-
公开(公告)号:US20210014062A1
公开(公告)日:2021-01-14
申请号:US16507776
申请日:2019-07-10
Applicant: MASTERCARD INTERNATIONAL INCORPORATED
Inventor: Manash Bhattacharjee , Ashfaq Kamal , Rahul Deshpande
Abstract: Systems and methods are provided for managing user identities in networks. One exemplary method includes receiving, at a communication device, an API call request for a credential from a relying party. The communication device includes an application that incorporates an SDK. After receiving the API call request for the credential, the communication device authenticates a user associated with the communication device and identified in the API call request. After authentication of the user the communication device generates, via the SDK, a private-public key pair and stores the private key in memory. The communication device compiles, via the SDK, a credential packet include the public key and identity data associated with the user and transmits the credential packet to the relying party, whereby the relying party is registered to the SDK to request assertions of an identity of the user.
-
公开(公告)号:US20200234527A1
公开(公告)日:2020-07-23
申请号:US16841115
申请日:2020-04-06
Applicant: MASTERCARD INTERNATIONAL INCORPORATED
Inventor: Ashfaq Kamal , Sumeet Bhatt , Robert D. Reany
IPC: G07F7/10 , H04L29/06 , H04L9/32 , H04L9/08 , G06K9/00 , G06Q20/32 , G06Q20/34 , G06Q20/10 , H04W4/80 , G07C9/25
Abstract: Systems and methods are provided for use in provisioning digital identities for users. One exemplary method includes receiving, at a card device, an authentication request and a captured first biometric of a user, from a communication device associated with the user, and comparing the first biometric and a first biometric reference at the card device, in response to the first biometric reference being stored at the card device. The method also includes capturing, at the card device, a second biometric of the user and comparing the second biometric to a second biometric reference stored at the card device. The method further includes compiling a response to the authentication request including a first indicator of the comparison of the first biometric to the first biometric reference and a second indicator of the comparison of the second biometric to the second biometric reference, and transmitting the response to the communication device.
-
公开(公告)号:US20200045046A1
公开(公告)日:2020-02-06
申请号:US16598206
申请日:2019-10-10
Applicant: Mastercard International Incorporated
Inventor: Dawid Nowak , Ashley Waldron , Ashfaq Kamal
IPC: H04L29/06
Abstract: FIDO (“Fast IDentity Online”) authentication processes and systems are described. In an embodiment, a FIDO (“Fast IDentity Online”) authentication process includes a FIDO information systems (IS) computer system receiving a FIDO authentication request for a transaction from a user device, the FIDO authentication request including user data and user device authenticator data, then verifying the user data and user device authenticator data, selecting a FIDO-certified server based on a list of authorized authenticators, business rules and the user device authenticator data, and transmitting the FIDO authentication request to the selected FIDO server. The process also includes the FIDO IS computer system receiving an authentication result from the FIDO-certified server, and transmitting the authentication result to the user device.
-
公开(公告)号:US10469490B2
公开(公告)日:2019-11-05
申请号:US15787976
申请日:2017-10-19
Applicant: MasterCard International Incorporated
Inventor: Dawid Nowak , Ashley Waldron , Ashfaq Kamal
IPC: H04L29/06
Abstract: FIDO (“Fast IDentity Online”) authentication processes and systems are described. In an embodiment, a FIDO information systems (IS) computer system receives a FIDO authentication request for a transaction from a user device, which includes user data and user device authenticator data. The FIDO IS computer system then verifies the user data and user device authenticator data, selects a FIDO-certified server, transmits the FIDO authentication request to the selected FIDO server, and receives a challenge message from the selected FIDO-certified server. The FIDO IS computer system next transmits the challenge message to the user device, receives a FIDO authentication response, transmits the FIDO authentication response to the selected FIDO-certified server, receives an authentication result from the FIDO-certified server, and transmits the authentication result to the user device.
-
公开(公告)号:US20180137272A1
公开(公告)日:2018-05-17
申请号:US15350783
申请日:2016-11-14
Applicant: MasterCard International Incorporated
Inventor: Ashfaq Kamal
IPC: G06F21/53 , H04L9/30 , H04L9/32 , H04L29/06 , H04W12/06 , G06F21/56 , G06F21/62 , G06F9/445 , G06F9/44 , H04W4/00
CPC classification number: G06F21/53 , G06F8/61 , G06F8/71 , G06F21/14 , G06F21/563 , G06F21/6254 , H04L9/0662 , H04L9/0894 , H04L9/30 , H04L9/3231 , H04L9/3247 , H04L63/083 , H04L63/0861 , H04L2209/16 , H04L2209/56 , H04L2209/80 , H04W4/80 , H04W12/06 , H04W88/02
Abstract: Methods and systems for protecting sensitive data on a mobile device. In an embodiment, a mobile device processor of a mobile device downloads, from a provider computer, an application including a white box software development kit (SDK). The mobile device processor utilizes a code protection process of the application to obfuscate sensitive user data, stores the obfuscated user data in a regular memory, runs the white box SDK to monitor and protect sensitive applications which execute when conducting transactions, and receives instructions from a trusted application manager computer to at least one of re-obfuscate the sensitive user data and reset a user root key.
-
Patent Agency Ranking
公开(公告)号:US09704160B2
公开(公告)日:2017-07-11
申请号:US14492337
申请日:2014-09-22
Applicant: MasterCard International Incorporated
Inventor: Ashfaq Kamal , Gregory D. Williamson , Bob Reany
CPC classification number: G06Q20/3829 , G06F21/62 , G06Q20/24 , G06Q20/26 , G06Q20/322 , G06Q20/3227 , G06Q20/40145
Abstract: According to some embodiments, a requesting application executing on a mobile device may request a transport layer security key pair in connection with a payment transaction. Responsive to the request, a trusted execution environment client of the mobile device may route a request to a payment application executing in a secure trusted execution environment of the mobile device. It may then be arranged, within the secure trusted execution environment, to create the transport layer security key pair and provide key pair to the requesting application. Moreover, in some embodiments, the mobile device may transmit payment transaction information to an access control server and receive a request for biometric authentication. It may then be arranged for hardware within the mobile device to biometrically authenticate a user of the mobile device.
-
公开(公告)号:US20170061441A1
公开(公告)日:2017-03-02
申请号:US14839234
申请日:2015-08-28
Applicant: MasterCard International Incorporated
Inventor: Ashfaq Kamal , Bob Reany , Gregory D. Williamson
IPC: G06Q20/40
CPC classification number: G06Q20/40145 , G06Q20/32 , G06Q2220/00
Abstract: A secure on-device cardholder authentication method and system. In an embodiment, a consumer's mobile device uses a mobile application to receive a user authentication request from an entity. A biometric data capture request is then transmitted to a biometric sensor of the mobile device, and a determination made that the mobile application is authorized to use an authenticator API. Next, the mobile device processor prompts the user to provide at least one form of biometric data in accordance with business rules, receives a user authentication response when the user provided biometric data matches locally stored biometric data, generates a positive user authentication response message, and transmits the positive user authentication response message to the entity.
Abstract translation: 安全的设备上的持卡人认证方法和系统。 在一个实施例中,消费者的移动设备使用移动应用从实体接收用户认证请求。 然后将生物特征数据捕获请求发送到移动设备的生物特征传感器,并且确定移动应用被授权使用认证器API。 接下来,移动设备处理器提示用户根据业务规则提供至少一种形式的生物特征数据,当用户提供的生物统计数据与本地存储的生物统计数据匹配时,接收用户认证响应,生成正用户认证响应消息,以及 向实体发送正用户认证响应消息。
-
公开(公告)号:US20150294313A1
公开(公告)日:2015-10-15
申请号:US14684749
申请日:2015-04-13
Applicant: MasterCard International Incorporated
Inventor: Ashfaq Kamal , Gregory D. Williamson , Steve Hubbard , Bob Reany
Abstract: Multi-factor authentication techniques are described that use secure push authentication technology for transactions. An embodiment includes receiving, by an assurance platform operating as an authentication service platform, a user authentication request and transaction data from an access control server (ACS), determining an authentication rule, generating a user validation request message, transmitting the user validation request message to a user mobile device, and receiving user authentication data. The assurance platform then validates the user authentication data, transmits a device authentication request, receives a device authentication response signed with a private key of the user, and authenticates the user based on the device authentication response and private key.
Abstract translation: 描述了使用安全推送认证技术进行交易的多因素认证技术。 一个实施例包括由作为验证服务平台的保证平台从访问控制服务器(ACS)接收用户认证请求和交易数据,确定认证规则,生成用户验证请求消息,发送用户验证请求消息 到用户移动设备,并且接收用户认证数据。 然后,保证平台验证用户认证数据,发送设备认证请求,接收用用户私钥签名的设备认证响应,并根据设备认证响应和私钥认证用户。
-
公开(公告)号:US11916901B2
公开(公告)日:2024-02-27
申请号:US17579219
申请日:2022-01-19
Applicant: MASTERCARD INTERNATIONAL INCORPORATED
Inventor: Sumeet Bhatt , Ashfaq Kamal , Robert D. Reany
CPC classification number: H04L63/0861 , G06F16/955 , G06F21/32 , G06Q20/00 , G06Q20/40145 , H04L63/0853 , H04L63/10 , G06F2221/2117 , G06Q20/1085 , G06Q20/18 , G06Q20/354 , H04L63/062 , H04L63/0876
Abstract: Systems, methods, and non-transitory computer readable media relate to smartcard biometric enrollment. In an embodiment that does not require a user to visit a central location to provide fingerprint images, an activation code corresponding to a unique ID that uniquely identifies a user of a service is generated and sent to the user. In response, at least one finger image is received from a user device. The image is processed to isolate a fingerprint image, which is used to generate a biometric template that is sent to a smartcard manufacturer and used to configure a smartcard for biometric authentication of the user. In another embodiment, a kiosk/ATM provides smartcard biometric enrollment by detecting a smartcard in the smartcard reader, verifying an ID of a user associated with the smartcard, capturing a biometric image from the user, processing the biometric image to generate a biometric template, and storing the biometric template on the smartcard.
-
公开(公告)号:US11887121B2
公开(公告)日:2024-01-30
申请号:US17409530
申请日:2021-08-23
Applicant: MASTERCARD INTERNATIONAL INCORPORATED
Inventor: Ranjita Shankar Iyer , Robert D. Reany , Ashfaq Kamal
CPC classification number: G06Q20/4014 , G06Q20/3827 , G06Q20/401 , G06Q20/4093 , H04L9/0891 , H04L9/321 , H04L9/3231 , H04L9/3239 , H04L9/50
Abstract: Systems and methods are provided for managing digital identities associated with users. One exemplary method includes receiving, at a computing device, an encrypted message from a communication device associated with a user where the message includes a changed attribute for the user. The method also includes generating a first hash of a first digital identity for the user with the changed attribute and generating a second hash of a second digital identity of the user stored in a ledger data structure. And, in response to the first hash not matching the second hash, the method then includes broadcasting a pending status of the first digital identity to a relying party for the second digital identity, and storing a certification of the changed attribute, received from the relying party in response to the pending status, based on verification of the changed attribute by the relying party.
-
-
-
-
-
-
-
-
-
Search Results
64
records
(took 0.023 seconds)
