CN114981828A - 控制用于非接触式卡的小应用程序的技术 - Google Patents
控制用于非接触式卡的小应用程序的技术 Download PDFInfo
- Publication number
- CN114981828A CN114981828A CN202080084875.8A CN202080084875A CN114981828A CN 114981828 A CN114981828 A CN 114981828A CN 202080084875 A CN202080084875 A CN 202080084875A CN 114981828 A CN114981828 A CN 114981828A
- Authority
- CN
- China
- Prior art keywords
- applet
- counter value
- transaction card
- client device
- indication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/356—Aspects of software for card payments
- G06Q20/3563—Software being resident on card
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/326—Payment applications installed on the mobile devices
- G06Q20/3263—Payment applications installed on the mobile devices characterised by activation or deactivation of payment capabilities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/343—Cards including a counter
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/352—Contactless payments by cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/354—Card activation or deactivation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/356—Aspects of software for card payments
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/357—Cards having a plurality of specified features
- G06Q20/3574—Multiple applications on card
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0435—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3278—RFID or NFC payments by means of M-devices
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computer Networks & Wireless Communication (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- Strategic Management (AREA)
- Accounting & Taxation (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Computer Security & Cryptography (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Telephonic Communication Services (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Storage Device Security (AREA)
- Computer And Data Communications (AREA)
Abstract
各种实施例总体上针对提供和控制用于交易卡的小应用程序的技术。更具体地,这里讨论的实施例包括基于交易卡的小应用程序是启用还是禁用来允许或拒绝它们。实施例还可以包括启用和禁用用于交易卡的小应用程序。
Description
相关申请
本申请要求于2019年12月30日提交的题为“TECHNIQUES TO CONTROL APPLETSFOR CONTACTLESS CARDS”的美国专利申请序列号16/731,009的优先权。上述申请的内容通过引用整体并入本文。
背景技术
今天,***用户可以在全国和世界各地的商家处使用他们的卡。发卡机构继续孜孜不倦地工作以提供增强功能和新功能。然而,当前卡技术的一个缺点是它们不容易以安全的方式升级。因此,当卡出现问题或有新功能可用时,发卡机构典型地会发行一张新卡,而旧卡将被丢弃。这种方法成本高,并且可能使卡用户在等待新卡时没有卡。
发明内容
本文描述的各种实施例可以包括设备、***、装置等,包括近场通信(NFC)接口、网络接口、用于存储指令的存储器以及与存储器、NFC接口和网络接口耦合的处理电路。处理电路能操作以执行指令,所述指令在被执行时致使处理电路执行以下操作:经由NFC接口与交易卡建立通信链路;经由NFC接口在通信链路上发送尝试执行用于交易卡的小应用程序的指示,其中小应用程序存储在交易卡的存储器中;并且经由NFC接口在通信链路上接收与小应用程序相关联的计数器值。处理电路在执行指令时执行以下操作:经由网络接口向服务器发送第一消息,其中第一消息包括计数器值和标识小应用程序的标识符;经由网络接口接收来自服务器的第二消息,其中第二消息包括允许尝试执行小应用程序的指示或拒绝尝试执行小应用程序的指示;并且基于在第二消息中接收到的允许的指示来允许尝试执行小应用程序,或者基于在第二条消息中接收到的拒绝的指示来拒绝尝试执行小应用程序。
各种实施例还可以包括设备、***、装置等,包括网络接口、用于存储指令的存储器以及与存储器和网络接口耦合的处理电路。处理电路能操作以执行指令,所述指令在被执行时致使处理电路执行以下操作:经由网络接口接收来自客户端设备的第一消息,所述第一消息包括计数器值和用于标识小应用程序的标识符,其中计数器值与小应用程序相关联,并且计数器值和小应用程序存储在交易卡的存储器中;确定存储在存储中的另一计数器值,其中所述另一计数器值与交易卡相关联;并且将计数器值与另一计数器值进行比较以确定是允许还是拒绝尝试执行用于交易卡的小应用程序。此外,基于计数器值和另一计数器值之间的比较,处理电路用于确定是允许还是拒绝尝试执行用于交易卡的小应用程序。处理电路还可以向客户端设备传送第二消息,包括允许尝试执行小应用程序的指示或拒绝尝试执行小应用程序的指示。
附图说明
图1A是数据传输***的示意图。
图1B示出了用于数据传输***以确定小应用程序是启用还是禁用的通信流程的示例。
图1C示出了用于数据事务***以启用/禁用小应用程序的通信流程的示例。
图2A是根据实施例的交易卡的图示。
图2B是根据实施例的交易卡的接触垫的图示。
图3是根据本文讨论的实施例的***的示例。
图4示出了第一流程图的示例。
图5示出了第二流程图的示例。
图6示出了第三流程图的示例。
图7示出了计算架构的示例。
具体实施方式
各种实施例通常针对控制用于交易卡的小应用程序的***、设备、技术等。更具体地,实施例包括:确定针对交易卡是启用还是禁用小应用程序,并且基于用于交易卡的小应用程序是启用还是禁用来允许或拒绝它们的执行。
例如,实施例可以包括诸如移动设备、个人计算机、个人数字助理和诸如此类的设备,其被配置为与交易卡建立通信链路并检测尝试执行用于交易卡的小应用程序。该设备可以在建立通信链路时与交易卡通信,包括向交易卡发送尝试执行小应用程序的指示。此外,该设备可以从交易卡数据接收数据,该信息可以包括与小应用程序相关联的计数器值并且可以存储在交易卡上。
在实施例中,该设备可以进一步与一个或多个其他***诸如银行***可通信地耦合,其包括可以用于确定针对交易卡是启用还是禁用小应用程序的服务器。例如,设备可以向服务器发送数据,包括计数器值和用于标识小应用程序的标识符。服务器可以基于存储在数据存储中的小应用程序的对应计数器值来确定小应用程序是启用还是禁用。例如,服务器可以在接收到的计数器值和存储的计数器值之间进行比较,以确定它们是否匹配,或者一个大于还是小于另一个。基于比较的结果,服务器可以确定小应用程序是启用还是禁用,例如,如果它们匹配或存储的计数器值小于接收到的值,则可以启用小应用程序。如果存储的计数器值大于接收到的计数器值,则可以禁用小应用程序。在一些情况下,所存储的计数器值可以设置为诸如NULL或“0000”之类的值,其可以指示小应用程序被禁用。
在实施例中,服务器可以发送数据,并且设备可以接收数据,该数据包括基于比较结果来允许尝试执行小应用程序的指示或拒绝尝试执行小应用程序的指示,例如,如果启用小应用程序,则允许其执行,并且如果禁用小应用程序,则拒绝其执行。实施例不限于这种方式。
实施例还可以包括启用和禁用用于交易卡的小应用程序的***、设备和技术。例如,客户端设备可以确定启用用于交易卡的小应用程序,例如,接收用户输入或小应用程序的选择。客户端设备可以进一步建立与交易卡的通信以传送数据,包括确定与小应用程序相关联的计数器值。
在实施例中,设备可以向银行***或其服务器发送数据,包括小应用程序的标识符和计数器值。服务器可以利用从设备接收到的数据并将在数据存储中的对应计数器值设置为接收到的计数器值。小应用程序然后可以被启用并在交易卡上使用。
在另一个示例中,设备可以确定禁用用于交易的小应用程序,例如,基于用户选择、欺诈检测等。设备可以将数据传送到服务器,并且服务器可以将数据存储中的对应计数器值设置为禁用小应用程序的值,例如,NULL、“0000”等。实施例不限于这些示例,并且下面提供进一步的细节。
现在参考附图,其中相似的附图标记始终用于指代相似的元件。在下面的描述中,出于解释的目的,阐述了许多具体细节以便提供对其的透彻理解。然而,很明显,没有这些具体细节也可以实践新颖实施例。在其他实例中,以框图形式示出了公知的结构和设备,以促进其描述。目的是覆盖权利要求范围内的所有修改、等同物和替代物。
图1A示出了根据示例实施例的***100。如下面进一步讨论的,***100可以包括交易卡105、客户端设备110、网络115和服务器120。尽管图1A示出了组件的单个实例,但是***100可以包括任何数量的组件。
***100可以包括一张或多张交易卡105,下面将参考图2A-图2B对其进行进一步解释。在一些实施例中,交易卡105可以经由诸如近场通信(NFC)和Europay、Mastercard和Visa(EMV)的各种有线和无线通信技术与诸如客户端设备110之类的设备通信。然而,实施例不限于这种方式并且可以包括经由其他技术与设备通信。
***100可以包括客户端设备110,其可以是网络启用的计算机(network-enabledcmputer)。在实施例中,客户端设备110可以是移动设备。例如,移动设备可以包括来自的iPhone、iPod、iPad或运行Apple的操作***的任何其他移动设备、运行Microsoft的Mobile操作***的任何设备、运行Google的操作***的任何设备、和/或任何其他智能手机、平板电脑或类似的可穿戴移动设备。然而,实施例不限于这种方式,客户端设备110可以是另一类型的设备,例如,通信设备、手持个人计算机(PC)、服务器、网络家电、PC、工作站、个人数字助理、瘦客户端、胖客户端等等。
客户端设备110可以包括包含了处理器和存储器的组件,并且应当理解,处理器可以包含附加组件,包括处理电路、存储器、错误和奇偶校验/CRC校验器、数据编码器、防冲突算法、控制器、命令解码器、安全性原语和防篡改硬件,如执行本文所述功能所需的。客户端设备110还可以包括显示器和输入设备。显示器可以是用于呈现视觉信息的任何类型的设备,诸如计算机监视器、平板显示器和移动设备屏幕,包括:液晶显示器(LCD)、发光二极管显示器、等离子面板、触摸屏显示器等。输入设备可以包括用于将信息输入到用户设备中以由用户设备可用和支持的任何设备,诸如触摸屏显示器、键盘、鼠标、光标控制设备、触摸屏、麦克风、数码相机、视频录像机或便携式摄像机。这些设备可用于输入信息并与此处描述的软件和其他设备进行交互。例如,客户端设备110可以包括一个或多个组件以使用户能够对交易卡105上的小应用程序执行一个或多个操作,例如启用或禁用。
在实施例中,客户端设备110可以包括一个或多个输入/输出(I/O)设备,包括使用无线和有线技术进行通信的那些。例如,客户端设备110可以包括一个或多个收发器以在蜂窝频带中通信,例如,700兆赫(MHz)频率范围、800兆赫(MHz)频率范围、850MHz频率范围、1700MHz频率范围、1900MHz频率范围、2100MHz频率范围、2300MHz频率范围、2500MHz频率范围、2600MHz频率范围等。收发器本身可以包括用于执行发送和接收操作的组件和电路。该组件和电路包括模数转换器、数模转换器、调制器、放大器等。在实施例中,收发器可以与一个或多个天线耦合以执行通信。此外,收发器可以包括附加物理层和媒体访问控制(MAC)层电路和软件和/或与其耦合,以根据一个或多个蜂窝标准进行通信,诸如第二代(2G)、3G、4G、以及5G或新无线电(NR)标准。附加的蜂窝标准和/或技术包括增强型数据速率GSM演进(EDGE)、演进数据优化(EVDO)、通用分组无线业务(GPRS)、高速分组接入(HSPA)、演进HSPA(HSPA+)、长期演进(LTE)、通用移动通信***(UMTS)、全球微波接入互操作性(WiMAX)等。收发器可以利用一种或多种无线电技术和协议(蜂窝协议),例如码分多址(CDMA)、频分双工(FDD)、时分双工(TDD)、多输入多输出(MIMO)、正交频分多址(OFDMA)等。实施例不限于这种方式。
在实施例中,客户端设备110可以包括附加的I/O设备,诸如与NFC天线(例如环形天线)耦合的NFC设备。NFC设备可以是无线电/控制器,其可操作以根据NFC协议进行通信并经由NFC天线采用电磁感应。在一个示例中,NFC设备可以在国际标准化组织/国际电工委员会(ISO/IEC)18000-3空中接口上以13.56MHz的未经许可的射频工业、科学和医疗(ISM)频带进行通信,从而实现从106到424千比特/秒(kbit/s)的数据速率。如下文将更详细讨论的,NFC设备可以被采用并经由应用提供以与另一个NFC使能的设备(例如,交易卡105)通信。
在一个示例中,客户端设备110包括可以作为发起者操作的NFC设备,并且交易卡105可以作为目标来操作。在该示例中,客户端设备110和交易卡105可以以被动操作模式操作。作为发起者操作的客户端设备110使作为目标操作的交易卡105激励并为其提供载波字段。交易卡105从发起者提供的电磁场汲取其操作功率。在实施例中,包括NFC设备的客户端设备110可以连续和周期性地(或半周期性地)搜索目标,例如交易卡105。在实施例中,客户端设备110可以根据NFC协议与交易卡105通信信号,包括数据。例如,客户端设备110可以与交易卡105通信以确定交易卡105的小应用程序的状态。实施例不限于这种方式。
在实施例中,客户端设备110还可以包括能够经由EMV协议和标准读取和写入交易卡105的EMV读取器/写入器。例如,客户端设备110可以使用EMV读取器/写入器从交易卡的集成芯片读取和写入交易卡的集成芯片。EMV读取器/写入器可以包括一个或多个垫,其可以与交易卡105的一个或多个垫可通信地、物理和电耦合。一旦耦合,客户端设备110就可以利用EMV读取器/写入器将数据、信息、小应用程序等写入到交易卡105。
在一些实施例中,***100的客户端设备110还可以与***100的其他组件通信,包括一个或多个服务器120。例如,客户端设备110可以经由一个或多个网络115与一个或多个服务器120通信,并且可以作为与服务器120进行的相应前端对后端配对来操作。客户端设备110可以例如从在客户端设备110上执行的应用或代码向服务器120发送一个或多个请求。一个或多个请求可以与从服务器120检索数据和向服务器120提供数据相关联。例如,服务器120可以从客户端设备110接收一个或多个请求。基于来自客户端设备110的一个或多个请求,服务器120可以被配置为从一个或多个数据库(未示出)检索所请求的数据。基于从一个或多个数据库接收到所请求的数据,服务器120可以被配置为将接收到的数据发送到客户端设备110,其中接收到的数据响应于一个或多个请求。
在一些实施例中,服务器120可以与数据存储耦合以存储关于交易卡105上的小应用程序的数据和信息。数据存储可以是任何类型的数据存储,诸如存储在本地和/或远程存储***、基于云的数据存储***和诸如此类上的一个或多个数据库。在一些情况下,客户端设备110可以与服务器120通信以确定是启用还是禁用交易卡105的一个或多个小应用程序来执行。例如,服务器120可以从客户端设备110接收关于一个或多个小应用程序105的数据并且基于数据存储中的信息来确定针对交易卡是否启用和禁用小应用程序。从客户端设备110接收到的数据可以包括关于小应用程序的信息,例如小应用程序的标识符和与小应用程序相关联的计数器值,服务器可以使用这些信息来执行查找并确定是启用还是禁用小应用程序,如将在下面的图1B中更详细地讨论的。
在另一示例中,客户端设备110可以与服务器120通信以启用和/或禁用用于交易卡105的一个或多个小应用程序。例如,客户端设备110可以接收请求启用或禁用用于交易卡105的小应用程序的用户输入,并将请求传送到服务器120。服务器120可以执行一个或多个操作来启用/禁用小应用程序,如将在图1C中更详细地讨论的。
在实施例中,一个或多个服务器120可以具有耦合到存储器的附加组件,诸如一个或多个处理器。服务器120可以被配置为中央***、服务器或平台以在不同时间控制和调用各种数据以执行多个工作流动作。服务器120可以被配置为连接到一个或多个数据库。服务器120也可以连接到至少一个客户端设备110。实施例不限于这些组件,并且服务器120可以包括其他组件以执行这里讨论的操作。
***100可以包括一个或多个网络115。在一些示例中,网络115可以是无线网络、有线网络、或无线网络和有线网络任意组合中的一个或多个,并且可以被配置为将客户端设备110连接到服务器120。例如,网络115可以包括以下一个或多个:光纤网络、无源光网络、电缆网络、互联网网络、卫星网络、无线局域网(LAN)、全球移动通信***、个人通信服务、个人局域网、无线应用协议、多媒体消息服务、增强消息服务、短消息服务、基于时分多路复用的***、基于码分多址的***、D-AMPS、Wi-Fi、固定无线数据、IEEE 802.11b、802.15.1、802.11n和802.11g、蓝牙、NFC、射频识别(RFID)、Wi-Fi等。
另外,网络115可以包括但不限于:电话线、光纤、IEEE以太网902.3、广域网、无线个人局域网、LAN或诸如互联网的全球网络。另外,网络115可以支持互联网网络、无线通信网络、蜂窝网络或诸如此类或其任何组合。网络115可以进一步包括一个网络,或者上述任何数量的示例性类型的网络,其作为独立网络操作或彼此协作。网络115可以利用它们可通信地耦合到的一个或多个网络元件的一个或多个协议。网络115可以转换为网络设备的一个或多个协议或从其他协议转换为网络设备的一个或多个协议。尽管网络115被描绘为单个网络,但是应当理解,根据一个或多个示例,网络115可以包括多个互连的网络,诸如例如互联网、服务提供商的网络、有线电视网络、公司网络(诸如***关联网络)和家庭网络。
图1B示出了可以由***100执行以确定针对交易卡105是启用还是禁用小应用程序的示例通信流程150。出于简化目的,示出的示例包括交易卡105、客户端设备110和服务器120。然而,实施例不限于这种方式,并且这里讨论的***可能包括额外的设备、组件、装置等,并且仍然与这里讨论的实施例一致。
在步骤152处,客户端设备110可以检测尝试执行用于交易卡105的小应用程序。例如,客户端设备110可以包括可以在客户端设备110上执行的一个或多个应用。客户端设备110可以经由用户输入和/或应用从用户接收请求以发起用于交易卡105的小应用程序,并且小应用程序可以至少部分地存储在交易卡105上。例如,小应用程序发起可以是由交易卡105发生足够靠近客户端设备110引起,例如用于NFC的操作距离。在某些情况下,客户端设备110可以包括在显示器上的图形用户界面(GUI)中呈现图形以指示用户将交易卡105靠近客户端设备110。在其他情况下,当交易卡105足够靠近客户端设备110时,小应用程序的发起可以自动发生。
在步骤154处,客户端设备110可以建立与交易卡105的通信链路,该通信链路可以用于在客户端设备110和交易卡105之间传送数据。客户端设备110可以根据NFC协议与交易卡105执行一次或多次无线交换以建立通信链路。例如,交换可以包括针对客户端设备110和交易卡105的一个或多个验证和证实过程。实施例不限于这种方式。
在步骤156处,客户端设备110可以经由NFC接口在通信链路上发送尝试执行交易卡105的小应用程序的指示。在一些实施例中,执行交易卡105上的小应用程序的指示可以在小应用程序选择消息中发送并且包括标识小应用程序的标识符,例如小应用程序ID。
在实施例中,小应用程序可以是产生近场数据交换(NDEF)的小应用程序,并且可以根据NFC数据交换格式发送小应用程序选择消息。小应用程序可以存储在交易卡105的存储器或存储中,并且可以使一个或多个功能或操作能够在交易卡105和/或客户端设备110上执行,例如,由交易卡105的电路和/或客户端设备110的电路所执行。例如,小应用程序可以导致提供认证能力以提供单因素或多因素认证的动作,包括统一资源指示符(URI)以致使一个或多个操作在客户端设备110上执行,包括要由交易卡105和/或客户端设备110执行的代码片段(可执行代码)等。在一些实施例中,小应用程序在被执行时可以致使客户端设备110的处理电路执行以下至少一项:在网络浏览器中启动网站(由URI指向),启动由处理电路执行的应用(代码片段),并引起与另一个设备(由URI指向)的通信,例如,向在URI中标识的服务器发送奖励数据和/或向服务器发送包括更新奖励账户的指令的消息。
在一些实施例中,在确认小应用程序选择消息的选择和通信后,可以在交易卡105和客户端设备110之间发送选择文件消息随后是读取文件消息的序列。例如,客户端设备110可以发送包括“选择能力文件”、“读取能力文件”和“选择NDEF文件”的序列。在一些实施例中,小应用程序还可以在至少一个或多个选择和读取消息中被标识,例如,在“选择NDEF文件”的应用ID字段中。
在步骤158处,客户端设备110可以经由NFC接口在通信链路上接收与小应用程序相关联的计数器值。在实施例中,交易卡105可以通过基于小应用程序选择消息或“选择NDEF文件”中的标识符(小应用程序ID或应用ID)执行查找来确定与小应用程序相关联的计数器值。在实施例中,交易卡105可以将一个或多个计数器值存储在存储器中,每个计数器值可以与特定小应用程序相关联并且可以由交易卡105的电路使用标识符来定位。在实施例中,对于在客户端设备110和交易卡105之间针对相关联小应用程序而交换的每个消息,可以递增小应用程序的计数器值。如将更详细讨论的,计数器值可用于基于主密钥生成会话密钥,以使能针对特定小应用程序的客户端设备110和交易卡105之间的安全数据通信。
交易卡105可以生成包括报头和共享秘密(shared secret)的消息。共享秘密可以是与客户端设备110通信的任何类型的数据,诸如认证信息、账户信息、用户信息等。此外,消息认证码(MAC)密码可以从消息中创建,其可以包括报头和共享秘密。MAC密码然后可以与一个或多个随机数据块级联,并且MAC密码和随机数(RND)可以利用会话密钥加密。会话密钥可以由交易卡105针对特定交换会话生成,并且可以从主密钥生成,在客户端设备110和交易卡105之间共享,基于小应用程序的计数器值进一步加密。
此后,可以将密码和报头进行级联,并且编码为ASCII十六进制并且以NDEF消息格式(响应于“读取NDEF文件”消息)返回给客户端设备,并且还有计数器值。在一些情况下,计数器值可以以纯文本形式发送到客户端设备110,而在其他情况下,计数器值可以被加密。此外,MAC密码可由交易卡105作为NDEF标签发送,其与URI(例如,作为格式化字符串)和/或与可执行代码一起被包括在内。
在实施例中,客户端设备110可以执行与服务器120的一个或多个通信,并且确定对于交易卡105是启用还是禁用小应用程序。更具体地,在步骤160处,客户端设备110可以经由网络接口向服务器120发送一个或多个通信,并且该通信可以包括计数器值和用于标识小应用程序的标识符。计数器值可以是从交易卡105接收到的计数器值并且与小应用程序相关联。该标识符可以是先前在“选择NDEF消息”的小应用程序选择消息中发送到交易卡105的小应用程序ID或应用ID。在某些情况下,通信可以是从客户端设备110传送到服务器120的单个消息。然而,在其他情况下,通信可以是从客户端设备110发送到服务器120的两个或更多个消息,例如,计数器值和标识符可以在单独的消息中发送和/或包括与服务器120的多个通信。实施例不限于这种方式。
在实施例中,客户端设备110可以传送具有计数器值和标识符的附加信息。例如,客户端设备110还可以发送用户标识符、设备标识符、交易卡标识符、当前日期、位置等。客户端设备110还可以利用加密密钥对消息和数据进行加密,该加密密钥可以是用于特定会话密钥的会话密钥或客户端设备110和服务器120已知的共享主密钥。这些密钥可以是用于与交易卡105通信数据的相同或不同密钥。类似地,客户端设备110可以对消息进行签名,使得服务器120可以标识消息的来源。因此,可以在客户端设备110和服务器120之间安全地发送数据。
在步骤162处,服务器120可以基于小应用程序是启用还是禁用来确定是允许还是拒绝尝试执行小应用程序。例如,服务器120可以从客户端设备110接收消息,并确定小应用程序的另一个对应计数器值。更具体地,服务器120可以基于在来自客户端设备110的消息中接收到的标识符执行查找以确定与小应用程序相关联并且存储在数据存储中的对应计数器值。在一些情况下,服务器120可以使用附加信息,例如,用户标识信息(用户名)、账户标识信息(账号)、交易卡标识信息(***)等等。如所提到的,数据存储可以是本地或远程存储的数据库和/或基于云的数据库;然而,实施例不限于这种方式。
在实施例中,服务器120将从客户端设备110和从交易卡105接收到的消息中的计数器值与从与服务器120相关联的数据存储检索到的其他计数器值进行比较。基于计数器值和其他计数器值之间的比较,服务器120可以确定是允许还是拒绝尝试执行用于交易卡105的小应用程序。
在一个示例中,如果计数器值匹配或者如果从客户端设备110接收到的计数器值大于由服务器120检索到的计数器值,则服务器120可以确定针对交易卡120启用小应用程序。在实施例中,存储在交易卡105上并经由客户端设备110发送的计数器值可能与服务器120的计数器值不同步,例如,交易卡105的计数器值可能在服务器120不知道的情况下递增。因此,交易卡105的值可能大于服务器120的计数器值并且仍然有效。然而,服务器120的计数器值不应大于交易卡105的计数器值,除非小应用程序被禁用。因此,如果由服务器120检索到的计数器值大于交易卡105的计数器值,则可以禁用小应用程序。在某些情况下,计数器值可能会设置为特定值以指示它被禁用。例如,服务器120的计数器值可以被设置为NULL、“0000”或一些其他特定值以禁用小应用程序。
在实施例中,如果服务器120在步骤162处确定出小应用程序被启用,则在步骤164处服务器120可以经由网络向客户端设备110发送包括以下消息的通信,该消息包括允许尝试执行交易卡105的小应用程序的指示。如果服务器120在步骤162处确定出小应用程序被禁用,则在步骤164处服务器120可以向客户端设备110发送以下消息,该消息包括拒绝尝试执行用于交易卡105的小应用程序的指示。发送到客户端设备110的指示可以是特定值,诸如二进制“0”以指示小应用程序被禁用,以及二进制“1”以指示小应用程序被启用。然而,实施例不限于该示例并且可以商定其他值以指示小应用程序被禁用。此外,且在步骤166处,客户端设备110可以基于从服务器120接收到的指示来允许或拒绝尝试执行小应用程序。
图1C示出了可能发生以启用或禁用小应用程序的通信流程170的示例。在实施例中,一个或多个小应用程序可以由用户、管理员、由计算***、基于一个或多个设置自动地启用或禁用,等等。在一个示例中,用户可以利用客户端设备110来启用和/或禁用用于他们的交易卡105的小应用程序。出于简化目的,图1C的所示出的示例包括交易卡105、客户端设备110和服务器120。然而,实施例不限于这种方式,并且这里讨论的***可以包括额外的设备、组件、装置等并且仍然与这里讨论的实施例一致。
在步骤172处,客户端设备110可以接收启用用于交易卡105的小应用程序的指示。例如,客户端设备110可以经由客户端设备110上的输入设备接收指示选择启用小应用程序的用户输入。在一些情况下,用户输入可以经由触摸屏进行,其中用户与同应用相关联的一个或多个GUI交互以控制和设置用于交易卡105的设置,例如银行应用、交易卡小应用程序、支付应用、网络浏览器中的网站等。
在一些情况下,客户端设备110可以从交易卡105获得与小应用程序相关联的计数器值,以确保服务器120存储的计数器值被服务器120正确设置。在步骤174处,客户端设备110可以与交易卡105建立通信链路。如上面类似地讨论的,可以使交易卡105和客户端设备110彼此足够接近以经由NFC通信发送数据。为了建立通信链路,客户端设备110和交易卡105可以执行一个或多个验证和认证过程。
在步骤176处,客户端设备110可以将小应用程序的标识符传送到事务110。在实施例中,标识符可以是在小应用程序选择消息中发送的小应用程序ID或在“选择NDEF文件”中发送的应用ID。交易卡105可以利用标识符来确定存储在存储器中的用于小应用程序的计数器值。如所讨论的,每个小应用程序可以与存储在交易卡105的存储器中的对应计数器值相关联并且由用于交易卡105的电路定位。然而,在某些情况下,实施例包括较少粒度的方法,并且交易卡105可以仅具有单个计数器值并且可以一起控制用于交易卡105的每个小应用程序,例如由单个计数器全部启用或全部禁用。
在步骤178处,交易卡105可以将计数器值发送到客户端设备110。在实施例中,可以以纯文本或加密形式发送计数器值。此外,计数器值可以与MAC密码一起发送;然而,实施例不限于这种方式,并且在一些情况下,计数器值可以独自地以消息或在通信中发送。
在步骤180处,客户端设备180可以将数据传送到服务器120以发起小应用程序的启用。例如,客户端设备180可以经由网络接口向服务器120发送消息,包括小应用程序的计数器值和标识符。该消息可以包括附加信息,包括但不限于用户标识符、交易卡标识符、账户标识符、选择启用小应用程序的指示等。
