METHOD FOR PAYING FOR GOODS AND / OR SERVICES

DE502023004237D1Active Publication Date: 2026-06-11MERCEDES BENZ GROUP AG

Patent Information

Authority / Receiving Office
DE · DE
Patent Type
Patents
Current Assignee / Owner
MERCEDES BENZ GROUP AG
Filing Date
2023-07-03
Publication Date
2026-06-11

AI Technical Summary

Technical Problem

Existing methods for making payments from a vehicle using a SIM or eSIM lack sufficient security measures, as they rely on low-security authentication methods such as PINs or smartphone login, and do not adequately verify the user's identity.

Method used

Integrate a mobile communication unit into the vehicle's operating system and sensors to determine a user-specific and vehicle-specific parameter set, which is authenticated through comparison with stored parameter sets at a mobile network operator and vehicle manufacturer's server, using a virtual payment card or token linked to the SIM or eSIM.

Benefits of technology

Ensures highly reliable and secure payment processes by verifying user identity through multiple data points, allowing payments without additional infrastructure requirements and minimizing fraud risk.

✦ Generated by Eureka AI based on patent content.
Patent Text Reader
Need to check novelty before this filing date? Find Prior Art

Description

[0001] The invention relates to a method for paying for goods and / or services by an authorized user of a mobile communication unit with a SIM or eSIM, according to the type defined in more detail in the preamble of claim 1.

[0002] The closest state of the art here is WO 2019 / 147160 A1. This describes a method for making a payment via a SIM or eSIM in a mobile phone.

[0003] US Patent 2018 / 0308081A1 describes a method for driver authentication using sensors installed in the vehicle. These sensors detect the driver and / or their driving behavior. Essentially, the process involves evaluating the movements of the vehicle or driver.

[0004] German patent DE 10 2016 209 380 A1 discloses a system for automatically executing payment transactions in a vehicle. For this purpose, a user's payment information is captured and stored in a payment information memory. Furthermore, an interface of the payment device is monitored for the receipt of a payment signal, wherein the payment signal includes at least a payee and an amount to be paid. Finally, once the payment has been authorized, the payment of the amount to be paid to the payee is authorized, and the payment is then instructed to the payee via an initial communication link using the payment information stored in the payment information memory.

[0005] German patent DE 10 2020 204 981 B4 describes the generation of a unique user identification in a vehicle. This is achieved using biometric data. The generated identification can then be linked to a mobile phone identification number in a communication module of the vehicle, as well as to vehicle-specific data.

[0006] German patent DE 10 2018 207 161 B4 also discloses the generation of a unique user identification from biometric data in a vehicle. This is used there to create a telecommunications profile.

[0007] Typically, merchants do not accept payments via SIM or eSIM or lack the necessary infrastructure to offer such payments, which are usually processed through the mobile network operator. This document therefore describes a method for generating a virtual credit card or virtual token with a payment service provider, which can then be linked to the SIM or eSIM to complete the payment. The only requirement for a successful payment is that the user has authenticated themselves on their smartphone, for example, by logging into the payment application or, if the application is permanently enabled, by authenticating themselves with their smartphone, such as via a PIN, unlocking the smartphone using biometric recognition, or similar methods.The disadvantage is that anyone with a smartphone can use it to pay, as long as they know the PIN or login details. Therefore, the security requirements are comparatively low.

[0008] Furthermore, it is known from the prior art that payment can be made from within a vehicle. In this context, reference can be made, for example, to EP 3 931 782 A1 or its international counterpart, WO 2021 / 204411 A1.

[0009] Furthermore, current technology also allows for payment from a vehicle via an eSIM, as described in US 2020 / 0193411 A1. In this process, the user is identified based on their seat location within the vehicle, for example via a camera, before they can then pay with their mobile device, such as a smartphone.

[0010] On the one hand, based on the discussed state of the art, there is a desire to be able to make payments from within a vehicle. On the other hand, the use of virtual payment cards or virtual tokens linked to a SIM or eSIM raises the security concerns described in the aforementioned discussion of the state of the art.

[0011] The object of the present invention is therefore to provide an improved means of paying for goods and / or services from a vehicle using a SIM or eSIM.

