公开(公告)号：US11748470B2

公开(公告)日：2023-09-05

申请号：US17715191

申请日：2022-04-07

Applicant: Bank of America Corporation

Inventor： Vijaya L. Vemireddy ,  Brandon Sloane ,  Harvey Summers ,  Eileen D. Bridges

IPC: G06F21/50 ,  G06F21/32 ,  G06F21/70 ,  G06F21/60 ,  G06F1/14 ,  G06F21/31

CPC classification number: G06F21/50 ,  G06F1/14 ,  G06F21/31 ,  G06F21/32 ,  G06F21/606 ,  G06F21/70 ,  G06F2221/034

Abstract: A method of enhancing travel security features associated with a mobile device is provided. The method may include operating a time clock to store a start device confiscation time in a memory and to store an end device confiscation time in the memory, monitoring the mobile device to detect tampering occurring between the start device confiscation time and the end device confiscation time, and in response to the detecting of tampering, prompting the user for a secure identifier. Upon receipt of the secure identifier, the method may include opening a secure i/o pathway to a re-image file. The secure i/o pathway preferably enables execution of an executable re-image file. The re-image file may be used to re-image a software image of the mobile device. The re-image file may contain a pre-tampered image of the mobile device.

公开(公告)号：US09531692B2

公开(公告)日：2016-12-27

申请号：US14491526

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: H04L9/00 ,  H04L29/06

CPC classification number: H04L63/062 ,  H04L9/085

Abstract: Aspects of the present disclosure are directed to methods and systems for securing mobile computing applications with distributed keys. In one aspect, a computer implemented method or computer readable media include steps electronically receiving, at a computer processor of a computing device, a first security key fragment based on a user input to the computing device; electronically receiving, at the computer processor, a second security key fragment from a network connected storage entity; and electronically concatenating, at the computer processor, the first security key fragment and the second security key fragment to generate a third security key.

Abstract translation: 本公开的方面针对用于使用分布式密钥来保护移动计算应用的方法和系统。 在一个方面，计算机实现的方法或计算机可读介质包括在计算设备的计算机处理器处基于对计算设备的用户输入来电接收第一安全密钥片段的步骤; 在计算机处理器处电子地从网络连接的存储实体接收第二安全密钥片段; 以及在所述计算机处理器处电子连接所述第一安全密钥片段和所述第二安全密钥片段以生成第三安全密钥。

公开(公告)号：US11552972B2

公开(公告)日：2023-01-10

申请号：US16928797

申请日：2020-07-14

Applicant: Bank of America Corporation

Inventor： Harvey Summers ,  Vijaya L. Vemireddy ,  Brandon Sloane ,  Eileen D. Bridges

IPC: H04L9/40 ,  G06F1/14 ,  H04L43/08 ,  G06F8/61 ,  G06Q10/10

Abstract: A method for enhancing travel security features associated with a mobile device is provided. The method may include operating a time clock on the mobile device to determine a start device confiscation time in the memory and to determine an end device confiscation time in the memory. The method may also include monitoring the operation of the mobile device between the start device confiscation time and the end device confiscation time to determine the existence of an anomalous device condition. The monitoring may include using a network traffic monitor device, a bandwidth usage monitor device, a battery performance monitor device, a website presentation monitor device, and/or central processing usage monitor device. The monitoring may record a device activity between the start time and the end time and flag the anomalous device condition that occurred between the start time and the end time.

公开(公告)号：US09319401B2

公开(公告)日：2016-04-19

申请号：US14164774

申请日：2014-01-27

Applicant: Bank of America Corporation

Inventor： Davindar S. Gill ,  Therese H. Willis ,  Lekha Ananthakrishnan ,  Eileen D. Bridges ,  Francis G. Farro, II

IPC: H04L9/32 ,  H04L29/06 ,  G06F21/43

CPC classification number: H04L63/0838 ,  G06F21/43 ,  H04L63/0853 ,  H04L63/18

Abstract: A system may include a memory and processor. The memory may store a user account identifier associated with a user account. The processor may be able to receive at least one user credential and authenticate the user account based at least in part on the at least one user credential. The processor may also receive a first request, from a device associated with the user account, to generate a one-time password and generate the one-time password in response to receiving the first request. The processor may associate the one-time password to the user account and communicate the one-time password to the device associated with the user account. The processor is further able to receive a second request, from a transaction device, the second request comprising an attempted one-time password, determine whether the attempted one-time password is valid and communicate, to the transaction device, an indication that the attempted one-time password is valid in response to determining that the attempted one-time password is valid.