在步骤182处,服务器120启用用于交易卡105的小应用程序。例如,服务器120可以在与服务器120可通信地耦合的数据存储中确定用于小应用程序的相关联的计数器值,数据存储可以是本地的、远程、基于云的等等。在实施例中,服务器120可以基于小应用程序的标识符以及用户标识信息(用户名)、账户标识信息(账号)、卡标识信息(***)等中的一个或多个来确定相关联的计数器值。服务器120可以将相关联的计数器值设置为从客户端设备110接收到的计数器值。在一些情况下,服务器120可以将相关联的计数器值设置为小于接收到的计数器值的值。在步骤184处,服务器120可以向客户端设备110发送确认消息,指示出小应用程序成功启用或者启用是否失败。
在一些实施例中,用户可以禁用用于交易卡105的小应用程序。例如,在步骤172处,客户端设备110可以经由用户输入或经由触摸屏界面的选择来接收指示。在针对交易卡105禁用小应用程序的情况下,客户端设备110可不与交易卡105通信来确定用于小应用程序的计数器值,这是因为例如可能不需要计数器值来禁用小应用程序。在这些情况下,客户端设备110可以与服务器120直接通信以指示禁用小应用程序并且流程可以直接进入步骤180。与上面类似,客户端设备110可以向服务器120发送附加信息以禁用小应用程序,例如用户标识信息、账户标识信息、卡标识信息等。
为了禁用小应用程序,在步骤182处服务器120可以执行查找以确定相关联的计数器值的位置并将相关联的计数器值设置为NULL值或某个其他值(“00000000”)。在步骤184处,服务器120可以传送指示出禁用小应用程序是成功还是失败的确认。
通信流程170是启用和/或禁用用于交易卡105的小应用程序的一个可能流程。然而,实施例不限于这种方式。如先前提到的,诸如银行雇员、信贷雇员、卡管理雇员的管理员或被允许访问用户的财务信息的任何人可以启用和/或禁用用于交易卡105的小应用程序。例如,管理员可以经由诸如银行应用之类的应用或通过网络浏览器中的网站与服务器120对接以启用或禁用用于交易卡105的小应用程序。允许管理员或银行雇员配置小应用程序对于打电话到电话***或亲自到银行办公室的卡用户来说可能很方便。
在一些情况下,小应用程序可以由基于计算机的***自动禁用和/或启用。例如,服务器120可以与欺诈检测***耦合并与之通信,该欺诈检测***被配置为检测安全漏洞和/或欺诈尝试。服务器120可以从欺诈检测***接收指示出可能已经发生攻破和/或欺诈尝试的指示。该指示可以包括用于标识受攻破或欺诈影响的账户的信息。服务器120可以利用标识信息来设置计数器值以禁用服务器120的数据存储中用于受影响的交易卡的小应用程序。在另一示例中,服务器120可以与银行***耦合和/或作为其一部分,并且银行***可以确定第一次启用一个或多个小应用程序。在该示例中,服务器120可以将相关联的计数器值设置为初始值(一或零)。初始值可以与制造时针对交易卡设置的初始值相同。换言之,交易卡可以被配置为禁用小应用程序并且稍后可以启用它们以供用户使用。实施例不限于这种方式。
图2A示出了交易卡200的示例配置,其可以包括由如在卡200的正面或背面上显示为服务提供商标记205的服务提供商发行的非接触式卡、支付卡,诸如***、借记卡或礼品卡。在一些示例中,交易卡200与支付卡无关,并且可以包括但不限于标识卡。在一些示例中,交易卡可以包括双接口非接触式支付卡、奖励卡等。交易卡200可以包括基板210,其可以包括由塑料、金属和其他材料构成的单层或者一个或多个层压层。示例性的基板材料包括:聚氯乙烯、聚氯乙烯乙酸酯、丙烯腈丁二烯苯乙烯、聚碳酸酯、聚酯、阳极氧化钛、钯、金、碳、纸和可生物降解的材料。在一些示例中,交易卡200可以具有符合ISO/IEC7816标准的ID-1格式的物理特性,并且交易卡可以以其他方式符合ISO/IEC14443标准。然而,应当理解,根据本公开的交易卡200可以具有不同的特性,并且本公开不需要在支付卡中实施交易卡。
交易卡200还可包括显示在卡的正面和/或背面上的标识信息215,以及接触垫220。接触垫220可以包括一个或多个垫并且被配置为经由交易卡与另一客户端设备建立联系,所述另一客户端设备诸如ATM、用户设备、智能电话、膝上型计算机、台式计算机或平板计算机。接触垫可以根据一种或多种标准设计,诸如ISO/IEC 7816标准,并且使能根据EMV协议进行通信。交易卡200还可以包括处理电路、天线和其他组件,如将在图2B中进一步讨论的。这些组件可以位于接触垫220的后面或基板210上的其他位置,例如,在基板210的不同层内。交易卡210还可以包括磁条或磁带,其可以位于卡的背面(图2A中未示出)上。交易卡210还可以包括与能够经由NFC协议进行通信的天线耦合的NFC设备。实施例不限于这种方式。
如图2B中所示出的,接触垫220可以包括用于存储和处理信息的集成芯片225或与集成芯片225耦合,该集成芯片225包括包含了处理电路的微处理器230和存储器235。应当理解,集成芯片225可以包含附加组件,包括处理器、存储器、错误和奇偶校验/CRC校验器、数据编码器、防冲突算法、控制器、命令解码器、安全原语和防篡改硬件,以如所需的执行本文描述的功能。尽管示出为接触垫220的一部分或在其后面,但实施例不限于这种方式。在一些情况下,所集成的可以位于交易卡200的不同位置并且经由一个或多个迹线或互连件与接触垫220耦合以使能经由EMV的通信。
存储器235可以是任何类型的存储器,包括但不限于只读存储器、一次写入多次读取存储器或读/写存储器,例如RAM、ROM和EEPROM,并且交易卡200可以包括这些存储器中的一个或多个。在一些情况下,交易卡200可以包括多于一种类型的存储器并且可以包括可加密和不可加密的存储器。只读存储器可以在工厂可编程为只读或是一次性可编程的。一次性编程功能提供了一次写入然后多次读取的机会。一次写入/多次读取存储器可以在存储器芯片出厂后的某个时间点进行编程。一旦对存储器进行编程,就可能无法对其进行重写,但是可以对其进行多次读取。读/写存储器可以在出厂后进行多次编程和重新编程。它也可以被多次读取。
存储器235可以被配置为存储数据,包括一个或多个小应用程序240、一个或多个计数器245以及客户标识符250。一个或多个小应用程序240可以包括被配置为在一个或多个交易卡上执行的一个或多个软件应用,诸如Java Card小应用程序。然而,应理解,小应用程序240不限于Java Card小应用程序,而是可以是可在交易卡或具有有限存储器的其他设备上操作的任何软件应用。在一些实施例中,小应用程序可以致使客户端设备的处理电路执行以下至少一项:在网络浏览器中启动网站(由URI指向),启动由处理电路执行的应用(代码片段),并引起与另一个设备(由URI指向)的通信,例如,向在URI中标识的服务器发送奖励数据和/或向服务器发送包括更新奖励账户的指令的消息。
一个或多个计数器值245可以包括足以存储整数的数字计数器。在实施例中,一个或多个计数器值245中的每个可以与特定小应用程序240相关联和/或用于特定小应用程序240。因此,每个小应用程序240具有其自己的计数器值245。在实施例中,每当诸如客户端设备110之类的设备相对于相关联的小应用程序与交易卡205通信时,计数器值245可以递增。如所讨论的,可以检索计数器值并将其发送到客户端设备以确定相关联的小应用程序是启用还是禁用。计数器值还可用于基于与交易卡200分发并存储在例如存储器235(未示出)中的主密钥来生成会话密钥。在一些情况下,交易卡200可以包括存储在存储器235中的单个计数器值,该单个计数器值可以用于控制并可用于交易卡200上的小应用程序240中的每个。例如,通过将存储在数据存储中的相关联的计数器值设置为适当的值(例如,NULL)以禁用小应用程序以及设置为匹配值以启用小应用程序,而可以启用和/或禁用所有小应用程序。
客户标识符250可以包括分配给交易卡200的用户的唯一字母数字标识符,并且该标识符可以将交易卡的用户与其他交易卡用户区分开。在一些示例中,客户标识符250可以标识客户和分配给该客户的账户,并且可以进一步标识与客户的账户相关联的交易卡。在一些情况下,可以将客户标识符250提供给客户端设备和服务器以确定小应用程序是启用还是禁用。
在实施例中,存储器235可以存储一个或多个密钥(未示出),例如一个或多个主密钥。每个密钥可以是可用于加密和解密数据的密钥配对的一部分,诸如之前讨论的以发送MAC密码。如所提到的,可以基于计数器值对密钥进行加密,并将其用作会话密钥,以便在会话期间为小应用程序安全地传送数据。
在实施例中,交易卡200还可以包括能够根据NFC协议进行通信的NFC设备260。NFC设备260可以无源地操作并且可以通过由客户端设备的NFC设备发射的信号激励。例如,NFC设备260可以从由客户端设备的NFC设备引起的电磁场中汲取其电力。然而,实施例不限于这种方式。在另一个示例中,交易卡200可以设置有电源(未示出),该电源可操作以向NFC设备260供电,使得它可以激活其自身的电磁场。在一个示例中并且如前面讨论的,交易卡200可以提供状态更新并经由NFC设备与ATM或客户端设备通信数据。实施例不限于这种方式,并且交易卡200可以与其他设备通信其他数据。
在一些示例中,交易卡200可以包括一个或多个天线255。一个或多个天线255可以被放置在交易卡200内并且在集成芯片225和接触垫220周围。例如,一个或多个天线255可以与处理电路225一体形成,并且一个或多个天线255可以与外部升压线圈一起使用。作为另一示例,一个或多个天线255可以在接触垫220和处理电路225的外部。在实施例中,一个或多个天线255可以与NFC设备260耦合并且被配置为启用NFC通信。
在一个实施例中,包括交易卡200的线圈的天线255可以充当空芯变压器的次级。例如,ATM可以通过切断电力或幅度调制来与交易卡200通信。交易卡200可以使用交易卡的电力连接中的间隙来推断从ATM发送的数据,其可以通过一个或多个电容器功能性地保持。交易卡200可以通过切换交易卡的线圈上的负载或负载调制来进行回传。可以通过干扰来在终端的线圈中检测到负载调制。
图3示出了***300,包括客户端设备310,诸如移动设备,能够执行操作以保持一个或多个交易卡305上的小应用程序。***300示出了客户端设备310,其具有能够与交易卡305和其他服务器320耦合并通信的多个组件。客户端设备310的组件包括显示器311、处理器312、NFC设备313。在实施例中,客户端设备310可以包括(未示出的)附加组件,诸如EMV设备、一个或多个接口、存储器等,并且实施例不限于这种方式。图3A仅出于说明目的示出了有限数量的组件。
客户端设备310可以经由一个或多个网络315与一个或多个服务器320通信,该网络可以是有线和/或无线网络。客户端设备310可以通过客户端设备310的网络接口向服务器320发送数据。在一个示例中,客户端设备310可以发送与从一个或多个服务器320和数据库335检索数据和信息相关联的请求。例如,服务器320可以从客户端设备310接收一个或多个请求并且处理该请求。例如,基于来自客户端设备310的一个或多个请求,服务器320可以被配置为从一个或多个数据库335检索所请求的数据。在实施例中,客户端设备310可以经由网络315向服务器320发送数据。数据可以包括关于用户账户、账号、输入密码、要执行的操作等的信息。
在一些情况下,客户端设备310可以在允许小应用程序继续执行之前传送信息以确定来自交易卡305的小应用程序是启用还是禁用。交易卡305可以基于来自客户端设备310的信息执行确定,以确定与小应用程序相关联并存储在数据库335中的计数器值。如前面提到的,服务器320可以利用小应用程序的标识符和一个或其他标识符,例如用户标识信息、账户标识信息、卡标识信息、唯一客户标识符等,以确定数据库中的计数器值。基于从客户端设备310接收到的计数器值与存储在数据库335中的计数器值的比较结果,服务器320可以确定小应用程序是启用还是禁用。此外,服务器320可以经由网络315将结果或结果的指示传送到客户端设备310。
客户端设备310可以经由网络315与服务器320通信以启用和禁用用于交易卡305的小应用程序。例如,服务器320可以经由网络315从客户端设备310接收指示以禁用用于交易卡305的小应用程序。服务器320可以将与小应用程序相关联的计数器值设置为一个值,例如NULL,以禁用数据库335中的小应用程序。类似地,服务器320可以从客户端设备310接收计数器值并将数据库335中的计数器值设置为接收到的计数器值。
在实施例中,客户端设备310可以包括处理器312,其可以与包括存储器的其他组件耦合。处理器312可以是任何类型的处理器并且包括电路、高速缓存、控制单元、逻辑、寄存器、一个或多个时钟、总线等等。此外,存储器可以是任何类型的存储器。在实施例中,存储器可以存储一个或多个应用或软件,包括可以由处理器312和处理电路执行的指令。该软件可以包括执行这里讨论的操作的指令,例如,执行交易操作和交易卡管理操作。
在实施例中,客户端设备310可以通信能够与交易卡305通信的一个或多个接口。在一个示例中,客户端设备310包括能够使用短程无线通信(例如,NFC)与交易卡305通信的NFC设备313。应当注意,本领域技术人员会理解,小于二十厘米的距离与NFC范围一致。当交易卡305接近客户端设备310时,NFC设备313可以读取存储在卡上的数据,诸如小应用程序的状态。在一个示例中,NFC设备313可以执行与交易卡305的一个或多个动作或通信,诸如检测包括卡的NFC设备的交易卡305、认证卡、轮询卡以获取小应用程序的状态、以及接收状态。在一些情况下,NFC设备313可以被启用以激励交易卡305的NFC设备并向其提供电力,如前面所讨论的。在其他情况下,交易卡305可以为NFC设备提供其自己的电力。
图4示出了逻辑流程400的示例,其可以表示由本文描述的一个或多个实施例执行的一些或所有操作。例如,逻辑流程400可以示出由客户端设备执行以确定小应用程序是启用还是禁用的操作。
在框410处,逻辑流程400包括建立与交易卡的通信链路。例如,客户端设备可以通过根据NFC协议与交易卡传送一个或多个消息来建立与交易卡的通信链路,以在设备之间执行验证和/或证实操作。客户端设备和/或交易卡可以利用通信链路来传送数据。
在框420处,逻辑流程400包括发送尝试执行用于交易卡的小应用程序的指示,其中小应用程序存储在交易卡的存储器中。在实施例中,该指示可以作为小应用程序选择消息和/或“选择NDEF文件”消息发送到交易卡并且包括小应用程序的标识符。
在框430处,逻辑流程400包括由客户端设备接收与小应用程序相关联的计数器值。计数器值可以与MAC密码一起接收或在单独的消息中接收,并且可以是纯文本或加密的。计数器值与小应用程序相关联并且可以指示交易卡针对小应用程序进行的通信的大致数量。
在框440处,逻辑流程400包括由客户端设备向服务器发送第一消息,该第一消息可以包括计数器值和用于标识小应用程序的标识符。在一些情况下,客户端设备可以发送与小应用程序有关的附加信息,诸如用户标识信息、账户标识信息、卡标识信息、唯一客户标识符等。在其他情况下,服务器可以分开确定附加信息,基于发送消息的客户端设备的标识执行信息查找。包括服务器的***可以使用计数器值、小应用程序的标识符和其他信息来确定小应用程序在***中是启用还是禁用。
在框450处,逻辑流程400包括由客户端设备从服务器接收第二消息,该第二消息可以包括允许尝试执行小应用程序的指示或拒绝尝试执行小应用程序的指示。此外,并且在框460处,逻辑流程440包括由客户端设备基于在第二消息中接收到的允许的指示来允许尝试执行小应用程序,或者由客户端设备基于在第二消息中接收到的拒绝的指示来拒绝尝试执行小应用程序。
图5示出了逻辑流程500的示例,其可以表示由本文描述的一个或多个实施例执行的一些或所有操作。例如,逻辑流程500可以示出由服务器执行以确定小应用程序是启用还是禁用并与客户端设备通信的操作。
在框510处,逻辑流程500包括由服务器接收来自客户端设备的消息。在实施例中,该消息包括计数器值和用于标识小应用程序的标识符,并且计数器值与小应用程序相关联。在一些实施例中,服务器可以从客户端设备接收附加信息,例如,用户标识、账户标识、卡标识、唯一客户标识符等。然而,实施例不限于这种方式。
在框520处,逻辑流程500包括由服务器确定存储在存储中的另一计数器值,另一计数器值与交易卡和小应用程序相关联。例如,服务器500可以使用从客户端设备接收到的信息来从数据存储中检索其他计数器值,例如,在数据库中执行查找。
在框530处,逻辑流程500包括:将来自客户端设备的计数器值与从数据存储检索到的另一计数器值进行比较以确定是允许还是拒绝尝试执行用于交易卡的小应用程序。比较的结果可以指示从客户端设备接收到的计数器值是否匹配、小于或大于另一计数器值。基于比较,服务器可以确定小应用程序是启用还是禁用。更具体地并且在框540处,逻辑流程500包括:基于比较确定是允许还是拒绝尝试执行用于交易卡的小应用程序。例如,如果从客户端设备接收到的计数器值匹配或大于所存储的计数器值,则可以允许小应用程序。如果接收到的计数器值小于所存储的计数器值或所存储的计数器值设置为NULL或另一禁用指示值,则可以禁止小应用程序。
在框560处,逻辑流程500包括由服务器将第二消息传送到客户端设备。第二消息包括允许尝试执行小应用程序的指示或拒绝尝试执行小应用程序的指示。
图6描绘了根据一个示例的示出密钥多样化的示例性过程600。最初,可以为发送者(例如交易卡)和接收者(例如客户端设备)提供两个不同的主密钥。例如,第一主密钥可以包括数据加密主密钥,第二主密钥可以包括数据完整性主密钥。发送者具有计数器值,该计数器值可以在框610处更新,以及其他数据,例如要保护的数据,其可以确保与接收者共享。
在框620处,计数器值可以由发送者使用数据加密主密钥来加密以产生数据加密派生的会话密钥,并且计数器值也可以由发送者使用数据完整性主密钥来加密以产生数据完整性派生的会话密钥,例如会话密钥。在一些示例中,可以在两个加密期间使用整个计数器值或计数器值的一部分。
在某些示例中,计数器值可能未加密。在这些示例中,计数器可以以明文(即没有加密的情况下)在发送者和接收者之间发送。
在框630处,发送者使用数据完整性会话密钥和密码MAC算法,利用密码MAC操作来处理要保护的数据。可以使用会话密钥(AUT-Session-Key)之一将受保护的数据(包括纯文本和共享秘密)用于产生MAC密码。
在框640处,可以由发送者使用数据加密派生的会话密钥结合对称加密算法对要保护的数据进行加密。在某些示例中,MAC密码与相等数量的随机数据(例如,每个8字节长)组合在一起,并且然后使用第二会话密钥(DEK-Session-Key)进行加密。
在框650处,将经加密的MAC密码从发送者发送到接收者,其具有足够信息以标识额外秘密信息(诸如共享秘密、主密钥等),以验证密码。
在框660处,接收者使用接收到的计数器值来从两个主密钥独立地派生出两个派生的会话密钥,如上所述的那样。
在框670处,将数据加密派生的会话密钥与对称解密操作结合使用以解密受保护的数据。然后将发生对交换的数据的额外处理。在一些示例中,在提取MAC之后,期望再现并匹配MAC。例如,当验证密码时,可以使用适当生成的会话密钥将其解密。可以重建受保护的数据以进行验证。可以使用适当生成的会话密钥来执行MAC操作,以确定其是否与被解密的MAC相匹配。由于MAC操作是不可逆的过程,因此验证的唯一方法是尝试从源数据重新创建它。
在框680处,将数据完整性派生的会话密钥与密码MAC操作结合使用以验证受保护的数据尚未被修改。
在当满足以下条件时,本文描述的方法的一些示例可以有利地确认何时确定出成功的认证。首先,验证MAC的能力表明派生的会话密钥是正确的。仅当解密成功并产生正确的MAC值时,MAC才可能是正确的。成功的解密可以表明正确派生的加密密钥已用于解密经加密的MAC。由于派生的会话密钥是使用仅对发送者(例如,发送设备)和接收者(例如,接收设备)已知的主密钥创建的,因此可以相信创建MAC并对MAC加密的非接触式卡确实是可信的。而且,用于派生第一会话密钥和第二会话密钥的计数器值可以被示出为有效的并且可以用于执行认证操作。
之后,可以丢弃两个派生的会话密钥,并且数据交换的下一次迭代将更新计数器值(返回到框610),并且可以创建新的会话密钥集(在框620处)。在一些示例中,组合的随机数据可以被丢弃。
图7示出了示例性计算架构700的实施例,该示例性计算架构700适合于实施如前面描述的各种实施例。在一个实施例中,计算架构700可以包括***100或被实施为***100的一部分。
如本申请中所使用的,术语“***”和“组件”旨在指代计算机相关实体:硬件、硬件和软件的组合、软件或执行中的软件,其示例由示例性计算架构700提供。例如,组件可以是但不限于在处理器上运行的进程、处理器、硬盘驱动器、(光学和/或磁存储介质的)多个存储驱动器、对象、可执行文件、执行线程、程序和/或计算机。借由说明,在服务器上运行的应用和服务器都可以是组件。一个或多个组件可以驻留在进程和/或执行线程中,并且组件可以位于一台计算机上和/或分布在两台或多台计算机之间。此外,组件可以通过各种类型的通信介质彼此可通信地耦合以协调操作。协调可以涉及信息的单向或双向交换。例如,组件可以以通过通信介质传送的信号的形式来传送信息。该信息可以被实施为分配给各种信号线的信号。在这样的分配中,每个消息都是信号。然而,进一步的实施例可以可替选地采用数据消息。这样的数据消息可以跨各种连接发送。示例性连接包括并行接口、串行接口和总线接口。
计算架构700包括各种常见的计算元件,诸如一个或多个处理器、多核处理器、协同处理器、存储器单元、芯片组、控制器、***设备、接口、振荡器、计时设备、视频卡、音频卡、多媒体输入/输出(I/O)组件、电源等。然而,实施例不限于由计算架构700来实施。
如图7中示出的,计算架构700包括处理单元704、***存储器706和***总线708。处理单元704可以是各种商用处理器中的任何一种。
***总线708提供用于***组件的接口,该***组件包括但不限于到处理单元704的***存储器706。***总线708可以是几种类型的总线结构中的任何一种,这些总线结构可以使用各种市售总线架构中的任何一种进一步互连到存储器总线(具有或不具有存储器控制器)、***总线和本地总线。接口适配器可以经由插槽架构连接到***总线708。示例插槽架构可以包括但不限于加速图形端口(AGP)、卡总线、(扩展的)行业标准架构((E)ISA)、微通道架构(MCA)、NuBus、***组件互连(扩展的)(PCI(X))、PCI Express、个人计算机存储器卡国际协会(PCMCIA)和诸如此类。
计算架构700可以包括或实施各种制品。制品可以包括用于存储逻辑的计算机可读存储介质。计算机可读存储介质的示例可以包括能够存储电子数据的任何有形介质,包括易失性存储器或非易失性存储器、可移动或不可移动存储器、可擦除或不可擦除存储器、可写或可重写存储器,等等。逻辑的示例可以包括使用任何合适类型的代码实施的可执行计算机程序指令,所述代码诸如源代码、编译代码、解释代码、可执行代码、静态代码、动态代码、面向对象代码、可视代码和诸如此类。实施例还可以至少部分地实施为包含在非暂时性计算机可读介质中或上的指令,该指令可以由一个或多个处理器读取和执行以使能本文描述的操作的执行。
***存储器706可以包括以一个或多个较高速度的存储器单元形式的各种类型的计算机可读存储介质,诸如只读存储器(ROM)、随机存取存储器(RAM)、动态RAM(DRAM)、双数据速率DRAM(DDRAM)、同步DRAM(SDRAM)、静态RAM(SRAM)、可编程ROM(PROM)、可擦除可编程ROM(EPROM)、电可擦除可编程ROM(EEPROM)、闪速存储器、聚合物存储器(诸如铁电聚合物存储器)、双向存储器、相变或铁电存储器、硅-氧化硅-氮化硅-氧化硅-硅(SONOS)存储器、磁卡或光卡、设备的阵列(诸如独立磁盘冗余阵列(RAID)驱动器)、固态存储器设备(例如USB存储器)、固态驱动器(SSD)和适合存储信息的任何其他类型的存储介质。在图7中示出的实施例中,***存储器706可以包括非易失性存储器710和/或易失性存储器712。基本输入/输出***(BIOS)可以存储在非易失性存储器710中。
计算机702可以包括以一个或多个较低速度的存储器单元形式的各种类型的计算机可读存储介质,包括内部(或外部)硬盘驱动器(HDD)714、用于从可移动磁盘718读取或写入可移动磁盘718的磁软盘驱动器(FDD)716、以及从可移动光盘722读取或写入可移动光盘722(例如,CD-ROM或DVD)的光盘驱动器720。HDD 714、FDD 716和光盘驱动器720可以分别通过HDD接口724、FDD接口726和光盘驱动器接口728连接到***总线708。用于外部驱动器实施方式的HDD接口724可以包括通用串行总线(USB)和IEEE 1394接口技术中的至少一项或两者。
驱动器和相关联的计算机可读介质提供数据、数据结构、计算机可执行指令等的易失性和/或非易失性存储。例如,多个程序模块可以存储在驱动器和存储器单元710、712中,包括操作***730、一个或多个应用程序732、其他程序模块734和程序数据736。在一个实施例中,一个或多个应用程序732、其他程序模块734和程序数据736可以包括例如***700的各种应用和/或组件。
用户可以通过一个或多个有线/无线输入设备(例如键盘738和诸如鼠标740的指点设备)将命令和信息输入到计算机702中。其他输入设备可以包括麦克风、红外(IR)遥控器、射频(RF)遥控器、游戏垫、触笔、读卡器、加密狗、指纹读取器、手套、绘图板、操纵杆、键盘、视网膜读取器、触摸屏(例如,电容式、电阻式等)、轨迹球、触控板、传感器、手写笔和诸如此类。这些和其他输入设备通常通过耦合到***总线708的输入设备接口742连接到处理单元704,但是可以通过其他接口连接,诸如并行端口、IEEE 1394串行端口、游戏端口、USB端口、IR接口等。
监视器744或其他类型的显示设备也经由诸如视频适配器746之类的接口连接到***总线708。监视器744可以在计算机702的内部或外部。除了监视器744之外,计算机典型地还包括其他***输出设备,诸如扬声器、打印机等。
计算机702可以使用经由有线和/或无线通信到一台或多台远程计算机(诸如远程计算机748)的逻辑连接在联网环境中操作。远程计算机748可以是工作站、服务器计算机、路由器、个人计算机、便携式计算机、基于微处理器的娱乐设备、对等设备或其他公共网络节点,并且典型地包括相对于计算机702描述的许多或所有元素,尽管为简洁起见,仅示出了存储器/存储设备750。所描绘的逻辑连接包括到局域网(LAN)752和/或更大的网络(例如,广域网(WAN)754)的有线/无线连接。这样的LAN和WAN联网环境在办公室和公司中是司空见惯的,并且促进企业范围的计算机网络(诸如内联网),所有这些都可以连接到全球通信网络(例如互联网)。
当在LAN联网环境中使用时,计算机702通过有线和/或无线通信网络接口或适配器756连接到LAN 752。适配器756可以促进到LAN 752的有线和/或无线通信,这还可以包括布置在其上的无线接入点,用于与适配器757的无线功能进行通信。
当在WAN联网环境中使用时,计算机702可以包括调制解调器758,或者连接到WAN754上的通信服务器,或者具有用于在WAN 754上建立通信的其他手段,诸如借由互联网。调制解调器758可以是内部或外部的,并且可以是有线和/或无线设备,其经由输入设备接口742连接到***总线708。在联网环境中,相对于计算机702描绘的程序模块或其部分可以存储在远程存储器/存储设备750中。应当理解,所示出的网络连接是示例性的,并且可以使用在计算机之间建立通信链路的其他手段。
计算机702可操作以使用IEEE 802系列标准与有线和无线设备或实体进行通信,诸如可操作地布置在无线通信中的无线设备(例如,IEEE 802.11空中调制技术)。这至少包括Wi-Fi(或Wireless Fidelity)、WiMax和BluetoothTM无线技术及其它。因此,该通信可以是与常规网络一样的预定义结构,或者仅仅是至少两个设备之间的自组织通信。Wi-Fi网络使用称为IEEE 802.11(a、b、g、n等)的无线电技术来提供安全、可靠、快速的无线连接。Wi-Fi网络可用于将计算机彼此连接、连接到互联网和有线网络(其使用与IEEE 702.3相关的媒体和功能)。
如先前参考图1A-图6描述的设备的各种元件可以包括各种硬件元件、软件元件或两者的组合。硬件元件的示例可以包括设备、逻辑设备、组件、处理器、微处理器、电路、处理器、电路元件(例如,晶体管、电阻器、电容器、电感器等)、集成电路、专用集成电路(ASIC)、可编程逻辑设备(PLD)、数字信号处理器(DSP)、现场可编程门阵列(FPGA)、存储器单元、逻辑门、寄存器、半导体设备、芯片、微芯片、芯片组等。软件元件的示例可以包括软件组件、程序、应用、计算机程序、应用程序、***程序、软件开发程序、机器程序、操作***软件、中间件、固件、软件模块、例程、子例程、功能、方法、过程、软件接口、应用程序接口(API)、指令集、计算代码、计算机代码、代码段、计算机代码段、字、值、符号或其任意组合。然而,确定是否使用硬件元件和/或软件元件来实施实施例可以根据许多因素而变化,诸如期望的计算速率、功率水平、热容忍度、处理周期预算、输入数据速率、输出数据速率、存储器资源、数据总线速度和其他设计或性能限制,如给定实施方式所期的。
Claims (18)
1.一种装置,包括:
近场通信(NFC)接口;
网络接口;
存储器,用于存储指令;以及
处理电路,其与所述存储器、所述NFC接口和所述网络接口耦合,能操作以执行所述指令,所述指令在被执行时致使所述处理电路执行以下操作:
经由所述NFC接口与交易卡建立通信链路;
经由所述NFC接口在通信链路上发送尝试执行用于所述交易卡的小应用程序的指示,其中所述小应用程序存储在所述交易卡的存储器中;
经由所述NFC接口在通信链路上接收与所述小应用程序相关联的计数器值;
经由所述网络接口向服务器发送第一消息,其中所述第一消息包括所述计数器值和标识所述小应用程序的标识符;
经由所述网络接口接收来自所述服务器的第二消息,其中所述第二消息包括允许尝试执行所述小应用程序的指示或拒绝尝试执行所述小应用程序的指示;并且
基于在所述第二消息中接收到的允许的指示来允许尝试执行所述小应用程序,或者基于在所述第二消息中接收到的拒绝的指示来拒绝尝试执行所述小应用程序。
2.根据权利要求1所述的装置,其中,在所述非接触设备上执行小应用程序的指示包括标识所述小应用程序的标识符,并且所述处理电路经由NFC接口在所述通信链路上在小应用程序选择消息中发送尝试执行所述小应用程序的指示。
3.根据权利要求1所述的装置,所述处理电路用于经由NFC接口在所述通信链路上接收与小应用程序相关联的计数器值,以及消息认证码(MAC)密码,其中所述MAC密码包括与随机数据级联的共享秘密。
4.根据权利要求3所述的装置,其中,所述MAC密码和随机数利用包括所述计数器值的会话密钥加密并且以近场数据交换(NDEF)消息格式接收。
5.根据权利要求3所述的装置,其中,所述MAC密码还包括与所述小应用程序相关联的统一资源指示符,其中所述统一资源指示符用于在所述小应用程序被允许执行时引起所述处理电路的动作。
6.根据权利要求5所述的装置,其中,所述动作包括引起所述处理电路执行以下中的至少一个:在网络浏览器中启动网站、启动供所述处理电路执行的应用、以及引起与另一设备的通信。
7.根据权利要求1所述的装置,其中,允许尝试执行所述小应用程序的指示基于所述计数器值与另一计数器值匹配或所述计数器值小于所述另一计数器值,并且其中所述另一计数器值存储在所述服务器上。
8.根据权利要求1所述的装置,其中,停止尝试执行所述小应用程序的指示基于以下中的一个:所述计数器值与另一计数器值不匹配、所述另一计数器值等于空值、以及所述另一计数器值大于所述计数器值。
9.一种装置,包括:
网络接口;
存储器,用于存储指令;以及
