公开(公告)号：US09825946B2

公开(公告)日：2017-11-21

申请号：US14985664

申请日：2015-12-31

Applicant: MasterCard International Incorporated

Inventor： Mehdi Collinge ,  Michael Christopher Ward ,  Sandra Jansen

IPC: H04L29/06

CPC classification number: H04L63/0853 ,  G06Q20/00 ,  H04L63/0414 ,  H04L63/083 ,  H04L63/0876 ,  H04L63/10 ,  H04L63/123

Abstract: A method for enhanced validation of cryptograms for varying account number lengths includes: storing one or more primary account numbers and a plurality of formatting templates, each template being associated with an account number length; receiving a selection indicating a specific primary account number; identifying a specific formatting template where the associated account number length corresponds to a length of the specific primary account number; receiving an unpredictable number from a point of sale device; generating a cryptogram based on at least the unpredictable number and one or more algorithms; generating a data string, wherein the data string includes at least the generated cryptogram, the specific primary account number, and the unpredictable number, and wherein the data string is formatted based on the identified specific formatting template; and electronically transmitting the generated data string to the point of sale device.

公开(公告)号：US11829999B2

公开(公告)日：2023-11-28

申请号：US16682357

申请日：2019-11-13

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Susan Thompson ,  Patrik Smets ,  David Anthony Roberts ,  Michael Christopher Ward

IPC: G06Q20/38 ,  G06Q20/32 ,  G06Q20/40

CPC classification number: G06Q20/3823 ,  G06Q20/322 ,  G06Q20/385 ,  G06Q20/405 ,  G06Q20/4012

Abstract: A system and method for generating and provisioning payment credentials to a mobile device lacking a secure element includes receiving and storing by the mobile device a card profile from a remote system. The card profile may include payment credentials corresponding to a payment account and a profile identifier. The mobile device may receive a mobile personal identification number (PIN) input by a user of the mobile device and transmit a key request to the remote system. The mobile device may receive a single use key which may include an application transaction counter and a generating key from the remote system. The mobile device may generate a payment cryptogram valid for a single financial transaction based on the received single use key and the mobile PIN and transmit the payment credentials and the generated payment cryptogram to a point-of-sale terminal for use in a financial transaction.

公开(公告)号：US10476871B2

公开(公告)日：2019-11-12

申请号：US16226831

申请日：2018-12-20

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Michael Christopher Ward ,  Sandra Jansen

IPC: H04L29/06 ,  G06Q20/00 ,  G06Q20/20 ,  G06Q20/32 ,  G06Q20/38

Abstract: A method for enhanced validation of cryptograms for varying account number lengths includes: storing one or more primary account numbers and a plurality of formatting templates, each template being associated with an account number length; receiving a selection indicating a specific primary account number; identifying a specific formatting template where the associated account number length corresponds to a length of the specific primary account number; receiving an unpredictable number from a point of sale device; generating a cryptogram based on at least the unpredictable number and one or more algorithms; generating a data string, wherein the data string includes at least the generated cryptogram, the specific primary account number, and the unpredictable number, and wherein the data string is formatted based on the identified specific formatting template; and electronically transmitting the generated data string to the point of sale device.

公开(公告)号：US10515359B2

公开(公告)日：2019-12-24

申请号：US13827042

申请日：2013-03-14

Applicant: MasterCard International Incorporated

Inventor： Mehdi Collinge ,  Susan Thompson ,  Patrik Smets ,  David Anthony Roberts ,  Michael Christopher Ward

IPC: G06Q20/38 ,  G06Q20/40 ,  G06Q20/32

Abstract: A method for generating and provisioning payment credentials to a mobile device lacking a secure element includes: generating a card profile associated with a payment account, wherein the card profile includes at least payment credentials corresponding to the associated payment account and a profile identifier; provisioning, to a mobile device lacking a secure element, the generated card profile; receiving, from the mobile device, a key request, wherein the key request includes at least a mobile identification number (PIN) and the profile identifier; using the mobile PIN; generating a single use key, wherein the single use key includes at least the profile identifier, an application transaction counter, and a generating key for use in generating a payment cryptogram valid for a single financial transaction; and transmitting the generated single use key to the mobile device.

