版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领
文档简介
ELECTRONICPAYMENTS—THESMARTCARDSMARTCARDS,E-PAYMENTS,&LAW–PARTIDrSimonNewmanandGavinSutter,QueenMaryCollege,UniversityofLondonThisarticleinthreepartsexaminesthelegalissuesraisedbythedevelopmentofthesmartcard.Itexplorescontractual,liabilityandintellectualpropertyrightsissuesandassesseswhetherasuitablelegalframeworkexistsinwhichsmartcardusecanflourishandgrow.A.INTRODUCTIONTOSMARTCARDSANDELECTRONICPAYMENTSSYSTEMSAsmartcardissimplyaplasticrectanglecontaininganelectronicchip,andholdingacertainamountofreadabledata.OnecommonconsumeruseintheUKisindigitaltelevision,wheretheyareusedassecuritydevicestounscrambletheincomingdigitaltelevisionsignal.TheyarealsonowcommonlyusedinGSMstandarddigitalmobilephonesasSubscriberIdentityModule(SIM)cards.However,mostattentionfocusesontheirpotentialasanindependentlycarried,easilyportable,meansofbothidentificationandelectronicpayment-forexampleasan“e-purse”holdingelectroniccoinsforlow-valuetransactions,eitherheldsolelyonthecard,1orlinkedtoacentraldatabase.Smartcardtechnologyisnotnew,butatleastuntilveryrecentlyithaslargelyfailedtoachievewidespreadusewithinthecountriesoftheEuropeanUnion.Thisisnowbeginningtochangeassmartcardsbecomeincreasinglyubiquitous,althoughasyettheirprofileremainslowamongstthegeneralpublic-manypeoplemaycarryaroundoneormoresmart-chippedcreditcardsintheirwalletorpursewithoutbeingawarethatitholdsmorethantheusualmagneticstrip.PreviousEuropeansmartcardsdevelopmentcentredonmultiplenationalsystems,2allnon-compatible,whichhaveneverachievedgoodcustomertake-up.Evenwherealargenumberofcardshavebeencirculated,aswithProtoninBelgium,thefrequencyofusehasremaineddiscouraginglylow.TheEuropeanCommission’sEuropeSmartCardCharter,afterashakystartin2000,istryingtorectifythisbymovingfromitsoriginallytechnology-orientedstancetowardsamuchmorecustomer-centredapproach.Previouslyitfocusedontechnologicaldevelopmentofcompetingsystems,withinteroperabilityadistantgoal.Thishaschanged.Anew“user-centric”approachtoallaspectsofsmartcardsisintendedtohelpenfranchisethecitizenandgivehim/herfulleraccesstotheInformationSocietywhichisdevelopinginallaspectsofdailylife,includinggovernmentandlocalauthorityapplications.3Itacknowledgesinparticulartheneedforeasy“anytimeanywhere”access,inordertoachievethemasstakeupofsmartcardsthatiscurrentlylacking.Itseemsthattheprincipalcustomerspushingdevelopmentinthisinstancearenotindividualconsumers,noreventhebankingcorporations,buttheEuropeanUnion’snationaltransportnetworks.Transporthasproventohaveakeyroletoplayinthisareaasithasthemasscross-culturalusercommunityandrelativelysimple,extremelyhigh-volumeapplications4thatareneededtomakesmartcardspartofeveryone’sdailylife.ParticularlyprominentinthisfieldisTransportforLondon.5Inspiredbythesuccessofthe‘Octopus’smartcardintheHongKongtransitsystem,theirPrestigeProjecthasdevelopedasmartcardsystemforeasyautomatedticketing.Thisisa‘contactless’card,initiallyintendedasaseasonticket,withanexpirydaterecordedinthecard,allowinganunlimitednumberofjourneysuptothatdate.ContactlesssmartcardreadershavealreadyasofSeptember2001beeninstalledatsomeLondonUndergroundstations,andthesystemislikelytobeingeneralusebytheendof2002.Anepursefacilitycardisintendedtobeaddedshortlythereafter,withnotimelimit,butwithprepaidelectronictokensdeductedfromthecardoneachjourney,thatcanbe‘refilled’withtokensthroughoccasionalpaymentatanelectronicticketingmachine.Inter-operabilitywithothernationalandEuropeantransportnetworksisahighpriority–ultimatelyallowingthesamecardtobeusedonrail,busandothermasstransportsystemsfromLondontoMadridtoHelsinkiandbeyond.Aswithallnetworksystems,frommobilephonestotheInternet,smartcardapplicationsmustbeinteroperablewithcommonstandardsinordertobenefitexponentiallyfromwiderusethroughouttheEUandbeyond.Itisthereforecriticalboththatsuitabletechnologicalstandardsarereached,andthatasuitablelegalframeworkexistsinwhichsmartcardusecanflourishandgrow.Onequestionraisedbythemulti-functionalnatureofsmartcardsisoneofownership:standard,singleusemagneticstripcardsarecommonlyunderstoodtobeissuedby,forinstance,abank,tobeusedbythecustomerbutremainingthepropertyoftheissuer.Multi-functionalcardsmayhaveseveraldifferentapplicationsfromseveraldifferentsourcesloadedonthem–bankingdetails,creditcard,healthrecords–sowhoownsthecard?Isthereasinglecardowner,orwilleachinterestedpartybesaidtoownonlytheirownapplicationstoredonthecard?Arelatedquestionaskswhoispermittedtoissuean“electronicpurse”smartcard.Willthisbelimitedtobanks?Willpersonaldatacardsbeissuedsolelybygovernment?Especiallyincountriessuchas,forinstance,GermanyorFrancewhereagovernment-issuedIDcardisanecessity,couldthegovernmentinsuchastateissueitsownsmartcardsforIDpurposeswhichtheuserwouldthenaddotherapplicationssuchaspaymentfacilitiesto?Governmentownedcardswouldraisethefurtherissueofcitizens’rightstoaccessgovernmentinformationasrelatingtothemselves.Alternatively,willitbelegally,asitistechnically,possibleforacompanysimplytoproduceandsell‘empty’smartcardswhichtheusercanthenaddhisowndetailsto?Ormusttheissuerbealicensedperson,realorlegal?Afurtherimportantissuerequiringanalysisiswhethertheuserofacardwillbepermittedtoaddandremoveapplicationsfromthesmartcardatwill,orwhetheritwillcarryfixedapplicationsasinstalledbytherelevantcompanieswithwhichtheusermaynottamper.Thevoluntarynatureofsuchsystemsmustbeemphasized-themulti-application“smartwallet”maycontainsoftwarefromnumerousdifferentorganisations,butitscontentsmustbeundertheuser’scontrol,justlikeaphysicalwallet.Ifitistobecommerciallysuccessfulitmustbeseenasbothsafeandconvenientfortheenduser.Thisislikelytorequireeasynotificationproceduresincaseoflossortheft,withthecardanditscontentsbeingmadequickandeasytoreplace.Thecontractualissuesinvolvedrequireconsideration.Forinstance,thecontractualrelationshipbetweenissueranduserwillremainsubstantiallysimilarasfortheissueofastandardmagneticstripsingleusecard.However,amulti-functionalcardraisesanumberofotherrelationshipssuchasthatbetweencardissuerandapplicationprovider,orbetweenoneapplicationandanother.Anareaofgreatsignificanceisliability.Liabilityforloss,damage,fraudulentusage,etcofastandardmagneticstrippaymentcard(credit,debit,etc)issubjecttoaclearcontractbetweentheissuerandtheuser.However,whenamulti-functionalsmartcardisinvolved,theissuesbecomemuchmorecomplex.