公开(公告)号：US20240144232A1

公开(公告)日：2024-05-02

申请号：US17976432

申请日：2022-10-28

Applicant: Stripe, Inc.

Inventor： Maggie White ,  Kelly Moriarty ,  Ross Favero ,  Nicole DeBickes

IPC: G06Q20/32 ,  G06Q20/38 ,  G06Q20/40 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06Q20/327 ,  G06Q20/326 ,  G06Q20/3823 ,  G06Q20/389 ,  G06Q20/401 ,  H04L9/0825 ,  H04L9/3247 ,  G06Q2220/00

Abstract: A method and apparatus validating integrity of an environment of a terminal device remote to a commerce platform system are described. The method can include receiving, from the terminal device, a device provisioning request that comprises data indicative of an instance of an application installed on the terminal device, a first public key, a second public key, and a hardware attestation key, the first public key, the second public key, and the hardware attestation key generated within a trusted execution environment of the terminal device, and the first public key and the second public key having a corresponding first private key and second private key stored within the trusted execution environment. The method may also include verifying the first public key and the second public key as being generated by the trusted execution environment of the terminal device using the hardware attestation key, the hardware attestation key generated at least in part using the first public key, the second public key, and the data indicative of the instance of the application.

公开(公告)号：US20240121230A1

公开(公告)日：2024-04-11

申请号：US18544900

申请日：2023-12-19

Applicant: Stripe, Inc.

Inventor： Matthew Basta

IPC: H04L9/40 ,  G06F16/23 ,  G06F21/33 ,  G06F40/174 ,  G06Q20/40 ,  G06Q30/0601 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L63/08 ,  G06F16/2379 ,  G06F21/33 ,  G06F40/174 ,  G06Q20/40 ,  G06Q30/0601 ,  H04L9/088 ,  H04L9/3263 ,  H04L63/04 ,  H04L63/062 ,  H04L63/068 ,  H04L63/102 ,  G06F3/04842

Abstract: A method and apparatus for generating and using secure sharded onboarding user interfaces are described. The method may include determining, based on account type of a merchant account being onboarded for a merchant by a first user, that information for a user type associated with a second user associated with the merchant is to be collected to satisfy minimum merchant account compliance requirements. The method may also include allocating a person object in an accounts data store maintained by the commerce platform system, the person object associated in the accounts data store with the merchant account. Furthermore, the method can include generating a secure link and transmitting the secure link to the second user, the secure link resolving at the commerce platform system and comprising a unique identifier that is associated with the person object. In response to receiving selection of the secure link by the second user, the method includes generating a secure application programming interface (API) based graphical user interface to collect account information for the person object associated with the unique identifier.

公开(公告)号：US11907983B2

公开(公告)日：2024-02-20

申请号：US17686971

申请日：2022-03-04

Applicant: Stripe, Inc.

Inventor： Joseph Patrick Kirwin

IPC: G06Q30/00 ,  G06Q30/0601

CPC classification number: G06Q30/0609 ,  G06Q2220/00

Abstract: A method and apparatus for a commerce platform providing proof of application ownership of a network distributable application are described. The method may include receiving a request to approve an application developed by a merchant system, wherein the application includes an application programming interface (API) component, a software development kit (SDK) component, or a combination thereof provided by the commerce platform to the merchant system. The method may also include generating a unique identifier (ID) for the application to be included as metadata within the application. Furthermore, the method may include obtaining, from an application information system, data describing the application, and extracting an ID from metadata in the data obtained by the application information system. Then, the method may include that in response to determining that the ID extracted from the metadata matches the unique ID, associating the merchant with the application in a merchant account at the commerce platform and approving the application for interacting with the commerce platform.

公开(公告)号：US20240054492A1

公开(公告)日：2024-02-15

申请号：US18370358

申请日：2023-09-19

Applicant: STRIPE, INC.

Inventor： Steven V. Bacastow

IPC: G06Q20/40 ,  G06Q20/26 ,  G06Q20/02 ,  G06Q20/34 ,  G06Q20/32 ,  G06Q20/42

CPC classification number: G06Q20/4012 ,  G06Q20/405 ,  G06Q20/26 ,  G06Q20/027 ,  G06Q20/356 ,  G06Q20/40 ,  G06Q20/322 ,  G06Q20/425

Abstract: This invention relates to systems and methods for authenticating transactions using a mobile device based primarily on the introduction of a layer of middleware and wherein the Payment Networks, Merchants, Issuing Banks, Credit Reporting Bureaus, Insurance Companies, Healthcare Providers may customize the implementation of the services based on individual strategy and consumer preferences.

公开(公告)号：US11875416B2

公开(公告)日：2024-01-16

申请号：US18090250

申请日：2022-12-28

Applicant: Stripe, Inc.

Inventor： Jonah Cohen

IPC: G06Q40/00 ,  G06F16/23 ,  G06Q10/10 ,  G06Q40/12

CPC classification number: G06Q40/12 ,  G06F16/2379 ,  G06Q10/10

Abstract: A method and apparatus for generating and using immutable records generated from transaction records maintained at a cloud storage system for transaction ledger generation are described. The method may include accessing transaction records in a transaction record data store maintained by a cloud services provider system, where each transaction record generated by the commerce platform in response to the commerce platform processing a transaction. The method further includes accessing a plurality of revenue records, each having a unique key. The method may also include generating a plurality of candidate ledger entries, each candidate ledger entry comprises at least a subset of the plurality of data fields from the revenue record data object, and determining whether a revenue record matches a candidate ledger entry based on a comparison of the unique key. Furthermore, when the comparison results in a match, a final ledger entry is generated from the candidate ledger entry for a period of time in which the revenue record was generated.

