-
公开(公告)号:US20090030845A1
公开(公告)日:2009-01-29
申请号:US12146150
申请日:2008-06-25
申请人: Simon Hurry , Christian Aabye
发明人: Simon Hurry , Christian Aabye
IPC分类号: H04L9/14
CPC分类号: H04L9/12 , G06Q20/3829 , H04L9/3234 , H04L2209/04 , H04L2209/56 , H04L2209/80
摘要: A method is disclosed. The method includes generating an obfuscated portion using a dynamic cryptogram unique to a transaction, where the dynamic cryptogram is determined using a uniquely derived key. The method also includes replacing a middle portion of the account identifier with the obfuscated portion to form an obfuscated account identifier.
摘要翻译: 公开了一种方法。 该方法包括使用事务唯一的动态密码来生成混淆部分,其中使用唯一导出的密钥来确定动态密码。 该方法还包括用混淆部分替换帐户标识符的中间部分以形成模糊化的帐户标识符。
-
公开(公告)号:US20080183622A1
公开(公告)日:2008-07-31
申请号:US11713307
申请日:2007-03-01
IPC分类号: G06Q40/00
CPC分类号: G06Q20/4016 , G06Q20/027 , G06Q20/04 , G06Q20/085 , G06Q20/0855 , G06Q20/20 , G06Q20/204 , G06Q20/32 , G06Q20/327 , G06Q20/341 , G06Q20/382 , G06Q20/3821 , G06Q20/40 , G06Q20/401 , G07B15/00
摘要: At each of a plurality of transit readers of a transit system, for each of a plurality of riders, where each rider seeks to conduct an access transaction with the transit system for access into the transit facility by using a payment device issued by an issuer in a payment system, data is read from the payment device. The data includes an encryption code that uniquely corresponds to the payment device and was created by the issuer using one or more encryption keys and a predetermined algorithm. A check will be performed, remotely and/or locally, of one or more lists of other encryption codes to determine if the encryption code is on the list. On the basis of whether the encryption code is on the list, the rider is permitted access to the facility of the transit system. The payment device need not be changed for the rider's fare. Decryption of the encryption code read from the payment device is not required to complete the access transaction.
摘要翻译: 在多个交通系统的多个过境读取器中的每一个上,对于多个骑手中的每一个,每个骑手寻求通过使用由发行者发行的支付装置进行与中转系统的访问交易 支付系统,从支付设备读取数据。 数据包括唯一对应于支付设备并由发行者使用一个或多个加密密钥和预定算法创建的加密代码。 远程和/或本地执行一个或多个其他加密代码列表的检查,以确定加密代码是否在列表中。 根据加密代码是否在列表中,骑手被允许访问中转系统的设施。 付款设备不需要更改为骑手的票价。 从支付设备读取的加密代码的解密不需要完成访问事务。
-
公开(公告)号:US20180139608A1
公开(公告)日:2018-05-17
申请号:US15849489
申请日:2017-12-20
CPC分类号: H04W12/06 , G06Q20/3226 , G06Q20/3227 , G06Q20/3229 , G06Q20/325 , G06Q20/3278 , G06Q20/40145 , H04L63/0807
摘要: Systems, apparatuses, and methods for performing transactions through mobile communication devices using either telecommunications networks or proximity near-field communications systems are disclosed. A mobile communication device may display an application authentication element. The application authentication element may include a pre-selected authentication element and transaction data associated with a transaction conducted by a mobile communication device. The mobile communication device may obtain the pre-selected authentication element by either transmitting a request to a server computer or retrieving the pre-selected authentication element from a secure memory in the mobile communication device. A user authentication token may be received by the mobile communication device from the user. The mobile communication device may generate a secret token that is derived from the user authentication token. If the secret token is correlated to a secret reference token, then a transaction may be conducted.
-
公开(公告)号:US09948673B2
公开(公告)日:2018-04-17
申请号:US15165675
申请日:2016-05-26
申请人: Jing Jin , Christian Aabye
发明人: Jing Jin , Christian Aabye
CPC分类号: H04L63/1466 , G06F9/4416 , G06F9/442 , G06F21/00 , H04L43/106 , H04L63/08 , H04L63/108 , H04L2463/121 , H04W12/06 , H04W12/08 , H04W76/27
摘要: A process for generating an access credential by a communication device may include determining whether a communication device successfully executed a predetermined shutdown sequence when the communication device last transitioned to an inactive state, determining whether the communication device has synchronized with an authorization network subsequent to transitioning back to an active state, and generating the access credential including a timestamp. The access credential may indicate whether the access credential has reliable timestamp information. The access credential can be provided to an access device associated with an authorization network to authenticate the communication device.
-
公开(公告)号:US20170255932A1
公开(公告)日:2017-09-07
申请号:US15060212
申请日:2016-03-03
申请人: Christian Aabye , Christopher Jones
发明人: Christian Aabye , Christopher Jones
CPC分类号: G06Q20/38215 , G06Q20/12 , G06Q20/385 , G06Q20/40 , G06Q2220/00 , H04L9/3226 , H04L9/3234 , H04L63/0428 , H04L63/06 , H04L63/08 , H04L63/10 , H04L2209/56 , H04W12/12
摘要: A process for combining domain restriction and remote authentication may include receiving a token from a plug-in application to conduct a transaction associated with a user of a communicating device. The process may include sending an authentication request to a remote access control sever to authenticate the user, and receiving, from the remote access control server, an authentication tracking value that the remote access control server used in generation of an authentication cryptogram. The process may also include generating, using the authentication tracking value, a domain restriction cryptogram that is used for domain restriction of the token, and sending, to the plug-in application, the domain restriction cryptogram.
-
公开(公告)号:US20170123789A1
公开(公告)日:2017-05-04
申请号:US15401726
申请日:2017-01-09
申请人: Christian Aabye , Kiushan Pirzadeh , Glenn Powell , Igor Karpenko
发明人: Christian Aabye , Kiushan Pirzadeh , Glenn Powell , Igor Karpenko
CPC分类号: G06F8/65 , G06F8/71 , G06F9/4451 , H04L67/306 , H04L67/34 , H04W4/50 , H04W12/04 , H04W12/06 , H04W12/10
摘要: Embodiments of the present invention are directed at methods and systems for providing a partial personalization process that allows for more efficient and effective personalization of a application on a communication device. For example, personalization profiles associated with multiple versions of the application may be stored at a provisioning system and the provisioning system may determine the appropriate partial provisioning information to update the application for each migration notification. Partial personalization information that is to be updated for the updated version of the application may be generated and installed to enable new functionality and/or update the information contained within an updated application without requiring re-personalization of all personalized information.
-
公开(公告)号:US20160140545A1
公开(公告)日:2016-05-19
申请号:US15004705
申请日:2016-01-22
CPC分类号: G06Q20/3821 , G06Q20/32 , G06Q20/322 , G06Q20/327 , G06Q20/3278 , G06Q20/382 , G06Q20/3829 , G06Q20/401 , G06Q2220/00 , H04L9/0618 , H04L9/0869 , H04L9/088 , H04L9/3234 , H04L9/3297 , H04L63/0428 , H04L63/0838 , H04L2209/24 , H04L2209/56 , H04L2209/805
摘要: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and transmitting a token instead of a real account identifier and the transaction cryptogram to an access device to conduct the transaction. The token and the transaction cryptogram can be transmitted to a magnetic stripe reader by generating an emulated magnetic signal. The LUK may be associated with a set of one or more limited-use thresholds that limits usage of the LUK, and the transaction can be authorized based on at least whether usage of the LUK has exceeded the set of one or more limited-use thresholds.