[0012] This problem is solved by a method with the features of claim 1, and in particular in the characterizing part of claim 1. Advantageous embodiments and further developments of the solution according to the invention result from the dependent claims.

[0013] In the method according to the invention, a SIM or eSIM is used in a mobile communication unit of an authorized user, which is coupled with a virtual payment card or virtual payment token generated via a payment service provider, similar to the prior art mentioned at the outset.

[0014] The method according to the invention uses a mobile communication unit that is integrated into the vehicle. Such integration of the mobile communication unit into the vehicle, as defined by the invention, means that the mobile communication unit is an integral part of the vehicle and is therefore permanently connected to the vehicle's operating system and sensors. "Permanently connected" in the context of the invention means that it is not a smartphone or similar device connected via software or a docking station, but rather a mobile communication unit that is part of the vehicle's electronics and is typically not carried by the user outside the vehicle.

[0015] This integrated mobile communication unit is now used to determine a user-specific parameter set, which includes at least one user ID. Unlike prior art, this parameter set, which can be, for example, a vector of different parameters, is determined on the vehicle side via an external server of the vehicle manufacturer, typically referred to as the vehicle backend, which communicates with the vehicle. The determined parameter set is then transmitted from this server to the mobile network operator. Additionally, the vehicle in which the mobile communication unit is integrated determines a vehicle-specific parameter set, which is user-specific and thus takes both the vehicle and the user into account.This parameter set can, for example, include a vehicle identification number (VIN), which is simultaneously linked to a user identification on the external server if the user is the vehicle owner or is known or registered as a user of the vehicle. This user-specific, vehicle-related parameter set is then transmitted to the mobile network operator and linked by them to the SIM or eSIM of the vehicle's mobile communication unit.

[0016] For payment, a virtual payment card or virtual payment token is used, similar to the previously mentioned state of the art. At the same time, and this is the crucial security advantage, the parameter sets linked to the SIM or eSIM are compared with the corresponding parameter sets stored at the mobile network operator and / or on the vehicle manufacturer's external server. This comparison of the parameter sets linked to the SIM or eSIM and those stored independently at the mobile network operator and / or on the vehicle manufacturer's external server then serves to authenticate the user, thus ensuring a highly reliable and secure payment process and the traceability of the payment to the user initiating it.

[0017] According to a highly advantageous embodiment of the inventive method, a communication connection can be established between the mobile communication unit and the mobile network operator and / or the vehicle-external server during payment. This connection allows the virtual payment card or virtual payment token linked to the SIM or eSIM to be transmitted to the mobile communication unit. The associated parameter sets are then compared with the corresponding parameter sets stored at the mobile network operator and / or on the vehicle manufacturer's vehicle-external server to authenticate the user. Authentication thus occurs more or less simultaneously with the transmission of the virtual payment card or virtual payment token, so that the provider of the goods and / or services receives the already authenticated data required for payment.This makes it possible to make a payment directly, so that the provider of goods and / or services can process the payment very easily and efficiently without having to take any action regarding authentication.

[0018] As a highly advantageous alternative, the virtual payment card or virtual token, along with its parameter sets, can be stored on the SIM or eSIM when it is paired. This ensures that all the information necessary for payment is available on the SIM or eSIM, allowing this scenario to function even if the mobile device has no internet connection during the payment process. Multiple virtual payment cards and / or virtual payment tokens can be stored for use in different payment transactions. Furthermore, it is also conceivable that only one payment token or virtual payment card could be generated and used for several different payment transactions.According to a very beneficial training course, the virtual payment card or virtual payment token and the parameter sets can be given an expiry date, so that, for example for security reasons, they automatically expire a certain time after their generation and can no longer be used.

[0019] As mentioned above, this storage process has the advantage that payment is possible even without the mobile unit's internet connection. When data is stored on the SIM or eSIM, the linked virtual payment card or virtual payment token and its associated parameter sets are transmitted to the provider of the goods and / or services. The provider of the goods or services, for example, a retailer, a gas station, a toll station, a ferry, or similar entity, then initiates—directly or indirectly via the payment service provider—a comparison of the transmitted parameter sets with the corresponding parameter sets stored at the mobile network operator and / or on the vehicle manufacturer's external server.This type of process is also known as 3-D Secure, as it uses multiple parties and different data channels for authentication. "Initiated" in this context means that the provider of the goods and / or services initiates this verification process, preferably via the payment service provider acting as an intermediary. This offers the provider of the goods and / or services the crucial advantage that they only need to communicate via their existing communication channels with the payment service provider, such as a credit card company. This allows all necessary processes to be handled by the provider of the goods and / or services using their existing hardware and / or communication channels, meaning they face no additional requirements beyond those already associated with using 3-D Secure.

