公开(公告)号：US20170061118A1

公开(公告)日：2017-03-02

申请号：US15348944

申请日：2016-11-10

Applicant: GOOGLE INC.

Inventor： Michael David Galpin ,  Jon Christian Boekenoogen ,  Scott Roy Atwood ,  Jeffrey William Hamilton, IV

IPC: G06F21/44 ,  G06Q30/06 ,  H04L29/08 ,  H04L29/06

CPC classification number: G06F21/44 ,  G06Q30/0635 ,  H04L9/3213 ,  H04L63/0807 ,  H04L63/0876 ,  H04L63/10 ,  H04L67/32 ,  H04L67/34 ,  H04L2209/56

Abstract: An application service system receives, from a merchant service system, an application program code comprising identifying information. The identifying information is extracted and the application is distributed for operation on a user device. A user interacts with the application, creating an access request that is transmitted to the application service system along with the extracted identifying information. The application service system transmits an access token to the user device comprising the received identifying information. The user device transmits the access token with a service request to the application service system. The application service system compares the identifying information from the access token to the identifying information extracted from the application program code received from the merchant services system. If the identifying information matches, the service request is processed. If the identifying information does not match, the service request is denied and an error message is transmitted to the user device.

Abstract translation: 应用服务系统从商家服务系统接收包括识别信息的应用程序代码。 提取识别信息并将应用程序分发用于在用户设备上操作。 用户与应用程序交互，创建与所提取的识别信息一起发送到应用服务系统的访问请求。 应用服务系统将包含所接收的识别信息的接入令牌发送到用户设备。 用户设备将具有服务请求的访问令牌发送到应用服务系统。 应用服务系统将来自访问令牌的识别信息与从商务服务系统接收的应用程序代码提取的识别信息进行比较。 如果识别信息匹配，则处理服务请求。 如果识别信息不匹配，则服务请求被拒绝，并且向用户设备发送错误消息。

公开(公告)号：US20140259028A1

公开(公告)日：2014-09-11

申请号：US14140884

申请日：2013-12-26

Applicant: GOOGLE INC.

Inventor： Scott Roy Atwood ,  Prakash Hariramani

IPC: G06F9/54

CPC classification number: G06F9/543

Abstract: A client application operating in the foreground on a computing device establishes a temporary background communication with a second application by requesting the operating system launch a URL associated with the second application. The request to launch the URL includes a named pasteboard. The second application records the named pasteboard and opens a monitoring process to monitor the pasteboard. The first and second application may communicate by reading and writing information to the named pasteboard while the first application continues to operate in the foreground.

Abstract translation: 在计算设备上在前台操作的客户端应用通过请求操作系统启动与第二应用相关联的URL来建立与第二应用的临时后台通信。 启动URL的请求包括一个命名的粘贴板。 第二个应用程序记录命名的粘贴板，并打开一个监视过程来监视粘贴板。 第一和第二应用程序可以在第一应用程序继续在前台操作时通过读取和写入命名的粘贴板来进行通信。

公开(公告)号：US08745390B1

公开(公告)日：2014-06-03

申请号：US14079240

申请日：2013-11-13

Applicant: Google Inc.

Inventor： Scott Roy Atwood ,  Colin Albright McDonough

IPC: H04L9/32 ,  H04L9/00

CPC classification number: H04L63/0869 ,  H04L9/0825 ,  H04L9/0866 ,  H04L9/0869 ,  H04L9/0872 ,  H04L9/3273 ,  H04L63/061

Abstract: A requesting application transmits a session key request comprising request parameters to an application authentication system, which generates a random nonce and current timestamp, calculates a session key, and transmits the session key and session key parameters to the requesting application. The requesting application creates a pasteboard, generates a random challenge, calculates an output of a function with the random challenge as input, posts the output on the pasteboard, launches an invited application, and transmits the session key parameters and the pasteboard name to the invited application with which the user initiates an authentication session by providing credentials. The invited application requests a session key from the application authentication system, which confirms the authentication session, calculates a second session key, and transmits it to the invited application, which accesses the pasteboard, determines the random challenge, and posts the function output at an expected value. The requesting application confirms the output.

