Previous | Table of Contents | Next |
The Smart Shopper smart card program consists of the following major system components:
The overall data architecture of the five-merchant Smart Shopper card is shown in Figure 10.1. The master file contains Smart Commerce Solutions administrative data, cardholder personal data, and a subdirectory for each of the five merchant programs on the card.
Figure 10.1. File layout of the Smart Shopper card.
The Smart Commerce Solutions administrative data file is used primarily for security purposes. Among other things, it contains a directory of the currently active merchant programs on the card.
The cardholder personal data file is under the control of the cardholder and could, for example, contain names, telephone numbers, billing and shipping addresses, and payment information, such as credit account numbers.
Each merchant directory contains an external authentication file with the keys that the merchant uses to administer the security of his own loyalty program. Each merchant directory also contains one or more loyalty schemes which define the merchants loyalty program. These schemes are provided in a general form by Smart Commerce Solutions Smart Shopper card and are particularized by Smart Commerce Solutions to the needs and requirements of each merchant.
The master file (3F0016) on the five-merchant Smart Shopper card contains the following files:
The serial number, PIN, and external and internal authentication files are discussed in Chapter 5, The Schlumberger Multiflex Smart Card. The personal identification number in the PIN file is what the cardholder enters to identify herself to the card; it is what the card uses to ensure that it is being held by the authentic cardholder. The external and internal authentication files contain keys that are used by Smart Commerce Solutions to provide security for its administrative functions and data.
A merchant directory (x00016) always contains the merchant external authentication file (001116), which contains the keys that the merchant uses to administer security on this loyalty program. A merchant directory also contains one or more of the loyalty schemes provided by Smart Commerce Solutions.
The cardholder personal data file is a fixed-length record file consisting of 20 records of 24 bytes each. Each record starts with four ASCII characters, which name the cardholder data value contained in the record; that is, NAME for name, SHAD for shipping street address, and so on. These four characters are followed immediately in the record by up to 20 ASCII characters which comprise the data value itself. Heres an example:
NAMESally Green HTEL1 617 484 0391 OTEL1 617 484 3307 SHADOne Main Street SHCTCambridge SHSTMassachusetts SHZP02142
The names of all the possible values in the cardholder personal data file, NAME, HTEL, and so on, are standardized by Smart Commerce Solutions so that all the merchants participating in the program can use them. A cardholder is not obliged to enter any values in the personal data file and may enter only those values she is comfortable with providing to the program merchants.
The Smart Commerce Solutions card administration file contains, among other things, a registry of all active merchant programs currently loaded on the card. This is one way Smart Commerce Solutions ensures that the card is used only by merchants who have joined and are currently active in the Smart Shopper smart card program.
The merchant external authentication file is a transparent file containing three keys of 8 bytes each. These keys can be used by the merchant to define a security architecture and policy for the files in his directory.
Previous | Table of Contents | Next |