[0020] A further highly advantageous embodiment of the method according to the invention provides that data acquired by vehicle sensors relating to the user are incorporated into the user-specific parameter set. This further increases security, since the sensors of a vehicle can acquire various values ​​about the user, which are accordingly known to the vehicle manufacturer's external server and can thus be incorporated into the user-specific parameter set, for example a multidimensional vector, to improve authentication security.

[0021] According to a highly advantageous further development, the user-related parameter set can include at least biometric data, name, email address, bank details, telephone number, driving behavior, seat settings, data relating to vehicle access authorization, driving authorization, and / or body data, which are recorded, for example, via sensors in the seat or cameras. This data can individually, in combination, or as a selected group of the aforementioned data can form the user-related parameter set or be part of this user-related parameter set. The advantage of including data recorded via vehicle sensors is that, on the one hand, data collection is relatively simple, and on the other hand, this data ensures a high level of security.If, for example, the vehicle has biometric access control that uses a fingerprint, iris recognition, voice analysis, and / or similar methods to grant user access, then this data is already collected and known and can be used for the user-specific parameter set. Other types of access control, such as establishing an NFC connection to an authorized smartphone, smartwatch, smart ring, or similar device, can also be used. The mere fact that the person who later uses the vehicle's integrated mobile payment unit has access to the vehicle already significantly enhances authentication security.

[0022] Further parameters or data, such as driving behavior or seat settings, can then be used, particularly via the vehicle manufacturer's external server, to confirm once again that the user who had access and driving authorization to the vehicle is indeed the one using the vehicle, because their typical seat settings, driving behavior, and the like have been recognized.

[0023] According to a particularly advantageous embodiment of the method according to the invention, the user-specific, vehicle-related parameters can include at least a vehicle identification number and / or the sensor configuration available in the vehicle. The vehicle identification number is a unique identifier for the vehicle and is internationally abbreviated as VIN (Vehicle Identification Number). Furthermore, different vehicles nowadays have different sensors installed, so the configuration of the available sensors also provides a suitable parameter for identifying the vehicle or at least for distinguishing between different vehicles.Furthermore, if the user-specific parameters use corresponding sensor data to create the parameter set, these sensors must also be present in the vehicle; otherwise, authentication is not possible. For example, if the user-specific parameter set includes the user's weight, then a way to detect that weight is required. This could be done, for instance, via a sensor in the vehicle's seat. Therefore, if weight is part of the user-specific parameter set, but the sensor configuration in the vehicle-specific parameter set indicates that a sensor needed to detect weight is missing, this can be a strong indication of potential misuse, which could lead to authentication being denied.

[0024] A particularly advantageous embodiment of the inventive method further provides that the virtual payment card or virtual payment token is created and transmitted as a virtual payment card or virtual payment token with a cryptogram. For example, such a virtual payment card with a cryptogram represents an increase in security, since payment and thus misuse are not possible using only the data of the virtual payment card; rather, the combination with the corresponding cryptogram is always necessary to guarantee security. This is fundamentally known in conventional methods from the prior art and, especially in this context of payment from a vehicle, further increases security.

[0025] According to a particularly advantageous further development of the inventive method, the comparison of the parameter sets now also takes into account temporal changes in the individual parameters of the parameter sets using machine learning methods. For example, in a parameter set consisting of a multidimensional vector, one or more parameters may change their value over time. This is especially true when user behavior data is included in the parameter set. For example, driving behavior, the set seating position, or the like may change over time because the user makes corresponding adjustments. Using machine learning methods, these adjustments—or changes occurring over time, for example, in the user's weight or the like—can be detected and taken into account accordingly.These parameters can be tracked using machine learning, so that in the event of a comparison, the system performing the comparison can be trained to classify a parameter set as identical for authentication purposes, even if minor changes have occurred in certain parameters where this is inherently possible. This efficiently prevents the unnecessary denial of authentication due to small deviations in individual data points within the parameter set, and the system can still reliably determine, for example, whether a user's slightly changing driving behavior is a temporary or gradual change, and whether the vehicle's use can still be fundamentally attributed to that user.

