公开(公告)号：US09010646B2

公开(公告)日：2015-04-21

申请号：US13225188

申请日：2011-09-02

申请人： Kerry D. Brown

发明人： Kerry D. Brown

IPC分类号： G06K5/00 ,  G06K19/06 ,  G06Q30/06 ,  G06K19/07

CPC分类号： G06Q30/0613 ,  G06K19/06206 ,  G06K19/0728

摘要： A magnetic interface card appears to be a payment card conventionally provided with an electromagnetic stripe and magnetic data tracks. A magnetic emissive element is disposed in the magnetic interface card body under the magnetic data tracks that can emit a variety of ISO-7813 track-2 data strings. A photo-sensor is included to receive a series of optically encoded flashes from a personal trusted device (PTD) smartphone screen that securely communicate one-time-use account information and operational parameters from a financial transaction server. The large installed base of legacy point-of-sale magnetic card readers can continue to be used without any hardware or software modifications, and card security is improved by the change to one-time-use access numbers.

摘要翻译： 磁性接口卡似乎是通常设置有电磁条和磁数据轨的支付卡。 磁性发射元件设置在可以发射各种ISO-7813轨道-2数据串的磁数据轨道下方的磁接口卡体内。 包括一个光电传感器，用于从个人信任设备（PTD）智能手机屏幕接收一系列光学编码的闪光灯，以从金融交易服务器安全地传送一次性使用的帐户信息和操作参数。 传统销售点磁卡阅读器的大型安装基础可以继续使用，无需任何硬件或软件修改，并通过更改一次性访问号码来改善卡安全性。

公开(公告)号：US08868902B1

公开(公告)日：2014-10-21

申请号：US13932588

申请日：2013-07-01

申请人： Kerry D. Brown ,  Ronald P. Knapp

发明人： Kerry D. Brown ,  Ronald P. Knapp

IPC分类号： H04L29/06

CPC分类号： G06Q20/322 ,  G06F21/36 ,  G06Q20/3829 ,  G06Q20/40145 ,  H04L9/3234 ,  H04L63/08 ,  H04L63/0838 ,  H04L2463/082 ,  H04W12/06

摘要： A transaction security process includes authentication and identification parts for pushing an encrypted colorgram for user authentication and persona descriptors for user identification from a transaction server to a first personal trusted device. A decryption of the colorgram is displayed on the first personal trusted device. An image is captured by a second personal trusted device. An encryption of the image captured from the second personal trusted device is uploaded to the transaction server. The persona descriptors are used to build a composite rendering for identification of the first user to the second user. The second user clicks “OK” if they recognize the composite drawing as a reasonable persona of the first user.

摘要翻译： 交易安全过程包括用于将用于用户认证的加密彩色图片和用于用户标识的个人描述符从交易服务器推送到第一个人信任设备的认证和识别部件。 彩色图案的解密显示在第一个人信任的设备上。 图像由第二个个人信任的设备捕获。 将从第二个人信任设备捕获的图像的加密上传到事务服务器。 角色描述符用于构建用于向第二用户识别第一用户的复合呈现。 第二个用户如果将复合图形识别为第一个用户的合理角色，则单击“确定”。

公开(公告)号：US08478990B2

公开(公告)日：2013-07-02

申请号：US13151397

申请日：2011-06-02

申请人： Kerry D. Brown ,  Michael Keith Bond ,  Ronald P. Knapp ,  Peter Landrock

发明人： Kerry D. Brown ,  Michael Keith Bond ,  Ronald P. Knapp ,  Peter Landrock

IPC分类号： H04L29/06

CPC分类号： G06Q20/3274 ,  G06Q20/4014 ,  G06Q20/40975 ,  H04L9/0894 ,  H04L9/3226 ,  H04L9/3278 ,  H04L2209/56 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

摘要： A transaction security process includes authentication and identification parts for pushing an encrypted colorgram for user authentication and persona descriptors for user identification from a transaction server to a first personal trusted device. A decryption of the colorgram is displayed on the first personal trusted device. An image is captured by a second personal trusted device. An encryption of the image captured from the second personal trusted device is uploaded to the transaction server. The persona descriptors are used to build a composite rendering for identification of the first user to the second user. The second user clicks “OK” if they recognize the composite drawing as a reasonable persona of the first user.