公开(公告)号：US11868996B1

公开(公告)日：2024-01-09

申请号：US16165859

申请日：2018-10-19

Applicant: Stripe, Inc.

Inventor： Patrick Collison ,  John B. Collison ,  Greg D. Brockman ,  Saikat Chakrabarti ,  Ross A. Boucher

IPC: G06Q20/10 ,  G06Q20/38 ,  G06Q20/40

CPC classification number: G06Q20/3829 ,  G06Q20/102 ,  G06Q20/385 ,  G06Q20/4097

Abstract: A transaction is conducted between a merchant site and a customer's electronic device using a payment processor. The merchant site is associated with a client-side application and a server-side application. The client-side application executes on the customer's electronic device. The client-side application electronically sends payment information retrieved from the customer's electronic device to the payment processor. The client-side application does not send the payment information to the server-side application. The payment processor creates a token from the payment information sent by the client-side application. The token functions as a proxy for the payment information. The payment processor electronically sends the token to the client-side application. The client-side application electronically sends the token to the server-side application for use by the server-side application in conducting the transaction. The payment information can thus be used by the server-side application via the token without the server-side application being exposed to the payment information.

公开(公告)号：US11863564B1

公开(公告)日：2024-01-02

申请号：US16745002

申请日：2020-01-16

Applicant: Stripe, Inc.

Inventor： Yoav Podemsky

IPC: H04L9/40 ,  G06Q20/38 ,  G06Q20/40

CPC classification number: H04L63/105 ,  G06Q20/3823 ,  G06Q20/3829 ,  G06Q20/401 ,  H04L63/06 ,  G06Q2220/00 ,  H04L2463/082

Abstract: A method and apparatus for performing multi-factor authentication of a merchant system by a commerce platform are described. The method may include authenticating the commerce platform to a cloud services provider, the cloud services provider providing a private communications network for use by the commerce platform and the merchant system. The method may also include receiving, by the commerce platform, an authentication request from the merchant system, wherein the request received from the merchant system originates from the private communications network provided by the cloud services provider, and wherein the authentication request uses an encryption key. Furthermore, the method may include determining, by the commerce platform, validity of the encryption key used in the authentication request for the merchant system, and in response to origination of the authentication request occurring from within the private communications network and determining validity of the API key, authenticating the merchant system as an authorized system for performing an operation requested by the authentication request using the commerce platform.

公开(公告)号：US20230409315A1

公开(公告)日：2023-12-21

申请号：US17750043

申请日：2022-05-20

Applicant: Stripe, Inc.

Inventor： Paul Alfred Carleton, JR. ,  Andrew Joseph Dunham ,  Serhii Rud ,  Adam Bradley Stubblefield ,  Caitriona Kelly

IPC: G06F8/71 ,  G06F8/40

CPC classification number: G06F8/71 ,  G06F8/40

Abstract: Methods and apparatuses for using secrets and a secrets framework are described. In some embodiments, the method comprises executing, by a computing system, application code that includes a reference to a secret value inaccessible to the application code, the reference being in the form of a handle that contains the secret value, including passing the handle to injector code; and executing the injector code, including accepting the handle; obtaining the secret value from the handle; and using the secret value in an operation on behalf of the application code.

公开(公告)号：US20230385128A1

公开(公告)日：2023-11-30

申请号：US17829089

申请日：2022-05-31

Applicant: STRIPE, INC.

Inventor： Tushar DHOOT ,  Dusty Regan BURWELL ,  David VASILEVSKY

IPC: G06F9/52

CPC classification number: G06F9/526

Abstract: A method and system for performing lock handling across multiple servers. In one embodiment, the method comprises receiving, by a second server, a first request of a service from a first server, the first request including first metadata which includes lock information of a lock held by the first server. The method comprises extracting the lock information from the first metadata and storing the lock information in a locking table without the lock being transferred to the second server. The method further comprises executing application code to perform the service, including, while executing the application code, determining whether the lock exists based on the lock information in the locking table, and passing a lock check in response to determining that the lock exists.

公开(公告)号：US11810076B1

公开(公告)日：2023-11-07

申请号：US17832251

申请日：2022-06-03

Applicant: Stripe, Inc.

Inventor： Timothy Thairu ,  Lachlan Groom

IPC: G06Q20/40 ,  G06Q20/02

CPC classification number: G06Q20/027 ,  G06Q20/4097

Abstract: A payment processing method and apparatus for using an intermediary platform are described. In one embodiment, the method comprises electronically receiving approval from an intermediary platform associated with a payment processor user of a first authorization request for a first transaction; electronically receiving for approval, at the payment processing system, a second authorization request for a second transaction from a merchant using a payment instrument used by an agent of the service provider; and settling transactions associated with the service provider, including clearing a batch of records corresponding to the service provider on a predetermined time basis by comparing, with a tracking engine of the payment processing system, transaction tracking information associated with authorization requests to net out individual transactions.