[0026] According to a highly advantageous refinement of this method, it is possible to weight individual parameters differently when comparing parameter sets. This makes it possible, for example, to weight unambiguous parameters more heavily than parameters that are subject to continuous or temporary changes. This also allows the security of the authentication to be adjusted as desired. The weighting can also be reversed, so that, for example, parameters that reflect user behavior in the parameter set or vector are given higher priority. The rationale behind this may be that imitating user behavior is significantly more difficult than if data such as the user's name, phone number, and the like were obtained by a third party and used unlawfully for the method described here.

[0027] Furthermore, by employing such machine learning methods when using parameters that characterize user behavior, it is possible to react appropriately to deviations. For example, the system can be trained to recognize deviations identified through machine learning, as well as newly occurring deviations that fall within the range of such previously identified deviations, as permissible deviations. This allows the system to evaluate parameter sets as "equal" when comparing them, thus enabling authentication. If a deviation occurs that is more significant than typically observed, it could be due to a situation where, for example, someone else is driving the vehicle and exhibiting completely different driving behavior, or where the authorized user is driving the vehicle but is under the influence of drugs, or something similar.In this case, the inventive method may provide that, to protect the authorized user, authentication is refused or at least the maximum payment amount is limited, so that, for example, a user under the influence of drugs is unable to spend large sums of money or an unauthorized user is prevented from paying for expensive goods and / or services at the expense of the authorized user.

[0028] As mentioned above, the virtual payment card or virtual payment token can be stored accordingly or, if an internet connection is available, transferred to the mobile unit during payment. In practice, it may be possible to use a single virtual payment card or virtual payment token for multiple transactions. To increase security, it may be necessary to periodically renew this token to ensure the verification of the relevant parameter sets. A similar approach can be used for linking and maintaining the virtual payment card or virtual payment token with the mobile network operator and / or on the vehicle manufacturer's external server, even when an internet connection is available during payment.A preferable alternative for security reasons, although one that increases the effort accordingly, is to renew the virtual payment card or virtual payment token for each payment transaction. This means that a corresponding virtual payment card or virtual payment token is generated and used for each requested payment transaction, following the procedure described above. This approach requires either an internet connection for the mobile device during payment or, alternatively, as already mentioned above, can be achieved by storing multiple virtual payment cards or virtual payment tokens on the SIM or eSIM.For example, three or four cards or tokens can be stored on the SIM or eSIM, so that these three or four payment transactions can be processed without an internet connection, before this "supply" of possible payment transactions is replenished as soon as an internet connection is available again.

[0029] As already mentioned several times, both the mobile network operator and the vehicle manufacturer's external server can be used to perform the comparison. In practice, it is essentially sufficient if this communication regarding the comparison takes place with the mobile network operator, which receives the virtual payment token or virtual payment card from the payment service provider and links it to the SIM or eSIM. Alternatively or additionally, to enable the vehicle manufacturer's external server to perform this comparison, a particularly advantageous embodiment of the inventive method allows the virtual payment card or virtual payment token to be forwarded from the mobile network operator—or, in parallel with transmission to the mobile network operator, from the payment service provider—to the external server and stored there. The payment service provider can thus access the virtual payment card or virtual payment token.The virtual token is forwarded directly and simultaneously to both the mobile network operator and the external server. Alternatively, it can be transmitted only to the mobile network operator, who, according to this advantageous embodiment of the inventive method, then forwards it to the external server. In any case, this creates the possibility of performing a comparison either with the mobile network operator or the external server, and thus, in effect, with the vehicle manufacturer. This opens up additional possibilities if, for example, one of these institutions is temporarily unavailable or similar. Furthermore, it allows both the mobile network operator and the vehicle manufacturer to act as service providers and ultimately process the payment for the user.From an economic point of view, this can also be a question of risk assessment, so that either the mobile network operator or the vehicle manufacturer takes over the payment of the amounts paid via the SIM or eSIM and then demands the accrued amounts from the user.

