公开(公告)号：US20160092872A1

公开(公告)日：2016-03-31

申请号：US14869147

申请日：2015-09-29

申请人： Gyan Prakash ,  Ajit Gaddam ,  Selim Aissi ,  Christian Aabye

发明人： Gyan Prakash ,  Ajit Gaddam ,  Selim Aissi ,  Christian Aabye

IPC分类号： G06Q20/38 ,  G06Q20/40

CPC分类号： G06Q20/3829 ,  G06Q20/322 ,  G06Q20/36 ,  G06Q20/3823 ,  G06Q20/3825 ,  G06Q20/401 ,  G06Q2220/00

摘要： Embodiments of the invention provision multiple payment tokens on a communication device. The communication device may be provisioned with multiple limited use keys (LUK), each LUK being associated with a specific type of transaction. When the communication device is used for a transaction, the communication device automatically determines a type of the transaction and selects an appropriate LUK based on the determined transaction type. The selected LUK may be used to create a cryptogram, which can be used to verify the transaction.

摘要翻译： 本发明的实施例在通信设备上提供多个支付令牌。 可以向通信设备提供多个有限使用密钥（LUK），每个LUK与特定类型的事务相关联。 当通信设备用于交易时，通信设备自动地确定事务的类型并且基于所确定的事务类型来选择适当的LUK。 所选LUK可用于创建密码，可用于验证事务。

公开(公告)号：US20150058224A1

公开(公告)日：2015-02-26

申请号：US14466405

申请日：2014-08-22

申请人： Ajit Gaddam ,  Gyan Prakash ,  Selim Aissi

发明人： Ajit Gaddam ,  Gyan Prakash ,  Selim Aissi

IPC分类号： G06Q20/32 ,  G06Q20/40 ,  G06Q20/10

CPC分类号： G06Q20/327 ,  G06Q20/322 ,  G06Q20/40 ,  G07B15/063

摘要： Embodiments use a vehicle as a payment instrument to complete a payment transaction. A vehicle interface device (VID) coupled to the vehicle is used for transmitting payment account information to a merchant access device. The VID may be registered to the specific vehicle identification number (VIN) of the vehicle. Prior to transmitting the payment account information to the merchant access device, the VID may ensure that a mobile communication device is within the vehicle and/or that the VID is coupled to the correct vehicle. For example, the VID may compare the VIN of the vehicle to the VIN that is programmed to the VID. When the colocation of the VID with the mobile communication device and/or the correct vehicle is confirmed, the VID may forward payment account information to the merchant access device.

摘要翻译： 实施例使用车辆作为支付工具来完成支付交易。 耦合到车辆的车辆接口设备（VID）用于将付款帐户信息传送到商家访问设备。 VID可以登记到车辆的特定车辆识别号码（VIN）。 在将付款账户信息发送到商家访问设备之前，VID可以确保移动通信设备在车辆内和/或VID被耦合到正确的车辆。 例如，VID可以将车辆的VIN与编程为VID的VIN进行比较。 当VID与移动通信设备和/或正确的车辆的托管被确认时，VID可以将付款帐户信息转发到商家访问设备。

公开(公告)号：US20140006798A1

公开(公告)日：2014-01-02

申请号：US13538142

申请日：2012-06-29

申请人： Gyan Prakash ,  Jason M. Fung ,  Cris Rhodes ,  Selim Aissi

发明人： Gyan Prakash ,  Jason M. Fung ,  Cris Rhodes ,  Selim Aissi

IPC分类号： G06F12/14

CPC分类号： H04L63/0435 ,  G06F21/6218 ,  G06F21/72 ,  G06F21/78 ,  H04L63/061 ,  H04L2209/127

摘要： A device, system, and method for providing processor-based data protection on a mobile computing device includes accessing data stored in memory with a central processing unit of the mobile computing device and determining that the accessed data is encrypted data based on a data included in one or more control registers of the central processing unit. If the data is determined to be encrypted data, the central processing unit is to decrypt the encrypted data using a cryptographic key stored in the central processing unit. The encrypted data may also be stored on a drive of the mobile computing device. The encryption state of the data stored on the drive is maintained in a drive encryption table, which is used to update a memory page tables and the one or more control registers.

