公开(公告)号：US20190124077A1

公开(公告)日：2019-04-25

申请号：US16226831

申请日：2018-12-20

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Michael Christopher WARD ,  Sandra JANSEN

IPC: H04L29/06 ,  G06Q20/00

CPC classification number: H04L63/0853 ,  G06Q20/00 ,  G06Q20/20 ,  G06Q20/32 ,  G06Q20/382 ,  H04L63/0414 ,  H04L63/083 ,  H04L63/0876 ,  H04L63/10 ,  H04L63/123

Abstract: A method for enhanced validation of cryptograms for varying account number lengths includes: storing one or more primary account numbers and a plurality of formatting templates, each template being associated with an account number length; receiving a selection indicating a specific primary account number; identifying a specific formatting template where the associated account number length corresponds to a length of the specific primary account number; receiving an unpredictable number from a point of sale device; generating a cryptogram based on at least the unpredictable number and one or more algorithms; generating a data string, wherein the data string includes at least the generated cryptogram, the specific primary account number, and the unpredictable number, and wherein the data string is formatted based on the identified specific formatting template; and electronically transmitting the generated data string to the point of sale device.

公开(公告)号：US20190050860A1

公开(公告)日：2019-02-14

申请号：US16165180

申请日：2018-10-19

Applicant: Mastercard International Incorporated

Inventor： Simon Phillips ,  Mark Britten ,  Mehdi Collinge

IPC: G06Q20/40 ,  H04W12/06 ,  G06Q20/32 ,  H04L29/06 ,  H04L9/32 ,  G06F21/35 ,  G06Q20/38

Abstract: Back-up credentials data is stored for a user. A communication channel is established with a mobile device. A cryptogram is received from the mobile device, such that the cryptogram is relayed by the mobile device from an authentication device that interacted with the mobile device. The authentication device is associated with the user. The cryptogram is verified. In response to the verification of the cryptogram, the stored back-up credentials data is made accessible to the mobile device.

公开(公告)号：US10187384B2

公开(公告)日：2019-01-22

申请号：US15782339

申请日：2017-10-12

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Michael Christopher Ward ,  Sandra Jansen

IPC: H04L29/06 ,  G06Q20/00

Abstract: A method for enhanced validation of cryptograms for varying account number lengths includes: storing one or more primary account numbers and a plurality of formatting templates, each template being associated with an account number length; receiving a selection indicating a specific primary account number; identifying a specific formatting template where the associated account number length corresponds to a length of the specific primary account number; receiving an unpredictable number from a point of sale device; generating a cryptogram based on at least the unpredictable number and one or more algorithms; generating a data string, wherein the data string includes at least the generated cryptogram, the specific primary account number, and the unpredictable number, and wherein the data string is formatted based on the identified specific formatting template; and electronically transmitting the generated data string to the point of sale device.

公开(公告)号：US10007909B2

公开(公告)日：2018-06-26

申请号：US14558049

申请日：2014-12-02

Applicant: MasterCard International Incorporated

Inventor： Mehdi Collinge ,  Michael Christopher Ward

IPC: H04L29/06 ,  G06Q20/38 ,  G06Q20/40 ,  H04W12/04

CPC classification number: G06Q20/3821 ,  G06Q20/3829 ,  G06Q20/4012 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/062 ,  H04L63/083 ,  H04L2463/102 ,  H04W12/04

Abstract: A method for receiving and processing a data message includes: storing at least an encryption key; receiving a data message, the data message including at an encrypted message and a message authentication code, the message authentication code generated using at least a portion of the encrypted message; generating a reference authentication code using at least a portion of the encrypted message included in the received data message; validating the received data message based on a check of the message authentication code included in the received data message against the generated reference authentication code; and decrypting the encrypted message included in the received data message using the stored encryption key to obtain a decrypted message.

公开(公告)号：US20170300916A1

公开(公告)日：2017-10-19

申请号：US15637891

申请日：2017-06-29

Applicant: MasterCard International Incorporated

Inventor： Simon Phillips ,  Mark Britten ,  Mehdi Collinge

IPC: G06Q20/40 ,  G06Q20/32

CPC classification number: G06Q20/4014 ,  G06F21/35 ,  G06Q20/322 ,  G06Q20/327 ,  G06Q20/38215 ,  G06Q20/3825 ,  G06Q20/40 ,  G06Q20/4012 ,  G06Q20/40145 ,  G06Q2220/00 ,  H04L9/3226 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0861 ,  H04W12/06

Abstract: Back-up credentials data is stored for a user. A communication channel is established with a mobile device. A cryptogram is received from the mobile device, such that the cryptogram is relayed by the mobile device from an authentication device that interacted with the mobile device. The authentication device is associated with the user. The cryptogram is verified. In response to the verification of the cryptogram, the stored back-up credentials data is made accessible to the mobile device.