公开(公告)号：US20130262317A1

公开(公告)日：2013-10-03

申请号：US13827042

申请日：2013-03-14

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi COLLINGE ,  Susan Thompson ,  Patrik Smets ,  David Anthony Roberts ,  Michael Christopher Ward

IPC: G06Q20/38

CPC classification number: G06Q20/3823 ,  G06Q20/322 ,  G06Q20/385 ,  G06Q20/4012 ,  G06Q20/405

Abstract: A method for generating and provisioning payment credentials to a mobile device lacking a secure element includes: generating a card profile associated with a payment account, wherein the card profile includes at least payment credentials corresponding to the associated payment account and a profile identifier; provisioning, to a mobile device lacking a secure element, the generated card profile; receiving, from the mobile device, a key request, wherein the key request includes at least a mobile identification number (PIN) and the profile identifier; using the mobile PIN; generating a single use key, wherein the single use key includes at least the profile identifier, an application transaction counter, and a generating key for use in generating a payment cryptogram valid for a single financial transaction; and transmitting the generated single use key to the mobile device.

Abstract translation: 一种用于向缺少安全元件的移动设备生成和提供支付凭证的方法包括：生成与支付账户相关联的卡配置文件，其中所述卡配置文件至少包括对应于相关支付帐户的支付凭证和配置文件标识符; 提供给缺少安全元件的移动设备，生成的卡简档; 从所述移动设备接收密钥请求，其中所述密钥请求至少包括移动标识号（PIN）和所述简档标识符; 使用移动PIN; 生成单个使用密钥，其中所述单一使用密钥至少包括所述简档标识符，应用交易计数器和用于生成对单个金融交易有效的支付密码的生成密钥; 以及将生成的单次使用密钥发送到移动设备。

公开(公告)号：US10187384B2

公开(公告)日：2019-01-22

申请号：US15782339

申请日：2017-10-12

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Mehdi Collinge ,  Michael Christopher Ward ,  Sandra Jansen

IPC: H04L29/06 ,  G06Q20/00

Abstract: A method for enhanced validation of cryptograms for varying account number lengths includes: storing one or more primary account numbers and a plurality of formatting templates, each template being associated with an account number length; receiving a selection indicating a specific primary account number; identifying a specific formatting template where the associated account number length corresponds to a length of the specific primary account number; receiving an unpredictable number from a point of sale device; generating a cryptogram based on at least the unpredictable number and one or more algorithms; generating a data string, wherein the data string includes at least the generated cryptogram, the specific primary account number, and the unpredictable number, and wherein the data string is formatted based on the identified specific formatting template; and electronically transmitting the generated data string to the point of sale device.

公开(公告)号：US10007909B2

公开(公告)日：2018-06-26

申请号：US14558049

申请日：2014-12-02

Applicant: MasterCard International Incorporated

Inventor： Mehdi Collinge ,  Michael Christopher Ward

IPC: H04L29/06 ,  G06Q20/38 ,  G06Q20/40 ,  H04W12/04

CPC classification number: G06Q20/3821 ,  G06Q20/3829 ,  G06Q20/4012 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/062 ,  H04L63/083 ,  H04L2463/102 ,  H04W12/04

Abstract: A method for receiving and processing a data message includes: storing at least an encryption key; receiving a data message, the data message including at an encrypted message and a message authentication code, the message authentication code generated using at least a portion of the encrypted message; generating a reference authentication code using at least a portion of the encrypted message included in the received data message; validating the received data message based on a check of the message authentication code included in the received data message against the generated reference authentication code; and decrypting the encrypted message included in the received data message using the stored encryption key to obtain a decrypted message.

公开(公告)号：US20150156176A1

公开(公告)日：2015-06-04

申请号：US14558049

申请日：2014-12-02

Applicant: MasterCard International Incorporated

Inventor： Mehdi COLLINGE ,  Michael Christopher Ward

IPC: H04L29/06

CPC classification number: G06Q20/3821 ,  G06Q20/3829 ,  G06Q20/4012 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/062 ,  H04L63/083 ,  H04L2463/102 ,  H04W12/04

Abstract: A method for receiving and processing a data message includes: storing at least an encryption key; receiving a data message, the data message including at an encrypted message and a message authentication code, the message authentication code generated using at least a portion of the encrypted message; generating a reference authentication code using at least a portion of the encrypted message included in the received data message; validating the received data message based on a check of the message authentication code included in the received data message against the generated reference authentication code; and decrypting the encrypted message included in the received data message using the stored encryption key to obtain a decrypted message.

Abstract translation: 一种用于接收和处理数据消息的方法包括：至少存储加密密钥; 接收数据消息，所述数据消息包括加密消息和消息认证码，所述消息认证码使用所述加密消息的至少一部分生成; 使用所接收的数据消息中包含的加密消息的至少一部分来生成参考认证码; 基于对所接收的数据消息中包括的消息认证码的检查，基于生成的参考认证码来验证接收到的数据消息; 以及使用所存储的加密密钥解密所接收的数据消息中包含的加密消息，以获得解密的消息。