摘要翻译： 一种用于在移动计算设备上提供基于处理器的数据保护的设备，系统和方法包括：利用所述移动计算设备的中央处理单元访问存储在存储器中的数据，并且基于所包含的数据确定所访问的数据是加密数据 中央处理单元的一个或多个控制寄存器。 如果数据被确定为加密数据，则中央处理单元使用存储在中央处理单元中的加密密钥来解密加密数据。 加密数据也可以存储在移动计算设备的驱动器上。 存储在驱动器上的数据的加密状态保存在用于更新存储器页表和一个或多个控制寄存器的驱动器加密表中。

公开(公告)号：US08566233B2

公开(公告)日：2013-10-22

申请号：US12846622

申请日：2010-07-29

申请人： Gyan Prakash ,  Saurabh Dadu ,  Selim Aissi ,  Ramesh Pendakur ,  Paritosh Saxena

发明人： Gyan Prakash ,  Saurabh Dadu ,  Selim Aissi ,  Ramesh Pendakur ,  Paritosh Saxena

IPC分类号： G06Q40/00 ,  G07D11/00 ,  G07F19/00

CPC分类号： G06Q40/00 ,  G06Q20/12 ,  G06Q20/3224 ,  G06Q20/40 ,  G06Q20/4016 ,  G06Q20/405 ,  G07D11/00 ,  G07F19/00

摘要： A device, system, and method for location-based payment authorization includes receiving a payment request for an order submitted from a mobile computing device via an e-commerce vendor website. A location of the mobile computing device is determined based on location data. In one embodiment, the payment request is authorized or denied based on whether the e-commerce vendor website has been authorized for the determined location of the mobile computing device.

摘要翻译： 用于基于位置的支付授权的设备，系统和方法包括从电子商务供应商网站接收从移动计算设备提交的订单的支付请求。 基于位置数据确定移动计算设备的位置。 在一个实施例中，基于电子商务供应商网站是否已经为移动计算设备的确定位置授权，支付请求被授权或拒绝。

公开(公告)号：US20130007873A1

公开(公告)日：2013-01-03

申请号：US13175833

申请日：2011-07-02

申请人： Gyan Prakash ,  Saurabh Dadu ,  Selim Aissi

发明人： Gyan Prakash ,  Saurabh Dadu ,  Selim Aissi

IPC分类号： G06F21/00

CPC分类号： G06F21/31 ,  G06F1/26 ,  G06F21/35 ,  G06F21/81 ,  G06F2221/2131

摘要： Embodiments of systems and methods for power-on user authentication are disclosed. A method for power-on user authentication may comprise receiving an authentication input with a security controller of a computing device prior to supplying power to a primary processor of the computing device, comparing the authentication input to an authentication code using the security controller, and supplying power to the primary processor in response to the authentication input matching the authentication code.

摘要翻译： 公开了用于开机用户认证的系统和方法的实施例。 用于上电用户认证的方法可以包括在向计算设备的主处理器供电之前接收与计算设备的安全控制器的认证输入，使用安全控制器将认证输入与认证码进行比较，以及提供 响应于与认证码相匹配的认证输入，向主处理器供电。

公开(公告)号：US20110129077A1

公开(公告)日：2011-06-02

申请号：US12627839

申请日：2009-11-30

申请人： Gyan Prakash ,  Selim Aissi ,  Saurabh Dadu

发明人： Gyan Prakash ,  Selim Aissi ,  Saurabh Dadu

IPC分类号： H04M15/06 ,  H04M1/56

CPC分类号： H04M3/42042 ,  H04L51/12 ,  H04L51/20 ,  H04L51/32 ,  H04L67/306 ,  H04M1/575 ,  H04M2203/60 ,  H04M2203/655 ,  H04M2242/30 ,  H04W4/025 ,  H04W12/06

摘要： Methods and systems to display, in real time, detailed attribute information regarding a calling party. This information may be presented to a user in conjunction with an incoming voice-call or message on the user's smartphone/mobile internet device (MID) or other mobile device. Such information can help him/her in real-time to decide whether to respond to the communication. Attribute information is collected at a caller attributes processing server and communicated to a receiver device of the called party.

摘要翻译： 实时显示关于主叫方的详细属性信息的方法和系统。 该信息可以结合用户的智能电话/移动因特网设备（MID）或其他移动设备上的传入语音呼叫或消息呈现给用户。 这样的信息可以帮助他/她实时决定是否回应通信。 在呼叫者属性处理服务器处收集属性信息，并将其传送给被叫方的接收装置。

公开(公告)号：US20090248827A1

公开(公告)日：2009-10-01

申请号：US12059821

申请日：2008-03-31

申请人： Mousumi M. Hazra ,  Gyan Prakash ,  Carol A. Bell ,  Selim Aissi

发明人： Mousumi M. Hazra ,  Gyan Prakash ,  Carol A. Bell ,  Selim Aissi

IPC分类号： G06F15/16

CPC分类号： H04L67/24 ,  G06F21/305 ,  G06F21/88 ,  G06F2221/2101 ,  H04L63/1441 ,  H04L67/2819

摘要： A theft-deterrence process enabling a theft-deterrence server, remotely disposed from the processor based device, to deter or thwart theft of the processor based device, is disclosed herein. In various embodiments, the theft-deterrence process employs connection and network independent communication for at least one direction between the theft deterrence server and the processor based device.