Abstract translation: 系统可以包括存储器和处理器。 存储器可以存储与用户帐户相关联的用户帐户标识符。 处理器可能能够至少部分地基于至少一个用户凭证来接收至少一个用户凭证并验证用户帐户。 处理器还可以从与用户帐户相关联的设备接收第一请求，以生成一次性密码并且响应于接收到第一请求而生成一次性密码。 处理器可以将一次性密码与用户帐户相关联，并将一次性密码传送到与用户帐户相关联的设备。 处理器还能够从交易设备接收第二请求，包括尝试的一次性密码的第二请求，确定尝试的一次性密码是否有效并且与交易设备进行通信，该尝试的指示 响应于确定尝试的一次性密码有效，一次性密码是有效的。

公开(公告)号：US20160119333A1

公开(公告)日：2016-04-28

申请号：US14987845

申请日：2016-01-05

Applicant: Bank of America Corporation

Inventor： Davindar S. Gill ,  Therese H. Willis ,  Lekha Anathakrishnan ,  Eileen D. Bridges ,  Francis G. Farro

IPC: H04L29/06

CPC classification number: H04L63/0838 ,  G06F21/43 ,  H04L63/0853 ,  H04L63/18

Abstract: A system includes a memory and processor. The memory stores a user account identifier associated with a user account. The processor receives at least one user credential and authenticates the user account based at least in part on the at least one user credential. The processor further receives a first request, from a device associated with the user account, to generate a one-time password and generates the one-time password in response to receiving the first request. The processor associates the one-time password to the user account and communicates the one-time password to the device associated with the user account. The processor further receives a second request, from a transaction device, the second request comprising an attempted one-time password, determines whether the attempted one-time password is valid, and communicates, to the transaction device, an indication that the attempted one-time password is valid in response to determining that the attempted one-time password is valid.

Abstract translation: 系统包括存储器和处理器。 存储器存储与用户帐户相关联的用户帐户标识符。 所述处理器至少部分地基于所述至少一个用户凭证接收至少一个用户凭证并对所述用户帐户进行认证。 处理器还从与用户帐户相关联的设备接收第一请求，以产生一次性密码，并响应于接收到第一请求而生成一次性密码。 处理器将一次性密码与用户帐户相关联，并将一次性密码与用户帐户关联的设备进行通信。 处理器还从交易设备接收包括尝试的一次性密码的第二请求的第二请求，确定所尝试的一次性密码是否有效，并且向交易设备通信一个指示， 时间密码对于确定尝试的一次性密码有效是有效的。

公开(公告)号：US20160087950A1

公开(公告)日：2016-03-24

申请号：US14491526

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: H04L29/06

CPC classification number: H04L63/062 ,  H04L9/085

Abstract: Aspects of the present disclosure are directed to methods and systems for securing mobile computing applications with distributed keys. In one aspect, a computer implemented method or computer readable media include steps electronically receiving, at a computer processor of a computing device, a first security key fragment based on a user input to the computing device; electronically receiving, at the computer processor, a second security key fragment from a network connected storage entity; and electronically concatenating, at the computer processor, the first security key fragment and the second security key fragment to generate a third security key.

Abstract translation: 本公开的方面针对用于使用分布式密钥来保护移动计算应用的方法和系统。 在一个方面，计算机实现的方法或计算机可读介质包括在计算设备的计算机处理器处基于对计算设备的用户输入来电接收第一安全密钥片段的步骤; 在计算机处理器处电子地从网络连接的存储实体接收第二安全密钥片段; 以及在所述计算机处理器处电子连接所述第一安全密钥片段和所述第二安全密钥片段以生成第三安全密钥。

公开(公告)号：US20140279483A1

公开(公告)日：2014-09-18

申请号：US13804095

申请日：2013-03-14

Applicant: BANK OF AMERICA CORPORATION

Inventor： Eileen D. Bridges ,  Lisa Gibson ,  James G. Ronca ,  Mark D. Zanzot ,  Susan Smith Thomas

IPC: G06Q20/16

CPC classification number: G06Q20/027 ,  G06Q20/227 ,  G06Q20/322 ,  G06Q20/3276

Abstract: Embodiments of the invention are directed to systems, methods and computer program products for making a payment via a transfer network. In some embodiments, a first apparatus is configured to: receive readable indicia and payment information from a second apparatus, wherein the payment information comprises an amount of funds; identify an account associated with the readable indicia based on searching a database of records; process the payment information, wherein processing the payment information comprises transmitting to the identified account the determined amount of funds; transmit an acknowledgement of payment transfer to a third apparatus associated with the identified account.

