公开(公告)号：US10476862B2

公开(公告)日：2019-11-12

申请号：US15476526

申请日：2017-03-31

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Ashfaq Kamal

IPC: H04L29/06 ,  G06F21/35 ,  G06F21/64 ,  G06Q10/10 ,  G06Q20/02 ,  G06Q20/38 ,  G06Q20/40 ,  G06Q40/02 ,  G06Q50/26 ,  G06F21/33 ,  H04L9/32

Abstract: Systems and methods are provided for verifying identities of users. One exemplary method includes generating a unique identifier (ID) for a user, generating a public/private key pair associated with the unique ID for the user, and receiving at least two images. The images include a first image associated with a physical document indicative of an identity of the user and a second image comprising an image of at least part of the user. The exemplary method further includes validating an integrity of the first image, converting at least the first image to one-way hashed data, when the integrity of the first image is valid, and transmitting the hashed data signed with the private key, the unique ID and the public key to an identification provider, whereby a digital identity record for the user is stored in a ledger data structure.

公开(公告)号：US20190124081A1

公开(公告)日：2019-04-25

申请号：US15787976

申请日：2017-10-19

Applicant: MasterCard International Incorporated

Inventor： Dawid Nowak ,  Ashley Waldron ,  Ashfaq Kamal

IPC: H04L29/06

Abstract: FIDO (“Fast IDentity Online”) authentication processes and systems are described. In an embodiment, a FIDO information systems (IS) computer system receives a FIDO authentication request for a transaction from a user device, which includes user data and user device authenticator data. The FIDO IS computer system then verifies the user data and user device authenticator data, selects a FIDO-certified server, transmits the FIDO authentication request to the selected FIDO server, and receives a challenge message from the selected FIDO-certified server. The FIDO IS computer system next transmits the challenge message to the user device, receives a FIDO authentication response, transmits the FIDO authentication response to the selected FIDO-certified server, receives an authentication result from the FIDO-certified server, and transmits the authentication result to the user device.

公开(公告)号：US20180288033A1

公开(公告)日：2018-10-04

申请号：US15476526

申请日：2017-03-31

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Ashfaq Kamal

IPC: H04L29/06

Abstract: Systems and methods are provided for verifying identities of users. One exemplary method includes generating a unique identifier (ID) for a user, generating a public/private key pair associated with the unique ID for the user, and receiving at least two images. The images include a first image associated with a physical document indicative of an identity of the user and a second image comprising an image of at least part of the user. The exemplary method further includes validating an integrity of the first image, converting at least the first image to one-way hashed data, when the integrity of the first image is valid, and transmitting the hashed data signed with the private key, the unique ID and the public key to an identification provider, whereby a digital identity record for the user is stored in a ledger data structure.

公开(公告)号：US20180167387A1

公开(公告)日：2018-06-14

申请号：US15583174

申请日：2017-05-01

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Sumeet Bhatt ,  Ashfaq Kamal

IPC: H04L29/06 ,  G06F17/30

CPC classification number: H04L63/0861 ,  G06F16/955 ,  G06F21/32 ,  G06F2221/2117 ,  G06Q20/00 ,  G06Q20/1085 ,  G06Q20/18 ,  G06Q20/354 ,  G06Q20/40145 ,  H04L63/062 ,  H04L63/0853 ,  H04L63/0876 ,  H04L63/10

Abstract: Systems, methods, and non-transitory computer readable medium use external databases for biometric authentication. A server receives a request for authentication of a user from a requestor. A notification is sent to a user device associated with the user from the server. A biometric image is received within the server in response to the notification. A biometric ID of the user is sent from the server to an external database for identifying a biometric template stored with the external database. An authentication result indicative of a match between the biometric image and the biometric template is determined and the authentication result is sent to the requestor. The external databases are owned by a third party, and the biometric template of the user was previously generated and stored within the external database in association with the biometric ID.

公开(公告)号：US11824642B2

公开(公告)日：2023-11-21

申请号：US17588972

申请日：2022-01-31

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Ashfaq Kamal ,  Sumeet Bhatt ,  Robert D. Reany

IPC: H04L29/06 ,  H04L9/40 ,  G06Q20/20

CPC classification number: H04L63/0861 ,  G06Q20/20 ,  H04L63/0823 ,  H04L63/0853

Abstract: Systems and methods are provided for use in provisioning a biometric image template to a card device. One example portable communication device includes a processor, a wireless communication interface coupled to the processor, and an input device coupled to the processor. The processor is configured to transmit to a card device, via the wireless communication interface, a certificate associated with the portable communication device, whereby the portable communication device is authenticated by the card device, receive from the card device, via the wireless communication interface, a certificate associated with the card device, and authenticate the card device based on the received certificate. After the card device is authenticated, the processor is configured to capture, via the at least one input device, a biometric image of the user and provision, via the wireless communication interface, the captured biometric image to the card device.

