公开(公告)号：US11301844B2

公开(公告)日：2022-04-12

申请号：US16325084

申请日：2017-08-11

Applicant: Mastercard International Incorporated

Inventor： Mehdi Collinge ,  Alan Johnson

IPC: G06Q20/38 ,  G06Q20/36 ,  G06Q20/40 ,  H04L9/08

Abstract: A cryptographic method of performing a tokenised transaction between a payment offering party and a payment accepting party is described. The tokenised transaction is mediated by a transaction scheme. The payment accepting party is provided with a merchant identity and a merchant certificate associated with that identity by the transaction scheme provider. The payment accepting party provides the merchant identity and transaction seed data to the payment offering party. The payment offering party validates the merchant identity and uses the merchant identity and the transaction seed data to generate a cryptogram for the tokenised transaction. The payment offering party provides the cryptogram to the payment accepting party for transmission to the transaction scheme provider for authorisation of the tokenised transaction. A suitable user computing device and merchant computing device for acting as payment offering party and payment accepting party respectively are also described.

公开(公告)号：US20200167767A1

公开(公告)日：2020-05-28

申请号：US16694582

申请日：2019-11-25

Applicant: Mastercard International Incorporated

Inventor： Valerie Wouters ,  Simon Phillips ,  Timothy Cheung ,  Alan Johnson

IPC: G06Q20/38 ,  G06Q20/32 ,  G06Q20/40 ,  H04L29/06 ,  H04L12/06 ,  H04W88/16

Abstract: There is provided an intermediary server system for providing data for use in authenticating an interaction between the mobile device and a gateway. This server system comprises: an input configured to receive, from the mobile device, interaction data comprising a plurality of interaction data items associated with the interaction and a security identifier uniquely identifying the interaction. The server system further comprises a processor configured with instructions that when executed cause the processor to: generate a request for reference data to be associated with the security identifier, the request comprising at least one of the plurality of interaction data items and the security identifier; transmit, to a remote authentication server, the generated request; receive, from the remote authentication server, the dynamic reference data; and alter the received interaction data by replacing at least one of the plurality of interaction data items with the dynamic reference data. The server system further comprises an output configured to transmit, to the gateway, the altered interaction data.

公开(公告)号：US20170158215A1

公开(公告)日：2017-06-08

申请号：US14956773

申请日：2015-12-02

Applicant: MasterCard International Incorporated

Inventor： Simon Phillips ,  Alan Johnson

IPC: B62B5/00 ,  G06Q30/06 ,  G06Q20/20 ,  B60B19/00 ,  B62B5/06

CPC classification number: B62B5/0096 ,  B60B19/00 ,  B60B33/0015 ,  B60B2200/432 ,  B62B3/14 ,  B62B2203/50 ,  G06Q20/208 ,  G06Q30/0633 ,  G07G1/0036 ,  G07G1/0081

Abstract: A wheel assembly for installation on a shopping cart to retro-fit the shopping cart for facilitating self-checkout. The wheel assembly may include a support structure and a wheel rotatably supported on the support structure. The wheel assembly may further include a rechargeable battery supported by the support structure and a charging module supported on the support structure. In addition, the wheel assembly may include a force-detection module configured to provide a signal related to an item event in which an item is deposited within the shopping cart. Still further, the wheel assembly may include a processing and communications unit configured to receive the signal from the force-detection module. The processing and communications unit may transmit the signal to a device that is separate from the wheel assembly.

公开(公告)号：US20240305442A1

公开(公告)日：2024-09-12

申请号：US18254769

申请日：2021-07-22

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Alan Johnson ,  Omar Laazimani

IPC: H04L9/06 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L9/0618 ,  H04L9/0819 ,  H04L9/3242

Abstract: A method of providing a secure service at a computing node for a requesting party external to the computing node is described. The following steps are taken at the computing node. A service request comprising a request to generate a credential is received from a requesting party. The computing node generates the credential and obtains service-related information. A clear message part is created comprising service-identifying information. A checksum is then created from at least a part of the service-identifying information and from at least a part of the credential and the service-related information. The credential, the service-related information and the checksum are then encrypted to form an encrypted message part. A message comprising the clear message part and the encrypted message part is then sent to the requesting party. Methods for providing secure services to validate the credential and to obtain the service-related information are also described, as is computing apparatus adapted to perform all these methods.

公开(公告)号：US11954680B2

公开(公告)日：2024-04-09

申请号：US17079382

申请日：2020-10-23

Applicant: Mastercard International Incorporated

Inventor： Simon Phillips ,  Alan Johnson ,  Michael John Cowen

IPC: G06Q20/40 ,  G07B15/00 ,  G07C9/00 ,  G07C9/10 ,  G07C9/25 ,  G07C9/27

CPC classification number: G06Q20/401 ,  G07B15/00 ,  G07C9/00309 ,  G07C9/00563 ,  G07C9/00571 ,  G07C9/00904 ,  G07C9/10 ,  G07C9/25 ,  G07C9/27

Abstract: Various implementation described herein are directed to a method for providing access control. User information is received at a device. A request to provide access control is generated by the device based on the received user information. The request is transmitted via a network to an access manager. A response to the request is received from the access manager. Access control via the device is provided based on the response to the request.