摘要翻译： 交易安全过程包括用于将用于用户认证的加密彩色图片和用于用户标识的个人描述符从交易服务器推送到第一个人信任设备的认证和识别部件。 彩色图案的解密显示在第一个人信任的设备上。 图像由第二个个人信任的设备捕获。 将从第二个人信任设备捕获的图像的加密上传到事务服务器。 角色描述符用于构建用于向第二用户识别第一用户的复合呈现。 第二个用户如果将复合图形识别为第一个用户的合理角色，则单击“确定”。

公开(公告)号：US08267327B2

公开(公告)日：2012-09-18

申请号：US11871797

申请日：2007-10-12

申请人： Paul Tsao ,  Kerry D. Brown

发明人： Paul Tsao ,  Kerry D. Brown

IPC分类号： G06K19/06

CPC分类号： G07F7/1016 ,  G06K19/06196 ,  G06K19/077 ,  G06K19/083 ,  G06Q20/385

摘要： A payment card manufacturing process glues a thin battery and an autonomously reprogrammable magnetic device to the inside surface of one of two outer front and rear laminate sheets. The magnetic device is pressed through a precisely cut rectangular hole provided for it in the rear laminate sheet, and is sealed with a gasket bead. Such magnetic device is critically placed flush in a magnetic stripe area, and the end gaps are such that they will minimize adverse magnetic transitions seen by a reader between the magnetic stripe field and the autonomously reprogrammable magnetic device. The surfaces of the battery, electronics, and laminate sheets, are plasma treated to promote adhesion. These are then all sandwiched together inside a heated mold that is tilted or vibrated just before a two-part polyurethane is injected. Each of the two polyurethane parts is temperature adjusted to match viscosities and thus improve mixing. The liquid polyurethane is injected through a nozzle and manifold to fill all the voids between the laminate sheets, and air escapes or is vacuumed out the top edge of the mold. The polyurethane sets quickly and sheets of sixteen or more payment cards can then be de-molded and singulated.

摘要翻译： 支付卡制造工艺将薄电池和自主可编程磁性装置粘合到两个外前层和后层叠片之一的内表面。 磁性装置通过在后层叠片中为其提供的精确切割的矩形孔压制，并用垫圈珠密封。 这种磁性装置在磁条区域中被精确地放置在一起，并且端部间隙使得它们将使读取器在磁条磁场和自主可编程磁性装置之间看到的不利磁转移最小化。 电池，电子和层压片的表面被等离子体处理以促进粘附。 然后将它们全部夹在加热的模具内，在刚刚注入两部分聚氨酯之前倾斜或振动。 两个聚氨酯部件中的每一个都进行温度调节以匹配粘度，从而改善混合。 液体聚氨酯通过喷嘴和歧管注入以填充层压板之间的所有空隙，并且空气逸出或者从模具的顶部边缘被抽出。 聚氨酯快速组装，然后可以对16张或更多张支付卡的纸张进行模制和分割。

公开(公告)号：US08104679B2

公开(公告)日：2012-01-31

申请号：US12479856

申请日：2009-06-08

申请人： Kerry D. Brown

发明人： Kerry D. Brown

IPC分类号： G06K5/00

CPC分类号： G06K19/06187 ,  G06K19/06196 ,  G06K19/07 ,  G06K19/0723 ,  G06K19/12 ,  G06Q20/12 ,  G06Q20/341 ,  G06Q20/343 ,  G06Q20/354 ,  G06Q20/3674 ,  G06Q20/4016 ,  G06Q20/403 ,  G07F7/082 ,  G07F7/1008

摘要： A payment card comprises a display to support card-not-present transactions where no card reader is available to automate the transaction, and an account number retrieval method for dynamic, one-time use virtual account numbers whose use can assist authorities in rapid fraud and location detection. The account number generator is able to produce a sequence of virtual account numbers over its life that are predictable by the issuing bank and useful in authenticating transactions. A server for the issuing bank logs the merchant locations associated with each use or attempted use, and provides real-time detection of fraudulent attempts to use a virtual account number outside the predicted set. Fraud identification efforts can then be directed in a timely and useful way.