摘要翻译： 本文公开了一种使得基于处理器的设备远程设置的防盗服务器能够阻止或阻止基于处理器的设备的盗窃威慑过程。 在各种实施例中，盗窃威慑过程对于盗窃威慑服务器和基于处理器的设备之间的至少一个方向采用连接和网络独立通信。

公开(公告)号：US20190188394A1

公开(公告)日：2019-06-20

申请号：US16269829

申请日：2019-02-07

申请人： Selim Aissi ,  Taeho Kgil ,  Gyan Prakash

发明人： Selim Aissi ,  Taeho Kgil ,  Gyan Prakash

IPC分类号： G06F21/60 ,  G06F21/62 ,  G06F21/53 ,  G06F21/57

CPC分类号： G06F21/604 ,  G06F21/53 ,  G06F21/57 ,  G06F21/6218 ,  G06F2221/2113

摘要： The presenting invention relates to techniques for implementing a secure operating environment for the execution of applications on a computing devices (e.g., a mobile phone). In The secure operating environment may provide a trusted environment with dedicated computing resources to manage security and integrity of processing and data for the applications. The applications may be provided with a variety of security services and/or functions to meet different levels of security demanded by an application. The secure operating environment may include a security engine that enumerates and/or determines the security capabilities of the secure operating environment and the computing device, e.g., the hardware, the software, and/or the firmware of the computing device. The security engine may provide security services desired by applications by choosing from the security capabilities that are supported by the secure operating environment and the computing device.

公开(公告)号：US20180107828A1

公开(公告)日：2018-04-19

申请号：US15828042

申请日：2017-11-30

申请人： Selim Aissi ,  Taeho Kgil ,  Gyan Prakash

发明人： Selim Aissi ,  Taeho Kgil ,  Gyan Prakash

IPC分类号： G06F21/60 ,  G06F21/62 ,  G06F21/53 ,  G06F21/57

CPC分类号： G06F21/604 ,  G06F21/53 ,  G06F21/57 ,  G06F21/6218 ,  G06F2221/2113

摘要： The presenting invention relates to techniques for implementing a secure operating environment for the execution of applications on a computing devices (e.g., a mobile phone). In The secure operating environment may provide a trusted environment with dedicated computing resources to manage security and integrity of processing and data for the applications. The applications may be provided with a variety of security services and/or functions to meet different levels of security demanded by an application. The secure operating environment may include a security engine that enumerates and/or determines the security capabilities of the secure operating environment and the computing device, e.g., the hardware, the software, and/or the firmware of the computing device. The security engine may provide security services desired by applications by choosing from the security capabilities that are supported by the secure operating environment and the computing device.

公开(公告)号：US20170063975A1

公开(公告)日：2017-03-02

申请号：US14841202

申请日：2015-08-31

申请人： Gyan Prakash ,  Selim Aissi ,  Rasta Mansour ,  Ajit Gaddam

发明人： Gyan Prakash ,  Selim Aissi ,  Rasta Mansour ,  Ajit Gaddam

IPC分类号： H04L29/08 ,  G06F9/48 ,  H04L29/06

CPC分类号： H04L67/1002 ,  G06F21/44 ,  G06F21/629 ,  G06F21/73 ,  H04L67/34 ,  H04L67/42

摘要： Techniques for securely binding a software application to a communication device may include sending a set of device identifiers associated with the computing device to a server, receiving a server-generated dynamic device identifier that is generated based on the set of device identifiers; and storing the server-generated dynamic device identifier during initialization of the application. During runtime execution of the application, the application may receive a request to execute an application specific task. In response to receiving the request, the application may generate a runtime dynamic device identifier, determine whether the runtime dynamic device identifier matches the server-generated dynamic device identifier, execute the application specific task when the runtime dynamic device identifier matches the server-generated dynamic device identifier; and prevent the application specific task from being executed when the runtime dynamic device identifier does not match the server-generated dynamic device identifier.

摘要翻译： 用于将软件应用程序安全地绑定到通信设备的技术可以包括向服务器发送与计算设备相关联的一组设备标识符，接收基于该设备标识符集合生成的服务器生成的动态设备标识符; 以及在应用的初始化期间存储服务器生成的动态设备标识符。 在运行时执行应用程序期间，应用程序可以接收执行特定于应用程序的任务的请求。 响应于接收到请求，应用可以生成运行时动态设备标识符，确定运行时动态设备标识符是否与服务器生成的动态设备标识符匹配，当运行时动态设备标识符与服务器生成的动态 设备标识符 并且当运行时动态设备标识符与服务器生成的动态设备标识符不匹配时，防止应用程序特定任务被执行。