公开(公告)号：US11580531B2

公开(公告)日：2023-02-14

申请号：US15686532

申请日：2017-08-25

Applicant: MasterCard International Incorporated

Inventor： Valerie Wouters ,  Cristian Radu ,  Alan Johnson

IPC: G06Q20/36 ,  G06Q20/12 ,  G06Q20/20 ,  G06Q20/40 ,  G06Q20/38 ,  G06Q20/34

Abstract: A method and system include providing a user interface associated with an issuer of an account; receiving, at the user interface, a request to generate a token associated with a user account; generating at least one token associated with the user account; authenticating one or more elements associated with the user account, wherein authentication may be one of prior to and subsequent to the generation of the at least one token; and receiving the at least one token. Numerous other aspects are provided.

公开(公告)号：US20190354959A1

公开(公告)日：2019-11-21

申请号：US16411816

申请日：2019-05-14

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Simon Phillips ,  Alan Johnson

IPC: G06Q20/34 ,  G06Q20/40

Abstract: A first communication channel is established between a contactless blank IC (integrated circuit) payment card and a mobile device. The mobile device is in proximity to the contactless blank IC payment card. A second communication channel is established, via the mobile device, between a remote personalization server computer and the contactless blank IC payment card. Payment card personalization data is received and stored in the contactless blank IC payment card. The data had been downloaded from the remote personalization server computer to the contactless blank IC payment card via the second communication channel.

公开(公告)号：US20230327863A1

公开(公告)日：2023-10-12

申请号：US18042961

申请日：2021-07-22

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Alan Johnson ,  Omar Laazimani

IPC: H04L9/08 ,  H04L9/14 ,  H04L9/06 ,  H04L9/32

CPC classification number: H04L9/0861 ,  H04L9/14 ,  H04L9/0618 ,  H04L9/3242

Abstract: A method of providing a secure service at a computing node is described. The secure service is for a requesting party external to the computing node. The following steps take place at the computing node. A service request is received from the requesting party. This service request comprises a request to generate a credential. The credential is then generated, and service-related information is obtained. The credential and the service-related information are encrypted using an encryption process to form an encrypted message part. A service-identifying clear message part is also created, and a message is sent comprising the clear message part and the encrypted message part to the requesting party. Methods of using such a message to validate the credential, and of using such a message to confirm the integrity of service-related information held in the message, are also described, as is computing apparatus adapted to carry out one or more of these methods.

公开(公告)号：US11334872B2

公开(公告)日：2022-05-17

申请号：US16411816

申请日：2019-05-14

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Simon Phillips ,  Alan Johnson

IPC: G06Q20/40 ,  G06Q20/34

Abstract: A first communication channel is established between a contactless blank IC (integrated circuit) payment card and a mobile device. The mobile device is in proximity to the contactless blank IC payment card. A second communication channel is established, via the mobile device, between a remote personalization server computer and the contactless blank IC payment card. Payment card personalization data is received and stored in the contactless blank IC payment card. The data had been downloaded from the remote personalization server computer to the contactless blank IC payment card via the second communication channel.

公开(公告)号：US20210019728A1

公开(公告)日：2021-01-21

申请号：US16932657

申请日：2020-07-17

Applicant: Mastercard International Incorporated

Inventor： Mehdi Collinge ,  Alan Johnson

IPC: G06Q20/32 ,  G06Q20/40

Abstract: Currently, many aspects of electronic transactions have become digital, and may therefore be performed online using mobile devices. However, many of these possibilities have been adopted by no longer supporting legacy systems—in the newer and emerging economies, this does not create a major problem as they have few consumers using legacy systems and methods. But this lack of interoperability limits the adoption of legacy-compatible systems and method. It also restricts their adoption in other countries. In addition, the increased use of payment through such electronic transactions is increasing the frequency and amount of fraudulent transactions.
A computer-implemented electronic transaction method 400 is provided comprising: providing 270 a transaction identifier 150 to initiate an electronic transaction, the transaction identifier 150 comprising: a routing identifier 160; a serial number (174) not directly associated with the user 210; contextual information 190 comprising one or more parameters associated with the generation of the transaction identifier 150; verification information 180 comprising a value calculated deterministically using the serial number 174 and the contextual information 190. The transaction identifier 150 is conveyed to an Authenticator 600 using the routing identifier 160; who authenticates the transaction identifier 150 using the verification information 180, the serial number (174) and the contextual information 190, and allows initiation if it is considered authentic.
The authenticator has a high degree of freedom in defining the validity of the data contents. The improved transaction identifier may be adequately authenticated using data and values comprised in the improved transaction identifier itself. Optionally, additional external data or values (not comprised in the improved transaction identifier) may also be used. By using a serial number not directly associated with the user, more possibilities and more flexibility are provided to initiate electronic transactions, and in particular, electronic payment transactions.