公开(公告)号：US20150120556A1

公开(公告)日：2015-04-30

申请号：US14469560

申请日：2014-08-26

Applicant: GOOGLE INC.

Inventor： Justin Lee Brickell ,  Jonathan Kingsley Blatter ,  Bobby Wieler ,  Harry Lee Butler, IV ,  Ignacio Carlos Blanco ,  Denis Lila

IPC: G06Q20/40 ,  G06Q20/38

CPC classification number: H04L63/123 ,  G06F21/45 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/385 ,  G06Q20/40

Abstract: An account management system creates a bundle of private application transaction counters (ATCs) and a bundle of corresponding public ATCs, and transmits them to a user device. The device receives a request for payment information from a merchant and processes the request without accessing a secure element processor on the device. The device calculates a security code using one of the bundle of private ATCs and a transaction number received from the merchant. The device transmits proxy account information, the calculated security code, and the corresponding public ATCs to the merchant. The merchant transmits a payment request to the account management system as the issuer of the proxy account information. The account management system retrieves the private ATC using the public ATC, and determines the validity of the security code by recomputing it. The account management system retrieves the financial account information and requests authorization from the issuer.

Abstract translation: 帐户管理系统创建一组私有应用程序交易计数器（ATC）和一组相应的公共ATC，并将其传输到用户设备。 设备从商家接收对付款信息的请求，并处理该请求而不访问设备上的安全元件处理器。 该设备使用一组私有ATC和从商家接收的交易号码来计算安全码。 设备将代理帐户信息，计算的安全码和相应的公共ATC发送给商家。 商家向账户管理系统发送支付请求作为代理帐户信息的发行者。 帐户管理系统使用公共ATC检索私有ATC，并通过重新计算确定安全码的有效性。 帐户管理系统检索财务帐户信息，并请求发行人的授权。

公开(公告)号：US20160275492A1

公开(公告)日：2016-09-22

申请号：US14662210

申请日：2015-03-18

Applicant: GOOGLE INC.

Inventor： Justin Lee Brickell ,  Max Christoff

IPC: G06Q20/36 ,  G06Q20/34 ,  G06Q20/38

Abstract: A user accesses a merchant system website via a user computing device, selects items for purchase, and selects an option to checkout using a digital wallet account. The user selects payment information associated with a payment card device for use in an online transaction. The merchant system transmits an unpredictable number to the user computing device. The user taps the payment card device to the user computing device to establish a wireless communication channel over which the payment card device receives the unpredictable number. The payment card device transmits payment card information and a check sum calculated from the unpredictable number and by the payment card device to the merchant system via the user computing device. The merchant system transmits the check sum and payment card information in a transaction authorization request to the issuer system, which verifies the check sum using the shared secret and the unpredictable number.

Abstract translation: 用户通过用户计算设备访问商家系统网站，选择要购买的商品，并使用数字钱包帐户选择选项进行结帐。 用户选择与支付卡设备相关联的支付信息以用于在线交易。 商家系统向用户计算设备发送不可预测的号码。 用户将支付卡设备点击到用户计算设备以建立无线通信信道，支付卡设备在该无线通信信道上接收不可预测的号码。 支付卡设备经由用户计算设备将支付卡信息和从不可预知的号码和支付卡设备计算的支票金额发送给商家系统。 商户系统将交易授权请求中的支票金额和支付卡信息发送给发行人系统，该发行人系统使用共享秘密和不可预测的号码来核对支票金额。

公开(公告)号：US20160125396A1

公开(公告)日：2016-05-05

申请号：US14527763

申请日：2014-10-29

Applicant: GOOGLE INC.

Inventor： Justin Lee Brickell ,  Max Christoff

IPC: G06Q20/36 ,  G06Q20/38 ,  G06Q20/40

CPC classification number: G06Q20/367 ,  G06Q20/382 ,  G06Q20/401

Abstract: In an example embodiment, an issuer system receives payment card information from a payment processing system, wherein the payment card information is received from a payment card via a user computing device using near field communication. The issuer system generates an unpredictable number for the payment card and communicates the unpredictable number to the payment card via the payment processing system and the user computing device. The payment card calculates a cryptographic checksum based on the unpredictable number and a shared secret and communicates the checksum to the issuer system via the user computing device and payment processing system. The issuer system verifies the checksum using the shared secret and the unpredictable number. The issuer system generates a token associated with the payment card and transmits the token to the user computing device via the payment processing system for use in an online transaction.

Abstract translation: 在示例实施例中，发行者系统从支付处理系统接收支付卡信息，其中通过使用近场通信的用户计算设备从支付卡接收支付卡信息。 发行者系统为支付卡生成不可预测的号码，并通过支付处理系统和用户计算装置将不可预测的号码传送到支付卡。 支付卡基于不可预测的号码和共享秘密计算加密校验和，并且经由用户计算设备和支付处理系统将校验和传送给发行者系统。 发行者系统使用共享密钥和不可预测的数字来验证校验和。 发行者系统生成与支付卡相关联的令牌，并通过支付处理系统向用户计算设备发送令牌，以用于在线交易。

公开(公告)号：US20150220925A1

公开(公告)日：2015-08-06

申请号：US14174828

申请日：2014-02-06

Applicant: Google Inc.