公开(公告)号：US20150348026A1

公开(公告)日：2015-12-03

申请号：US14712343

申请日：2015-05-14

Applicant: MasterCard International Incorporated

Inventor： David A. Roberts ,  Patrik Smets ,  Mehdi Collinge ,  Axel Cateland

IPC: G06Q20/38 ,  G06Q20/32 ,  G06Q20/40 ,  G06Q20/10

CPC classification number: G06Q20/3829 ,  G06F21/31 ,  G06Q20/02 ,  G06Q20/10 ,  G06Q20/3224 ,  G06Q20/3226 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/3825 ,  G06Q20/3827 ,  G06Q20/4012 ,  G06Q20/40145 ,  H04L63/0861 ,  H04W12/0027 ,  H04W12/04 ,  H04W12/06 ,  H04W12/0806

Abstract: A mobile computing device has at least one processor and at least one memory together providing a first execution environment and a second execution environment logically isolated from the first execution environment. The following approach is taken to manage data items for an application executing the first execution environment. A trust relationship is established between a trust client in the second execution environment and a remote trusted party and the trust client receives one or more data items from the remote trusted party. On executing the application in the first execution environment, the trust client provides the data items or further data items derived therefrom to the application 213. Provision of these data items may be conditional upon a user authentication process. A suitable mobile computing device is also described.

Abstract translation: 移动计算设备具有至少一个处理器和至少一个存储器，一起提供与第一执行环境逻辑隔离的第一执行环境和第二执行环境。 采取以下方法来管理执行第一个执行环境的应用程序的数据项。 在第二执行环境中的信任客户端与远程可信方之间建立信任关系，信任客户端从远程受信任方接收一个或多个数据项。 在第一执行环境中执行应用程序时，信任客户端将数据项目或从其导出的其他数据项目提供给应用程序213.这些数据项目的提供可能取决于用户认证过程。 还描述了合适的移动计算设备。

公开(公告)号：US20150248668A1

公开(公告)日：2015-09-03

申请号：US14636467

申请日：2015-03-03

Applicant: MasterCard International Incorporated

Inventor： Cristian Radu ,  Mehdi Collinge

IPC: G06Q20/32 ,  G06Q20/38 ,  G06K19/06

CPC classification number: G06Q20/3278 ,  G06F21/14 ,  G06F21/602 ,  G06K19/06206 ,  G06Q20/322 ,  G06Q20/3823 ,  G06Q20/3829 ,  G06Q2220/00 ,  H04L9/002 ,  H04L2209/16 ,  H04L2209/56 ,  H04W12/02

Abstract: A mobile computing device has a processor and a memory. The processor is programmed with a mobile transaction application 101. The memory comprises a local database 102 to hold data items for use by the mobile transaction application 101. The mobile transaction application 101 is adapted to encrypt data items for storage in the local database 102 and to decrypt data items stored in the local database 102 using white-box cryptographic techniques.

Abstract translation: 移动计算设备具有处理器和存储器。 处理器用移动交易应用程序101编程。存储器包括本地数据库102以保存由移动交易应用程序101使用的数据项。移动交易应用程序101适于加密用于在本地数据库102中存储的数据项目，以及 使用白盒加密技术来解密存储在本地数据库102中的数据项。

公开(公告)号：US20250007713A1

公开(公告)日：2025-01-02

申请号：US18761652

申请日：2024-07-02

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Cristian Radu ,  Mehdi Collinge ,  Omar Laazimani

IPC: H04L9/32 ,  G06F9/50 ,  G06F9/54 ,  G06F11/30 ,  H04L9/40

Abstract: A method is described of monitoring a service performed at a computing node. The computing node is one of a plurality of computing nodes in a distributed computing system. Each computing node is adapted to perform at least one service for clients. A monitoring process is adapted to monitor a service process performing the process. In the method, the monitoring process monitors the service process on performance of the service. The monitoring service then provides monitoring information to a monitoring process for another service process. A suitable computing node for performing the service is described, as is a coordinated monitoring service for supporting multiple monitoring services.

公开(公告)号：US12100003B2

公开(公告)日：2024-09-24

申请号：US17752212

申请日：2022-05-24

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Cristian Radu

IPC: G06Q20/40 ,  G06Q20/38 ,  H04L9/40 ,  H04W12/041

CPC classification number: G06Q20/4012 ,  G06Q20/3821 ,  G06Q20/3829 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/062 ,  H04W12/041 ,  H04L63/083 ,  H04L2463/102

Abstract: A method for building an advanced storage key includes: storing, in a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program including an instance identifier, and (iii) program code associated with a second program including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.

公开(公告)号：US12052361B2

公开(公告)日：2024-07-30

申请号：US17088079

申请日：2020-11-03

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Cristian Radu ,  Mehdi Collinge ,  Omar Laazimani

IPC: H04L29/06 ,  G06F9/50 ,  G06F9/54 ,  G06F11/30 ,  H04L9/32 ,  H04L9/40

CPC classification number: H04L9/32 ,  G06F9/5072 ,  G06F9/546 ,  G06F11/3006 ,  H04L9/3242 ,  H04L63/12

Abstract: A method is described of monitoring a service performed at a computing node. The computing node is one of a plurality of computing nodes in a distributed computing system. Each computing node is adapted to perform at least one service for clients. A monitoring process is adapted to monitor a service process performing the process. In the method, the monitoring process monitors the service process on performance of the service. The monitoring service then provides monitoring information to a monitoring process for another service process. A suitable computing node for performing the service is described, as is a coordinated monitoring service for supporting multiple monitoring services.