公开(公告)号：US20140209672A1

公开(公告)日：2014-07-31

申请号：US14227433

申请日：2014-03-27

Applicant: MasterCard International Incorporated

Inventor： Patrick Mestré ,  Cristian Radu ,  Patrik Smets ,  Simon Phillips ,  Ronald D. Carter

IPC: G06Q20/16

CPC classification number: G06Q20/3278 ,  G06Q20/16 ,  G06Q20/20 ,  G06Q20/204 ,  G06Q20/28 ,  G06Q20/32 ,  G06Q20/3433 ,  G06Q20/349 ,  G06Q20/381 ,  G06Q20/40 ,  G06Q20/4012 ,  G06Q20/4016 ,  G06Q20/409 ,  G07F7/1025

Abstract: A payment-enabled mobile device receives, during a first tap of the mobile device on a proximity reader component of a point of sale (POS) terminal, first transaction context data for a current transaction, and receives during a second tap of the mobile device on the proximity reader component, second transaction context data for the current transaction. When the mobile device determines that the second tap is for the same transaction as the first tap, and that one of a customer verification method (CVM) status or a user acknowledgment status flag has been set, then it transmits a payment card account number to the POS terminal to consummate the transaction.

Abstract translation: 支付支付的移动设备在移动设备的第一次点击在销售点（POS）终端的接近读取器组件上接收用于当前事务的第一交易上下文数据，并且在移动设备的第二抽头期间接收 在接近读取器组件上，用于当前事务的第二事务上下文数据。 当移动设备确定第二分接头是与第一分接头相同的交易，并且客户验证方法（CVM）状态或用户确认状态标志中的一个被设置时，它将支付卡帐号发送到 POS终端完成交易。

公开(公告)号：US20130262317A1

公开(公告)日：2013-10-03

申请号：US13827042

申请日：2013-03-14

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Susan Thompson ,  Patrik Smets ,  David Anthony Roberts ,  Michael Christopher Ward

IPC: G06Q20/38

CPC classification number: G06Q20/3823 ,  G06Q20/322 ,  G06Q20/385 ,  G06Q20/4012 ,  G06Q20/405

Abstract: A method for generating and provisioning payment credentials to a mobile device lacking a secure element includes: generating a card profile associated with a payment account, wherein the card profile includes at least payment credentials corresponding to the associated payment account and a profile identifier; provisioning, to a mobile device lacking a secure element, the generated card profile; receiving, from the mobile device, a key request, wherein the key request includes at least a mobile identification number (PIN) and the profile identifier; using the mobile PIN; generating a single use key, wherein the single use key includes at least the profile identifier, an application transaction counter, and a generating key for use in generating a payment cryptogram valid for a single financial transaction; and transmitting the generated single use key to the mobile device.

Abstract translation: 一种用于向缺少安全元件的移动设备生成和提供支付凭证的方法包括：生成与支付账户相关联的卡配置文件，其中所述卡配置文件至少包括对应于相关支付帐户的支付凭证和配置文件标识符; 提供给缺少安全元件的移动设备，生成的卡简档; 从所述移动设备接收密钥请求，其中所述密钥请求至少包括移动标识号（PIN）和所述简档标识符; 使用移动PIN; 生成单个使用密钥，其中所述单一使用密钥至少包括所述简档标识符，应用交易计数器和用于生成对单个金融交易有效的支付密码的生成密钥; 以及将生成的单次使用密钥发送到移动设备。

公开(公告)号：US12093954B2

公开(公告)日：2024-09-17

申请号：US17719675

申请日：2022-04-13

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Patrik Smets ,  Axel Emile Jean Charles Cateland

IPC: G06Q20/40 ,  G06Q20/38 ,  H04L9/40 ,  H04W12/041

CPC classification number: G06Q20/4012 ,  G06Q20/3821 ,  G06Q20/3829 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/062 ,  H04W12/041 ,  H04L63/083 ,  H04L2463/102

Abstract: A method for generating payment credentials in a payment transaction includes storing, in a memory, at least a card master key associated with a transaction account. The method also includes generating, by a processing device, a first session key based on at least the stored card master key; generating, by the processing device, a second session key; generating, by the processing device, a first application cryptogram based on at least the first session key; generating, by the processing device, a second application cryptogram based on at least the second session key; and transmitting, by a transmitting device, at least the first application cryptogram and second application cryptogram for use in a payment transaction.

公开(公告)号：US20240005328A1

公开(公告)日：2024-01-04

申请号：US18208864

申请日：2023-06-12

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Patrik Smets ,  Florent Hay ,  Eddy Van De Velde

IPC: G06Q20/40

CPC classification number: G06Q20/40145 ,  G06Q20/4016

Abstract: Systems and methods are provided for managing disputes in biometric-enabled network interactions. One example computer-implemented method includes receiving, at a biometric identity switch (BIS), a dispute notification for a biometric-enabled network interaction involving an account of a user, and retrieving biometric data specific to the biometric-enabled network interaction. The method also includes determining, by the BIS) whether the biometric data is representative of the user and, in response to the biometric data not being representative of the user, requesting, from a biometric service provider, a biometric identifier for an additional user, based on the biometric data. The method then includes receiving, by the BIS, the biometric identifier from the biometric service provider, identifying an interaction history of the additional user, based on the biometric identifier, and determining whether to assign the biometric-enabled network interaction to the additional user, based on the interaction history of the additional user.