Abstract translation: 请求应用将包含请求参数的会话密钥请求发送到生成随机随机数和当前时间戳的应用认证系统，计算会话密钥，并将会话密钥和会话密钥参数发送到请求应用。 请求的应用程序创建一个粘贴板，产生随机挑战，以随机挑战作为输入计算功能的输出，在粘贴板上发布输出，启动被邀请的应用程序，并将会话密钥参数和粘贴板名称发送到被邀请 用户通过提供凭证启动认证会话的应用程序。 所请求的应用程序从应用认证系统请求会话密钥，其确认认证会话，计算第二会话密钥，并将其发送到访问该粘贴板的被邀请应用，确定随机挑战，并将功能输出在 期望值。 请求的应用程序确认输出。

公开(公告)号：US09852283B2

公开(公告)日：2017-12-26

申请号：US15348944

申请日：2016-11-10

Applicant: GOOGLE INC.

Inventor： Michael David Galpin ,  Jon Christian Boekenoogen ,  Scott Roy Atwood ,  Jeffrey William Hamilton

IPC: H04L29/06 ,  G06F21/44 ,  H04L29/08 ,  G06Q30/06 ,  H04L9/32

CPC classification number: G06F21/44 ,  G06Q30/0635 ,  H04L9/3213 ,  H04L63/0807 ,  H04L63/0876 ,  H04L63/10 ,  H04L67/32 ,  H04L67/34 ,  H04L2209/56

Abstract: An application service system receives, from a merchant service system, an application program code comprising identifying information. The identifying information is extracted and the application is distributed for operation on a user device. A user interacts with the application, creating an access request that is transmitted to the application service system along with the extracted identifying information. The application service system transmits an access token to the user device comprising the received identifying information. The user device transmits the access token with a service request to the application service system. The application service system compares the identifying information from the access token to the identifying information extracted from the application program code received from the merchant services system. If the identifying information matches, the service request is processed. If the identifying information does not match, the service request is denied and an error message is transmitted to the user device.

公开(公告)号：US20150082407A1

公开(公告)日：2015-03-19

申请号：US14032193

申请日：2013-09-19

Applicant: GOOGLE INC.

Inventor： Michael David Galpin ,  Jon Christian Boekenoogen ,  Scott Roy Atwood ,  Jeffrey William Hamilton

IPC: H04L29/06

CPC classification number: G06F21/44 ,  G06Q30/0635 ,  H04L9/3213 ,  H04L63/0807 ,  H04L63/0876 ,  H04L63/10 ,  H04L67/32 ,  H04L67/34 ,  H04L2209/56

Abstract: An application service system receives, from a merchant service system, an application program code comprising identifying information. The identifying information is extracted and the application is distributed for operation on a user device. A user interacts with the application, creating an access request that is transmitted to the application service system along with the extracted identifying information. The application service system transmits an access token to the user device comprising the received identifying information. The user device transmits the access token with a service request to the application service system. The application service system compares the identifying information from the access token to the identifying information extracted from the application program code received from the merchant services system. If the identifying information matches, the service request is processed. If the identifying information does not match, the service request is denied and an error message is transmitted to the user device.

Abstract translation: 应用服务系统从商家服务系统接收包括识别信息的应用程序代码。 提取识别信息并将应用程序分发用于在用户设备上操作。 用户与应用程序交互，创建与所提取的识别信息一起发送到应用服务系统的访问请求。 应用服务系统将包含所接收的识别信息的接入令牌发送到用户设备。 用户设备将具有服务请求的访问令牌发送到应用服务系统。 应用服务系统将来自访问令牌的识别信息与从商务服务系统接收的应用程序代码提取的识别信息进行比较。 如果识别信息匹配，则处理服务请求。 如果识别信息不匹配，则服务请求被拒绝，并且向用户设备发送错误消息。

公开(公告)号：US09531718B2

公开(公告)日：2016-12-27

申请号：US14032193

申请日：2013-09-19

Applicant: GOOGLE INC.