摘要翻译: 用于在使用通信设备进行交易时增强通信设备的安全性的技术可以包括使用有限使用密钥(LUK)来生成交易密码,以及将令牌而不是真实帐户标识符和交易密码传送到 访问设备进行交易。 令牌和事务密码可以通过产生仿真磁信号传输到磁条阅读器。 LUK可以与限制LUK的使用的一个或多个有限使用阈值的集合相关联,并且可以至少基于LUK的使用是否已经超过一个或多个有限使用阈值的集合来授权交易 。
-
公开(公告)号:US20150220917A1
公开(公告)日:2015-08-06
申请号:US14614315
申请日:2015-02-04
申请人: Christian Aabye , Brian Sullivan , Dave Wilson
发明人: Christian Aabye , Brian Sullivan , Dave Wilson
CPC分类号: H04L9/3234 , G06Q20/3278 , G06Q20/352 , G06Q20/38215 , H04L9/3213 , H04L9/3268
摘要: Methods, devices, and systems are provided for verifying tokens using limited-use certificates. For example, a user device can send a token request to a token provider computer, and receive in response a token and a token certificate associated with the token. The token certificate may include, for example, a hash of the token and a digital signature by the token provider computer or another trusted entity. The user device can provide the token and the token certificate to an access device. The access device can verify the token using the token certificate, and verify the token certificate using a digital signature. In some cases, the token and token certificate may be verified offline. The access device can then conduct a transaction using the token.
摘要翻译: 提供了使用有限使用证书验证令牌的方法,设备和系统。 例如,用户设备可以向令牌提供者计算机发送令牌请求,并且响应地接收与令牌相关联的令牌和令牌证书。 令牌证书可以包括例如令牌的哈希和令牌提供者计算机或另一可信实体的数字签名。 用户设备可以向接入设备提供令牌和令牌证书。 访问设备可以使用令牌证书验证令牌,并使用数字签名验证令牌证书。 在某些情况下,可以离线验证令牌和令牌证书。 然后,访问设备可以使用令牌进行事务处理。
-
公开(公告)号:US20150186868A1
公开(公告)日:2015-07-02
申请号:US14656430
申请日:2015-03-12
CPC分类号: G06Q20/3227 , G06F21/445 , G06Q20/28 , G06Q20/3226 , G06Q20/3829 , H04L9/083 , H04L9/321 , H04L9/3271 , H04L63/06 , H04L63/08 , H04L2209/80
摘要: A system, method, and server computer configured to authenticate a consumer device. The consumer device is authenticated via a mobile gateway using challenge-response authentication. If the consumer device is successfully authenticated, a secure channel is established between the consumer device and a first entity. The secure channel allows for secure communication between the consumer device and the first entity.
摘要翻译: 被配置为认证消费者设备的系统,方法和服务器计算机。 消费者设备通过使用质询 - 响应认证的移动网关进行认证。 如果消费者设备被成功认证,则在消费者设备和第一实体之间建立安全通道。 安全信道允许消费者设备和第一实体之间的安全通信。
-
公开(公告)号:US20150178724A1
公开(公告)日:2015-06-25
申请号:US14577678
申请日:2014-12-19
申请人: Hao Ngo , Christian Aabye , John Sheets , Oleg Makhotin
发明人: Hao Ngo , Christian Aabye , John Sheets , Oleg Makhotin
IPC分类号: G06Q20/38
摘要: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include encrypting account information with a first encryption key to generate a second encryption key, and encrypting key index information using the second key to generate a limited-use key (LUK). The key index information may include a key index having information pertaining to generation of the LUK. The LUK and the key index can be provided to the communication device to facilitate generation of a transaction cryptogram for a transaction conducted using the communication device, and the transaction can be authorized based on the transaction cryptogram generated from the LUK.
摘要翻译: 用于在使用通信设备进行交易时增强通信设备的安全性的技术可以包括利用第一加密密钥加密帐户信息以生成第二加密密钥,并且使用第二密钥加密密钥索引信息以生成有限使用密钥 (LUK)。 密钥索引信息可以包括具有与生成LUK有关的信息的密钥索引。 可以将LUK和密钥索引提供给通信设备以便于生成使用通信设备进行的事务的事务密码,并且可以基于从LUK生成的事务密码来授权事务。
-
-
-
-
-
-
-
-
-
搜索结果
104 条记录 (耗时 0.027 秒)