[0030] Further advantageous embodiments of the method according to the invention also result from the exemplary embodiment, which is described in more detail below with reference to the figure.

[0031] The only accompanying figure shows a schematic representation of a system for carrying out the method according to the invention.

[0032] In the depiction of the only Figure 1 A vehicle 1 can be identified in which a mobile communication unit designated 2 is installed, which is to be used to pay for goods and / or services from a provider 3 for goods and / or services via its integrated SIM or eSIM.

[0033] An external server 4, represented here as a cloud, is connected to the vehicle 1 or its mobile communication unit 2 and provides, for example, a manufacturer-specific application in which a user of the vehicle 1 maintains a corresponding account, which is linked to the SIM / eSIM of the mobile communication unit 2 in their vehicle 1. A further communication connection is established between the vehicle manufacturer's external server 4 and a mobile network operator 5. The mobile network operator 5, in turn, is connected to a payment service provider 6, such as a credit card company or similar. Furthermore, the mobile network operator 5, or optionally, additionally or alternatively, the external server 4 (and thus the vehicle manufacturer), is connected to the user's bank 7 as a customer of the vehicle 1, as well as to the vehicle 1 or its mobile communication unit 2.

[0034] To explain the process, the following are included in the Figure 1Furthermore, six individual process steps are symbolically indicated by the circled numbers 1 to 6. In the first step, which is essentially carried out within the vehicle manufacturer's ecosystem and thus on the vehicle-external server 4, possibly in communication with the vehicle 1 or its mobile communication unit 2 and the user of the vehicle 1, initial parameters are compiled, which are typically already available on the vehicle-external server 4. These parameters can include, for example, the user's name, email address, biometric data, driving behavior, seat settings, bank account information, telephone number, and the like. This data then forms a user-specific parameter set, or at least a part of such a parameter set, and can subsequently be used for authentication.

[0035] Furthermore, the external server 4 typically maintains a connection between the user's data and the corresponding data of their vehicle 1, allowing vehicle-related parameters such as the vehicle identification number (VIN), the vehicle's sensor configuration, and similar information to be linked to the user's account and thus to the user-specific parameter set. This information can be used to identify the physical unit of the vehicle 1 and the mobile communication unit 2. Especially when a user owns multiple different vehicles 1, knowing the VIN is crucial for making a unique assignment and, if such a unique assignment is not possible, for potentially blocking payments.Other parameters collected by the sensors of vehicle 1 can also be used, such as transmitted telemetry data, to record the user's driving behavior and to use this information to identify the user as clearly as possible.

[0036] This results in, on the one hand, a user-related parameter set and, on the other hand, a vehicle-related parameter set, which, in particular through its linkage with the user's data, leads to a user-specific, vehicle-related parameter set. In a second step, these parameter sets are transmitted to the mobile network operator 5, which links the parameter sets to the user's SIM or eSIM in the mobile communication unit 2 of their vehicle 1. This can occur either periodically or only when a change has occurred in one of the parameter sets, so that, triggered by this change, the vehicle-external server 4 sends the corresponding parameter set to the mobile network operator 5 for renewal.

[0037] Based on the data received, mobile network operator 5 can now also create a risk profile for the respective user, which is typically required because payments are processed on a credit basis. This means that mobile network operator 5 initially covers the costs and bills its customer, for example, on a periodic basis. Therefore, mobile network operator 5 needs to be able to assess the risk of whether this bill will ultimately be paid. Alternatively, instead of mobile network operator 5, the vehicle's external server 4, and thus ultimately the vehicle manufacturer, which also knows its customers relatively well, could also take on this risk assessment. In particular, it could directly assume the role of initially settling the payments on a credit basis and then billing the customer.This means that the vehicle manufacturer has the option of taking over the role of mobile network operator 5, either wholly or partially, with regard to payment processing, if desired.

[0038] In the next step, designated here as step three, the mobile network operator 5 submits a request to a payment service provider 6, for example, a credit card company. The request aims to create a virtual payment card or a virtual payment token with or without a cryptogram, preferably with a cryptogram for security reasons. This process is in accordance with the general state of the art.