Abstract translation: 本发明的实施例涉及用于通过传送网络进行支付的系统，方法和计算机程序产品。 在一些实施例中，第一装置被配置为：从第二装置接收可读标记和支付信息，其中所述支付信息包括一定数量的资金; 基于搜索记录数据库识别与可读标记相关联的帐户; 处理支付信息，其中处理支付信息包括向确定的账户传送所确定的资金数量; 将支付转移确认传送给与所识别的帐户相关联的第三设备。

公开(公告)号：US11334662B2

公开(公告)日：2022-05-17

申请号：US16928843

申请日：2020-07-14

Applicant: Bank of America Corporation

Inventor： Vijaya L. Vemireddy ,  Brandon Sloane ,  Harvey Summers ,  Eileen D. Bridges

IPC: G06F21/50 ,  G06F21/32 ,  G06F21/70 ,  G06F21/60 ,  G06F1/14 ,  G06F21/31

Abstract: A method of enhancing travel security features associated with a mobile device is provided. The method may include operating a time clock to store a start device confiscation time in a memory and to store an end device confiscation time in the memory, monitoring the mobile device to detect tampering occurring between the start device confiscation time and the end device confiscation time, and in response to the detecting of tampering, prompting the user for a secure identifier. Upon receipt of the secure identifier, the method may include opening a secure i/o pathway to a re-image file. The secure i/o pathway preferably enables execution of an executable re-image file. The re-image file may be used to re-image a software image of the mobile device. The re-image file may contain a pre-tampered image of the mobile device.

公开(公告)号：US09407633B2

公开(公告)日：2016-08-02

申请号：US14987845

申请日：2016-01-05

Applicant: Bank of America Corporation

Inventor： Davindar S. Gill ,  Therese H. Willis ,  Lekha Ananthakrishnan ,  Eileen D. Bridges ,  Francis G. Farro, II

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L63/0838 ,  G06F21/43 ,  H04L63/0853 ,  H04L63/18

Abstract: A system includes a memory and processor. The memory stores a user account identifier associated with a user account. The processor receives at least one user credential and authenticates the user account based at least in part on the at least one user credential. The processor further receives a first request, from a device associated with the user account, to generate a one-time password and generates the one-time password in response to receiving the first request. The processor associates the one-time password to the user account and communicates the one-time password to the device associated with the user account. The processor further receives a second request, from a transaction device, the second request comprising an attempted one-time password, determines whether the attempted one-time password is valid, and communicates, to the transaction device, an indication that the attempted one-time password is valid in response to determining that the attempted one-time password is valid.

Abstract translation: 系统包括存储器和处理器。 存储器存储与用户帐户相关联的用户帐户标识符。 所述处理器至少部分地基于所述至少一个用户凭证接收至少一个用户凭证并对所述用户帐户进行认证。 处理器还从与用户帐户相关联的设备接收第一请求，以产生一次性密码，并响应于接收到第一请求而生成一次性密码。 处理器将一次性密码与用户帐户相关联，并将一次性密码与用户帐户关联的设备进行通信。 处理器还从交易设备接收包括尝试的一次性密码的第二请求的第二请求，确定所尝试的一次性密码是否有效，并且向交易设备通信一个指示， 时间密码对于确定尝试的一次性密码有效是有效的。

公开(公告)号：US20160087797A1

公开(公告)日：2016-03-24

申请号：US14491541

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3236 ,  H04L9/3226 ,  H04L9/3273 ,  H04L63/062 ,  H04L63/126

Abstract: Aspects of the present disclosure pertain to system and method of securing mobile devices using virtual certificates at a computer processor. A method may include receiving a request for access to a computer network associated with a computing device to an application associated with a network connected server processor; electronically receiving, at the server processor, a first security key fragment from the computing device; the first security key fragment being paired with a verifier key fragment unknown to the computing device; generating a conditional seed key fragment at the server processor associated with the verifier key fragment; comparing a first hash parameter to a second hash parameter at the server processor; transmitting, at the server processor, a session security key for enabling network access to the application associated with the server processor.

Abstract translation: 本公开的方面涉及在计算机处理器处使用虚拟证书来保护移动设备的系统和方法。 一种方法可以包括：向与网络连接的服务器处理器相关联的应用接收对与计算设备相关联的计算机网络的访问请求; 在所述服务器处理器处电子地接收来自所述计算设备的第一安全密钥片段; 所述第一安全密钥片段与所述计算设备未知的验证者密钥片段配对; 在与验证者密钥片段相关联的服务器处理器处生成条件种子密钥片段; 将第一散列参数与所述服务器处理器处的第二散列参数进行比较; 在服务器处理器处发送会话安全密钥，用于启用对与服务器处理器相关联的应用的网络访问。