Systems and methods for end to end encryption utilizing a commerce platform for card not present transactions

    公开(公告)号:US11810121B2

    公开(公告)日:2023-11-07

    申请号:US16523456

    申请日:2019-07-26

    Applicant: Stripe, Inc.

    CPC classification number: G06Q20/409 G06Q20/3829 G06Q20/322 G06Q2220/00

    Abstract: A method and apparatus for processing a transaction between a merchant system and a customer system, the customer system associated with a customer of the merchant are described. The method may include receiving, at a commerce platform, a transaction request from the merchant system, wherein the transaction request is generated by the merchant system and comprises a card identifier and encrypted payment card data, wherein the card identifier is determined from card data for a payment card used in the transaction and the encrypted payment card data comprises at least an encryption of a payment account number. The method may also include decrypting, by the commerce platform, the encrypted payment card data using an encryption key selected based on the card identifier, the encryption key associated with the commerce platform. Furthermore, the method may include authorizing, by the commerce platform in communication with one or more authorization systems, the transaction using the decrypted payment card data.

    Systems and methods for reader device registration, use, and management

    公开(公告)号:US11663573B2

    公开(公告)日:2023-05-30

    申请号:US17554727

    申请日:2021-12-17

    Applicant: Stripe, Inc.

    Abstract: A method and apparatus for reader device registration, activation, and use are described. The method may include receiving, by a commerce platform, a registration request generated by a reader device, wherein the registration request comprises at least identification data for the reader device. The method may also include transmitting, to the reader device, a registration code. The method may also include receiving, by the commerce platform from a merchant system, a second registration code purported to be the registration code transmitted to the reader device. The method may also include generating an encryption key associated with the reader device and transmitting the encryption key to the merchant system, wherein the encryption key is provided by merchant system to the reader device for use by the reader device when communicating with the commerce platform during merchant transactions.

    Automatically deploying artifacts

    公开(公告)号:US11550568B1

    公开(公告)日:2023-01-10

    申请号:US17504343

    申请日:2021-10-18

    Applicant: Stripe, Inc.

    Inventor: Jonathan Wall

    Abstract: A method and apparatus for automatically deploying artifacts are disclosed. In one embodiment, the method comprises generating a trusted configuration artifact with a forward immutable continuous integration (CI) implemented as a build pipeline; accessing, by an orchestration system, the trusted configuration artifact from the IAC repository; and automatically deploying the configuration to change a state of the cluster, according to an orchestration type associated with the trusted configuration artifact, including determining the orchestration type.

    Systems and methods for multi-region encryption/decryption redundancy

    公开(公告)号:US11539512B2

    公开(公告)日:2022-12-27

    申请号:US17066930

    申请日:2020-10-09

    Applicant: Stripe, Inc.

    Abstract: Methods and systems for encrypting and decrypting data comprising sending sensitive information to a first cryptographic processing system in a first cloud region for encryption with a first key encryption key generated by and stored by the first cryptographic processing system. The first encrypted sensitive information received from the first cryptographic processing system is stored in a first database. The sensitive information is also sent to a second cryptographic processing system in a second cloud region different from the first cloud region for encryption with a second key encryption key generated by and stored by the second cryptographic processing system. The second encrypted sensitive information received from the second cryptographic processing system is stored in a second database. If the first encrypted sensitive information cannot be decrypted by the first cryptographic processing system, the second encrypted sensitive information is sent to the second cryptographic processing system.

    Managed integrated payment environment

    公开(公告)号:US11429970B2

    公开(公告)日:2022-08-30

    申请号:US15997416

    申请日:2018-06-04

    Applicant: Stripe, Inc.

    Abstract: Embodiments of the invention include a method of performing a payment transaction comprising receiving transaction data by a PIN pad terminal from a point-of-sale terminal, and receiving tender from a customer, by the PIN pad terminal. Tender data and the transaction data are sent to a service gateway, by the PIN pad terminal. The service gateway collects metadata from the tender data and the transaction data. The tender data is sent by the PIN pad terminal to the point-of-sale terminal, which sends the tender data and the transaction data to a merchant gateway for approval or denial of the tender data. The tender data sent to the POS may be encrypted. The service gateway may provide customer and merchant analytics based on the metadata, as well as perform security/fraud checks, BIN management, PIN pad management. Systems are also disclosed.