处理电路,其与所述存储器和所述网络接口耦合,能操作以执行所述指令,所述指令在被执行时致使所述处理电路执行以下操作:
经由所述网络接口接收来自客户端设备的第一消息,所述第一消息包括计数器值和用于标识小应用程序的标识符,其中所述计数器值与所述小应用程序相关联,并且所述计数器值和所述小应用程序存储在交易卡的存储器中;
确定存储在存储中的另一计数器值,其中另一计数器值与所述交易卡相关联;
将所述计数器值与所述另一计数器值进行比较以确定是允许还是拒绝尝试执行用于所述交易卡的小应用程序;
基于所述计数器值与所述另一计数器值之间的比较,确定是允许还是拒绝尝试执行用于所述交易卡的小应用程序;并且
向所述客户端设备传送第二消息,包括允许尝试执行所述小应用程序的指示或拒绝尝试执行所述小应用程序的指示。
10.根据权利要求9所述的装置,所述处理电路用于基于所述比较确定所述计数器值与所述另一计数器值匹配,并且传送所述第二消息以指示所述客户端设备继续尝试执行所述小应用程序。
11.根据权利要求9所述的装置,所述处理电路用于基于所述比较确定所述计数器值小于所述另一计数器值并且传送所述第二消息以指示所述客户端设备继续尝试执行所述小应用程序。
12.根据权利要求9所述的装置,所述处理电路用于基于所述比较确定所述计数器值与所述另一计数器值不匹配并且传送所述第二消息以指示所述客户端设备停止尝试执行所述小应用程序。
13.根据权利要求9所述的装置,所述处理电路用于确定与所述小应用程序相关联的另一计数器值被设置为空值并且传送所述第二消息以指示所述客户端设备停止尝试执行所述小应用程序。
14.根据权利要求9所述的装置,包括:
存储,其用于存储包括一个或多个计数器值的数据存储;以及
处理电路,其用于基于所述标识符在所述数据存储中执行查找以确定与所述小应用程序相关联的另一计数器值并基于所述查找从存储在所述数据存储中的一个或多个计数器值检索所述另一计数器值。
15.根据权利要求9所述的装置,所述处理电路用于:
接收禁用所述交易卡上的小应用程序的指示,所述指示包括用于标识所述小应用程序的标识符和存储在所述交易卡上并与所述小应用程序相关联的计数器值,其中所述指示是从所述客户端设备、自动取款机(ATM)和个人计算机的基于网络的应用之一接收到的;并且
将与所述小应用程序关联的另一计数器值设置为存储了用于所述交易卡的一个或多个计数器值的数据存储中的值,其中所述值用于指示所述小应用程序被禁用。
16.根据权利要求15所述的装置,其中,针对所述另一计数器值设置所述值为小于指示中接收到的计数器值以禁用所述小应用程序。
17.根据权利要求15所述的装置,其中,针对所述另一计数器值设置所述值为空值以禁用所述小应用程序。
18.根据权利要求9所述的装置,所述处理电路用于:
接收启用所述交易卡上的小应用程序的指示,所述指示包括用于标识所述小应用程序的标识符和存储在所述交易卡上并与所述小应用程序相关联的计数器值,其中所述指示是从所述客户端设备、自动取款机(ATM)和个人计算机的基于网络的应用之一接收到的;并且
将与所述小应用程序相关联的另一计数器值设置为指示中接收到的计数器值以在存储了用于所述交易卡的一个或多个计数器值的数据存储中启用,其中所述值用于指示所述小应用程序被启用。
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US16/731,009 US11038688B1 (en) | 2019-12-30 | 2019-12-30 | Techniques to control applets for contactless cards |
US16/731,009 | 2019-12-30 | ||
PCT/US2020/061939 WO2021137974A1 (en) | 2019-12-30 | 2020-11-24 | Techniques to control applets for contactless cards |
Publications (1)
Publication Number | Publication Date |
---|---|
CN114981828A true CN114981828A (zh) | 2022-08-30 |
Family
ID=73870190
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202080084875.8A Pending CN114981828A (zh) | 2019-12-30 | 2020-11-24 | 控制用于非接触式卡的小应用程序的技术 |
Country Status (8)
Country | Link |
---|---|
US (2) | US11038688B1 (zh) |
EP (1) | EP4085412A1 (zh) |
JP (1) | JP2023509144A (zh) |
KR (1) | KR20220122974A (zh) |
CN (1) | CN114981828A (zh) |
AU (1) | AU2020416694A1 (zh) |
CA (1) | CA3154530A1 (zh) |
WO (1) | WO2021137974A1 (zh) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20230162187A1 (en) * | 2021-11-19 | 2023-05-25 | Capital One Services, Llc | Autofilling data based on account authentication using a contactless card |
Family Cites Families (563)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2523745B1 (fr) | 1982-03-18 | 1987-06-26 | Bull Sa | Procede et dispositif de protection d'un logiciel livre par un fournisseur a un utilisateur |
JPS6198476A (ja) | 1984-10-19 | 1986-05-16 | Casio Comput Co Ltd | カードターミナル |
FR2613565B1 (fr) | 1987-04-03 | 1989-06-23 | Bull Cps | Procede pour acheminer des cles secretes vers des modules de securite et des cartes utilisateurs, dans un reseau de traitement d'informations |
US5036461A (en) | 1990-05-16 | 1991-07-30 | Elliott John C | Two-way authentication system between user's smart card and issuer-specific plug-in application modules in multi-issued transaction device |
FR2704341B1 (fr) | 1993-04-22 | 1995-06-02 | Bull Cp8 | Dispositif de protection des clés d'une carte à puce. |
US5363448A (en) | 1993-06-30 | 1994-11-08 | United Technologies Automotive, Inc. | Pseudorandom number generation and cryptographic authentication |
US5377270A (en) | 1993-06-30 | 1994-12-27 | United Technologies Automotive, Inc. | Cryptographic authentication of transmitted messages using pseudorandom numbers |
JP3053527B2 (ja) | 1993-07-30 | 2000-06-19 | インターナショナル・ビジネス・マシーンズ・コーポレイション | パスワードを有効化する方法及び装置、パスワードを生成し且つ予備的に有効化する方法及び装置、認証コードを使用して資源のアクセスを制御する方法及び装置 |
US5537314A (en) | 1994-04-18 | 1996-07-16 | First Marketrust Intl. | Referral recognition system for an incentive award program |
US7152045B2 (en) | 1994-11-28 | 2006-12-19 | Indivos Corporation | Tokenless identification system for authorization of electronic transactions and electronic transmissions |
US5764789A (en) | 1994-11-28 | 1998-06-09 | Smarttouch, Llc | Tokenless biometric ATM access system |
US5778072A (en) | 1995-07-07 | 1998-07-07 | Sun Microsystems, Inc. | System and method to transparently integrate private key operations from a smart card with host-based encryption services |
US5666415A (en) | 1995-07-28 | 1997-09-09 | Digital Equipment Corporation | Method and apparatus for cryptographic authentication |
US5832090A (en) | 1995-08-10 | 1998-11-03 | Hid Corporation | Radio frequency transponder stored value system employing a secure encryption protocol |
US5748740A (en) | 1995-09-29 | 1998-05-05 | Dallas Semiconductor Corporation | Method, apparatus, system and firmware for secure transactions |
US6049328A (en) | 1995-10-20 | 2000-04-11 | Wisconsin Alumni Research Foundation | Flexible access system for touch screen devices |
US5616901A (en) | 1995-12-19 | 1997-04-01 | Talking Signs, Inc. | Accessible automatic teller machines for sight-impaired persons and print-disabled persons |
EP0792044B1 (en) | 1996-02-23 | 2001-05-02 | Fuji Xerox Co., Ltd. | Device and method for authenticating user's access rights to resources according to the Challenge-Response principle |
US6226383B1 (en) | 1996-04-17 | 2001-05-01 | Integrity Sciences, Inc. | Cryptographic methods for remote authentication |
US5768373A (en) | 1996-05-06 | 1998-06-16 | Symantec Corporation | Method for providing a secure non-reusable one-time password |
US5901874A (en) | 1996-05-07 | 1999-05-11 | Breakthrough Marketing, Inc. | Handicapped accessible dumpster |
US5763373A (en) | 1996-06-20 | 1998-06-09 | High Point Chemical Corp. | Method of preparing an alkaline earth metal tallate |
US6058373A (en) | 1996-10-16 | 2000-05-02 | Microsoft Corporation | System and method for processing electronic order forms |
US6483920B2 (en) | 1996-12-04 | 2002-11-19 | Bull, S.A. | Key recovery process used for strong encryption of messages |
US5796827A (en) | 1996-11-14 | 1998-08-18 | International Business Machines Corporation | System and method for near-field human-body coupling for encrypted communication with identification cards |
US6021203A (en) | 1996-12-11 | 2000-02-01 | Microsoft Corporation | Coercion resistant one-time-pad cryptosystem that facilitates transmission of messages having different levels of security |
US6061666A (en) | 1996-12-17 | 2000-05-09 | Citicorp Development Center | Automatic bank teller machine for the blind and visually impaired |
GB9626196D0 (en) | 1996-12-18 | 1997-02-05 | Ncr Int Inc | Self-service terminal (sst) and a method of oerating the sst to control movement of a card of the sst |
US6282522B1 (en) | 1997-04-30 | 2001-08-28 | Visa International Service Association | Internet payment system using smart card |
US7290288B2 (en) | 1997-06-11 | 2007-10-30 | Prism Technologies, L.L.C. | Method and system for controlling access, by an authentication server, to protected computer resources provided via an internet protocol network |
US5960411A (en) | 1997-09-12 | 1999-09-28 | Amazon.Com, Inc. | Method and system for placing a purchase order via a communications network |
US5983273A (en) | 1997-09-16 | 1999-11-09 | Webtv Networks, Inc. | Method and apparatus for providing physical security for a user account and providing access to the user's environment and preferences |
US5883810A (en) | 1997-09-24 | 1999-03-16 | Microsoft Corporation | Electronic online commerce card with transactionproxy number for online transactions |
WO1999019846A2 (en) | 1997-10-14 | 1999-04-22 | Visa International Service Association | Personalization of smart cards |
IL122105A0 (en) | 1997-11-04 | 1998-04-05 | Rozin Alexander | A two-way radio-based electronic toll collection method and system for highway |
US6889198B2 (en) | 1998-01-30 | 2005-05-03 | Citicorp Development Center, Inc. | Method and system for tracking smart card loyalty points |
US7207477B1 (en) | 2004-03-08 | 2007-04-24 | Diebold, Incorporated | Wireless transfer of account data and signature from hand-held device to electronic check generator |
US6199762B1 (en) | 1998-05-06 | 2001-03-13 | American Express Travel Related Services Co., Inc. | Methods and apparatus for dynamic smartcard synchronization and personalization |
EP0956818B1 (en) | 1998-05-11 | 2004-11-24 | Citicorp Development Center, Inc. | System and method of biometric smart card user authentication |
JP3112076B2 (ja) | 1998-05-21 | 2000-11-27 | 豊 保倉 | ユーザ認証システム |
US6615189B1 (en) | 1998-06-22 | 2003-09-02 | Bank One, Delaware, National Association | Debit purchasing of stored value card for use by and/or delivery to others |
US6216227B1 (en) | 1998-06-29 | 2001-04-10 | Sun Microsystems, Inc. | Multi-venue ticketing using smart cards |
EP1125262A1 (en) * | 1998-10-27 | 2001-08-22 | Visa International Service Association | Delegated management of smart card applications |
US7660763B1 (en) | 1998-11-17 | 2010-02-09 | Jpmorgan Chase Bank, N.A. | Customer activated multi-value (CAM) card |
US6032136A (en) | 1998-11-17 | 2000-02-29 | First Usa Bank, N.A. | Customer activated multi-value (CAM) card |
US6438550B1 (en) | 1998-12-10 | 2002-08-20 | International Business Machines Corporation | Method and apparatus for client authentication and application configuration via smart cards |
US6829711B1 (en) | 1999-01-26 | 2004-12-07 | International Business Machines Corporation | Personal website for electronic commerce on a smart java card with multiple security check points |
EP1153375B1 (en) | 1999-02-18 | 2003-01-15 | Orbis Patents Limited | Credit card system and method |
US6731778B1 (en) | 1999-03-31 | 2004-05-04 | Oki Electric Industry Co, Ltd. | Photographing apparatus and monitoring system using same |
US6402028B1 (en) | 1999-04-06 | 2002-06-11 | Visa International Service Association | Integrated production of smart cards |
US7127605B1 (en) | 1999-05-10 | 2006-10-24 | Axalto, Inc. | Secure sharing of application methods on a microcontroller |
US6227447B1 (en) | 1999-05-10 | 2001-05-08 | First Usa Bank, Na | Cardless payment system |
US6845498B1 (en) | 1999-05-11 | 2005-01-18 | Microsoft Corporation | Method and apparatus for sharing data files among run time environment applets in an integrated circuit card |
US6504945B1 (en) | 1999-07-13 | 2003-01-07 | Hewlett-Packard Company | System for promoting correct finger placement in a fingerprint reader |
US7908216B1 (en) | 1999-07-22 | 2011-03-15 | Visa International Service Association | Internet payment, authentication and loading system using virtual smart card |
US6324271B1 (en) | 1999-08-17 | 2001-11-27 | Nortel Networks Limited | System and method for authentication of caller identification |
SE515327C2 (sv) | 1999-08-27 | 2001-07-16 | Ericsson Telefon Ab L M | Anordning för att utföra säkra transaktioner i en kommunikationsanordning |
US7085931B1 (en) | 1999-09-03 | 2006-08-01 | Secure Computing Corporation | Virtual smart card system and method |
US6834271B1 (en) | 1999-09-24 | 2004-12-21 | Kryptosima | Apparatus for and method of secure ATM debit card and credit card payment transactions via the internet |
US7319986B2 (en) | 1999-09-28 | 2008-01-15 | Bank Of America Corporation | Dynamic payment cards and related management systems and associated methods |
US6910627B1 (en) | 1999-09-29 | 2005-06-28 | Canon Kabushiki Kaisha | Smart card systems and electronic ticketing methods |
JP2001195368A (ja) | 1999-11-01 | 2001-07-19 | Sony Corp | 認証情報通信システムおよび認証情報通信方法、携帯情報処理装置、並びにプログラム提供媒体 |
US8814039B2 (en) | 1999-11-05 | 2014-08-26 | Lead Core Fund, L.L.C. | Methods for processing a payment authorization request utilizing a network of point of sale devices |
US8794509B2 (en) | 1999-11-05 | 2014-08-05 | Lead Core Fund, L.L.C. | Systems and methods for processing a payment authorization request over disparate payment networks |
GB2372186B (en) | 1999-11-22 | 2004-04-07 | Intel Corp | Integrity check values (icv) based on pseudorandom binary matrices |
WO2001050429A1 (en) | 2000-01-05 | 2001-07-12 | American Express Travel Related Services Company, Inc. | Smartcard internet authorization system |
WO2001052180A1 (en) | 2000-01-10 | 2001-07-19 | Tarian, Llc | Device using histological and physiological biometric marker for authentication and activation |
US20010034702A1 (en) | 2000-02-04 | 2001-10-25 | Mockett Gregory P. | System and method for dynamically issuing and processing transaction specific digital credit or debit cards |
AU2001238300A1 (en) | 2000-02-16 | 2001-08-27 | Mastercard International Incorporated | System and method for conducting electronic commerce with a remote wallet server |
WO2001061604A1 (en) | 2000-02-16 | 2001-08-23 | Zipcar, Inc | Systems and methods for controlling vehicle access |
US6779115B1 (en) | 2000-02-18 | 2004-08-17 | Digital5, Inc. | Portable device using a smart card to receive and decrypt digital data |
WO2001065502A2 (en) | 2000-02-29 | 2001-09-07 | E-Scoring, Inc. | Systems and methods enabling anonymous credit transactions |
US6852031B1 (en) | 2000-11-22 | 2005-02-08 | Igt | EZ pay smart card and tickets system |
US8046256B2 (en) | 2000-04-14 | 2011-10-25 | American Express Travel Related Services Company, Inc. | System and method for using loyalty rewards as currency |
EP2278538A1 (en) | 2000-04-24 | 2011-01-26 | Visa International Service Association | Online payer authentication service |
US7933589B1 (en) | 2000-07-13 | 2011-04-26 | Aeritas, Llc | Method and system for facilitation of wireless e-commerce transactions |
US6631197B1 (en) | 2000-07-24 | 2003-10-07 | Gn Resound North America Corporation | Wide audio bandwidth transduction method and device |