公开(公告)号：US11842340B2

公开(公告)日：2023-12-12

申请号：US17592074

申请日：2022-02-03

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Patrik Smets

IPC: G06Q20/00 ,  G06Q20/38 ,  H04L9/40

CPC classification number: G06Q20/3829 ,  G06Q20/00 ,  G06Q20/382 ,  G06Q20/3823 ,  H04L63/083 ,  H04L63/062 ,  H04L2463/061

Abstract: A method for generating cryptograms in a webservice environment includes: receiving, in a first environment of a computing system, a credential request transmitted by an external computing device using a secure communication protocol, the credential request including a transaction identifier and account identifier; transmitting, by the first environment, a data request to a second environment of the computing system, the data request including the account identifier; receiving, by the first environment, an account profile and session key from the second environment; transmitting, by the first environment, a cryptogram request to a third environment of the computing system, the cryptogram request including the account profile and session key; receiving, by the first environment, a cryptogram from the third environment generated using the account profile and session key; and transmitting, by the first environment, the cryptogram and transaction identifier to the external computing device via the secure communication protocol.

公开(公告)号：US11379849B2

公开(公告)日：2022-07-05

申请号：US16811727

申请日：2020-03-06

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Patrick Mestre ,  Patrik Smets ,  Eddy Van De Velde ,  Duncan Garrett

IPC: G06Q20/40 ,  G06Q20/34 ,  G06Q20/38 ,  H04L9/06 ,  H04L9/08

Abstract: A method of performing a contactless transaction between a payment device and a terminal is described. The method comprises establishing a data connection between the payment device and the terminal and then establishing if the payment device and the terminal both support an enhanced security architecture. If they do not, they will then perform the contactless transaction according to a basic transaction flow using a first cryptographic system. If they do, they will perform the contactless transaction according to an enhanced transaction flow using a second cryptographic system. The first cryptographic system and the second cryptographic system comprise different asymmetric cryptographic systems. Suitable payment devices and terminals, and methods at the payment devices and terminals, are described.

公开(公告)号：US11164184B2

公开(公告)日：2021-11-02

申请号：US16879110

申请日：2020-05-20

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Harjender Singh ,  Patrik Smets ,  Philip Wei Ping Yen

IPC: G06Q20/32 ,  G06Q20/02 ,  G06Q20/36 ,  G06Q20/38

Abstract: A method for facilitating a transaction with a one-time number includes: receiving a first transaction request, wherein the first transaction request includes a plurality of data elements including at least a first data element configured to store a zero transaction amount and a second data element configured to store a primary account number; parsing the primary account number stored in the second data element included in the received first transaction request; generating a one-time value, wherein the one-time value includes a predetermined number of digits and a subset of the predetermined number of digits is a reference to the processing server; storing a data entry comprised of at least the parsed primary account number and the generated one-time value; and transmitting the generated one-time value in response to the received first transaction request.

公开(公告)号：US10432620B2

公开(公告)日：2019-10-01

申请号：US14614174

申请日：2015-02-04

Applicant: MasterCard International Incorporated

Inventor： Patrik Smets ,  Mehdi Collinge

IPC: G06F7/04 ,  G06F15/16 ,  G06F17/30 ,  H04L29/06 ,  G06F21/32 ,  G06F21/34 ,  G06F21/41 ,  G06F21/74

Abstract: Instead of requiring key exchange between a trusted biometric application in a TEE and an external application outside of the TEE that provides access to a secured function, the trusted application is preconfigured with security data such as (in a first implementation) authentication credentials (e.g. a PIN) or (in a second implementation) a cryptographic key. This security data is then used to authenticate a biometric validation obtained by the trusted application to the external application.

公开(公告)号：US10068230B2

公开(公告)日：2018-09-04

申请号：US15265182

申请日：2016-09-14

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Patrick Mestré ,  Patrik Smets

IPC: G06Q20/40 ,  H04L9/08 ,  G06Q20/34 ,  G06Q20/38 ,  H04L9/30 ,  H04L29/06 ,  G06Q20/10

Abstract: Methods and devices are provided for use in facilitating transactions between transaction devices and points of interactions. In connection therewith, one transaction device generally includes an input and an output for communicating with a point of interaction with regard to a transaction by a consumer at the point of interaction involving the transaction device. The transaction device also includes a processor in communication with the input and the output. The processor is configured to interact with the point of interaction in connection with the transaction, store transaction data relating to the transaction in a data store during the course of the transaction, and, in response to an interruption in the transaction with the point of interaction, retrieve transaction data stored in the data store in order to resume the transaction with the point of interaction when communication with the point of interaction is restored.

公开(公告)号：US20170103396A1

公开(公告)日：2017-04-13

申请号：US14881249

申请日：2015-10-13

Applicant: MasterCard International Incorporated

Inventor： Patrik Smets ,  Jonathan James Main ,  Mehdi Collinge

IPC: G06Q20/40 ,  G06Q20/38

CPC classification number: G06Q20/4014 ,  G06Q20/322 ,  G06Q20/3227 ,  G06Q20/367 ,  G06Q20/382 ,  G06Q20/40 ,  G06Q2220/00

Abstract: Systems, methods and apparatus for operating a device to complete a transaction are provided which include receiving a request to initiate a transaction with a merchant, transmitting a payment transaction initiation message to a merchant server associated with the merchant, receiving a request message from the merchant server for remote payment data, the request message including information identifying whether the merchant server supports a selected one of a first data format and an alternative data format, and providing the remote payment data to the merchant server in the selected data format for use by the merchant server to initiate authorization processing of the transaction.