公开(公告)号：US20240412212A1

公开(公告)日：2024-12-12

申请号：US18808594

申请日：2024-08-19

Applicant: Mastercard International Incorporated

Inventor： Mehdi COLLINGE ,  Patrik SMETS ,  Axel Emile Jean Charles CATELAND

IPC: G06Q20/40 ,  G06Q20/38 ,  H04L9/40 ,  H04W12/041

Abstract: A method for generating payment credentials in a payment transaction includes storing, in a memory, at least a card master key associated with a transaction account. The method also includes generating, by a processing device, a first session key based on at least the stored card master key; generating, by the processing device, a second session key; generating, by the processing device, a first application cryptogram based on at least the first session key; generating, by the processing device, a second application cryptogram based on at least the second session key; and transmitting, by a transmitting device, at least the first application cryptogram and second application cryptogram for use in a payment transaction.

公开(公告)号：US20130262317A1

公开(公告)日：2013-10-03

申请号：US13827042

申请日：2013-03-14

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Susan Thompson ,  Patrik Smets ,  David Anthony Roberts ,  Michael Christopher Ward

IPC: G06Q20/38

CPC classification number: G06Q20/3823 ,  G06Q20/322 ,  G06Q20/385 ,  G06Q20/4012 ,  G06Q20/405

Abstract: A method for generating and provisioning payment credentials to a mobile device lacking a secure element includes: generating a card profile associated with a payment account, wherein the card profile includes at least payment credentials corresponding to the associated payment account and a profile identifier; provisioning, to a mobile device lacking a secure element, the generated card profile; receiving, from the mobile device, a key request, wherein the key request includes at least a mobile identification number (PIN) and the profile identifier; using the mobile PIN; generating a single use key, wherein the single use key includes at least the profile identifier, an application transaction counter, and a generating key for use in generating a payment cryptogram valid for a single financial transaction; and transmitting the generated single use key to the mobile device.

Abstract translation: 一种用于向缺少安全元件的移动设备生成和提供支付凭证的方法包括：生成与支付账户相关联的卡配置文件，其中所述卡配置文件至少包括对应于相关支付帐户的支付凭证和配置文件标识符; 提供给缺少安全元件的移动设备，生成的卡简档; 从所述移动设备接收密钥请求，其中所述密钥请求至少包括移动标识号（PIN）和所述简档标识符; 使用移动PIN; 生成单个使用密钥，其中所述单一使用密钥至少包括所述简档标识符，应用交易计数器和用于生成对单个金融交易有效的支付密码的生成密钥; 以及将生成的单次使用密钥发送到移动设备。

公开(公告)号：US20180041502A1

公开(公告)日：2018-02-08

申请号：US15782339

申请日：2017-10-12

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Michael Christopher WARD ,  Sandra JANSEN

IPC: H04L29/06 ,  G06Q20/00

CPC classification number: H04L63/0853 ,  G06Q20/00 ,  H04L63/0414 ,  H04L63/083 ,  H04L63/0876 ,  H04L63/10 ,  H04L63/123

Abstract: A method for enhanced validation of cryptograms for varying account number lengths includes: storing one or more primary account numbers and a plurality of formatting templates, each template being associated with an account number length; receiving a selection indicating a specific primary account number; identifying a specific formatting template where the associated account number length corresponds to a length of the specific primary account number; receiving an unpredictable number from a point of sale device; generating a cryptogram based on at least the unpredictable number and one or more algorithms; generating a data string, wherein the data string includes at least the generated cryptogram, the specific primary account number, and the unpredictable number, and wherein the data string is formatted based on the identified specific formatting template; and electronically transmitting the generated data string to the point of sale device.

公开(公告)号：US20150154596A1

公开(公告)日：2015-06-04

申请号：US14557974

申请日：2014-12-02

Applicant: MasterCard International Incorporated

Inventor： Mehdi COLLINGE ,  Cristian RADU

IPC: G06Q20/38 ,  H04W12/04

CPC classification number: G06Q20/3821 ,  G06Q20/3829 ,  G06Q20/4012 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/062 ,  H04L63/083 ,  H04L2463/102 ,  H04W12/04

Abstract: A method for building an advanced storage key includes: storing, in a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program including an instance identifier, and (iii) program code associated with a second program including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.

Abstract translation: 一种用于构建高级存储密钥的方法包括：在移动设备中至少存储与所述移动设备相关联的设备信息，（ii）与包括实例标识符的第一程序相关联的程序代码，以及（iii）程序 与包括第一密钥的第二程序相关联的代码; 通过执行与第一程序相关联的代码，基于设备信息生成与移动设备相关联的设备指纹; 通过执行与第一程序相关联的代码来生成随机值; 基于所生成的设备指纹，所生成的随机值和包括在与所述第一程序相关联的代码中的所述实例标识符来构建多样化器值; 以及通过与所述第二程序相关联的代码的执行，使用存储在与所述第二程序相关联的代码中的第一密钥解密所述构建的多样化器值以获得存储密钥。

公开(公告)号：US20240412213A1

公开(公告)日：2024-12-12

申请号：US18811926

申请日：2024-08-22

Applicant: Mastercard International Incorporated

Inventor： Mehdi COLLINGE ,  Cristian Radu

IPC: G06Q20/40 ,  G06Q20/38 ,  H04L9/40 ,  H04W12/041

Abstract: A method for building an advanced storage key includes: storing, in a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program including an instance identifier, and (iii) program code associated with a second program including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.