Forexample,inthecaseoflossortheft,whobearstheresponsibilityifnottheuser?Isthereasingleapplicationwhichwillberesponsibleforensuringadequatesecurityforthecard’sgeneralfunctions,forexample,preventionoffraudulentuseofthecardinpayment,orofadigitalsignatureencodedintoitinordertoidentifytherightfuluser?Security,fraudprevention,andsoonwillalsoariseasissuesofconsumerprotectionprovisions.Theapplicationofdataprotectionrequirementswillbeofgreatsignificanceinensuringadequateconsumerprotectionstrategiesareinplace.Thisislikelytoentailtheuseofsomemethodofencryption,raisingfurtherissuesastoavailabilityofdecryptioninformation.Lastly,intellectualpropertyrights(IPR)inthesmartcardtechnologywillbeanalyzedinthestudy.Howwilltheprotectionofsuchrightsbeachieved–willitbeprimarilybypatents,ratherthancopyright?Howarethosecommercialinterestsinvolvedintheproductionofsmartcardscurrentlyprotectingtheirinterestsinthetechnology1.TheDevelopmentofSmartCardsRapidgrowthinelectronicbusinesshasledtothedevelopmentofpaymentsystemstailoredtomeettheneedsofonlinepurchasing.Althoughcreditcardshaveprovedthemostpopularmethodforonlinepaymentssofar,theymaynotbethemostappropriatemethodinalltransactions.Forexample,theymayprovetoocostlyforthepurchaseoflowvaluegoodsandservices,andarenotsuitableformakingpaymentstoconsumers.TheincreasedinterestinauctionschemessuchaseBay6leadstoanincreasingneedforsystemswhichallowforthetransferofvaluebetweenconsumers,ratherthanonlybetweenconsumersandbusinesses.Theperceivedsecurityrisksofsendingcreditcarddetailsonlinehavealsoprovedabarriertotheiruse,leadingtoaninterestindevelopingmoresecurealternatives.Avastarrayofelectronicpaymentsystemshavebeen(andarebeing)developedaroundtheworld.Theseareeithersmartcardsystems,wherethevalueisstoredonachiponamultipurposecard,orsoftwaresystemswherethevalueisstoredaselectronictokensinthememoryofthecomputer.However,althoughsomeofthesesystemshavebeenavailabletotheconsumerforseveralyearsnonehasbecomeuniversallyaccepted.Furthermore,becausethevarioussystemsandtechnologiesarenotinteroperable,consumersandmerchantsareforcedtochoosewhichorhowmanyofthesystemstouse.Manyonlinebuyersandsellershavethereforeelectedtousethetraditionalcreditcardduetoitsgreateruniversalacceptance.Manysystemshavebeendevelopedintrialformbuthavenotimmediatelybeenfollowedupbycommercialexploitation,andothershavebeenchangingandmodifyingtheirservicestomeettheneedsofthemarket.Itseemsthereforethatthemarketisstillinastateoffluxandthatcommercialbarriersarehinderingtheadoptionofthesenewsystems.Variousstepshavebeentakentowardsremedyingthelackofinteroperabilitysuchasthedevelopmentofastandardprotocolwhichmayovercomethecommercialdifficulties.AsfarasthelegalissuesareconcernedthesehavetoadegreebeenovershadowedbythecommercialproblemsalthoughintheEuropeanUnionthecreationofaregulatoryframeworkforelectronicmoneyissuersisunderway.However,otherissuessuchasthecontractualrelationshipbetweentheissuerandtheconsumerhavenotbeenaddressed.2.ElectronicPaymentSystems:Software(a)CreditandDebitCardsCreditanddebitcardsmaybegroupedtogetherasexamplesof‘debttransferencesystems’.Theuseofeitherinmakingpaymentsassociatedwithonlinepurchaseisbroadlysimilartotheothermainmethodsofcarryingoutdistancecardpurchases–bymail,faxorbytelephone–inthattheactualcarditselfandthesignaturethereonarenothandledorseenbythepayee,butthedetails(numberandexpirydate)aretransmittedovertheinternet,eitherviaawebsiteorbyemail.Currentlysuchincorporationof‘traditional’creditcardsystemsintoelectroniccommerceremainsthemostpopularmethodofpaymentovertheinternet,presumablyatleastinpartbecauseitsusedoesnotrequireinvestmentoftimeandmoneyintoacquiringandbecomingfamiliarwithnewsystems.Also,thereisaperceived‘comfort’factorinthesecurityofferedbyanestablishedbrandsuchasVisa.Therestillexists,however,somedegreeofconcernamongconsumersgenerallyaboutthesecurityofmakingsuchtransactions.Whiletheriskofinterceptionofcreditcardinformationbyathirdparty,orarecordofitbeingmadebyanunscrupuloussalesassistant,andsubsequentfraudulentusagedoeslittletodetermostfrommakingsuchpurchasesbytelephoneorinperson,fearsaboundthatthiswillhappeniftheydosoovertheinternet.Governmentshaveaclearinterestinsuchissues,aswiderconsumerspendingininternetsaleswillservetobolsterthenewdigitaleconomy.Technologicalmethodsmaygiveconsumerstheconfidencetotakeadvantageofwhatthenewmarketplacehastooffer.Theymayalsohelptopreventcreditcardfraud,thuscontributingtoreductionofsuchcrimes,anotherattractivefeatureforgovernments.(b)SecureSocketLayer(SSL)ProtocolTheSSLprotocolcreatesasecurechannelforthetransmissionofencryptedpaymentcarddetailsbetweenretailerandconsumerandisinwideusageacrosstheinternet,incorporatedintomanydifferentsoftwaresystems.PatentedbyNetscapeandsubmittedtotheWorldWideWebConsortium(W3C)earlyin1998asastandard,ithasnowbecomethenormforsecurecommunicationofpaymentcardinformationovertheinternet.Inoperation,SSLutilizesamixofpublicandprivatekeyencryption.Privatekeyencryptioninvolvestheuseofonesingle‘key’–analgorithmiccode–whichallowsamessagetobeencrypted.Onceencrypted,themessagecanonlybereopenedwiththekey.Accesstoamessagecanthusbecontrolledbycontrollingdistributionofthekey.Thepublickeytechniqueisbroadlysimilar,however,thereisaseparate,publickeywhichisgiventoBtoeitherdecodemessageswhichhavebeenencryptedusingA’sprivatekeyortoencryptamessagetosendtoAwhichcanthenonlybeopenedwiththeprivatekey.Itisaversionofthissystemwhichonlineretailersgenerallyuse.Thepublickeyismadefreelyavailabletotheconsumerviathewebsite:thepayment
温馨提示
- 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
- 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
- 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
- 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
- 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
- 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
- 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。
最新文档
- 2025高考物理步步高同步练习选修3第一章分子动理论第3节 分子运动速率分布规律含答案
- 保育员培训-传染病消毒时的卫生消毒
- 互联网企业App 适老化改造分析
- 模块一:有机化学 09 官能团的性质7(糖类)
- 《大学美育》 课件 6.模块二审美经验 第六章 审美趣味
- 北京市劳动仲裁申请赔偿金范本(标准版)
- 教师读书心得500字大全5篇
- 教师继续教育的培训总结
- 教师师德师风自查报告模板(33篇)
- 教师编岗前培训心得体会7篇
- 小米公司swot分析(共5页)
- 工程项目标书文明施工措施
- 全国首个社会工作人才培养订单班
- 匀变速直线运动的推论及其运用公开课教案
- 《三字经》全文拼音版
- 动土作业安全许可证 (2)
- 饲料厂设备操作规程
- 银行财会合规管理建设心得体会
- EMC DMX存储概念和安装配置维护文档
- 《冷成型矩形钢管结构技术规程》(
- 电力二次系统安全防护事故处置演练方案
评论
0/150
提交评论