-
公开(公告)号:US20170221054A1
公开(公告)日:2017-08-03
申请号:US15421891
申请日:2017-02-01
CPC分类号: G06Q20/385 , G06K7/1417 , G06Q20/3276 , G06Q20/4018
摘要: Embodiments of the present invention relate to systems and methods that allow users to use their communication devices to perform transactions (e.g., payment transactions, access transactions, etc.). To complete a transaction, a resource provider electronically generates a code representing transaction data and displays it on an access device. The user scans the code with his or her communication device using a camera associated with the communication device, for example. The code is interpreted by an application on the communication device. The user may request and receive a token at the communication device corresponding to sensitive information selected to perform the transaction (e.g., a primary account number). The user may then provide the token and the transaction data via the communication device to a server computer, which may facilitate completion of the transaction between the user and the resource provider using the transaction data and the token.
-
公开(公告)号:US20180189783A1
公开(公告)日:2018-07-05
申请号:US15890871
申请日:2018-02-07
CPC分类号: G06Q20/3821 , G06Q20/32 , G06Q20/322 , G06Q20/327 , G06Q20/3278 , G06Q20/382 , G06Q20/3829 , G06Q20/401 , G06Q2220/00 , H04L9/0618 , H04L9/0869 , H04L9/088 , H04L9/3234 , H04L9/3297 , H04L63/0428 , H04L63/0838 , H04L2209/24 , H04L2209/56 , H04L2209/805
摘要: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and transmitting a token instead of a real account identifier and the transaction cryptogram to an access device to conduct the transaction. The token and the transaction cryptogram can be transmitted to a magnetic stripe reader by generating an emulated magnetic signal. The LUK may be associated with a set of one or more limited-use thresholds that limits usage of the LUK, and the transaction can be authorized based on at least whether usage of the LUK has exceeded the set of one or more limited-use thresholds.
-
公开(公告)号:US20180232722A1
公开(公告)日:2018-08-16
申请号:US15949790
申请日:2018-04-10
申请人: Erick Wong , Christian Flurscheim , Oleg Makhotin , Eduardo Lopez , Sanjeev Sharma , Christopher Jones , Abhishek Guglani , Jarkko Oskari Sevanto , Bharatkumar Patel , Tai Lung Burnnet Or , Christian Aabye , Hao Ngo , John F. Sheets
发明人: Erick Wong , Christian Flurscheim , Oleg Makhotin , Eduardo Lopez , Sanjeev Sharma , Christopher Jones , Abhishek Guglani , Jarkko Oskari Sevanto , Bharatkumar Patel , Tai Lung Burnnet Or , Christian Aabye , Hao Ngo , John F. Sheets
IPC分类号: G06Q20/32
摘要: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include receiving a cryptogram generation key replenishment request that includes transaction log information derived from transaction data stored in a transaction log on a communication device, verifying that the transaction log information in the replenishment request is consistent with the previously received transaction information, and providing a new cryptogram generation key to the communication device in response to verifying the transaction log information in the replenishment request.
-
公开(公告)号:US20150339664A1
公开(公告)日:2015-11-26
申请号:US14719014
申请日:2015-05-21
CPC分类号: G06Q20/3829 , G06Q20/401 , G06Q2220/00 , H04L9/3234 , H04L9/3236 , H04L9/3247 , H04L9/3263 , H04L9/3297 , H04L63/0823 , H04L63/126 , H04L2209/56 , H04W4/60 , H04W12/06 , H04W12/10
摘要: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and using a signature key to generate a signature. The transaction can be an offline data authentication transaction, and access can be granted based on authentication of the signature prior to verifying the transaction cryptogram.
摘要翻译: 用于在使用通信设备进行交易时增强通信设备的安全性的技术可以包括使用有限使用密钥(LUK)来生成交易密码,并且使用签名密钥来生成签名。 事务可以是离线数据认证交易,并且可以在验证交易密码之前基于签名的认证来授予访问权限。
-
公开(公告)号:US20160140545A1
公开(公告)日:2016-05-19
申请号:US15004705
申请日:2016-01-22
CPC分类号: G06Q20/3821 , G06Q20/32 , G06Q20/322 , G06Q20/327 , G06Q20/3278 , G06Q20/382 , G06Q20/3829 , G06Q20/401 , G06Q2220/00 , H04L9/0618 , H04L9/0869 , H04L9/088 , H04L9/3234 , H04L9/3297 , H04L63/0428 , H04L63/0838 , H04L2209/24 , H04L2209/56 , H04L2209/805
摘要: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and transmitting a token instead of a real account identifier and the transaction cryptogram to an access device to conduct the transaction. The token and the transaction cryptogram can be transmitted to a magnetic stripe reader by generating an emulated magnetic signal. The LUK may be associated with a set of one or more limited-use thresholds that limits usage of the LUK, and the transaction can be authorized based on at least whether usage of the LUK has exceeded the set of one or more limited-use thresholds.