公开(公告)号：US20220245630A1

公开(公告)日：2022-08-04

申请号：US17719675

申请日：2022-04-13

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Patrik SMETS ,  Axel Emile Jean Charles CATELAND

IPC: G06Q20/38 ,  G06Q20/40 ,  H04L9/40 ,  H04W12/041

Abstract: A method for generating payment credentials in a payment transaction includes storing, in a memory, at least a card master key associated with a transaction account. The method also includes generating, by a processing device, a first session key based on at least the stored card master key; generating, by the processing device, a second session key; generating, by the processing device, a first application cryptogram based on at least the first session key; generating, by the processing device, a second application cryptogram based on at least the second session key; and transmitting, by a transmitting device, at least the first application cryptogram and second application cryptogram for use in a payment transaction.

公开(公告)号：US20160110711A1

公开(公告)日：2016-04-21

申请号：US14919265

申请日：2015-10-21

Applicant: MasterCard International Incorporated

Inventor： Mehdi COLLINGE ,  Patrik SMETS

IPC: G06Q20/38 ,  H04L29/06

CPC classification number: G06Q20/3829 ,  G06Q20/382 ,  G06Q20/3823 ,  H04L63/062 ,  H04L63/083 ,  H04L2463/061

Abstract: A method for generating cryptograms in a webservice environment includes: receiving, in a first environment of a computing system, a credential request transmitted by an external computing device using a secure communication protocol, the credential request including a transaction identifier and account identifier; transmitting, by the first environment, a data request to a second environment of the computing system, the data request including the account identifier; receiving, by the first environment, an account profile and session key from the second environment; transmitting, by the first environment, a cryptogram request to a third environment of the computing system, the cryptogram request including the account profile and session key; receiving, by the first environment, a cryptogram from the third environment generated using the account profile and session key; and transmitting, by the first environment, the cryptogram and transaction identifier to the external computing device via the secure communication protocol.

Abstract translation: 一种用于在web服务环境中生成密码的方法包括：在计算系统的第一环境中，接收由外部计算设备使用安全通信协议发送的证书请求，所述证书请求包括事务标识符和帐户标识符; 在所述第一环境中向所述计算系统的第二环境发送数据请求，所述数据请求包括所述帐户标识符; 在第一环境中接收来自第二环境的帐户简档和会话密钥; 在所述第一环境下向所述计算系统的第三环境发送密码请求，所述密码请求包括所述帐户简档和会话密钥; 在第一环境下接收使用帐户简档和会话密钥产生的第三环境的密码; 以及通过所述安全通信协议将所述密码和交易标识符通过所述第一环境发送到所述外部计算设备。

公开(公告)号：US20220156739A1

公开(公告)日：2022-05-19

申请号：US17592074

申请日：2022-02-03

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Patrik SMETS

IPC: G06Q20/38 ,  H04L9/40 ,  G06Q20/00

Abstract: A method for generating cryptograms in a webservice environment includes: receiving, in a first environment of a computing system, a credential request transmitted by an external computing device using a secure communication protocol, the credential request including a transaction identifier and account identifier; transmitting, by the first environment, a data request to a second environment of the computing system, the data request including the account identifier; receiving, by the first environment, an account profile and session key from the second environment; transmitting, by the first environment, a cryptogram request to a third environment of the computing system, the cryptogram request including the account profile and session key; receiving, by the first environment, a cryptogram from the third environment generated using the account profile and session key; and transmitting, by the first environment, the cryptogram and transaction identifier to the external computing device via the secure communication protocol.

公开(公告)号：US20200082395A1

公开(公告)日：2020-03-12

申请号：US16682357

申请日：2019-11-13

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Susan THOMPSON ,  Patrik SMETS ,  David Anthony ROBERTS ,  Michael Christopher WARD

IPC: G06Q20/38 ,  G06Q20/32 ,  G06Q20/40

Abstract: A method for generating and provisioning payment credentials to a mobile device lacking a secure element includes: generating a card profile associated with a payment account, wherein the card profile includes at least payment credentials corresponding to the associated payment account and a profile identifier; provisioning, to a mobile device lacking a secure element, the generated card profile; receiving, from the mobile device, a key request, wherein the key request includes at least a mobile identification number (PIN) and the profile identifier; using the mobile PIN; generating a single use key, wherein the single use key includes at least the profile identifier, an application transaction counter, and a generating key for use in generating a payment cryptogram valid for a single financial transaction; and transmitting the generated single use key to the mobile device.

公开(公告)号：US20180039968A1

公开(公告)日：2018-02-08

申请号：US15656058

申请日：2017-07-21

Applicant: Mastercard International Incorporated

Inventor： Mehdi COLLINGE ,  Alan JOHNSON

IPC: G06Q20/20 ,  G06K7/14 ,  G06K7/10 ,  G06Q20/32

CPC classification number: G06Q20/208 ,  G06K7/10722 ,  G06K7/1417 ,  G06Q20/20 ,  G06Q20/3274 ,  G06Q20/3276

Abstract: A system and method is disclosed for facilitating a mobile payment. A mobile phone 2 is provided and a front-facing camera 6 of the mobile phone 2 can image the display screen 14 of a point of sale device 10. In one arrangement one or more processors in the mobile phone 2 can convert magnetic stripe data from a payment card into a two-dimensional barcode for display on the screen 4 of the mobile phone 2. The two-dimensional barcode includes embedded information from the payment card including Application Transaction Counter (ATC) data and card verification (CVC3) data. An optical scanner 12 in the point of sale device 10 is used to read the two-dimensional barcode displayed on the mobile phone 2, and the code can be analysed to extract the embedded information. The extracted information can then be used to process a transaction.