摘要翻译： 支付卡包括支持卡片不存在的交易的显示器，其中没有读卡器可用于自动交易;以及帐号检索方法，用于动态的，一次性使用的虚拟帐号，其使用可以帮助当局快速欺诈， 位置检测。 帐号生成器能够在其生命周期内产生可由开证行预测的一系列虚拟账号，并在认证交易中有用。 发行银行的服务器记录与每次使用或尝试使用相关联的商家位置，并且提供在预测集合之外使用虚拟帐号的欺诈尝试的实时检测。 然后可以及时和有用的方式引导欺诈识别工作。

公开(公告)号：US07584153B2

公开(公告)日：2009-09-01

申请号：US11618818

申请日：2006-12-30

申请人： Kerry D. Brown ,  David Kevin Pariseau

发明人： Kerry D. Brown ,  David Kevin Pariseau

IPC分类号： G06F17/60

CPC分类号： G07F7/1008 ,  G06Q20/341 ,  G06Q20/3415 ,  G06Q20/385 ,  G06Q20/401 ,  G06Q20/4018 ,  G07F7/08 ,  G07F7/1083 ,  G07F7/12

摘要： A payment card comprises an internal dynamic card verification value (CVV) generator and a user display for card-not-present transactions. Card-present transactions with merchant card readers are enabled by a dynamic magnetic array internally associated with the card's magnetic stripe. The user display and a timer are triggered by the user when the user needs to see the card verification value and/or begin a new transaction. A new card verification value is provided for each new transaction according to a cryptographic process, but the timer limits how soon a next new card verification value can be generated.

摘要翻译： 支付卡包括内部动态卡验证值（CVV）发生器和用于卡不存在交易的用户显示。 通过与卡的磁条内部相关联的动态磁阵列来实现与商家卡读卡器的卡存在交易。 当用户需要看到卡验证值和/或开始一个新的交易时，用户显示和定时器由用户触发。 根据加密过程为每个新交易提供新的卡验证值，但定时器限制下一个新卡验证值可以生成的时间。

公开(公告)号：US07543739B2

公开(公告)日：2009-06-09

申请号：US11404660

申请日：2006-04-14

申请人： Kerry D. Brown ,  David Kevin Pariseau ,  Daniel Chatelain

发明人： Kerry D. Brown ,  David Kevin Pariseau ,  Daniel Chatelain

IPC分类号： G06K5/00

CPC分类号： G06K19/06187 ,  G06K19/06196 ,  G06K19/07 ,  G06K19/0723 ,  G06K19/12 ,  G06Q20/12 ,  G06Q20/341 ,  G06Q20/343 ,  G06Q20/354 ,  G06Q20/3674 ,  G06Q20/4016 ,  G06Q20/403 ,  G07F7/082 ,  G07F7/1008

摘要： A payment card fraud detection business model comprises an internal virtual account number generator and a user display for Card-Not-Present transactions. Card-Present transactions with merchant card readers are enabled by a magnetic array internally associated with the card's magnetic stripe. The internal virtual account number generator is able to reprogram some of the magnetic bits encoded in the magnetic stripe to reflect the latest virtual account number. The internal virtual account number generator produces a sequence of virtual numbers that can be predicted and approved by the issuing bank. Once a number is used, such is discarded and put on an exclusion list or reserved for a specific merchant until the expiration date. A server for the issuing bank logs the merchant locations associated with each use or attempted use, and provides real-time detection of fraudulent attempts to use a virtual account number on the exclusion list. Law enforcement efforts can then be directed in a timely and useful way not only where the fraud occurs but also at its origination.

摘要翻译： 支付卡欺诈检测业务模型包括内部虚拟账号生成器和用于不存在卡的交易的用户显示。 与商家卡读卡器的卡存在交易由与卡的磁条内部相关联的磁阵列启用。 内部虚拟帐号生成器能够重新编程磁条中编码的一些磁头，以反映最新的虚拟帐号。 内部虚拟账号生成器产生可由开证行预测和批准的一系列虚拟号码。 一旦使用数字，这样被丢弃并放在排除列表中，或者为特定商家保留，直到到期日为止。 开证行的服务器记录与每次使用或尝试使用相关联的商家位置，并且提供实时检测在排除列表上使用虚拟帐号的欺诈尝试。 然后，执法工作可以及时和有用的方式进行，不仅在发生欺诈的同时也发生了。

