USSD Operation to get Authenticated Payment Token for Charging Purposes
Original Publication Date: 2003-Sep-25
Included in the Prior Art Database: 2003-Sep-25
Related PeopleOther Related People:
If a GSM/UMTS (Global System for Mobile Communication/ Universal Mobile Telecommunications System) subscriber wants to use his Mobile Network Operator (MNO) charging account to pay for goods and services provided to him, currently the most common option is to use a credit card number, which is sent from the user via the mobile network to the provider in a secure transaction environment. Nevertheless, this still bears the risk of the credit card number being intercepted and used maliciously. Furthermore, the subscriber has to have access to a credit card in order to use this method. To improve the security of the transaction, we propose to use an Authorized Payment Token (APT) instead of the credit card number for the purchase. The APT, a digit string of a certain maximum length, is generated by the MNO and granted to the subscriber for secure payment. This method can be applied if a trustworthy relation between the provider of the goods and the MNO exists, or if the MNO itself is the provider. It refers in particular to scenarios in which the subscriber wants to pay by a prepaid account or by his credit card account. In the latter case, the credit card number is deposited in his subscriber data at the MNO.