[0039] In the fourth step, the payment service provider 6 sends this virtual payment card or virtual payment token, preferably including a cryptogram, to the mobile network operator 5, which links it to the SIM or eSIM and the user-related and user-specific vehicle-related parameter set. The virtual payment card or virtual payment token can also preferably be transmitted to the vehicle manufacturer's ecosystem, i.e., to the external server 4, which also stores the data. A virtual payment card or virtual payment token can be generated individually for each payment transaction or it can be generated or renewed periodically, depending on the security requirements of the system.

[0040] This approach allows the user of vehicle 1 to pay for goods and / or services directly via their vehicle 1, without needing a credit card or similar device. Since the providers of goods and / or services 3 typically do not support payment via a SIM or eSIM, this is resolved by linking the virtual payment card or virtual payment token to the SIM or eSIM, which then ultimately serves as the payment method.

[0041] The payment itself then takes place in the fifth step, as shown in the presentation of the Figure 1For example, if vehicle 1 or its mobile communication unit 2 has an internet connection, the virtual payment card or virtual payment token is transmitted from the mobile network operator 5 to the mobile communication unit 2 at the start of the payment process. The parameter sets linked to the SIM or eSIM are then compared with the parameter sets stored on the external server 4 to ultimately authenticate the user of vehicle 1. In the fifth step of this scenario, the provider 3 of the goods and / or services receives the authenticated payment information directly in order to process the payment immediately.

[0042] An alternative for the fifth step can be the so-called 3-D Secure procedure. This does not necessarily require an internet connection. In this case, the virtual payment card or virtual payment token, along with the corresponding parameter sets, is stored on the SIM or eSIM of the mobile unit 2. This data is transmitted to the provider 3 of the goods and / or services during payment. According to the dashed arrow, this provider then contacts the mobile network operator 5 or the vehicle's external server 4 to initiate the authentication comparison. Since provider 3 typically has a connection to the payment service provider 6, such as a credit card company, it typically uses and prefers this route to initiate the comparison. The dashed arrow therefore runs from provider 3 to the payment service provider 6.This then forwards the corresponding request via the established channels to the mobile network operator 5 and / or the vehicle-external server 4, which, if the check is successful, then return the authentication, so that the payment process can be reliably completed for the provider 3 of the goods and / or services.

[0043] As with a typical loan transaction, the payment is initially processed either by the mobile network operator 5 or the vehicle manufacturer, symbolized here by the vehicle's external server 4. These institutions then contact the bank 7 of the vehicle's user 1, i.e., their customer, to arrange for the customer to settle the invoice. This is shown here as step 6 and is initiated by the mobile network operator 5 in most scenarios, but can optionally be handled by the vehicle's external server 4 or the vehicle manufacturer, as indicated by the dashed line.

[0044] Since the parameter sets, which can be structured as an n-dimensional vector, for example, may contain various parameters that could be subject to continuous change—such as the user's weight, driving behavior, or similar factors—it can be advantageous to allow certain tolerances, particularly for parameters susceptible to change, when comparing the parameter sets linked to the SIM or eSIM for payment purposes with those stored on the vehicle's external server 4 and / or at the mobile network operator 5. This tolerance should be applied before the parameter sets are classified as inequal and authentication is denied. Machine learning methods are particularly well-suited to ensuring reliable functionality in this context. These methods can detect continuous changes, such as those in the user's driving behavior.These changes are typically minor and can be tracked accordingly using machine learning. Such a system can then be trained to classify a current parameter set—for example, on the vehicle manufacturer's external server 4—and a parameter set transmitted for payment authentication as "equal," even if slight deviations have occurred. Thus, the machine learning process can, for instance, recognize that while the user's driving behavior has changed, it fundamentally corresponds to the pattern known to that user. Therefore, it can be assumed with a very high degree of probability that the user in question was indeed driving vehicle 1.However, if the deviations exceed a threshold typically encountered during machine learning, then it can be assumed that the change is so significant that either another user is operating the vehicle, in which case authentication should be denied. Alternatively, as mentioned earlier, it is also conceivable that the same user is driving vehicle 1 but is under the influence of drugs, for example, or is drunk. In this case, authentication could also be denied.

