-
公开(公告)号:US20230206215A1
公开(公告)日:2023-06-29
申请号:US18175309
申请日:2023-02-27
CPC分类号: G06Q20/363 , G06Q20/409 , G06Q20/3829 , G06Q20/322 , G06Q20/3674 , G06Q20/385 , G06Q2220/00
摘要: Disclosed are various embodiments for securely conducting online in-application purchases. In one example, among others, a system comprises a computing device that is configured to identify a purchase request from a merchant application executed on the computing device and authenticate an account with a wallet provider based at least in part on a selection of the account. The computing device is configured to receive an instruction from the wallet provider to execute a security library and determine that the computing device is secure by executing a security library. The execution of the security library generates a device response for the wallet provider. A security code is determined data received from the wallet provider. A token is transmitted for the purchase request to the wallet provider based at least in part on the security code.
-
2.发明授权公开(公告)号:US10007911B2
公开(公告)日:2018-06-26
申请号:US15165659
申请日:2016-05-26
发明人: John G. McDonald
CPC分类号: G06Q20/3829 , G06Q20/32 , G06Q20/3226 , G06Q20/3278 , G06Q20/382 , G06Q20/401 , H04L63/0428 , H04W4/50 , H04W12/02 , H04W12/04
摘要: Systems and methods for rapidly provisioning functionality to one or more mobile communication devices are disclosed. The method may comprise generating, prior to a request for the functionality, a globally unique identifier (“GUID”) encryption key, wherein the GUID comprises a unique identifier that may be associated with a transaction account customer, generating a value associated with the GUID, deriving, based on the value, a plurality of base encryption keys associated with the value, creating, a perso-script, wherein the perso-script comprises a file associated with data associated with a customer, and/or creating a proto-script, wherein the proto-script comprises the perso-script prepended by a script to rotate the plurality of base encryption keys.
-
公开(公告)号:US20160379208A1
公开(公告)日:2016-12-29
申请号:US14936294
申请日:2015-11-09
CPC分类号: G06Q20/363 , G06Q20/322 , G06Q20/3674 , G06Q20/3829 , G06Q20/385 , G06Q20/409 , G06Q2220/00
摘要: A system may receive a transaction request from a user device, and request an in-app cryptogram from a network software development kit (SDK) on the user device. The in-app cryptogram may include an unpredictable number, an application transaction counter (ATC), and a card verification result (CVR), and the ATC may be extracted from a limited use payment credential (LUPC). The system may transmit a token, a token expiry, and a token data block for an assessment by a payment network, with the token data block including the token, the token expiry, the ATC, and/or the in-app cryptogram. The system may further receive a request from the payment network to update the LUPC on the user device, and attest that the user device is secure in response to the request from the payment network to refresh the LUPC on the user device.
摘要翻译: 系统可以从用户设备接收交易请求,并从用户设备上的网络软件开发工具包(SDK)请求应用内密码。 应用内密码可以包括不可预测的号码,应用交易计数器(ATC)和卡验证结果(CVR),并且可以从有限使用支付凭证(LUPC)中提取ATC。 系统可以传送令牌,令牌到期和用于由支付网络进行评估的令牌数据块,令牌数据块包括令牌,令牌到期,ATC和/或应用内密码。 系统还可以从支付网络进一步接收请求以更新用户设备上的LUPC,并且证明用户设备响应于来自支付网络的刷新用户设备上的LUPC的请求是安全的。
-
公开(公告)号:US11968191B1
公开(公告)日:2024-04-23
申请号:US17392328
申请日:2021-08-03
IPC分类号: H04L9/40 , G06Q20/40 , H04W12/041 , H04L9/08 , H04W4/80
CPC分类号: H04L63/0435 , G06Q20/4012 , H04L63/067 , H04W12/041 , H04L9/0894 , H04L63/083 , H04L2209/56 , H04L2463/061 , H04L2463/062 , H04W4/80
摘要: Various embodiments for sending a cryptogram to a point of sale terminal while disconnected from a network. In some embodiments, for example, a computing device that is configured to display a prompt for a selection of a transaction account. An encrypted session key is retrieved through a network in response to determining a number of session keys associated with the transaction account is below a threshold. The computing device is also configured to generate a session key based at least in part on decrypting the encrypted session key using an encryption key and establish a wireless connection with a point of sale terminal for a purchase. A cryptogram is generated from the session key based at least in part on the user device being disconnected from the network. The cryptogram is sent to the point of sale terminal.