公开(公告)号：US20120278241A1

公开(公告)日：2012-11-01

申请号：US13549454

申请日：2012-07-14

申请人： Kerry D. Brown ,  Peter Landrock ,  Ronald P. Knapp

发明人： Kerry D. Brown ,  Peter Landrock ,  Ronald P. Knapp

IPC分类号： G06Q40/00 ,  H04L9/32

CPC分类号： G07F7/1016 ,  G06F21/32 ,  G06F21/34 ,  G06Q20/3229 ,  G06Q20/3278 ,  G06Q20/35765 ,  G07F7/082 ,  H04L9/3231 ,  H04L63/0853 ,  H04L2209/56 ,  H04L2463/082 ,  H04W12/06

摘要： Data and financial transactions are secured on a mobile electronics device for traceability and non-repudiation. A mobile personal trusted device (PTD) is needed to communicate over a network to a transaction server. Characteristic abstracts of objects carried by users have distinctive features that can be associated with and registered to a particular user and are recorded. An abstract contemporaneously obtained during a secure transaction is sent to a server for use as an authenticator for comparison to an abstract previously obtained and registered to said user. A traceable transaction record is rendered that is highly identifiable and substantially indisputable.

摘要翻译： 数据和金融交易在移动电子设备上得到保护，以实现可追溯性和不可否认性。 移动个人信任设备（PTD）需要通过网络与交易服务器进行通信。 用户携带的对象的特征摘要具有可与特定用户相关联并注册到特定用户的特征，并被记录。 在安全交易期间同时获得的抽象被发送到服务器以用作认证器，以与先前获得并注册到所述用户的抽象进行比较。 呈现可追溯的交易记录，这是高度可识别的，基本上是无可争辩的。

公开(公告)号：US20120171997A1

公开(公告)日：2012-07-05

申请号：US12983186

申请日：2010-12-31

申请人： Ronald P. Knapp ,  Kerry D. Brown ,  Peter Landrock

发明人： Ronald P. Knapp ,  Kerry D. Brown ,  Peter Landrock

IPC分类号： H04M1/66 ,  G06K19/06 ,  G06K9/00

CPC分类号： G06F21/35 ,  G06F21/36 ,  G06F21/43 ,  G06K19/06046

摘要： A security system includes a software application running in a user's smartphone and a separately carried visual key that the user can image at will with the smartphone's camera. An effective visual key would typically comprise digital data encoded in a series of colored cells arranged in a colorgram. Such digital data is treated as a what-you-have security factor, and is concatenated with other security factors so users can authenticate themselves to websites, internet services, and even within the smartphone device itself or its applications. In one aspect, when users authenticate themselves to a server, the server returns a short-term supply of one-time-passwords or account numbers for use in secure access and financial transactions on other systems.

摘要翻译： 安全系统包括在用户智能手机中运行的软件应用程序和用户可随意使用智能手机的相机进行成像的单独携带的视觉键。 一个有效的视觉键通常包括以彩色图表排列的一系列彩色单元格中编码的数字数据。 这样的数字数据被视为您所拥有的安全因素，并且与其他安全因素连接在一起，因此用户可以对网站，互联网服务甚至智能手机设备本身或其应用程序进行身份验证。 在一个方面，当用户向服务器认证自己时，服务器返回短期供应一次性密码或帐号，以用于其他系统上的安全访问和金融交易。

公开(公告)号：US20080201264A1

公开(公告)日：2008-08-21

申请号：US11875860

申请日：2007-10-20

申请人： Kerry D. Brown ,  Daniel Chatelain

发明人： Kerry D. Brown ,  Daniel Chatelain

IPC分类号： G06Q40/00 ,  H04L9/10

CPC分类号： G07F7/1016 ,  G06Q20/3674 ,  G06Q20/385 ,  G06Q20/40

摘要： A payment card financial transaction authenticates for providing overall financial network security computes a number of results from a cryptographic key that match values that were selectively used to personalize individual payment cards with their individual user identification and account access codes. An account access code is later presented daring a financial transaction involving at least one of those individual payment cards. A dynamic portion is included in a merchant's magnetic reading of the payment card. Then authenication can proceed by matching it with values computed from the cryptographic key.

摘要翻译： 用于提供整体金融网络安全性的支付卡金融交易认证计算来自加密密钥的多个结果，其匹配选择性地用于个性化个人支付卡与其各自的用户标识和帐户访问代码的值。 稍后会提交一个帐户访问代码，大胆涉及涉及至少一个这些个人支付卡的金融交易。 动态部分包含在商家对支付卡的磁读取中。 然后，可以通过将其与从加密密钥计算的值进行匹配来进行认证。