[0045] To ensure that users are not left completely without a payment option in both cases, even if the system hasn't recognized this as the authorized user, payments can be limited to a maximum amount. This allows users to pay at least smaller amounts even in exceptional circumstances, such as to purchase a certain amount of fuel. At the same time, the risk for the authorized user is minimized, as any resulting damages are limited to this maximum amount if the payment was not initiated by them.

Claims

1. Method for payment for goods and / or services by an authorized user of a mobile communication unit (2) having a SIM or eSIM, with a user-related parameter set being transmitted to a mobile communication provider (5) associated with the SIM or eSIM and being coupled by the latter to the SIM or eSIM, after which the mobile communication provider (5) sends a request to a payment service provider (6), which creates a virtual payment card or virtual payment token and sends it to the mobile communication provider (5), after which the mobile communication provider (5) couples the virtual payment card or virtual payment token to the SIM or eSIM, characterized in that the mobile communication unit (2) is integrated into a vehicle (1), the user-related parameter set being determined by a vehicle-external server (4) of the vehicle manufacturer, which is coupled to the vehicle (1), and transmitted to the mobile communication provider (5), with a user-specific vehicle-related parameter set being further determined by the vehicle-external server (4) of the vehicle manufacturer and transmitted to the mobile communication provider (5), which also couples this to the SIM or eSIM, wherein, when paying for goods and / or services, the parameter sets coupled to the SIM or eSIM are compared with the corresponding parameter sets stored at the mobile communication provider (5) and / or on the vehicle-external server (4) of the vehicle manufacturer in order to authenticate the user.

2. Method according to claim 1, characterized in that during payment, a communication link is established between the mobile communication unit (2) and the mobile communication provider (5) and / or the vehicle-external server (4) in order to transmit the virtual payment card or virtual payment token coupled to the SIM or eSIM, and the parameter sets coupled thereto are compared with the corresponding parameter sets stored at the mobile communication provider (5) and / or on the vehicle-external server (4) of the vehicle manufacturer in order to authenticate the user, after which the authenticated data required for payment are sent to a provider (3) of the goods and / or services.

3. Method according to claim 1, characterized in that the virtual payment card or virtual payment token, as well as the parameter sets, are stored on the SIM or eSIM when coupled thereto.

4. Method according to claim 3, characterized in that during payment, the virtual payment card or virtual payment token coupled to the SIM or eSIM and the parameter sets coupled thereto are transmitted to a provider (3) of the goods and / or services, which, directly or via the payment service provider (6), initiates the comparison of the parameter sets sent to it with the corresponding parameter sets stored at the mobile communication provider (5) and / or on the vehicle-external server (4) of the vehicle manufacturer.

5. Method according to claim 3 or 4, characterized in that the virtual payment card or virtual payment token stored on the SIM or eSIM, as well as parameter sets, are given an expiry date.

6. Method according to any of claims 1 to 5, characterized in that data relating to the user collected by vehicle sensors are incorporated into the user-related parameter set.

7. Method according to any of claims 1 to 6, characterized in that the user-related parameter set comprises at least biometric data, name, email address, bank details, telephone number, driving behavior, seat settings, vehicle access permissions, driving permissions and / or body data.

8. Method according to any of claims 1 to 7, characterized in that the user-specific vehicle-related parameter set comprises at least a vehicle identification number and / or the sensor configuration available in the vehicle (1).

9. Method according to any of claims 1 to 8, characterized in that the virtual payment card or virtual payment token is created and sent with a cryptogram.

10. Method according to any of claims 1 to 9, characterized in that the comparison of the parameter sets takes into account temporal changes in individual parameters of the parameter sets using machine learning methods.

11. Method according to claim 10, characterized in that the individual parameters are weighted differently when comparing the parameter sets.

12. Method according to claim 10 or 11, characterized in that when using parameters that characterize user behavior, in case of deviations that are significantly larger than those previously identified during the adaptation through machine learning, authentication is refused or the maximum payment amount is limited.

13. Method according to any of claims 1 to 12, characterized in that the virtual payment card or virtual payment token is renewed periodically or for each payment transaction.

14. Method according to any of claims 1 to 13, characterized in that the virtual payment card or virtual payment token is forwarded by the mobile communication provider (5) or, in parallel with the transmission to the mobile communication provider (5), by the payment service provider (6) to the vehicle-external server (4) of the vehicle manufacturer and stored there.