-
公开(公告)号:US09972007B2
公开(公告)日:2018-05-15
申请号:US15434370
申请日:2017-02-16
CPC分类号: G06Q20/3829 , G06K19/06206 , G06Q20/3226 , G06Q20/36 , H04L9/0863 , H04L9/14 , H04L63/067 , H04L2209/56 , H04W4/80 , H04W12/04
摘要: A system, method, and computer readable medium (collectively, the “system”) are provided. The system may include a processor configured to perform operations and/or steps comprising storing, by a processor, a session key on a mobile device, wherein the session key is encrypted. The system receiving a transaction request, decrypting the session key, and broadcasting a signal configured for being received by a magnetic stripe reader. Track 1 data and/or track 2 data may be encoded in the signal. The track 1 data and/or the track 2 data may also comprise a dynamically generated value that is generated based on the session key.
-
公开(公告)号:US20170061272A1
公开(公告)日:2017-03-02
申请号:US14958638
申请日:2015-12-03
CPC分类号: G06Q20/3829 , G06K19/06206 , G06Q20/3226 , G06Q20/36 , H04L9/0863 , H04L9/14 , H04L63/067 , H04L2209/56 , H04W4/80 , H04W12/04
摘要: A system, method, and computer readable medium (collectively, the “system”) are provided. The system may include a processor configured to perform operations and/or steps comprising storing, by a processor, a session key on a mobile device, wherein the session key is encrypted. The system receiving a transaction request, decrypting the session key, and broadcasting a signal configured for being received by a magnetic stripe reader. Track 1 data and/or track 2 data may be encoded in the signal. The track 1 data and/or the track 2 data may also comprise a dynamically generated value that is generated based on the session key.
摘要翻译: 提供了系统,方法和计算机可读介质(统称为“系统”)。 系统可以包括被配置为执行操作和/或步骤的处理器,包括由处理器存储移动设备上的会话密钥,其中会话密钥被加密。 系统接收交易请求,解密会话密钥,以及广播被配置成由磁条读取器接收的信号。 轨道1数据和/或轨道2数据可以被编码在信号中。 轨道1数据和/或轨道2数据还可以包括基于会话密钥生成的动态生成的值。
-
公开(公告)号:US11620641B1
公开(公告)日:2023-04-04
申请号:US17205417
申请日:2021-03-18
摘要: A system may identify a purchase transaction request from a merchant application and generate an in-app payment cryptogram for the purchase transaction request based on a limited use payment credential (LUPC). The in-app payment cryptogram may be provided to the merchant application. The merchant application may transmit the in-app payment cryptogram to a merchant computing device. A request may be received from a payment network to update the LUPC. A security library may be executed to determine that the client device is secure. The execution of the security library may generate a device attestation response, and the device attestation response is transmitted to the payment network. An updated LUPC may be received from the payment network.
-
8.发明申请公开(公告)号:US20220300961A1
公开(公告)日:2022-09-22
申请号:US17831315
申请日:2022-06-02
IPC分类号: G06Q20/38 , G06K19/06 , H04W4/80 , H04L9/08 , H04L9/40 , G06Q20/34 , H04W12/0431 , H04W12/0433 , G06Q20/32 , G06Q20/36 , H04L9/14
摘要: A system, method, and computer readable medium (collectively, the “system”) are provided. The system may include a processor configured to perform operations and/or steps comprising receiving a selection of a transaction account to be used as payment for a transaction; and transmitting a wireless signal carrying emulated track data for payment of the transaction, wherein the emulated track data emulates data in tracks of a magnetic card and includes alias transaction account data in place of actual transaction account data.
-
公开(公告)号:US11108746B2
公开(公告)日:2021-08-31
申请号:US15988606
申请日:2018-05-24
IPC分类号: H04L29/06 , G06Q20/40 , H04W12/041 , H04L9/08 , H04W4/80
摘要: A system is configured for detecting a point of sale, receiving a personal identification number (PIN), generating a PIN based key using a message digest of the PIN, decrypting a data encryption key (DEK) using the PIN based key, and generating a DEK based dynamic key using the PIN based key. The system may also decrypt a session key using the DEK based dynamic key, generate a cryptogram from the session key, and send the cryptogram to the point of sale.
-
公开(公告)号:US10009324B2
公开(公告)日:2018-06-26
申请号:US14959744
申请日:2015-12-04
CPC分类号: H04L63/0435 , G06Q20/4012 , H04L9/0894 , H04L63/067 , H04L63/083 , H04L2463/061 , H04L2463/062 , H04W4/80 , H04W12/04
摘要: A system is configured for detecting a point of sale, receiving a personal identification number (PIN), generating a PIN based key using a message digest of the PIN, decrypting a data encryption key (DEK) using the PIN based key, and generating a DEK based dynamic key using the PIN based key. The system may also decrypt a session key using the DEK based dynamic key, generate a cryptogram from the session key, and send the cryptogram to the point of sale.
-
-
-
-
-
-
-
-
-
搜索结果
23 条记录 (耗时 0.021 秒)