AU2001286464A1 (en) | 2000-08-14 | 2002-02-25 | Peter H. Gien | System and method for secure smartcard issuance |
WO2002015117A2 (en) | 2000-08-17 | 2002-02-21 | Dexrad (Proprietary) Limited | The transfer of verification data |
AU2001288679A1 (en) | 2000-09-11 | 2002-03-26 | Sentrycom Ltd. | A biometric-based system and method for enabling authentication of electronic messages sent over a network |
US7006986B1 (en) | 2000-09-25 | 2006-02-28 | Ecardless Bancorp, Ltd. | Order file processes for purchasing on the internet using verified order information |
US6873260B2 (en) | 2000-09-29 | 2005-03-29 | Kenneth J. Lancos | System and method for selectively allowing the passage of a guest through a region within a coverage area |
US6877656B1 (en) | 2000-10-24 | 2005-04-12 | Capital One Financial Corporation | Systems, methods, and apparatus for instant issuance of a credit card |
US6721706B1 (en) | 2000-10-30 | 2004-04-13 | Koninklijke Philips Electronics N.V. | Environment-responsive user interface/entertainment device that simulates personal interaction |
US7069435B2 (en) | 2000-12-19 | 2006-06-27 | Tricipher, Inc. | System and method for authentication in a crypto-system utilizing symmetric and asymmetric crypto-keys |
US7606771B2 (en) | 2001-01-11 | 2009-10-20 | Cardinalcommerce Corporation | Dynamic number authentication for credit/debit cards |
EP1223565A1 (en) | 2001-01-12 | 2002-07-17 | Motorola, Inc. | Transaction system, portable device, terminal and methods of transaction |
US20020093530A1 (en) | 2001-01-17 | 2002-07-18 | Prasad Krothapalli | Automatic filling and submission of completed forms |
US20070198432A1 (en) | 2001-01-19 | 2007-08-23 | Pitroda Satyan G | Transactional services |
US20020152116A1 (en) | 2001-01-30 | 2002-10-17 | Yan Kent J. | Method and system for generating fixed and/or dynamic rebates in credit card type transactions |
US20020158123A1 (en) | 2001-01-30 | 2002-10-31 | Allen Rodney F. | Web-based smart card system and method for maintaining status information and verifying eligibility |
US7181017B1 (en) | 2001-03-23 | 2007-02-20 | David Felsher | System and method for secure three-party communications |
EP1248190B1 (en) | 2001-04-02 | 2007-06-06 | Motorola, Inc. | Enabling and disabling software features |
US7290709B2 (en) | 2001-04-10 | 2007-11-06 | Erica Tsai | Information card system |
US7044394B2 (en) | 2003-12-17 | 2006-05-16 | Kerry Dennis Brown | Programmable magnetic data storage card |
US20020153424A1 (en) | 2001-04-19 | 2002-10-24 | Chuan Li | Method and apparatus of secure credit card transaction |
US20040015958A1 (en) | 2001-05-15 | 2004-01-22 | Veil Leonard Scott | Method and system for conditional installation and execution of services in a secure computing environment |
US7206806B2 (en) | 2001-05-30 | 2007-04-17 | Pineau Richard A | Method and system for remote utilizing a mobile device to share data objects |
DE10127511A1 (de) | 2001-06-06 | 2003-01-02 | Wincor Nixdorf Gmbh & Co Kg | Schreib-/Lesegerät für eine Ausweis- oder Kreditkarte vom RFID-Typ |
US20030167350A1 (en) | 2001-06-07 | 2003-09-04 | Curl Corporation | Safe I/O through use of opaque I/O objects |
AUPR559201A0 (en) | 2001-06-08 | 2001-07-12 | Canon Kabushiki Kaisha | Card reading device for service access |
US6834795B1 (en) | 2001-06-29 | 2004-12-28 | Sun Microsystems, Inc. | Secure user authentication to computing resource via smart card |
US7996324B2 (en) * | 2001-07-10 | 2011-08-09 | American Express Travel Related Services Company, Inc. | Systems and methods for managing multiple accounts on a RF transaction device using secondary identification indicia |
US7762457B2 (en) | 2001-07-10 | 2010-07-27 | American Express Travel Related Services Company, Inc. | System and method for dynamic fob synchronization and personalization |
US7993197B2 (en) | 2001-08-10 | 2011-08-09 | Igt | Flexible loyalty points programs |
US8266451B2 (en) | 2001-08-31 | 2012-09-11 | Gemalto Sa | Voice activated smart card |
US20030055727A1 (en) | 2001-09-18 | 2003-03-20 | Walker Jay S. | Method and apparatus for facilitating the provision of a benefit to a customer of a retailer |
US7373515B2 (en) | 2001-10-09 | 2008-05-13 | Wireless Key Identification Systems, Inc. | Multi-factor authentication system |
JP3975720B2 (ja) | 2001-10-23 | 2007-09-12 | 株式会社日立製作所 | Icカード、顧客情報分析システムおよび顧客情報分析結果提供方法 |
US6934861B2 (en) | 2001-11-06 | 2005-08-23 | Crosscheck Identification Systems International, Inc. | National identification card system and biometric identity verification method for negotiating transactions |
US6641050B2 (en) | 2001-11-06 | 2003-11-04 | International Business Machines Corporation | Secure credit card |
US7243853B1 (en) | 2001-12-04 | 2007-07-17 | Visa U.S.A. Inc. | Method and system for facilitating memory and application management on a secured token |
US8108687B2 (en) | 2001-12-12 | 2012-01-31 | Valve Corporation | Method and system for granting access to system and content |
FR2834403B1 (fr) | 2001-12-27 | 2004-02-06 | France Telecom | Systeme cryptographique de signature de groupe |
JP3820999B2 (ja) | 2002-01-25 | 2006-09-13 | ソニー株式会社 | 近接通信システム及び近接通信方法、データ管理装置及びデータ管理方法、記憶媒体、並びにコンピュータ・プログラム |
SE524778C2 (sv) | 2002-02-19 | 2004-10-05 | Douglas Lundholm | Förfarande och arrangemang för att skydda mjukvara för otillbörlig användning eller kopiering |
US6905411B2 (en) | 2002-02-27 | 2005-06-14 | Igt | Player authentication for cashless gaming machine instruments |
US20030208449A1 (en) | 2002-05-06 | 2003-11-06 | Yuanan Diao | Credit card fraud prevention system and method using secure electronic credit card |
US7900048B2 (en) | 2002-05-07 | 2011-03-01 | Sony Ericsson Mobile Communications Ab | Method for loading an application in a device, device and smart card therefor |
CN100440195C (zh) | 2002-05-10 | 2008-12-03 | 斯伦贝谢(北京)智能卡科技有限公司 | 智能卡更换方法及其更换*** |
US8010405B1 (en) | 2002-07-26 | 2011-08-30 | Visa Usa Inc. | Multi-application smart card device software solution for smart cardholder reward selection and redemption |
US20040127256A1 (en) | 2002-07-30 | 2004-07-01 | Scott Goldthwaite | Mobile device equipped with a contactless smart card reader/writer |
US7697920B1 (en) | 2006-05-05 | 2010-04-13 | Boojum Mobile | System and method for providing authentication and authorization utilizing a personal wireless communication device |
JP4619119B2 (ja) | 2002-08-06 | 2011-01-26 | プリヴァリス・インコーポレーテッド | 電子装置への個人身分証明書のセキュアな登録およびバックアップのための方法 |
JP4553565B2 (ja) | 2002-08-26 | 2010-09-29 | パナソニック株式会社 | 電子バリューの認証方式と認証システムと装置 |
CZ2005209A3 (cs) | 2002-09-10 | 2005-12-14 | Ivi Smart Technologies, Inc. | Bezpečné biometrické ověření identity |
US7306143B2 (en) | 2002-09-20 | 2007-12-11 | Cubic Corporation | Dynamic smart card/media imaging |
US9710804B2 (en) | 2012-10-07 | 2017-07-18 | Andrew H B Zhou | Virtual payment cards issued by banks for mobile and wearable devices |
US8985442B1 (en) | 2011-07-18 | 2015-03-24 | Tiger T G Zhou | One-touch payment using haptic control via a messaging and calling multimedia system on mobile device and wearable device, currency token interface, point of sale device, and electronic payment card |
WO2004036492A2 (en) | 2002-10-16 | 2004-04-29 | Sci-Tel Ltd. | Smart card network interface device |
US9740988B1 (en) | 2002-12-09 | 2017-08-22 | Live Nation Entertainment, Inc. | System and method for using unique device indentifiers to enhance security |
US9251518B2 (en) | 2013-03-15 | 2016-02-02 | Live Nation Entertainment, Inc. | Centralized and device-aware ticket-transfer system and methods |
US7454318B2 (en) | 2003-01-14 | 2008-11-18 | Nxp B.V. | Method and terminal for detecting fake and/or modified smart card |
US7453439B1 (en) | 2003-01-16 | 2008-11-18 | Forward Input Inc. | System and method for continuous stroke word-based text input |
US20050195975A1 (en) | 2003-01-21 | 2005-09-08 | Kevin Kawakita | Digital media distribution cryptography using media ticket smart cards |
US8589335B2 (en) | 2003-04-21 | 2013-11-19 | Visa International Service Association | Smart card personalization assistance tool |
EP1632091A4 (en) | 2003-05-12 | 2006-07-26 | Gtech Corp | METHOD AND SYSTEM FOR AUTHENTICATION |
US7949559B2 (en) | 2003-05-27 | 2011-05-24 | Citicorp Credit Services, Inc. | Credit card rewards program system and method |
US8200775B2 (en) | 2005-02-01 | 2012-06-12 | Newsilike Media Group, Inc | Enhanced syndication |
JP4744106B2 (ja) | 2003-08-06 | 2011-08-10 | パナソニック株式会社 | セキュアデバイス、情報処理端末、通信システム及び通信方法 |
US7761374B2 (en) * | 2003-08-18 | 2010-07-20 | Visa International Service Association | Method and system for generating a dynamic verification value |
US20050075985A1 (en) | 2003-10-03 | 2005-04-07 | Brian Cartmell | Voice authenticated credit card purchase verification |
FI20031482A (fi) | 2003-10-10 | 2005-04-11 | Open Bit Oy Ltd | Maksutapahtumatietojen prosessointi |
US7597250B2 (en) | 2003-11-17 | 2009-10-06 | Dpd Patent Trust Ltd. | RFID reader with multiple interfaces |
US20050138387A1 (en) | 2003-12-19 | 2005-06-23 | Lam Wai T. | System and method for authorizing software use |
US7357309B2 (en) | 2004-01-16 | 2008-04-15 | Telefonaktiebolaget Lm Ericsson (Publ) | EMV transactions in mobile terminals |
US7165727B2 (en) | 2004-02-24 | 2007-01-23 | Sun Microsystems, Inc. | Method and apparatus for installing an application onto a smart card |
US7374099B2 (en) | 2004-02-24 | 2008-05-20 | Sun Microsystems, Inc. | Method and apparatus for processing an application identifier from a smart card |
US7584153B2 (en) | 2004-03-15 | 2009-09-01 | Qsecure, Inc. | Financial transactions with dynamic card verification values |
US7472829B2 (en) | 2004-12-10 | 2009-01-06 | Qsecure, Inc. | Payment card with internally generated virtual account numbers for its magnetic stripe encoder and user display |
JP2007529797A (ja) | 2004-03-19 | 2007-10-25 | フンベル ローガー | 認証機能および支払い機能を備えた、無線自転車キー、自動車、家屋、rfidタグのための携帯電話におけるオールインワンキーまたは制御ソフトウェアカード |
US20140019352A1 (en) | 2011-02-22 | 2014-01-16 | Visa International Service Association | Multi-purpose virtual card transaction apparatuses, methods and systems |
US7748617B2 (en) | 2004-04-12 | 2010-07-06 | Gray R O'neal | Electronic identification system |
US8762283B2 (en) | 2004-05-03 | 2014-06-24 | Visa International Service Association | Multiple party benefit from an online authentication service |
CA2541639C (en) | 2004-05-03 | 2011-04-19 | Research In Motion Limited | System and method for application authorization |
US7703142B1 (en) | 2004-05-06 | 2010-04-20 | Sprint Communications Company L.P. | Software license authorization system |
US7660779B2 (en) | 2004-05-12 | 2010-02-09 | Microsoft Corporation | Intelligent autofill |
GB0411777D0 (en) | 2004-05-26 | 2004-06-30 | Crypomathic Ltd | Computationally asymmetric cryptographic systems |
US7314165B2 (en) | 2004-07-01 | 2008-01-01 | American Express Travel Related Services Company, Inc. | Method and system for smellprint recognition biometrics on a smartcard |
US7175076B1 (en) | 2004-07-07 | 2007-02-13 | Diebold Self-Service Systems Division Of Diebold, Incorporated | Cash dispensing automated banking machine user interface system and method |
KR20070044453A (ko) | 2004-07-15 | 2007-04-27 | 마스터카드 인터내셔날, 인코포레이티드 | 비접촉식 결재 장치 시험용 레퍼런스 기기 |
US8439271B2 (en) | 2004-07-15 | 2013-05-14 | Mastercard International Incorporated | Method and system using a bitmap for passing contactless payment card transaction variables in standardized data formats |
US7287692B1 (en) | 2004-07-28 | 2007-10-30 | Cisco Technology, Inc. | System and method for securing transactions in a contact center environment |
EP1630712A1 (en) | 2004-08-24 | 2006-03-01 | Sony Deutschland GmbH | Method for operating a near field communication system |
EP1783919B1 (en) | 2004-08-27 | 2017-12-20 | Victorion Technology Co., Ltd. | The nasal bone conduction wireless communication transmission equipment |
US20060047954A1 (en) | 2004-08-30 | 2006-03-02 | Axalto Inc. | Data access security implementation using the public key mechanism |
US7375616B2 (en) | 2004-09-08 | 2008-05-20 | Nokia Corporation | Electronic near field communication enabled multifunctional device and method of its operation |
US7270276B2 (en) | 2004-09-29 | 2007-09-18 | Sap Ag | Multi-application smartcard |
US20060085848A1 (en) | 2004-10-19 | 2006-04-20 | Intel Corporation | Method and apparatus for securing communications between a smartcard and a terminal |
US7748636B2 (en) | 2004-11-16 | 2010-07-06 | Dpd Patent Trust Ltd. | Portable identity card reader system for physical and logical access |
GB2410113A (en) | 2004-11-29 | 2005-07-20 | Morse Group Ltd | A system and method of accessing banking services via a mobile telephone |
TW200642408A (en) | 2004-12-07 | 2006-12-01 | Farsheed Atef | System and method for identity verification and management |
US7232073B1 (en) | 2004-12-21 | 2007-06-19 | Sun Microsystems, Inc. | Smart card with multiple applications |
GB0428543D0 (en) | 2004-12-31 | 2005-02-09 | British Telecomm | Control of data exchange |
US20130104251A1 (en) | 2005-02-01 | 2013-04-25 | Newsilike Media Group, Inc. | Security systems and methods for use with structured and unstructured data |
US8200700B2 (en) | 2005-02-01 | 2012-06-12 | Newsilike Media Group, Inc | Systems and methods for use of structured and unstructured distributed data |
US8347088B2 (en) | 2005-02-01 | 2013-01-01 | Newsilike Media Group, Inc | Security systems and methods for use with structured and unstructured data |
DE102005004902A1 (de) | 2005-02-02 | 2006-08-10 | Utimaco Safeware Ag | Verfahren zur Anmeldung eines Nutzers an einem Computersystem |
US7581678B2 (en) | 2005-02-22 | 2009-09-01 | Tyfone, Inc. | Electronic transaction card |