    Architectures, systems, and methods for building trusted and secure artifacts

    公开(公告)号:US11328065B1

    公开(公告)日:2022-05-10

    申请号:US16523797

    申请日:2019-07-26

    Applicant: Stripe, Inc.

    Abstract: Architectures, systems and methods for building trusted and secure artifacts are disclosed. In one embodiment, the method comprises: receiving inputs including one or more instances of software code; verifying trustworthiness of the one or more inputs; creating software code using a forward immutable continuous integration (CI) pipeline having a plurality of stages with forward immutability between consecutive pipeline stages to receive the one or more inputs verified as trustworthy and to build and test one or more containers associated with the one or more inputs, wherein each subsequent stage after a first stage of the pipeline depends on an immutable output of an immediately preceding stage in the pipeline, and further wherein the pipeline includes an emission stage for outputting signed, trusted software code from the pipeline; and storing signed, trusted software code in a repository for deployment, the repository only accepting signed software code for deployment.

    Systems and methods for reader device registration, use, and management

    公开(公告)号:US11205164B1

    公开(公告)日:2021-12-21

    申请号:US16570792

    申请日:2019-09-13

    Applicant: Stripe, Inc.

    Abstract: A method and apparatus for reader device registration, activation, and use are described. The method may include receiving, by a commerce platform, a registration request generated by a reader device, wherein the registration request comprises at least identification data for the reader device. The method may also include transmitting, to the reader device, a registration code. The method may also include receiving, by the commerce platform from a merchant system, a second registration code purported to be the registration code transmitted to the reader device. The method may also include generating an encryption key associated with the reader device and transmitting the encryption key to the merchant system, wherein the encryption key is provided by merchant system to the reader device for use by the reader device when communicating with the commerce platform during merchant transactions.

    ARCHITECTURES, SYSTEMS, AND METHODS FOR CARD BASED TRANSACTIONS

    公开(公告)号:US20240020702A1

    公开(公告)日:2024-01-18

    申请号:US18373845

    申请日:2023-09-27

    Applicant: Stripe, Inc.

    Inventor: Jonathan Wall

    Abstract: A method and apparatus for processing a transaction between a merchant and a customer of the merchant are described. The method may include generating, at an ingress server, an initial transaction message by generating a deterministic identifier for a card used in the transaction from card data received for the transaction and encrypting the received card data. The method may also include providing the initial transaction message from the ingress server to a payment server. Furthermore, the method may include updating, by the payment server in response to an authorization of the transaction determined based at least in part on the deterministic identifier for the card, the initial transaction message with authorization data, and providing the updated initial transaction message from the payment server to an egress server. The method may also include communicating a final transaction message to an authorization system for processing the transaction between the merchant and the customer based on the card data.

    Architectures, systems, and methods for card based transactions

    公开(公告)号:US11790372B2

    公开(公告)日:2023-10-17

    申请号:US16523528

    申请日:2019-07-26

    Applicant: Stripe, Inc.

    Inventor: Jonathan Wall

    Abstract: A method and apparatus for processing a transaction between a merchant and a customer of the merchant are described. The method may include generating, at an ingress server, an initial transaction message by generating a deterministic identifier for a card used in the transaction from card data received for the transaction and encrypting the received card data. The method may also include providing the initial transaction message from the ingress server to a payment server. Furthermore, the method may include updating, by the payment server in response to an authorization of the transaction determined based at least in part on the deterministic identifier for the card, the initial transaction message with authorization data, and providing the updated initial transaction message from the payment server to an egress server. The method may also include communicating a final transaction message to an authorization system for processing the transaction between the merchant and the customer based on the card data.

    SYSTEMS AND METHODS FOR READER DEVICE REGISTRATION, USE, AND MANAGEMENT

    公开(公告)号:US20220108293A1

    公开(公告)日:2022-04-07

    申请号:US17554727

    申请日:2021-12-17

    Applicant: Stripe, Inc.

    Abstract: A method and apparatus for reader device registration, activation, and use are described. The method may include receiving, by a commerce platform, a registration request generated by a reader device, wherein the registration request comprises at least identification data for the reader device. The method may also include transmitting, to the reader device, a registration code. The method may also include receiving, by the commerce platform from a merchant system, a second registration code purported to be the registration code transmitted to the reader device. The method may also include generating an encryption key associated with the reader device and transmitting the encryption key to the merchant system, wherein the encryption key is provided by merchant system to the reader device for use by the reader device when communicating with the commerce platform during merchant transactions.

Patent Agency Ranking