| CPC G06Q 20/3825 (2013.01) [G06Q 20/3278 (2013.01); G06Q 20/38215 (2013.01); G06Q 20/3823 (2013.01); G06Q 20/3829 (2013.01); G06Q 20/388 (2013.01); H04L 9/0825 (2013.01)] | 4 Claims |
|
1. A contactless payment method between a communications terminal of a merchant and a user device communicating through a near field communication (NFC) wireless data link, the method comprising:
obtaining payment data by a general processing unit of the communication terminal;
obtaining, by the general processing unit, an identifier of the communications terminal;
transmitting, by the general processing unit, the payment data and the identifier of the communications terminal to a secured processing unit of the communication terminal;
generating, by the secured processing unit, a pair of signed data by signing the payment data and the identifier of the communication terminal, using a private key of a pair of private and public keys of the communication terminal;
transmitting, by the secured processing unit, the pair of signed data to the general processing unit;
transmitting, by the general processing unit, the pair of signed data to the user device using the NFC wireless data link;
receiving, by the general processing unit through the NFC wireless data link, from said user device, encrypted data establishing authentication of the pair of signed data;
decrypting, by the secured processing unit, the encrypted data to provide decrypted signed data;
comparing, by the secured processing unit, the decrypted signed data with the pair of signed data to verify the validity of the pair of signed data; and
when the pair of signed data is valid, transmitting, by the communication terminal, the pair of signed data to a payment transaction processing system, wherein the pair of signed data is not transmitted to the payment transaction processing system when the pair of signed data is not valid.
|