US8005426B2 (en) | 2005-03-07 | 2011-08-23 | Nokia Corporation | Method and mobile terminal device including smartcard module and near field communications means |
US7628322B2 (en) | 2005-03-07 | 2009-12-08 | Nokia Corporation | Methods, system and mobile device capable of enabling credit card personalization using a wireless network |
US7128274B2 (en) | 2005-03-24 | 2006-10-31 | International Business Machines Corporation | Secure credit card with near field communications |
US8266441B2 (en) | 2005-04-22 | 2012-09-11 | Bank Of America Corporation | One-time password credit/debit card |
US7840993B2 (en) | 2005-05-04 | 2010-11-23 | Tricipher, Inc. | Protecting one-time-passwords against man-in-the-middle attacks |
US20080035738A1 (en) | 2005-05-09 | 2008-02-14 | Mullen Jeffrey D | Dynamic credit card with magnetic stripe and embedded encoder and methods for using the same to provide a copy-proof credit card |
US7793851B2 (en) | 2005-05-09 | 2010-09-14 | Dynamics Inc. | Dynamic credit card with magnetic stripe and embedded encoder and methods for using the same to provide a copy-proof credit card |
CA2608707A1 (en) | 2005-05-16 | 2006-11-23 | Mastercard International Incorporated | Method and system for using contactless payment cards in a transit system |
US20060280338A1 (en) | 2005-06-08 | 2006-12-14 | Xerox Corporation | Systems and methods for the visually impared |
US8583454B2 (en) | 2005-07-28 | 2013-11-12 | Beraja Ip, Llc | Medical claims fraud prevention system including photograph records identification and associated methods |
US8762263B2 (en) | 2005-09-06 | 2014-06-24 | Visa U.S.A. Inc. | System and method for secured account numbers in proximity devices |
US20070067833A1 (en) | 2005-09-20 | 2007-03-22 | Colnot Vincent C | Methods and Apparatus for Enabling Secure Network-Based Transactions |
US8245292B2 (en) | 2005-11-16 | 2012-08-14 | Broadcom Corporation | Multi-factor authentication using a smartcard |
JP4435076B2 (ja) | 2005-11-18 | 2010-03-17 | フェリカネットワークス株式会社 | 携帯端末,データ通信方法,およびコンピュータプログラム |
US7568631B2 (en) | 2005-11-21 | 2009-08-04 | Sony Corporation | System, apparatus and method for obtaining one-time credit card numbers using a smart card |
WO2007076476A2 (en) | 2005-12-22 | 2007-07-05 | Mastercard International Incorporated | Methods and systems for two-factor authentication using contactless chip cards or devices and mobile devices or dedicated personal readers |
FR2895608B1 (fr) | 2005-12-23 | 2008-03-21 | Trusted Logic Sa | Procede pour la realisation d'un compteur securise sur un systeme informatique embarque disposant d'une carte a puce |
US8352323B2 (en) | 2007-11-30 | 2013-01-08 | Blaze Mobile, Inc. | Conducting an online payment transaction using an NFC enabled mobile communication device |
US7775427B2 (en) | 2005-12-31 | 2010-08-17 | Broadcom Corporation | System and method for binding a smartcard and a smartcard reader |
US8559987B1 (en) | 2005-12-31 | 2013-10-15 | Blaze Mobile, Inc. | Wireless bidirectional communications between a mobile device and associated secure element |
US8224018B2 (en) | 2006-01-23 | 2012-07-17 | Digimarc Corporation | Sensing data from physical objects |
US9137012B2 (en) | 2006-02-03 | 2015-09-15 | Emc Corporation | Wireless authentication methods and apparatus |
US8627092B2 (en) * | 2006-03-22 | 2014-01-07 | Lg Electronics Inc. | Asymmetric cryptography for wireless systems |
US20070224969A1 (en) | 2006-03-24 | 2007-09-27 | Rao Bindu R | Prepaid simcard for automatically enabling services |
US7380710B2 (en) | 2006-04-28 | 2008-06-03 | Qsecure, Inc. | Payment card preloaded with unique numbers |
US7571471B2 (en) | 2006-05-05 | 2009-08-04 | Tricipher, Inc. | Secure login using a multifactor split asymmetric crypto-key with persistent key security |
EP1855229B1 (fr) | 2006-05-10 | 2010-08-11 | Inside Contactless | Procédé de routage de données sortantes et entrantes dans un chipset NFC |
ATE440417T1 (de) | 2006-06-29 | 2009-09-15 | Incard Sa | Verfahren zur diversifizierung eines schlüssels auf einer chipkarte |
US9985950B2 (en) | 2006-08-09 | 2018-05-29 | Assa Abloy Ab | Method and apparatus for making a decision on a card |
GB0616331D0 (en) | 2006-08-16 | 2006-09-27 | Innovision Res & Tech Plc | Near Field RF Communicators And Near Field Communications Enabled Devices |
US20080072303A1 (en) | 2006-09-14 | 2008-03-20 | Schlumberger Technology Corporation | Method and system for one time password based authentication and integrated remote access |
US20080071681A1 (en) | 2006-09-15 | 2008-03-20 | Khalid Atm Shafiqul | Dynamic Credit and Check Card |
US10210516B2 (en) * | 2006-09-24 | 2019-02-19 | Rfcyber Corp. | Mobile devices for commerce over unsecured networks |
US8322624B2 (en) | 2007-04-10 | 2012-12-04 | Feinics Amatech Teoranta | Smart card with switchable matching antenna |
US8738485B2 (en) | 2007-12-28 | 2014-05-27 | Visa U.S.A. Inc. | Contactless prepaid product for transit fare collection |
WO2008042302A2 (en) | 2006-09-29 | 2008-04-10 | Narian Technologies Corp. | Apparatus and method using near field communications |
US8474028B2 (en) | 2006-10-06 | 2013-06-25 | Fmr Llc | Multi-party, secure multi-channel authentication |
GB2443234B8 (en) | 2006-10-24 | 2009-01-28 | Innovision Res & Tech Plc | Near field RF communicators and near field RF communications enabled devices |
US8682791B2 (en) | 2006-10-31 | 2014-03-25 | Discover Financial Services | Redemption of credit card rewards at a point of sale |
US20080109309A1 (en) | 2006-10-31 | 2008-05-08 | Steven Landau | Powered Print Advertisements, Product Packaging, and Trading Cards |
US8267313B2 (en) | 2006-10-31 | 2012-09-18 | American Express Travel Related Services Company, Inc. | System and method for providing a gift card which affords benefits beyond what is purchased |
US9251637B2 (en) | 2006-11-15 | 2016-02-02 | Bank Of America Corporation | Method and apparatus for using at least a portion of a one-time password as a dynamic card verification value |
US8365258B2 (en) | 2006-11-16 | 2013-01-29 | Phonefactor, Inc. | Multi factor authentication |
CN101192295A (zh) | 2006-11-30 | 2008-06-04 | 讯想科技股份有限公司 | 芯片***网络交易***与方法 |
US8041954B2 (en) | 2006-12-07 | 2011-10-18 | Paul Plesman | Method and system for providing a secure login solution using one-time passwords |
US20080162312A1 (en) | 2006-12-29 | 2008-07-03 | Motorola, Inc. | Method and system for monitoring secure applet events during contactless rfid/nfc communication |
US7594605B2 (en) | 2007-01-10 | 2009-09-29 | At&T Intellectual Property I, L.P. | Credit card transaction servers, methods and computer program products employing wireless terminal location and registered purchasing locations |
GB2442249B (en) | 2007-02-20 | 2008-09-10 | Cryptomathic As | Authentication device and method |
US8095974B2 (en) | 2007-02-23 | 2012-01-10 | At&T Intellectual Property I, L.P. | Methods, systems, and products for identity verification |
US8463711B2 (en) | 2007-02-27 | 2013-06-11 | Igt | Methods and architecture for cashless system security |
US9081948B2 (en) | 2007-03-13 | 2015-07-14 | Red Hat, Inc. | Configurable smartcard |
US20080223918A1 (en) | 2007-03-15 | 2008-09-18 | Microsoft Corporation | Payment tokens |
US8867988B2 (en) | 2007-03-16 | 2014-10-21 | Lg Electronics Inc. | Performing contactless applications in battery off mode |
US8285329B1 (en) | 2007-04-02 | 2012-10-09 | Sprint Communications Company L.P. | Mobile device-based control of smart card operation |
US8667285B2 (en) | 2007-05-31 | 2014-03-04 | Vasco Data Security, Inc. | Remote authentication and transaction signatures |
US7739169B2 (en) | 2007-06-25 | 2010-06-15 | Visa U.S.A. Inc. | Restricting access to compromised account information |
US20120252350A1 (en) | 2007-07-24 | 2012-10-04 | Allan Steinmetz | Vehicle safety device for reducing driver distractions |
US20090037275A1 (en) | 2007-08-03 | 2009-02-05 | Pollio Michael J | Consolidated membership/rewards card system |
US8235825B2 (en) | 2007-08-14 | 2012-08-07 | John B. French | Smart card holder for automated gaming system and gaming cards |
WO2009025605A2 (en) | 2007-08-19 | 2009-02-26 | Yubico Ab | Device and method for generating dynamic credit card data |
US8359630B2 (en) * | 2007-08-20 | 2013-01-22 | Visa U.S.A. Inc. | Method and system for implementing a dynamic verification value |
US7748609B2 (en) | 2007-08-31 | 2010-07-06 | Gemalto Inc. | System and method for browser based access to smart cards |
WO2009039419A1 (en) | 2007-09-21 | 2009-03-26 | Wireless Dynamics, Inc. | Wireless smart card and integrated personal area network, near field communication and contactless payment system |
US8249654B1 (en) | 2007-09-27 | 2012-08-21 | Sprint Communications Company L.P. | Dynamic smart card application loading |
US8095113B2 (en) | 2007-10-17 | 2012-01-10 | First Data Corporation | Onetime passwords for smart chip cards |
GB2457221A (en) | 2007-10-17 | 2009-08-12 | Vodafone Plc | Smart Card Web Server (SCWS) administration within a plurality of security domains |
FR2922701B1 (fr) | 2007-10-23 | 2009-11-20 | Inside Contacless | Procede de personnalisation securise d'un chipset nfc |
US7652578B2 (en) | 2007-10-29 | 2010-01-26 | Motorola, Inc. | Detection apparatus and method for near field communication devices |
US8135648B2 (en) | 2007-11-01 | 2012-03-13 | Gtech Corporation | Authentication of lottery tickets, game machine credit vouchers, and other items |
US20090132405A1 (en) | 2007-11-15 | 2009-05-21 | German Scipioni | System and method for auto-filling information |
US11238329B2 (en) | 2007-12-24 | 2022-02-01 | Dynamics Inc. | Payment cards and devices with gift card, global integration, and magnetic stripe reader communication functionality |
WO2009089099A1 (en) | 2008-01-04 | 2009-07-16 | M2 International Ltd. | Dynamic card verification value |
GB0801225D0 (en) | 2008-01-23 | 2008-02-27 | Innovision Res & Tech Plc | Near field RF communications |
US20090192912A1 (en) | 2008-01-30 | 2009-07-30 | Kent Griffin | Charge-for-service near field communication transactions |
WO2009102640A1 (en) | 2008-02-12 | 2009-08-20 | Cardiac Pacemakers, Inc. | Systems and methods for controlling wireless signal transfers between ultrasound-enabled medical devices |
US9947002B2 (en) | 2008-02-15 | 2018-04-17 | First Data Corporation | Secure authorization of contactless transaction |
US8302167B2 (en) | 2008-03-11 | 2012-10-30 | Vasco Data Security, Inc. | Strong authentication token generating one-time passwords and signatures upon server credential verification |
ATE554593T1 (de) | 2008-03-27 | 2012-05-15 | Motorola Mobility Inc | Verfahren und vorrichtung für die automatische nahfeld-kommunikations-anwendungsauswahl in einem elektronischen gerät |
ITMI20080536A1 (it) | 2008-03-28 | 2009-09-29 | Incard Sa | Metodo per proteggere un file cap per una carta a circuito integrato. |
US8024576B2 (en) | 2008-03-31 | 2011-09-20 | International Business Machines Corporation | Method and system for authenticating users with a one time password using an image reader |
US8365988B1 (en) | 2008-04-11 | 2013-02-05 | United Services Automobile Association (Usaa) | Dynamic credit card security code via mobile device |
US8347112B2 (en) | 2008-05-08 | 2013-01-01 | Texas Instruments Incorporated | Encryption/decryption engine with secure modes for key decryption and key derivation |
US9082117B2 (en) | 2008-05-17 | 2015-07-14 | David H. Chin | Gesture based authentication for wireless payment by a mobile electronic device |
US8099332B2 (en) | 2008-06-06 | 2012-01-17 | Apple Inc. | User interface for application management for a mobile device |
EP2139196A1 (en) | 2008-06-26 | 2009-12-30 | France Telecom | Method and system for remotely blocking/unblocking NFC applications on a terminal |
US8229853B2 (en) | 2008-07-24 | 2012-07-24 | International Business Machines Corporation | Dynamic itinerary-driven profiling for preventing unauthorized card transactions |
US8662401B2 (en) | 2008-07-25 | 2014-03-04 | First Data Corporation | Mobile payment adoption by adding a dedicated payment button to mobile device form factors |
US8740073B2 (en) | 2008-08-01 | 2014-06-03 | Mastercard International Incorporated | Methods, systems and computer readable media for storing and redeeming electronic certificates using a wireless smart card |
US8706622B2 (en) | 2008-08-05 | 2014-04-22 | Visa U.S.A. Inc. | Account holder demand account update |
US8438382B2 (en) | 2008-08-06 | 2013-05-07 | Symantec Corporation | Credential management system and method |
US8232879B2 (en) | 2008-08-08 | 2012-07-31 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US20100033310A1 (en) | 2008-08-08 | 2010-02-11 | Narendra Siva G | Power negotation for small rfid card |
WO2010022129A1 (en) | 2008-08-20 | 2010-02-25 | Xcard Holdings Llc | Secure smart card system |
US8103249B2 (en) | 2008-08-23 | 2012-01-24 | Visa U.S.A. Inc. | Credit card imaging for mobile payment and other applications |
US10970777B2 (en) | 2008-09-15 | 2021-04-06 | Mastercard International Incorporated | Apparatus and method for bill payment card enrollment |
WO2010033944A2 (en) * | 2008-09-22 | 2010-03-25 | Visa International Service Association | Over the air management of payment application installed in mobile device |
US9824355B2 (en) * | 2008-09-22 | 2017-11-21 | Visa International Service Association | Method of performing transactions with contactless payment devices using pre-tap and two-tap operations |
US20100078471A1 (en) | 2008-09-30 | 2010-04-01 | Apple Inc. | System and method for processing peer-to-peer financial transactions |
US9037513B2 (en) | 2008-09-30 | 2015-05-19 | Apple Inc. | System and method for providing electronic event tickets |