摘要翻译: 用于在使用通信设备进行交易时增强通信设备的安全性的技术可以包括使用有限使用密钥(LUK)来生成交易密码,以及将令牌而不是真实帐户标识符和交易密码传送到 访问设备进行交易。 令牌和事务密码可以通过产生仿真磁信号传输到磁条阅读器。 LUK可以与限制LUK的使用的一个或多个有限使用阈值的集合相关联,并且可以至少基于LUK的使用是否已经超过一个或多个有限使用阈值的集合来授权交易 。
-
公开(公告)号:US20200245138A1
公开(公告)日:2020-07-30
申请号:US16262699
申请日:2019-01-30
申请人: Gavin Shenker , Brian Sullivan , Christian Aabye , Hao Ngo
发明人: Gavin Shenker , Brian Sullivan , Christian Aabye , Hao Ngo
摘要: A method is disclosed. The method includes receiving, by a user device from an access device, an available applications request message. The available applications request message includes an access device type identifier. The method also includes determining whether an association exists between the access device type identifier and one or more application identifiers of a plurality of application identifiers stored on the user device. The plurality of application identifiers respectively correspond to different applications on the user device. The method also includes transmitting, by the user device, to the access device, based in part on whether the association exists, an available applications response. The available applications response includes the one or more application identifiers of the plurality of application identifiers associated with the access device type identifier.
-
公开(公告)号:US20190163467A1
公开(公告)日:2019-05-30
申请号:US16262766
申请日:2019-01-30
申请人: Christian Aabye , Kiushan Pirzadeh , Glenn Powell , Igor Karpenko
发明人: Christian Aabye , Kiushan Pirzadeh , Glenn Powell , Igor Karpenko
摘要: Embodiments of the present invention are directed at methods and systems for providing a partial personalization process that allows for more efficient and effective personalization of a application on a communication device. For example, personalization profiles associated with multiple versions of the application may be stored at a provisioning system and the provisioning system may determine the appropriate partial provisioning information to update the application for each migration notification. Partial personalization information that is to be updated for the updated version of the application may be generated and installed to enable new functionality and/or update the information contained within an updated application without requiring re-personalization of all personalized information.
-
公开(公告)号:US09824355B2
公开(公告)日:2017-11-21
申请号:US12563444
申请日:2009-09-21
申请人: Christian Aabye , Hao Ngo , David Wilson
发明人: Christian Aabye , Hao Ngo , David Wilson
CPC分类号: G06Q20/40 , G06Q20/10 , G06Q20/20 , G06Q20/204 , G06Q20/322 , G06Q20/3278 , G06Q20/382 , G06Q20/3829
摘要: A system, apparatus, and method for processing payment transactions that are conducted using a mobile payment device that includes a contactless element, such as an integrated circuit chip. The invention enables one or more of the operations of activation of a payment application, transfer of transaction data, updating of account records, setting or re-setting of a payment application counter or register, or transfer or processing of a script, command, or instruction, with these functions being performed with minimal impact on a consumer. This is accomplished by introducing a pre-tap and/or two-tap operation prior to, or as part of, the transaction flow.
-
9.
公开(公告)号:US20170161723A1
公开(公告)日:2017-06-08
申请号:US15441127
申请日:2017-02-23
申请人: Trudy Hill , Jagdeep Singh Sahota , Christian Aabye , Kim R. Wagner , Anita Ochieano , Carole Oppenlander , William Chi Yuen Chan , Craig Allen Glendenning
发明人: Trudy Hill , Jagdeep Singh Sahota , Christian Aabye , Kim R. Wagner , Anita Ochieano , Carole Oppenlander , William Chi Yuen Chan , Craig Allen Glendenning
CPC分类号: G06Q20/352 , G06K7/0008 , G06Q20/04 , G06Q20/3674 , G06Q20/382 , G06Q20/38215 , G06Q20/3825 , G06Q20/40 , G06Q20/401 , G06Q20/4016 , G06Q20/409 , G06Q30/06 , G07F7/0826 , G07F7/088 , G07F7/1008 , G07F7/1016
摘要: Methods, devices, and systems are described for sending and receiving messages between a terminal reader and a payment device, such as a credit card. A dynamic signature is calculated on the payment device from an application transaction counter, a terminal unpredictable number, and a transaction amount, and it is sent with an application the locator (AFL) to the reader. The reader then sends a read record command to the payment device to get records associated with the AFL, among other normal processing. While the, normal processing is occurring for the transaction, the dynamic signature can be recalculated and compared with that from the payment device in order to assure that nothing has surreptitiously changed the values in the messages.
-
公开(公告)号:US20160248479A1
公开(公告)日:2016-08-25
申请号:US15048849
申请日:2016-02-19
申请人: Thomas Bellenger , Oleg Makhotin , Christian Aabye , Erick Wong , Sanjeev Sharma , Hao Ngo
发明人: Thomas Bellenger , Oleg Makhotin , Christian Aabye , Erick Wong , Sanjeev Sharma , Hao Ngo
CPC分类号: H04B5/0031 , H04B5/0062 , H04W4/80
摘要: Embodiments of the disclosure are directed to performing a transaction between a mobile device and an access device. Value information is provided to the access device by the mobile device. The value information is not necessary to complete the transaction.
摘要翻译: 本公开的实施例涉及在移动设备和接入设备之间执行交易。 值信息由移动设备提供给接入设备。 价值信息不需要完成交易。
-
-
-
-
-
-
-
-
-