Inventor： Michael David Galpin ,  Jon Christian Boekenoogen ,  Scott Roy Atwood ,  Jeffrey William Hamilton

IPC: G06F21/44 ,  H04L29/06 ,  H04L29/08

CPC classification number: G06F21/44 ,  G06Q30/0635 ,  H04L9/3213 ,  H04L63/0807 ,  H04L63/0876 ,  H04L63/10 ,  H04L67/32 ,  H04L67/34 ,  H04L2209/56

Abstract: An application service system receives, from a merchant service system, an application program code comprising identifying information. The identifying information is extracted and the application is distributed for operation on a user device. A user interacts with the application, creating an access request that is transmitted to the application service system along with the extracted identifying information. The application service system transmits an access token to the user device comprising the received identifying information. The user device transmits the access token with a service request to the application service system. The application service system compares the identifying information from the access token to the identifying information extracted from the application program code received from the merchant services system. If the identifying information matches, the service request is processed. If the identifying information does not match, the service request is denied and an error message is transmitted to the user device.

Abstract translation: 应用服务系统从商家服务系统接收包括识别信息的应用程序代码。 提取识别信息并将应用程序分发用于在用户设备上操作。 用户与应用程序交互，创建与所提取的识别信息一起发送到应用服务系统的访问请求。 应用服务系统将包含所接收的识别信息的接入令牌发送到用户设备。 用户设备将具有服务请求的访问令牌发送到应用服务系统。 应用服务系统将来自访问令牌的识别信息与从商务服务系统接收的应用程序代码提取的识别信息进行比较。 如果识别信息匹配，则处理服务请求。 如果识别信息不匹配，则服务请求被拒绝，并且向用户设备发送错误消息。

公开(公告)号：US20150134518A1

公开(公告)日：2015-05-14

申请号：US14080362

申请日：2013-11-14

Applicant: GOOGLE INC.

Inventor： Barak Turovsky ,  Estella Chan ,  Scott Roy Atwood ,  Stanley N. Marshall, III

IPC: G06Q20/36

CPC classification number: G06Q20/12 ,  G06Q20/351 ,  G06Q20/363

Abstract: A user establishes a digital wallet and registers with and signs in to an authorized application. The user begins a web browsing session, accesses a merchant website, and initiates a transaction using the digital wallet. The user web browser is directed to an authentication page. The user authorizes the transaction and has the option to pre-authorize the merchant for future transactions. The user is redirected to the merchant website and approves the transaction. The transaction is conducted with the virtual credit number created by the payment processing system. The user initiates a subsequent transaction. The digital wallet determines that the previous browsing session is active, the merchant is pre-authorized, and the user is logged into the authorized application. The subsequent transaction is processed without having to be authenticated by the user via the authentication page. Otherwise, the user re-authorizes the merchant via the authentication page before the subsequent transaction proceeds.

Abstract translation: 用户建立数字钱包，并向授权的应用程序注册并登录。 用户开始网页浏览会话，访问商家网站，并使用数字钱包发起交易。 用户Web浏览器被定向到认证页面。 用户授权交易，并可以选择预先授权商家以备将来进行交易。 用户被重定向到商家网站并批准交易。 该交易是用支付处理系统创建的虚拟信用号进行的。 用户启动后续事务。 数字钱包确定先前的浏览会话是活动的，商家被预授权，并且用户登录到授权的应用程序。 处理后续事务，而不必经由认证页面由用户认证。 否则，在随后的事务进行之前，用户通过认证页重新授权商家。