US20100095130A1 (en) | 2008-10-13 | 2010-04-15 | Global Financial Passport, Llc | Smartcards for secure transaction systems |
US20100094754A1 (en) | 2008-10-13 | 2010-04-15 | Global Financial Passport, Llc | Smartcard based secure transaction systems and methods |
US8689013B2 (en) | 2008-10-21 | 2014-04-01 | G. Wouter Habraken | Dual-interface key management |
CN101729502B (zh) | 2008-10-23 | 2012-09-05 | 中兴通讯股份有限公司 | 密钥分发方法和*** |
US8371501B1 (en) | 2008-10-27 | 2013-02-12 | United Services Automobile Association (Usaa) | Systems and methods for a wearable user authentication factor |
EP2182439A1 (en) | 2008-10-28 | 2010-05-05 | Gemalto SA | Method of managing data sent over the air to an applet having a restricted interface |
US20100114731A1 (en) | 2008-10-30 | 2010-05-06 | Kingston Tamara S | ELECTRONIC WALLET ("eWallet") |
US9231928B2 (en) | 2008-12-18 | 2016-01-05 | Bce Inc. | Validation method and system for use in securing nomadic electronic transactions |
EP2199992A1 (en) | 2008-12-19 | 2010-06-23 | Gemalto SA | Secure activation before contactless banking smart card transaction |
US10354321B2 (en) | 2009-01-22 | 2019-07-16 | First Data Corporation | Processing transactions with an extended application ID and dynamic cryptograms |
US9065812B2 (en) | 2009-01-23 | 2015-06-23 | Microsoft Technology Licensing, Llc | Protecting transactions |
EP2211481B1 (en) | 2009-01-26 | 2014-09-10 | Motorola Mobility LLC | Wireless communication device for providing at least one near field communication service |
US9509436B2 (en) | 2009-01-29 | 2016-11-29 | Cubic Corporation | Protection of near-field communication exchanges |
EP2219374A1 (en) | 2009-02-13 | 2010-08-18 | Irdeto Access B.V. | Securely providing a control word from a smartcard to a conditional access module |
CN101820696B (zh) | 2009-02-26 | 2013-08-07 | 中兴通讯股份有限公司 | 支持增强型近场通信的终端及其处理方法 |
US20100240413A1 (en) | 2009-03-21 | 2010-09-23 | Microsoft Corporation | Smart Card File System |
US8567670B2 (en) | 2009-03-27 | 2013-10-29 | Intersections Inc. | Dynamic card verification values and credit transactions |
EP2199965A1 (en) | 2009-04-22 | 2010-06-23 | Euro-Wallet B.V. | Payment transaction client, server and system |
US8893967B2 (en) | 2009-05-15 | 2014-11-25 | Visa International Service Association | Secure Communication of payment information to merchants using a verification token |
US8417231B2 (en) | 2009-05-17 | 2013-04-09 | Qualcomm Incorporated | Method and apparatus for programming a mobile device with multiple service accounts |
US8391719B2 (en) | 2009-05-22 | 2013-03-05 | Motorola Mobility Llc | Method and system for conducting communication between mobile devices |
US20100312634A1 (en) | 2009-06-08 | 2010-12-09 | Cervenka Karen L | Coupon card point of service terminal processing |
US20100312635A1 (en) | 2009-06-08 | 2010-12-09 | Cervenka Karen L | Free sample coupon card |
US9886696B2 (en) | 2009-07-29 | 2018-02-06 | Shopkick, Inc. | Method and system for presence detection |
US8186602B2 (en) | 2009-08-18 | 2012-05-29 | On Track Innovations, Ltd. | Multi-application contactless smart card |
CN102006584A (zh) * | 2009-08-28 | 2011-04-06 | 中兴通讯股份有限公司 | 智能卡远程控制的方法和*** |
US20110060631A1 (en) | 2009-09-04 | 2011-03-10 | Bank Of America | Redemption of customer benefit offers based on goods identification |
US8317094B2 (en) | 2009-09-23 | 2012-11-27 | Mastercard International Incorporated | Methods and systems for displaying loyalty program information on a payment card |
US9373141B1 (en) | 2009-09-23 | 2016-06-21 | Verient, Inc. | System and method for automatically filling webpage fields |
US8830866B2 (en) | 2009-09-30 | 2014-09-09 | Apple Inc. | Methods and apparatus for solicited activation for protected wireless networking |
US20110084132A1 (en) | 2009-10-08 | 2011-04-14 | At&T Intellectual Property I, L.P. | Devices, Systems and Methods for Secure Remote Medical Diagnostics |
US9307065B2 (en) | 2009-10-09 | 2016-04-05 | Panasonic Intellectual Property Management Co., Ltd. | Method and apparatus for processing E-mail and outgoing calls |
US8806592B2 (en) | 2011-01-21 | 2014-08-12 | Authentify, Inc. | Method for secure user and transaction authentication and risk management |
US8706556B2 (en) * | 2009-11-06 | 2014-04-22 | Mastercard International Incorporated | Methods for risk management in payment-enabled mobile device |
US8843757B2 (en) | 2009-11-12 | 2014-09-23 | Ca, Inc. | One time PIN generation |
US8799668B2 (en) | 2009-11-23 | 2014-08-05 | Fred Cheng | Rubbing encryption algorithm and security attack safe OTP token |
US9225526B2 (en) | 2009-11-30 | 2015-12-29 | Red Hat, Inc. | Multifactor username based authentication |
US9258715B2 (en) | 2009-12-14 | 2016-02-09 | Apple Inc. | Proactive security for mobile devices |
EP2336986A1 (en) | 2009-12-17 | 2011-06-22 | Gemalto SA | Method of personalizing an application embedded in a secured electronic token |
US10049356B2 (en) | 2009-12-18 | 2018-08-14 | First Data Corporation | Authentication of card-not-present transactions |
US9324066B2 (en) | 2009-12-21 | 2016-04-26 | Verizon Patent And Licensing Inc. | Method and system for providing virtual credit card services |
WO2011082078A2 (en) * | 2009-12-30 | 2011-07-07 | Visa International Service Association | Configuration of issued dynamic device |
US9508068B2 (en) * | 2009-12-31 | 2016-11-29 | First Data Corporation | Systems and methods for processing a contactless transaction card |
US8615468B2 (en) | 2010-01-27 | 2013-12-24 | Ca, Inc. | System and method for generating a dynamic card value |
CA2694500C (en) | 2010-02-24 | 2015-07-07 | Diversinet Corp. | Method and system for secure communication |
US9424413B2 (en) * | 2010-02-24 | 2016-08-23 | Visa International Service Association | Integration of payment capability into secure elements of computers |
US10255601B2 (en) | 2010-02-25 | 2019-04-09 | Visa International Service Association | Multifactor authentication using a directory server |
US9317018B2 (en) | 2010-03-02 | 2016-04-19 | Gonow Technologies, Llc | Portable e-wallet and universal card |
US9129270B2 (en) | 2010-03-02 | 2015-09-08 | Gonow Technologies, Llc | Portable E-wallet and universal card |
SI23227A (sl) | 2010-03-10 | 2011-05-31 | Margento R&D D.O.O. | Brezžični mobilni transakcijski sistem in postopek izvedbe transakcije z mobilnim telefonom |
US20110238564A1 (en) | 2010-03-26 | 2011-09-29 | Kwang Hyun Lim | System and Method for Early Detection of Fraudulent Transactions |
US8811892B2 (en) | 2010-04-05 | 2014-08-19 | Mastercard International Incorporated | Systems, methods, and computer readable media for performing multiple transactions through a single near field communication (NFC) tap |
US10304051B2 (en) | 2010-04-09 | 2019-05-28 | Paypal, Inc. | NFC mobile wallet processing systems and methods |
US20120109735A1 (en) | 2010-05-14 | 2012-05-03 | Mark Stanley Krawczewicz | Mobile Payment System with Thin Film Display |
US9122964B2 (en) | 2010-05-14 | 2015-09-01 | Mark Krawczewicz | Batteryless stored value card with display |
US9047531B2 (en) | 2010-05-21 | 2015-06-02 | Hand Held Products, Inc. | Interactive user interface for capturing a document in an image signal |
TWI504229B (zh) | 2010-05-27 | 2015-10-11 | Mstar Semiconductor Inc | 支援電子錢包功能之行動裝置 |
CN102939613A (zh) | 2010-06-04 | 2013-02-20 | 维萨国际服务协会 | 支付令牌化装置、方法和*** |
US20120079281A1 (en) | 2010-06-28 | 2012-03-29 | Lionstone Capital Corporation | Systems and methods for diversification of encryption algorithms and obfuscation symbols, symbol spaces and/or schemas |
US8723941B1 (en) | 2010-06-29 | 2014-05-13 | Bank Of America Corporation | Handicap-accessible ATM |
CN103109259A (zh) | 2010-07-01 | 2013-05-15 | 以谢·白南斯托克 | 位置感知移动连接及信息交换*** |
US8500031B2 (en) | 2010-07-29 | 2013-08-06 | Bank Of America Corporation | Wearable article having point of sale payment functionality |
US9916572B2 (en) | 2010-08-18 | 2018-03-13 | International Business Machines Corporation | Payment card processing system |
US8312519B1 (en) | 2010-09-30 | 2012-11-13 | Daniel V Bailey | Agile OTP generation |
US8799087B2 (en) | 2010-10-27 | 2014-08-05 | Mastercard International Incorporated | Systems, methods, and computer readable media for utilizing one or more preferred application lists in a wireless device reader |
US9965756B2 (en) | 2013-02-26 | 2018-05-08 | Digimarc Corporation | Methods and arrangements for smartphone payments |
US9004365B2 (en) | 2010-11-23 | 2015-04-14 | X-Card Holdings, Llc | One-time password card for secure transactions |
US20120143754A1 (en) | 2010-12-03 | 2012-06-07 | Narendra Patel | Enhanced credit card security apparatus and method |
US8196131B1 (en) | 2010-12-17 | 2012-06-05 | Google Inc. | Payment application lifecycle management in a contactless smart card |
US8726405B1 (en) | 2010-12-23 | 2014-05-13 | Emc Corporation | Techniques for providing security using a mobile wireless communications device having data loss prevention circuitry |
US8977195B2 (en) | 2011-01-06 | 2015-03-10 | Texas Insruments Incorporated | Multiple NFC card applications in multiple execution environments |
US8475367B1 (en) | 2011-01-09 | 2013-07-02 | Fitbit, Inc. | Biometric monitoring device having a body weight sensor, and methods of operating same |
US20140379361A1 (en) | 2011-01-14 | 2014-12-25 | Shilpak Mahadkar | Healthcare Prepaid Payment Platform Apparatuses, Methods And Systems |
WO2012104978A1 (ja) | 2011-01-31 | 2012-08-09 | 富士通株式会社 | 通信方法、ノード、およびネットワークシステム |
US10373160B2 (en) | 2011-02-10 | 2019-08-06 | Paypal, Inc. | Fraud alerting using mobile phone location |
EP2487629B1 (en) | 2011-02-10 | 2016-11-30 | Nxp B.V. | Secure smart poster |
US20120239560A1 (en) | 2011-03-04 | 2012-09-20 | Pourfallah Stacy S | Healthcare payment collection portal apparatuses, methods and systems |
WO2012125655A1 (en) | 2011-03-14 | 2012-09-20 | Conner Investments, Llc | Bluetooth enabled credit card with a large date storage volume |
US20120238206A1 (en) | 2011-03-14 | 2012-09-20 | Research In Motion Limited | Communications device providing near field communication (nfc) secure element disabling features related methods |
US20120284194A1 (en) | 2011-05-03 | 2012-11-08 | Microsoft Corporation | Secure card-based transactions using mobile phones or other mobile devices |
US11100431B2 (en) | 2011-05-10 | 2021-08-24 | Dynamics Inc. | Systems and methods for mobile authorizations |
US20120296818A1 (en) | 2011-05-17 | 2012-11-22 | Ebay Inc. | Method for authorizing the activation of a spending card |
US8868902B1 (en) | 2013-07-01 | 2014-10-21 | Cryptite LLC | Characteristically shaped colorgram tokens in mobile transactions |
AU2012363110A1 (en) | 2011-06-07 | 2013-12-12 | Visa International Service Association | Payment Privacy Tokenization apparatuses, methods and systems |
US20120317628A1 (en) | 2011-06-09 | 2012-12-13 | Yeager C Douglas | Systems and methods for authorizing a transaction |
EP2541458B1 (en) | 2011-06-27 | 2017-10-04 | Nxp B.V. | Resource management system and corresponding method |
US9042814B2 (en) | 2011-06-27 | 2015-05-26 | Broadcom Corporation | Measurement and reporting of received signal strength in NFC-enabled devices |
US9209867B2 (en) | 2011-06-28 | 2015-12-08 | Broadcom Corporation | Device for authenticating wanted NFC interactions |
US9026047B2 (en) | 2011-06-29 | 2015-05-05 | Broadcom Corporation | Systems and methods for providing NFC secure application support in battery-off mode when no nonvolatile memory write access is available |
US8620218B2 (en) | 2011-06-29 | 2013-12-31 | Broadcom Corporation | Power harvesting and use in a near field communications (NFC) device |
US9390411B2 (en) | 2011-07-27 | 2016-07-12 | Murray Jarman | System or method for storing credit on a value card or cellular phone rather than accepting coin change |
US9075979B1 (en) | 2011-08-11 | 2015-07-07 | Google Inc. | Authentication based on proximity to mobile device |
CN102956068B (zh) | 2011-08-25 | 2017-02-15 | 富泰华工业(深圳)有限公司 | 自动柜员机及其语音提示方法 |
AU2012301897B2 (en) | 2011-08-30 | 2017-04-13 | Ov Loop Inc. | Systems and methods for authorizing a transaction with an unexpected cryptogram |
FR2980055B1 (fr) | 2011-09-12 | 2013-12-27 | Valeo Systemes Thermiques | Dispositif de transmission de puissance inductif |
WO2013039395A1 (en) | 2011-09-14 | 2013-03-21 | Ec Solution Group B.V. | Active matrix display smart card |
US10032036B2 (en) | 2011-09-14 | 2018-07-24 | Shahab Khan | Systems and methods of multidimensional encrypted data transfer |
US8577810B1 (en) | 2011-09-29 | 2013-11-05 | Intuit Inc. | Secure mobile payment authorization |
US8977569B2 (en) | 2011-09-29 | 2015-03-10 | Raj Rao | System and method for providing smart electronic wallet and reconfigurable transaction card thereof |
US9152832B2 (en) | 2011-09-30 | 2015-10-06 | Broadcom Corporation | Positioning guidance for increasing reliability of near-field communications |
US20140279479A1 (en) | 2011-10-12 | 2014-09-18 | C-Sam, Inc. | Nfc paired bluetooth e-commerce |
US9978058B2 (en) | 2011-10-17 | 2018-05-22 | Capital One Services, Llc | System, method, and apparatus for a dynamic transaction card |
US10332102B2 (en) | 2011-10-17 | 2019-06-25 | Capital One Services, Llc | System, method, and apparatus for a dynamic transaction card |
US9318257B2 (en) | 2011-10-18 | 2016-04-19 | Witricity Corporation | Wireless energy transfer for packaging |
CN103988218B (zh) | 2011-10-31 | 2018-10-26 | 金钱及数字保护许可两合有限公司 | 认证方法 |
US9000892B2 (en) | 2011-10-31 | 2015-04-07 | Eastman Kodak Company | Detecting RFID tag and inhibiting skimming |
US8818867B2 (en) | 2011-11-14 | 2014-08-26 | At&T Intellectual Property I, L.P. | Security token for mobile near field communication transactions |