Inventor： Justin Lee Brickell ,  Swaminathan Mahadevan ,  Harry Lee Butler, IV ,  Bobby Wieler ,  Ignacio Carlos Blanco

IPC: G06Q20/40 ,  G06Q20/36

CPC classification number: G06Q20/4014 ,  G06Q20/36

Abstract: Using discretionary data fields to secure transactions comprises a payment system employing a server configured to associate a payment account of a user with a user computing device, the payment account comprising a payment account identifier that identifies the payment account, and establish a authentication challenge and an corresponding challenge response. The payment system receives a first payment authorization request originating from a merchant computing system comprising the payment account identifier, data associated with the payment account identifier, and a request to fund a transaction using the payment account, wherein the data associated with the payment account identifier comprises a challenge response provided by the user computing device located in a discretionary data field. The payment system compares the provided challenge response with the corresponding challenge response, and approves the transaction based on whether the provided challenge response and the corresponding challenge response match.

Abstract translation: 使用任意数据字段来保护交易包括采用服务器的支付系统，所述服务器被配置为将用户的支付账户与用户计算设备相关联，所述支付账户包括标识支付账户的支付帐户标识符，以及建立认证挑战和 相应的挑战回应。 支付系统接收来自商业计算系统的第一支付授权请求，该请求包括支付帐户标识符，与支付帐户标识符相关联的数据，以及使用支付账户资助交易的请求，其中与付款帐户识别符相关联的数据 包括由位于任意数据字段中的用户计算设备提供的质询响应。 支付系统将提供的挑战响应与相应的挑战响应进行比较，并且基于所提供的挑战响应和相应的挑战响应是否匹配来批准交易。

公开(公告)号：US08930274B1

公开(公告)日：2015-01-06

申请号：US14133591

申请日：2013-12-18

Applicant: Google Inc.

Inventor： Justin Lee Brickell ,  Jonathan Kingsley Blatter ,  Bobby Wieler ,  Harry Lee Butler, IV ,  Ignacio Carlos Blanco ,  Denis Lila

IPC: G06Q40/00 ,  G06Q20/00 ,  G06Q20/40

CPC classification number: H04L63/123 ,  G06F21/45 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/385 ,  G06Q20/40

Abstract: An account management system creates a bundle of private application transaction counters (ATCs) and a bundle of corresponding public ATCs, and transmits them to a user device. The device receives a request for payment information from a merchant and processes the request without accessing a secure element processor on the device. The device calculates a security code using one of the bundle of private ATCs and a transaction number received from the merchant. The device transmits proxy account information, the calculated security code, and the corresponding public ATCs to the merchant. The merchant transmits a payment request to the account management system as the issuer of the proxy account information. The account management system retrieves the private ATC using the public ATC, and determines the validity of the security code by recomputing it. The account management system retrieves the financial account information and requests authorization from the issuer.

Abstract translation: 帐户管理系统创建一组私有应用程序交易计数器（ATC）和一组相应的公共ATC，并将其传输到用户设备。 设备从商家接收对付款信息的请求，并处理该请求而不访问设备上的安全元件处理器。 该设备使用一组私有ATC和从商家接收的交易号码来计算安全码。 设备将代理帐户信息，计算的安全码和相应的公共ATC发送给商家。 商家向账户管理系统发送支付请求作为代理帐户信息的发行者。 帐户管理系统使用公共ATC检索私有ATC，并通过重新计算确定安全码的有效性。 帐户管理系统检索财务帐户信息，并请求发行人的授权。

公开(公告)号：US09858572B2

公开(公告)日：2018-01-02

申请号：US14174828

申请日：2014-02-06

Applicant: Google Inc.

Inventor： Justin Lee Brickell ,  Swaminathan Mahadevan ,  Harry Lee Butler, IV ,  Bobby Wieler ,  Ignacio Carlos Blanco

IPC: G06K5/00 ,  G06Q20/40 ,  G06Q20/36

CPC classification number: G06Q20/4014 ,  G06Q20/36

Abstract: Using discretionary data fields to secure transactions comprises a payment system employing a server configured to associate a payment account of a user with a user computing device, the payment account comprising a payment account identifier that identifies the payment account, and establish a authentication challenge and an corresponding challenge response. The payment system receives a first payment authorization request originating from a merchant computing system comprising the payment account identifier, data associated with the payment account identifier, and a request to fund a transaction using the payment account, wherein the data associated with the payment account identifier comprises a challenge response provided by the user computing device located in a discretionary data field. The payment system compares the provided challenge response with the corresponding challenge response, and approves the transaction based on whether the provided challenge response and the corresponding challenge response match.

公开(公告)号：US20170104765A1

公开(公告)日：2017-04-13

申请号：US15333944

申请日：2016-10-25

Applicant: GOOGLE INC.

Inventor： Justin Lee Brickell ,  Jonathan Kingsley Blatter ,  Bobby Wieler ,  Harry Lee Butler, IV ,  Ignacio Carlos Blanco ,  Denis Lila

IPC: H04L29/06 ,  G06Q20/32 ,  G06F21/45

CPC classification number: H04L63/123 ,  G06F21/45 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/385 ,  G06Q20/40

Abstract: A bundle of public counters and a corresponding bundle of private counters are created and transmitted to a user device. The user device receives a request and processes the request without accessing a secure element processor on the user device. The user device calculates a security code using the private counter and a number. The user device transmits the calculated security code and one of the bundle of public counters in response to the request. A receiver of the response to the request determines the validity of the public counter and looks up the corresponding private counter using the public counter. The receiver determines the validity of the security code by recomputing it using the private counter and the number.