公开(公告)号：US11652638B2

公开(公告)日：2023-05-16

申请号：US16507776

申请日：2019-07-10

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Manash Bhattacharjee ,  Ashfaq Kamal ,  Rahul Deshpande

IPC: H04L9/32 ,  H04L9/40 ,  H04L9/30 ,  G06F9/54

CPC classification number: H04L9/3231 ,  G06F9/54 ,  H04L9/3073 ,  H04L63/0861

Abstract: Systems and methods are provided for managing user identities in networks. One exemplary method includes receiving, at a communication device, an API call request for a credential from a relying party. The communication device includes an application that incorporates an SDK. After receiving the API call request for the credential, the communication device authenticates a user associated with the communication device and identified in the API call request. After authentication of the user the communication device generates, via the SDK, a private-public key pair and stores the private key in memory. The communication device compiles, via the SDK, a credential packet include the public key and identity data associated with the user and transmits the credential packet to the relying party, whereby the relying party is registered to the SDK to request assertions of an identity of the user.

公开(公告)号：US11588813B2

公开(公告)日：2023-02-21

申请号：US15583174

申请日：2017-05-01

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Sumeet Bhatt ,  Ashfaq Kamal ,  Robert D. Reany

IPC: H04L9/40 ,  G06F16/955 ,  G06Q20/00 ,  G06F21/32 ,  G06Q20/40 ,  G06Q20/10 ,  G06Q20/18 ,  G06Q20/34

Abstract: Systems, methods, and non-transitory computer readable medium use external databases for biometric authentication. A server receives a request for authentication of a user from a requestor. A notification is sent to a user device associated with the user from the server. A biometric image is received within the server in response to the notification. A biometric ID of the user is sent from the server to an external database for identifying a biometric template stored with the external database. An authentication result indicative of a match between the biometric image and the biometric template is determined and the authentication result is sent to the requestor. The external databases are owned by a third party, and the biometric template of the user was previously generated and stored within the external database in association with the biometric ID.

公开(公告)号：US20220158994A1

公开(公告)日：2022-05-19

申请号：US17588972

申请日：2022-01-31

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Ashfaq Kamal ,  Sumeet Bhatt ,  Robert D. Reany

IPC: H04L9/40 ,  G06Q20/20

Abstract: Systems and methods are provided for use in provisioning a biometric image template to a card device. One example portable communication device includes a processor, a wireless communication interface coupled to the processor, and an input device coupled to the processor. The processor is configured to transmit to a card device, via the wireless communication interface, a certificate associated with the portable communication device, whereby the portable communication device is authenticated by the card device, receive from the card device, via the wireless communication interface, a certificate associated with the card device, and authenticate the card device based on the received certificate. After the card device is authenticated, the processor is configured to capture, via the at least one input device, a biometric image of the user and provision, via the wireless communication interface, the captured biometric image to the card device.

公开(公告)号：US11036870B2

公开(公告)日：2021-06-15

申请号：US15242825

申请日：2016-08-22

Applicant: MasterCard International Incorporated

Inventor： Ashfaq Kamal

IPC: G06F21/60 ,  G06F21/32 ,  G06F9/54 ,  G06F21/00

Abstract: A method for device based biometric authentication includes: storing, in a computing device, an encrypted biometric template; storing, in a first memory of the computing device, at least a first application program; storing, in a second memory of the computing device, at least a second application program and an encryption key, wherein the second memory is a trusted execution environment; receiving, by the second application program of the computing device, a validation request submitted by the first application program; receiving, by an input device of the computing device, biometric data; decrypting, by the second application program of the computing device, the encrypted biometric template using the encryption key; validating, by the second application program of the computing device, the received biometric data using the decrypted biometric template; and transmitting, by the second application program of the computing device, a result of the validation to the first application program.

公开(公告)号：US20210049588A1

公开(公告)日：2021-02-18

申请号：US16991387

申请日：2020-08-12

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Ashfaq Kamal ,  Charles Walton ,  Liang Tian

IPC: G06Q20/36 ,  H04L9/32 ,  G06Q30/00 ,  G06Q20/40 ,  G06Q20/38

Abstract: Systems and methods are provided for use in tokenizing credentials for users. One exemplary computer-implemented method includes receiving a tokenization request including a first biometric template for a user, deriving a zero-knowledge proof (ZKP) parameter based on the first biometric template and an identifier associated with the user, and storing the ZKP parameter in a ledger data structure. The method then includes receiving an authentication request for a transaction by the user at a merchant, where the authentication request includes the identifier, generating a subsequent ZKP based on a second biometric template associated with the user and the identifier included in the authentication request, checking the subsequent ZKP against the ZKP parameter stored in the ledger data structure, and transmitting a verified identifier for the user to an authorization network when the check of the subsequent ZKP is successful.