WO2013074631A2 (en) | 2011-11-14 | 2013-05-23 | Vasco Data Security, Inc. | A smart card reader with a secure logging feature |
US9064253B2 (en) | 2011-12-01 | 2015-06-23 | Broadcom Corporation | Systems and methods for providing NFC secure application support in battery on and battery off modes |
US20140040139A1 (en) | 2011-12-19 | 2014-02-06 | Sequent Software, Inc. | System and method for dynamic temporary payment authorization in a portable communication device |
US9740342B2 (en) | 2011-12-23 | 2017-08-22 | Cirque Corporation | Method for preventing interference of contactless card reader and touch functions when they are physically and logically bound together for improved authentication security |
US9154903B2 (en) | 2011-12-28 | 2015-10-06 | Blackberry Limited | Mobile communications device providing near field communication (NFC) card issuance features and related methods |
US8880027B1 (en) | 2011-12-29 | 2014-11-04 | Emc Corporation | Authenticating to a computing device with a near-field communications card |
US20130179351A1 (en) | 2012-01-09 | 2013-07-11 | George Wallner | System and method for an authenticating and encrypting card reader |
US20130185772A1 (en) | 2012-01-12 | 2013-07-18 | Aventura Hq, Inc. | Dynamically updating a session based on location data from an authentication device |
US20130191279A1 (en) | 2012-01-20 | 2013-07-25 | Bank Of America Corporation | Mobile device with rewritable general purpose card |
US9218624B2 (en) | 2012-02-03 | 2015-12-22 | Paypal, Inc. | Adding card to mobile/cloud wallet using NFC |
KR101443960B1 (ko) | 2012-02-22 | 2014-11-03 | 주식회사 팬택 | 사용자 인증 전자 장치 및 방법 |
US9020858B2 (en) | 2012-02-29 | 2015-04-28 | Google Inc. | Presence-of-card code for offline payment processing system |
US8898088B2 (en) | 2012-02-29 | 2014-11-25 | Google Inc. | In-card access control and monotonic counters for offline payment processing system |
US20130232082A1 (en) | 2012-03-05 | 2013-09-05 | Mark Stanley Krawczewicz | Method And Apparatus For Secure Medical ID Card |
EP3012981B1 (en) | 2012-03-15 | 2019-11-13 | Intel Corporation | Near field communication (nfc) and proximity sensor for portable devices |
AU2013248935A1 (en) | 2012-04-17 | 2014-08-28 | Secure Nfc Pty. Ltd. | NFC card lock |
US20130282360A1 (en) | 2012-04-20 | 2013-10-24 | James A. Shimota | Method and Apparatus for Translating and Locating Services in Multiple Languages |
US9953310B2 (en) | 2012-05-10 | 2018-04-24 | Mastercard International Incorporated | Systems and method for providing multiple virtual secure elements in a single physical secure element of a mobile device |
EP2663110A1 (en) | 2012-05-11 | 2013-11-13 | BlackBerry Limited | Near Field Communication Tag Data Management |
US9306626B2 (en) | 2012-05-16 | 2016-04-05 | Broadcom Corporation | NFC device context determination through proximity gestural movement detection |
US8681268B2 (en) | 2012-05-24 | 2014-03-25 | Abisee, Inc. | Vision assistive devices and user interfaces |
US8862113B2 (en) | 2012-06-20 | 2014-10-14 | Qualcomm Incorporated | Subscriber identity module activation during active data call |
US9589399B2 (en) | 2012-07-02 | 2017-03-07 | Synaptics Incorporated | Credential quality assessment engine systems and methods |
US20140032410A1 (en) | 2012-07-24 | 2014-01-30 | Ipay International, S.A. | Method and system for linking and controling of payment cards with a mobile |
KR101421568B1 (ko) | 2012-07-27 | 2014-07-22 | 주식회사 케이티 | 스마트카드, 스마트카드 서비스 단말 및 스마트카드 서비스 방법 |
US9530130B2 (en) | 2012-07-30 | 2016-12-27 | Mastercard International Incorporated | Systems and methods for correction of information in card-not-present account-on-file transactions |
US8676709B2 (en) * | 2012-07-31 | 2014-03-18 | Google Inc. | Merchant category codes in a proxy card transaction |
KR101934293B1 (ko) | 2012-08-03 | 2019-01-02 | 엘지전자 주식회사 | 이동 단말기의 이동 단말기 및 그의 nfc결제 방법 |
US9361619B2 (en) | 2012-08-06 | 2016-06-07 | Ca, Inc. | Secure and convenient mobile authentication techniques |
EP2698756B1 (en) | 2012-08-13 | 2016-01-06 | Nxp B.V. | Local Trusted Service Manager |
US9332587B2 (en) | 2012-08-21 | 2016-05-03 | Blackberry Limited | Smart proximity priority pairing |
US20140074655A1 (en) | 2012-09-07 | 2014-03-13 | David Lim | System, apparatus and methods for online one-tap account addition and checkout |
AU2013315510B2 (en) | 2012-09-11 | 2019-08-22 | Visa International Service Association | Cloud-based Virtual Wallet NFC Apparatuses, methods and systems |
US9426132B1 (en) | 2012-09-12 | 2016-08-23 | Emc Corporation | Methods and apparatus for rules-based multi-factor verification |
US8888002B2 (en) | 2012-09-18 | 2014-11-18 | Sensormatic Electronics, LLC | Access control reader enabling remote applications |
US20140081720A1 (en) | 2012-09-19 | 2014-03-20 | Mastercard International Incorporated | Method and system for processing coupons in a near field transaction |
US9338622B2 (en) | 2012-10-04 | 2016-05-10 | Bernt Erik Bjontegard | Contextually intelligent communication systems and processes |
US9665858B1 (en) | 2012-10-11 | 2017-05-30 | Square, Inc. | Cardless payment transactions with multiple users |
US10075437B1 (en) | 2012-11-06 | 2018-09-11 | Behaviosec | Secure authentication of a user of a device during a session with a connected server |
US8584219B1 (en) | 2012-11-07 | 2013-11-12 | Fmr Llc | Risk adjusted, multifactor authentication |
US20150302409A1 (en) | 2012-11-15 | 2015-10-22 | Behzad Malek | System and method for location-based financial transaction authentication |
US9767329B2 (en) | 2012-11-19 | 2017-09-19 | Avery Dennison Retail Information Services, Llc | NFC tags with proximity detection |
US9038894B2 (en) | 2012-11-20 | 2015-05-26 | Cellco Partnership | Payment or other transaction through mobile device using NFC to access a contactless transaction card |
CN103023643A (zh) | 2012-11-22 | 2013-04-03 | 天地融科技股份有限公司 | 一种动态口令牌及动态口令生成方法 |
US9224013B2 (en) | 2012-12-05 | 2015-12-29 | Broadcom Corporation | Secure processing sub-system that is hardware isolated from a peripheral processing sub-system |
US9064259B2 (en) | 2012-12-19 | 2015-06-23 | Genesys Telecomminucations Laboratories, Inc. | Customer care mobile application |
US10147086B2 (en) | 2012-12-19 | 2018-12-04 | Nxp B.V. | Digital wallet device for virtual wallet |
US20150339474A1 (en) | 2012-12-24 | 2015-11-26 | Cell Buddy Network Ltd. | User authentication system |
US8934837B2 (en) | 2013-01-03 | 2015-01-13 | Blackberry Limited | Mobile wireless communications device including NFC antenna matching control circuit and associated methods |
US9942750B2 (en) | 2013-01-23 | 2018-04-10 | Qualcomm Incorporated | Providing an encrypted account credential from a first device to a second device |
US20140214674A1 (en) | 2013-01-29 | 2014-07-31 | Reliance Communications, Llc. | Method and system for conducting secure transactions with credit cards using a monitoring device |
US20140229375A1 (en) | 2013-02-11 | 2014-08-14 | Groupon, Inc. | Consumer device payment token management |
US9785946B2 (en) | 2013-03-07 | 2017-10-10 | Mastercard International Incorporated | Systems and methods for updating payment card expiration information |
US10152706B2 (en) | 2013-03-11 | 2018-12-11 | Cellco Partnership | Secure NFC data authentication |
US9307505B2 (en) | 2013-03-12 | 2016-04-05 | Blackberry Limited | System and method for adjusting a power transmission level for a communication device |
US9763097B2 (en) | 2013-03-13 | 2017-09-12 | Lookout, Inc. | Method for performing device security corrective actions based on loss of proximity to another device |
WO2014143054A1 (en) | 2013-03-15 | 2014-09-18 | Intel Corporation | Mechanism for facilitating dynamic and targeted advertisements for computing systems |
US20140339315A1 (en) | 2013-04-02 | 2014-11-20 | Tnt Partners, Llc | Programmable Electronic Card and Supporting Device |
WO2014170741A2 (en) | 2013-04-15 | 2014-10-23 | Pardhasarthy Mahesh Bhupathi | Payback payment system and method to facilitate the same |
JP6307593B2 (ja) | 2013-04-26 | 2018-04-04 | インターデイジタル パテント ホールディングス インコーポレイテッド | 必要とされる認証保証レベルを達成するための多要素認証 |
CA2851895C (en) | 2013-05-08 | 2023-09-26 | The Toronto-Dominion Bank | Person-to-person electronic payment processing |
US9104853B2 (en) | 2013-05-16 | 2015-08-11 | Symantec Corporation | Supporting proximity based security code transfer from mobile/tablet application to access device |
US10043164B2 (en) | 2013-05-20 | 2018-08-07 | Mastercard International Incorporated | System and method for facilitating a transaction between a merchant and a cardholder |
US20140365780A1 (en) | 2013-06-07 | 2014-12-11 | Safa Movassaghi | System and methods for one-time password generation on a mobile computing device |
US10475027B2 (en) | 2013-07-23 | 2019-11-12 | Capital One Services, Llc | System and method for exchanging data with smart cards |
CA2917708C (en) | 2013-07-25 | 2021-12-28 | Nymi Inc. | Preauthorized wearable biometric device, system and method for use thereof |
GB2516861A (en) | 2013-08-01 | 2015-02-11 | Mastercard International Inc | Paired Wearable payment device |
CN103417202B (zh) | 2013-08-19 | 2015-11-18 | 赵蕴博 | 一种腕式生命体征监测装置及其监测方法 |
EP3050335B1 (en) | 2013-09-24 | 2019-12-04 | Intel Corporation | Systems and methods for nfc access control in a secure element centric nfc architecture |
EP2854332A1 (en) | 2013-09-27 | 2015-04-01 | Gemalto SA | Method for securing over-the-air communication between a mobile application and a gateway |
US10878414B2 (en) | 2013-09-30 | 2020-12-29 | Apple Inc. | Multi-path communication of electronic device secure element data for online payments |
US11748746B2 (en) | 2013-09-30 | 2023-09-05 | Apple Inc. | Multi-path communication of electronic device secure element data for online payments |
US8930274B1 (en) * | 2013-10-30 | 2015-01-06 | Google Inc. | Securing payment transactions with rotating application transaction counters |
KR101797643B1 (ko) | 2013-11-15 | 2017-12-12 | 쿠앙치 인텔리전트 포토닉 테크놀로지 리미티드 | 지령 정보의 송수신 방법 및 그 장치 |
SG10201900029SA (en) | 2013-11-19 | 2019-02-27 | Visa Int Service Ass | Automated account provisioning |
SG10201803986RA (en) | 2013-12-02 | 2018-06-28 | Mastercard International Inc | Method and system for secure transmission of remote notification service messages to mobile devices without secure elements |
US11164176B2 (en) | 2013-12-19 | 2021-11-02 | Visa International Service Association | Limited-use keys and cryptograms |
US20150205379A1 (en) | 2014-01-20 | 2015-07-23 | Apple Inc. | Motion-Detected Tap Input |
US9420496B1 (en) | 2014-01-24 | 2016-08-16 | Sprint Communications Company L.P. | Activation sequence using permission based connection to network |
US9773151B2 (en) | 2014-02-06 | 2017-09-26 | University Of Massachusetts | System and methods for contactless biometrics-based identification |
US20160012465A1 (en) | 2014-02-08 | 2016-01-14 | Jeffrey A. Sharp | System and method for distributing, receiving, and using funds or credits and apparatus thereof |
US20150371234A1 (en) | 2014-02-21 | 2015-12-24 | Looppay, Inc. | Methods, devices, and systems for secure provisioning, transmission, and authentication of payment data |
EP2924914A1 (en) | 2014-03-25 | 2015-09-30 | Gemalto SA | Method to manage a one time password key |
US9251330B2 (en) | 2014-04-09 | 2016-02-02 | International Business Machines Corporation | Secure management of a smart card |
US20150317626A1 (en) | 2014-04-30 | 2015-11-05 | Intuit Inc. | Secure proximity exchange of payment information between mobile wallet and point-of-sale |
US9680942B2 (en) | 2014-05-01 | 2017-06-13 | Visa International Service Association | Data verification using access device |
CN106462842B (zh) | 2014-05-07 | 2021-06-25 | 维萨国际服务协会 | 用于非接触式通信的增强型数据接口 |
US10475026B2 (en) | 2014-05-16 | 2019-11-12 | International Business Machines Corporation | Secure management of transactions using a smart/virtual card |
US20150339663A1 (en) | 2014-05-21 | 2015-11-26 | Mastercard International Incorporated | Methods of payment token lifecycle management on a mobile device |
US9483763B2 (en) | 2014-05-29 | 2016-11-01 | Apple Inc. | User interface for payments |
US9449239B2 (en) | 2014-05-30 | 2016-09-20 | Apple Inc. | Credit card auto-fill |
EP2961200A1 (en) * | 2014-06-23 | 2015-12-30 | Nxp B.V. | Near Field Communication System |
KR101508320B1 (ko) | 2014-06-30 | 2015-04-07 | 주식회사 인포바인 | Nfc 카드를 이용한 otp 발급 장치, otp 생성 장치, 및 이를 이용한 방법 |
US9455968B1 (en) | 2014-12-19 | 2016-09-27 | Emc Corporation | Protection of a secret on a mobile device using a secret-splitting technique with a fixed user share |
US9780953B2 (en) | 2014-07-23 | 2017-10-03 | Visa International Service Association | Systems and methods for secure detokenization |
US20160026997A1 (en) | 2014-07-25 | 2016-01-28 | XPressTap, Inc. | Mobile Communication Device with Proximity Based Communication Circuitry |
US9875347B2 (en) | 2014-07-31 | 2018-01-23 | Nok Nok Labs, Inc. | System and method for performing authentication using data analytics |
US20160048913A1 (en) | 2014-08-15 | 2016-02-18 | Mastercard International Incorporated | Systems and Methods for Assigning a Variable Length Bank Identification Number |
US9775029B2 (en) * | 2014-08-22 | 2017-09-26 | Visa International Service Association | Embedding cloud-based functionalities in a communication device |
US10242356B2 (en) | 2014-08-25 | 2019-03-26 | Google Llc | Host-formatted select proximity payment system environment response |
RU2710897C2 (ru) | 2014-08-29 | 2020-01-14 | Виза Интернэшнл Сервис Ассосиэйшн | Способы безопасного генерирования криптограмм |
