this example, the first node 11 is connected to the plurality of PSPs 41A and 41B. The PSPs 41A and 41B are in turn each connected to acquiring banks 42A and 42B. Typically a given PSP is connected to multiple acquiring banks, and a given acquiring bank will be connected to multiple PSPs. This leads to the overlap in connections shown. The acquiring banks 42A and 42B are connected to the card system data processing system 43, which is connected to the issuing banks 12A and 12B.

    [0050] In use, payment data, i.e. the first data described above, may be transmitted from the first node 11 via the network 13 to the issuing banks 12A and 12B using known protocols for transmitting payment data. The payment data is typically transmitted via one PSP and one acquiring bank to the card system, and from there to the issuing banks 12A and 12B. This process is known in the art and need not be described in detail. Nevertheless, since the choice of PSP and acquiring bank is typically made by a merchant, for any given transaction, any combination of PSP and acquiring bank may transfer the first data.

    [0051] This illustrates a problem with a typical payment processing system. An extension of the existing protocols for transmitting additional data would need to be implemented by all, or at least the majority, of the PSPs, acquiring banks and the card system 43. Since the PSPs, acquiring banks and card system 43 may each be operated by a different company, effecting this implementation of a change in the protocol would be difficult, and require substantial coordination between organisations.

    [0052] By contrast, embodiments provide a more convenient alternative. First data - the payment data - is sent via the conventional payment network 13 and can therefore be processed in the conventional manner to effect a transaction. In addition, second data may be stored in the memory 16, and subsequently retrieved by a second node 12A (i.e. an issuing bank).

    [0053] In embodiments of the invention, the second data may be used to verify the first data. As such, the second data is a signed hash of the first data. Accordingly, an issuing bank, receiving payment data, will be able to verify that the first data was generated by the first node 11, and that the first data has not been altered in transit. The trust relationship between the first and second nodes described above may be used to enable the second node to trust the first node.
    It will be apparent that any data, related to a transaction, but which is not conventionally processed by existing payment processing systems within network 13, may be stored in the memory 16. For example, a copy of the receipt, or of the information contained on a receipt, may be provided. This information may include a detailed description of the goods or services purchased, a location of the point of sale, an address for delivery, whether any discounts were applied, a geolocation of the payment instrument in relation to any point of sale device used, a device identifier of the point of sale device, an IP address of a point of sale device or of a computer used to make an online purchase, spatial movements, biometric information, etc.

    [0054] Subsequently, this data may be combined with the actual payment data transmitted via the payment network 13. Where the second node is an accounting system, or an accounting program provided by an issuing bank, the data may be input into an accounting program, enabling customers to review spending in detail.

    [0055] While the memory 16 has been shown separately, it will be appreciated that the memory may be combined with any of the network nodes.

    [0056] As such, in summary, embodiments may provide a method of processing payment data associated with payment transactions conducted via a network, where the network comprises,
    • at least one acquiring bank data processing system,
    • at least a first network node, which is a mobile telephone, arranged to provide payment data to at least one of the acquiring bank data processing systems, and
    • at least a second network node, which is an issuing bank data processing system as described above, arranged to receive payment data from at least one of the acquiring bank data processing system.


    [0057] During a given payment transaction, payment data associated with the payment transaction may be sent from the first network node to the second network node via the acquiring bank data processing system. In addition, further data associated with the transaction, at least some of the further data being other than the payment data, may be stored at a network node other than the at least one acquiring bank data processing system. Subsequently, access to the further data, by the second network node, may be allowed.

    [0058] The payment data associated with the payment transaction may be sent from the first network node to the second network node via at least one said acquiring bank data processing system using at least a first protocol, and the further data may comprises data not included in the first protocol.

    [0059] It will be understood that the data stored in the memory 16 may, in some cases, not be retrieved. As such, the second node 12A may be selective over what data is retrieved. Alternatively, the first node 11 may store second data irrespective of the second node to which the corresponding first data is sent - in other words, the identifying step 21 and 27 may be simplified or omitted. Only second nodes which require the second data, or desire second data for a particular instance, may retrieve the second data. However, in such circumstances, the first node does not require information on which nodes require data and which do not. The memory may store data with a limited lifetime. That is data may be deleted irrespective of whether it has been retrieved after a predetermined period of time.

    [0060] The network nodes, including those described in relation to the payment system and the memory 16, may comprise computerised hardware as is known in the art. Nevertheless, for completeness, a exemplary computerised system 50, capable of performing the method steps described above, will now be described with reference to Figure 5.

    [0061] The computerised system 50 comprises a processing system 51, such as a CPU, or an array of CPUs. The processing system 51 is connected to a memory 52, such as volatile memory (e.g. RAM) or non-volatile memory, for example a solid state (SSD) memory or hard disk drive memory. The memory 52 stores computer readable instructions 53. The system 50 may also comprise an interface 54, capable of transmitting and/or receiving data from other network nodes.

    [0062] In use the processing system 51 may retrieve the computer instructions 53 from memory 52 and execute these instructions whereby to perform the steps described above. In so doing, the processing system 51 may cause the interface to transmit or receive data as required. This data may itself be stored in memory 52, and retrieved as required - for example to be transmitted via the interface.


    Claims

    1. A method of transferring transaction data in a payment processing system, the payment processing system comprising a mobile telephone arranged to send transaction data to a plurality of issuing bank computing systems (12A,12B) via a payment network (13) using a first protocol, wherein the payment network (13) comprises i) a plurality of payment service providers (41A,41B), ii) a plurality of acquiring bank data computing systems (42A,42B), and a card system data processing system (43), and wherein the first protocol defining a plurality of fields and allowing the transfer of data of a first type, and wherein at least one of the issuing bank computing systems (12A,12B) further requires data of a second type, not included in the data sent according to the first protocol, the method comprising:

    transferring first data to a plurality of the issuing bank computing systems (12A,12B) using the first protocol, the first data being of the first type and comprising data corresponding to at least one of the fields defined by the first protocol, wherein the first data is transferred to the plurality of issuing bank computing systems (12A,12B) via one of the plurality of payment service providers (41A,41B) and one of the plurality of acquiring bank data processing systems (42A,42B) supporting the first protocol to the card system data processing system (43) and from the card system data processing system (43) to the plurality of issuing banks (12A,12B), wherein the transferring comprises providing the first data to a merchant using near-field communications;

    storing, by the mobile telephone, second data in a memory (16), the second data being of the second type and comprising at least some data which does not correspond to the fields defined by the first protocol; and

    responsive to a request from an issuing bank computing system (12A,12B), providing, by the mobile telephone, the second data to the issuing bank computing system (12A,12B) requiring data of the second type via a mobile communications network,

    wherein at least one of the acquiring bank data computing systems (42A,42B) does not support a protocol capable of transferring data of the second type,

    wherein the first data comprises a plurality of first data items, and the second data comprises a plurality of second data items associated with corresponding first data items,

    the method comprising generating at least a part of a second data item using at least a part of a corresponding first data item as an input to a data processing algorithm which computes a hash function of the corresponding data item and digitally signs the output of the hash function.


     
    2. The method of claim 1, wherein the request comprises data identifying the issuing bank computing system (12A,12B).
     


    Ansprüche

    1. Verfahren zum Übertragen von Transaktionsdaten in einem Zahlungsverarbeitungssystem, wobei das Zahlungsverarbeitungssystem ein Mobiltelefon umfasst, das ausgeführt ist, unter Verwendung eines ersten Protokolls Transaktionsdaten über ein Zahlungsnetzwerk (13) an mehrere Emissionsbankcomputersysteme (12A, 12B) zu senden, wobei das Zahlungsnetzwerk (13) i) mehrere Zahlungsdienstanbieter (41A, 41B), ii) mehrere Erwerbende-Bank-Datencomputersysteme (42A, 42B) und ein Kartensystemdatenverarbeitungssystem (43) umfasst, und wobei das erste Protokoll mehrere Felder definiert und die Übertragung von Daten eines ersten Typs erlaubt, und wobei mindestens eines der Emissionsbankcomputersysteme (12A, 12B) ferner Daten eines zweiten Typs erfordert, die nicht in den gemäß dem ersten Protokoll gesendeten Daten beinhaltet sind, wobei das Verfahren umfasst:

    Übertragen von ersten Daten an mehrere der Emissionsbankcomputersysteme (12A, 12B) unter Verwendung des ersten Protokolls, wobei die ersten Daten von dem ersten Typ sind und Daten umfassen, die mindestens einem der durch das erste Protokoll definierten Felder entsprechen, wobei die ersten Daten an die mehreren der Emissionsbankcomputersysteme (12A, 12B) über einen der mehreren Zahlungsdienstanbieter (41A, 41B) und eines der mehreren Erwerbende-Bank-Datenverarbeitungssysteme (42A, 42B), die das erste Protokoll zu dem Kartensystemdatenverarbeitungssystem (43) und von dem Kartensystemdatenverarbeitungssystem (43) unterstützen, zu den mehreren Emissionsbanken (12A, 12B) übertragen werden, wobei das Übertragen das Bereitstellen der ersten Daten an einen Händler unter Verwendung von Nahfeldkommunikation umfasst;

    Speichern, durch das Mobiltelefon, von zweiten Daten in einem Speicher (16), wobei die zweiten Daten von dem zweiten Typ sind und mindestens einige Daten umfassen, die nicht den durch das erste Protokoll definierten Feldern entsprechen; und

    als Reaktion auf eine Anforderung von einem Emissionsbankcomputersystem (12A, 12B), Bereitstellen, durch das Mobiltelefon, der zweiten Daten an das Emissionsbankcomputersystem (12A, 12B), das Daten des zweiten Typs erfordert, über ein Mobilkommunikationsnetzwerk.

    wobei mindestens eines der Erwerbende-Bank-Datenverarbeitungssysteme (42A, 42B) kein Protokoll unterstützt, das in der Lage ist, Daten des zweiten Typs zu übertragen,

    wobei die ersten Daten mehrere erste Datenelemente und die zweiten Daten mehrere zweite Datenelemente umfassen, die entsprechenden ersten Datenelementen zugeordnet sind,

    das Verfahren das Erzeugen mindestens eines Teils eines zweiten Datenelements unter Verwendung mindestens eines Teils eines entsprechenden ersten Datenelements als Eingabe in einen Datenverarbeitungsalgorithmus umfasst, der eine Hash-Funktion des entsprechenden Datenelements berechnet und die Ausgabe der Hash-Funktion digital signiert.


     
    2. Verfahren nach Anspruch 1, wobei die Anforderung Daten umfasst, die das Emissionsbankcomputersystem (12A, 12B) identifizieren.
     


    Revendications

    1. Procédé de transfert de données de transaction dans un système de traitement de paiement, le système de traitement de paiement comprenant un téléphone mobile agencé pour envoyer des données de transaction à une pluralité de systèmes informatiques bancaires d'émission (12A, 12B) via un réseau de paiement (13) à l'aide d'un premier protocole, dans lequel le réseau de paiement (13) comprend i) une pluralité de fournisseurs de services de paiement (41A, 41B), ii) une pluralité de systèmes informatiques d'acquisition de données bancaires (42A, 42B), et un système de traitement de données de système de carte (43), et dans lequel le premier protocole définit une pluralité de champs et permet le transfert de données d'un premier type, et dans lequel au moins un des systèmes informatiques bancaires d'émission (12A, 12B) requiert en outre des données d'un deuxième type, non comprises dans les données envoyées selon le premier protocole, le procédé comprenant :

    le transfert des premières données à une pluralité de systèmes informatiques bancaires d'émission (12A, 12B) à l'aide du premier protocole, les premières données étant du premier type et comprenant des données correspondant à au moins un des champs définis par le premier protocole, dans lequel les premières données sont transférées à la pluralité de systèmes informatiques bancaires d'émission (12A, 12B) via un de la pluralité de fournisseurs de services de paiement (41A, 41B) et un de la pluralité de systèmes de traitement de données bancaires d'acquisition (42A, 42B) prenant en charge le premier protocole. sur le système de traitement de données du système de cartes (43) et à partir du système de traitement de données du système de cartes (43) à la pluralité de banques d'émission (12A, 12B), dans lequel le transfert comprend la fourniture des premières données à un commerçant à l'aide de communications en champ proche;

    le stockage, par le téléphone portable, de deuxièmes données dans une mémoire (16), les deuxièmes données étant du deuxième type et comprenant au moins certaines données qui ne correspondent pas aux champs définis par le premier protocole ; et

    en réponse à une demande d'un système informatique bancaire d'émission (12A,12B), fournissant, par le téléphone portable, les deuxièmes données au système informatique de banque d'émission (12A,12B) l'exigence de données du deuxième type via un réseau de communication mobile,

    dans lequel au moins un des systèmes informatiques de données bancaires d'acquisition (42A,42B) ne prend pas en charge un protocole capable du transfert de données du deuxième type,

    dans lequel les premières données comprennent une pluralité d'éléments de premières données, et les deuxièmes données comprennent une pluralité d'éléments de deuxièmes données associés aux éléments de premières données correspondants,

    le procédé comprenant la génération d'au moins une partie d'un deuxième élément de données à l'aide d'au moins une partie d'un premier élément de données correspondant en tant qu'entrée à un algorithme de traitement de données qui calcule une fonction de hachage de l'élément de données correspondant et signe numériquement la sortie de la fonction de hachage.


     
    2. Procédé selon la revendication 1, dans lequel la demande comprend des données d'identification du système informatique de banque d'émission (12A,12B).
     




    Drawing




















    Cited references

    REFERENCES CITED IN THE DESCRIPTION



    This list of references cited by the applicant is for the reader's convenience only. It does not form part of the European patent document. Even though great care has been taken in compiling the references, errors or omissions cannot be excluded and the EPO disclaims all liability in this regard.

    Patent documents cited in the description