CN104239783A (zh) | 2014-09-19 | 2014-12-24 | 东软集团股份有限公司 | 一种特定信息安全输入***及方法 |
US9953323B2 (en) | 2014-09-23 | 2018-04-24 | Sony Corporation | Limiting e-card transactions based on lack of proximity to associated CE device |
GB2530726B (en) | 2014-09-25 | 2016-11-02 | Ibm | Distributed single sign-on |
EP3198907B1 (en) | 2014-09-26 | 2019-04-10 | Visa International Service Association | Remote server encrypted data provisioning system and methods |
US9473509B2 (en) | 2014-09-29 | 2016-10-18 | International Business Machines Corporation | Selectively permitting or denying usage of wearable device services |
US9432339B1 (en) | 2014-09-29 | 2016-08-30 | Emc Corporation | Automated token renewal using OTP-based authentication codes |
CN104463270A (zh) | 2014-11-12 | 2015-03-25 | 惠州Tcl移动通信有限公司 | 一种基于rfid的智能终端、金融卡以及金融管理*** |
WO2016080952A1 (en) | 2014-11-17 | 2016-05-26 | Empire Technology Development Llc | Mobile device prevention of contactless card attacks |
US9589264B2 (en) | 2014-12-10 | 2017-03-07 | American Express Travel Related Services Company, Inc. | System and method for pre-provisioned wearable contactless payments |
GB2533333A (en) | 2014-12-16 | 2016-06-22 | Visa Europe Ltd | Transaction authorisation |
WO2016112290A1 (en) | 2015-01-09 | 2016-07-14 | Interdigital Technology Corporation | Scalable policy based execution of multi-factor authentication |
US10333696B2 (en) | 2015-01-12 | 2019-06-25 | X-Prime, Inc. | Systems and methods for implementing an efficient, scalable homomorphic transformation of encrypted data with minimal data expansion and improved processing efficiency |
US20170011406A1 (en) | 2015-02-10 | 2017-01-12 | NXT-ID, Inc. | Sound-Directed or Behavior-Directed Method and System for Authenticating a User and Executing a Transaction |
US20160253651A1 (en) | 2015-02-27 | 2016-09-01 | Samsung Electronics Co., Ltd. | Electronic device including electronic payment system and operating method thereof |
US20160267486A1 (en) | 2015-03-13 | 2016-09-15 | Radiius Corp | Smartcard Payment System and Method |
US11736468B2 (en) | 2015-03-16 | 2023-08-22 | Assa Abloy Ab | Enhanced authorization |
US20160277383A1 (en) | 2015-03-16 | 2016-09-22 | Assa Abloy Ab | Binding to a user device |
US11188919B1 (en) * | 2015-03-27 | 2021-11-30 | Wells Fargo Bank, N.A. | Systems and methods for contactless smart card authentication |
US20170289127A1 (en) | 2016-03-29 | 2017-10-05 | Chaya Coleena Hendrick | Smart data cards that enable the performance of various functions upon activation/authentication by a user's fingerprint, oncard pin number entry, and/or by facial recognition of the user, or by facial recognition of a user alone, including an automated changing security number that is displayed on a screen on a card's surface following an authenticated biometric match |
WO2016160816A1 (en) | 2015-03-30 | 2016-10-06 | Hendrick Chaya Coleena | Smart data cards that enable the performance of various functions upon activation/authentication by a user's fingerprint, oncard pin number entry, and/or by facial recognition of the user, or by facial recognition of a user alone, including an automated changing security number that is displayed on a screen on a card's surface following an authenticated biometric match |
WO2016168398A1 (en) | 2015-04-14 | 2016-10-20 | Capital One Services, LLC. | A system, method, and apparatus for a dynamic transaction card |
US10360557B2 (en) | 2015-04-14 | 2019-07-23 | Capital One Services, Llc | Dynamic transaction card protected by dropped card detection |
US10482453B2 (en) | 2015-04-14 | 2019-11-19 | Capital One Services, Llc | Dynamic transaction card protected by gesture and voice recognition |
US9674705B2 (en) | 2015-04-22 | 2017-06-06 | Kenneth Hugh Rose | Method and system for secure peer-to-peer mobile communications |
CN107851111A (zh) | 2015-05-05 | 2018-03-27 | 识卡公司 | 使用区块链的身份管理服务 |
US20160335531A1 (en) | 2015-05-12 | 2016-11-17 | Dynamics Inc. | Dynamic security codes, tokens, displays, cards, devices, multi-card devices, systems and methods |
FR3038429B1 (fr) | 2015-07-03 | 2018-09-21 | Ingenico Group | Conteneur de paiement, procede de creation, procede de traitement, dispositifs et programmes correspondants |
US20170039566A1 (en) | 2015-07-10 | 2017-02-09 | Diamond Sun Labs, Inc. | Method and system for secured processing of a credit card |
US10108965B2 (en) | 2015-07-14 | 2018-10-23 | Ujet, Inc. | Customer communication system including service pipeline |
US11120436B2 (en) | 2015-07-17 | 2021-09-14 | Mastercard International Incorporated | Authentication system and method for server-based payments |
US20170024716A1 (en) | 2015-07-22 | 2017-01-26 | American Express Travel Related Services Company, Inc. | System and method for single page banner integration |
US10492163B2 (en) | 2015-08-03 | 2019-11-26 | Jpmorgan Chase Bank, N.A. | Systems and methods for leveraging micro-location devices for improved travel awareness |
KR20170028015A (ko) | 2015-09-03 | 2017-03-13 | 엔에이치엔엔터테인먼트 주식회사 | 휴대용 단말기를 이용한 온라인 신용카드 결제 시스템 및 결제 방법 |
WO2017042400A1 (en) | 2015-09-11 | 2017-03-16 | Dp Security Consulting Sas | Access method to an on line service by means of access tokens and secure elements restricting the use of these access tokens to their legitimate owner |
FR3041195A1 (fr) | 2015-09-11 | 2017-03-17 | Dp Security Consulting | Procede d'acces a un service en ligne au moyen d'un microcircuit securise et de jetons de securite restreignant l'utilisation de ces jetons a leur detenteur legitime |
ITUB20155318A1 (it) | 2015-10-26 | 2017-04-26 | St Microelectronics Srl | Tag, relativo procedimento e sistema per identificare e/o autenticare oggetti |
US20170140379A1 (en) | 2015-11-17 | 2017-05-18 | Bruce D. Deck | Credit card randomly generated pin |
CA2944935A1 (en) | 2015-11-27 | 2017-05-27 | The Toronto-Dominion Bank | System and method for remotely activating a pin-pad terminal |
EP3374740A4 (en) | 2015-12-07 | 2019-09-25 | Capital One Services, LLC | ELECTRONIC ACCESS CONTROL SYSTEM |
US9948467B2 (en) | 2015-12-21 | 2018-04-17 | Mastercard International Incorporated | Method and system for blockchain variant using digital signatures |
KR101637863B1 (ko) | 2016-01-05 | 2016-07-08 | 주식회사 코인플러그 | 본인인증용 정보 보안 전송시스템 및 방법 |
WO2017134281A1 (en) | 2016-02-04 | 2017-08-10 | Nasdaq Technology Ab | Systems and methods for storing and sharing transactional data using distributed computer systems |
US9619952B1 (en) | 2016-02-16 | 2017-04-11 | Honeywell International Inc. | Systems and methods of preventing access to users of an access control system |
US10148135B2 (en) | 2016-02-16 | 2018-12-04 | Intel IP Corporation | System, apparatus and method for authenticating a device using a wireless charger |
FR3049083A1 (fr) | 2016-03-15 | 2017-09-22 | Dp Security Consulting Sas | Procede de duplication des donnees d'un microcircuit securise vers un autre microcircuit securise permettant, au plus, a un seul microcircuit securise d'etre operationnel a un instant donne |
US9894199B1 (en) | 2016-04-05 | 2018-02-13 | State Farm Mutual Automobile Insurance Company | Systems and methods for authenticating a caller at a call center |
ES2822997T3 (es) | 2016-04-07 | 2021-05-05 | Contactoffice Group | Método para satisfacer una solicitud criptográfica que requiere un valor de una clave privada |
US10255816B2 (en) | 2016-04-27 | 2019-04-09 | Uber Technologies, Inc. | Transport vehicle configuration for impaired riders |
US10333705B2 (en) | 2016-04-30 | 2019-06-25 | Civic Technologies, Inc. | Methods and apparatus for providing attestation of information using a centralized or distributed ledger |
KR20170126688A (ko) | 2016-05-10 | 2017-11-20 | 엘지전자 주식회사 | 스마트 카드 및 그 스마트 카드의 제어 방법 |
US9635000B1 (en) | 2016-05-25 | 2017-04-25 | Sead Muftic | Blockchain identity management system based on public identities ledger |
GB201609460D0 (en) | 2016-05-30 | 2016-07-13 | Silverleap Technology Ltd | Increased security through ephemeral keys for software virtual contactless card in a mobile phone |
US10097544B2 (en) | 2016-06-01 | 2018-10-09 | International Business Machines Corporation | Protection and verification of user authentication credentials against server compromise |
US10680677B2 (en) | 2016-08-01 | 2020-06-09 | Nxp B.V. | NFC system wakeup with energy harvesting |
US10032169B2 (en) | 2016-08-08 | 2018-07-24 | Ellipse World, Inc. | Prepaid, debit and credit card security code generation system |
US20180039986A1 (en) | 2016-08-08 | 2018-02-08 | Ellipse World S.A. | Method for a Prepaid, Debit and Credit Card Security Code Generation System |
US10084762B2 (en) | 2016-09-01 | 2018-09-25 | Ca, Inc. | Publicly readable blockchain registry of personally identifiable information breaches |
US10748130B2 (en) | 2016-09-30 | 2020-08-18 | Square, Inc. | Sensor-enabled activation of payment instruments |
US10462128B2 (en) | 2016-10-11 | 2019-10-29 | Michael Arthur George | Verification of both identification and presence of objects over a network |
US10719771B2 (en) | 2016-11-09 | 2020-07-21 | Cognitive Scale, Inc. | Method for cognitive information processing using a cognitive blockchain architecture |
US20180160255A1 (en) | 2016-12-01 | 2018-06-07 | Youngsuck PARK | Nfc tag-based web service system and method using anti-simulation function |
US10133979B1 (en) | 2016-12-29 | 2018-11-20 | Wells Fargo Bank, N.A. | Wearable computing device-powered chip-enabled card |
US10237070B2 (en) | 2016-12-31 | 2019-03-19 | Nok Nok Labs, Inc. | System and method for sharing keys across authenticators |
DE102017000768A1 (de) | 2017-01-27 | 2018-08-02 | Giesecke+Devrient Mobile Security Gmbh | Verfahren zum Durchführen einer Zweifaktorauthentifizierung |
EP3364352A1 (en) * | 2017-02-21 | 2018-08-22 | Mastercard International Incorporated | Determining legitimate conditions at a computing device |
US20180240106A1 (en) | 2017-02-21 | 2018-08-23 | Legacy Ip Llc | Hand-held electronics device for aggregation of and management of personal electronic data |
US20180254909A1 (en) | 2017-03-06 | 2018-09-06 | Lamark Solutions, Inc. | Virtual Identity Credential Issuance and Verification Using Physical and Virtual Means |
US10764043B2 (en) | 2017-04-05 | 2020-09-01 | University Of Florida Research Foundation, Incorporated | Identity and content authentication for phone calls |
US10129648B1 (en) | 2017-05-11 | 2018-11-13 | Microsoft Technology Licensing, Llc | Hinged computing device for binaural recording |
US20190019375A1 (en) | 2017-07-14 | 2019-01-17 | Gamblit Gaming, Llc | Ad hoc customizable electronic gaming table |
US9940571B1 (en) | 2017-08-25 | 2018-04-10 | Capital One Services, Llc | Metal contactless transaction card |
EP3451262A1 (en) * | 2017-08-29 | 2019-03-06 | Mastercard International Incorporated | A system for verifying a user of a payment device |
US10956905B2 (en) * | 2017-10-05 | 2021-03-23 | The Toronto-Dominion Bank | System and method of session key generation and exchange |
US10019707B1 (en) | 2017-10-24 | 2018-07-10 | Capital One Services, Llc | Transaction card mode related to locating a transaction card |
US11102180B2 (en) | 2018-01-31 | 2021-08-24 | The Toronto-Dominion Bank | Real-time authentication and authorization based on dynamically generated cryptographic data |
US10489781B1 (en) | 2018-10-02 | 2019-11-26 | Capital One Services, Llc | Systems and methods for cryptographic authentication of contactless cards |
GB2584853A (en) * | 2019-06-17 | 2020-12-23 | Airbus Operations Ltd | Initialisation of tyre monitoring devices |
-
2019
- 2019-12-30 US US16/731,009 patent/US11038688B1/en active Active
-
2020
- 2020-11-24 AU AU2020416694A patent/AU2020416694A1/en active Pending
- 2020-11-24 KR KR1020227016353A patent/KR20220122974A/ko active Search and Examination
- 2020-11-24 EP EP20828784.7A patent/EP4085412A1/en active Pending
- 2020-11-24 CA CA3154530A patent/CA3154530A1/en active Pending
- 2020-11-24 CN CN202080084875.8A patent/CN114981828A/zh active Pending
- 2020-11-24 WO PCT/US2020/061939 patent/WO2021137974A1/en unknown
- 2020-11-24 JP JP2022540770A patent/JP2023509144A/ja active Pending
-
2021
- 2021-05-11 US US17/317,324 patent/US12003644B2/en active Active
Also Published As
Publication number | Publication date |
---|---|
KR20220122974A (ko) | 2022-09-05 |
US11038688B1 (en) | 2021-06-15 |
US12003644B2 (en) | 2024-06-04 |
WO2021137974A1 (en) | 2021-07-08 |
AU2020416694A1 (en) | 2022-05-05 |
CA3154530A1 (en) | 2021-07-08 |
US20210203505A1 (en) | 2021-07-01 |
US20210266172A1 (en) | 2021-08-26 |
EP4085412A1 (en) | 2022-11-09 |
JP2023509144A (ja) | 2023-03-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11373169B2 (en) | Web-based activation of contactless cards | |
US11063979B1 (en) | Enabling communications between applications in a mobile operating system | |
US11165586B1 (en) | Call center web-based authentication using a contactless card | |
EP4154130A1 (en) | Application-based point of sale system in mobile operating systems | |
US20240152351A1 (en) | Techniques to perform applet programming | |
JP2024508286A (ja) | 認証の持続性を確立すること | |
WO2024107974A1 (en) | Systems and techniques to perform verification operations with wireless communication | |
EP4082165A1 (en) | Secure authentication based on passport data stored in a contactless card | |
US12003644B2 (en) | Techniques to control applets for contactless cards | |
US11216799B1 (en) | Secure generation of one-time passcodes using a contactless card | |
US20240259207A1 (en) | Techniques to control applets for contactless cards |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 40072189 Country of ref document: HK |
|
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination |