CA3170260A1 - Procede de securisation d'une transaction par carte de paiement - Google Patents
Procede de securisation d'une transaction par carte de paiement Download PDFInfo
- Publication number
- CA3170260A1 CA3170260A1 CA3170260A CA3170260A CA3170260A1 CA 3170260 A1 CA3170260 A1 CA 3170260A1 CA 3170260 A CA3170260 A CA 3170260A CA 3170260 A CA3170260 A CA 3170260A CA 3170260 A1 CA3170260 A1 CA 3170260A1
- Authority
- CA
- Canada
- Prior art keywords
- cardholder
- payment card
- time data
- data code
- otdc
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims description 24
- 238000004891 communication Methods 0.000 claims abstract description 20
- 230000001815 facial effect Effects 0.000 claims description 2
- 230000005540 biological transmission Effects 0.000 abstract description 6
- 230000002401 inhibitory effect Effects 0.000 abstract description 3
- 238000013475 authorization Methods 0.000 description 5
- 238000013459 approach Methods 0.000 description 4
- 230000001010 compromised effect Effects 0.000 description 4
- 230000008569 process Effects 0.000 description 3
- 230000008901 benefit Effects 0.000 description 2
- 230000008867 communication pathway Effects 0.000 description 2
- 238000013500 data storage Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 230000000977 initiatory effect Effects 0.000 description 2
- 230000002265 prevention Effects 0.000 description 2
- 238000010200 validation analysis Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 230000002411 adverse Effects 0.000 description 1
- 230000009977 dual effect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000002829 reductive effect Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 238000012216 screening Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/065—Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
- H04L9/0656—Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
- H04L9/0662—Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher with particular pseudorandom sequence generator
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/018—Certifying business or products
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
- G06Q30/0601—Electronic shopping [e-shopping]
- G06Q30/0609—Buyer or seller confidence or verification
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/02—Banking, e.g. interest calculation or account maintenance
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0838—Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0863—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/18—Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Finance (AREA)
- Accounting & Taxation (AREA)
- Theoretical Computer Science (AREA)
- General Business, Economics & Management (AREA)
- Signal Processing (AREA)
- Development Economics (AREA)
- Economics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Marketing (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- General Physics & Mathematics (AREA)
- Entrepreneurship & Innovation (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
Abstract
L'invention concerne un système de prévention ou d'inhibition de la fraude par carte de paiement. Lorsqu'une transaction par carte de paiement est initiée, le réseau de cartes transmet des informations d'identification de titulaire de carte à la banque qui a émis la carte de paiement. La banque émettrice génère un code de données à usage unique (OTDC) aléatoire lors de la réception d'informations d'identification de titulaire de carte. En variante, le titulaire de la carte peut demander un OTDC, par messagerie directe de la banque émettrice ou par l'intermédiaire d'une communication automatisée entre le dispositif mobile du titulaire de la carte et la banque émettrice. La banque émettrice envoie ensuite au titulaire de la carte un OTDC, de préférence par l'intermédiaire d'une transmission sécurisée chiffrée. Le titulaire de la carte fournit l'OTDC au commerçant. L'OTDC fait partie des critères d'approbation de transaction de la banque émettrice. La transaction ne doit pas être approuvée à moins que le commerçant fournisse l'OTDC à la banque émettrice. L'OTDC ne fonctionnera que pour la transaction en question, et il expirera de préférence peu après sa génération, s'il reste inutilisé.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US202062987402P | 2020-03-10 | 2020-03-10 | |
US62/987,402 | 2020-03-10 | ||
PCT/US2021/021774 WO2021183688A1 (fr) | 2020-03-10 | 2021-03-10 | Procédé de sécurisation d'une transaction par carte de paiement |
Publications (1)
Publication Number | Publication Date |
---|---|
CA3170260A1 true CA3170260A1 (fr) | 2021-09-16 |
Family
ID=77671962
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CA3170260A Pending CA3170260A1 (fr) | 2020-03-10 | 2021-03-10 | Procede de securisation d'une transaction par carte de paiement |
Country Status (8)
Country | Link |
---|---|
EP (1) | EP4118558A4 (fr) |
CN (1) | CN115605900A (fr) |
AU (1) | AU2021233841A1 (fr) |
BR (1) | BR112022018239A2 (fr) |
CA (1) | CA3170260A1 (fr) |
MX (1) | MX2022011100A (fr) |
WO (1) | WO2021183688A1 (fr) |
ZA (1) | ZA202211085B (fr) |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1646976A4 (fr) * | 2003-06-04 | 2008-02-27 | Mastercard International Inc | Authentification de la clientele dans des transactions commerciales electroniques |
US7841523B2 (en) * | 2007-05-17 | 2010-11-30 | Shift4 Corporation | Secure payment card transactions |
US20090222383A1 (en) * | 2008-03-03 | 2009-09-03 | Broadcom Corporation | Secure Financial Reader Architecture |
US20100241571A1 (en) * | 2009-03-20 | 2010-09-23 | Mcdonald Greg | System and method for cardless secure on-line credit card/debit card purchasing |
US8527417B2 (en) * | 2010-07-12 | 2013-09-03 | Mastercard International Incorporated | Methods and systems for authenticating an identity of a payer in a financial transaction |
US20140279499A1 (en) * | 2013-03-12 | 2014-09-18 | Larry J. Kane | Single use qr code authorization system |
SG10201708440TA (en) * | 2017-10-12 | 2019-05-30 | Mastercard International Inc | Computer system and computer-implemented method for processing payment card transactions |
-
2021
- 2021-03-10 BR BR112022018239A patent/BR112022018239A2/pt unknown
- 2021-03-10 MX MX2022011100A patent/MX2022011100A/es unknown
- 2021-03-10 CN CN202180033778.0A patent/CN115605900A/zh active Pending
- 2021-03-10 CA CA3170260A patent/CA3170260A1/fr active Pending
- 2021-03-10 AU AU2021233841A patent/AU2021233841A1/en active Pending
- 2021-03-10 WO PCT/US2021/021774 patent/WO2021183688A1/fr unknown
- 2021-03-10 EP EP21768819.1A patent/EP4118558A4/fr active Pending
-
2022
- 2022-10-10 ZA ZA2022/11085A patent/ZA202211085B/en unknown
Also Published As
Publication number | Publication date |
---|---|
EP4118558A4 (fr) | 2024-03-27 |
AU2021233841A1 (en) | 2022-11-03 |
BR112022018239A2 (pt) | 2022-10-25 |
MX2022011100A (es) | 2023-01-11 |
CN115605900A (zh) | 2023-01-13 |
WO2021183688A1 (fr) | 2021-09-16 |
ZA202211085B (en) | 2024-02-28 |
EP4118558A1 (fr) | 2023-01-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8930273B2 (en) | System and method for generating a dynamic card value | |
RU2691590C2 (ru) | Системы и способы замены или удаления секретной информации из данных | |
JP5199095B2 (ja) | 近接デバイスにおける安全なアカウントナンバーのためのシステムおよび方法 | |
US9361619B2 (en) | Secure and convenient mobile authentication techniques | |
US10671988B2 (en) | Methods and systems for processing an electronic payment | |
EP2332092B1 (fr) | Appareil et procédé pour empêcher un accès non autorisé à une application de paiement installée dans un dispositif de paiement sans contact | |
AU2009292991B2 (en) | Over the air management of payment application installed in mobile device | |
AU2007290325B2 (en) | Transaction authentication using network | |
US20160155114A1 (en) | Smart communication device secured electronic payment system | |
US20140279555A1 (en) | Dynamically allocated security code system for smart debt and credit cards | |
US20160148194A1 (en) | Radio Frequency Powered Smart, Debit and Credit Card System Employing a Light Sensor to Enable Authorized Transactions | |
US20140263624A1 (en) | Radio Frequency Powered Smart, Debit, and Credit Card System Employing A Light Sensor To Enable Authorized Transactions | |
US20070143230A1 (en) | Transaction verification system | |
US20190362341A1 (en) | Binding cryptogram with protocol characteristics | |
JP2009507308A5 (fr) | ||
US11432155B2 (en) | Method and system for relay attack detection | |
US11936684B2 (en) | Systems and methods for protecting against relay attacks | |
EP2787475A2 (fr) | Système de code de sécurité generée dynamiquement pour les cartes à puce, de crédit et de débit | |
US20230004990A1 (en) | Method of securing a payment card transaction | |
EP4020360A1 (fr) | Échange sécurisé de justificatifs sans contact | |
CA3170260A1 (fr) | Procede de securisation d'une transaction par carte de paiement | |
John | METHOD AND SYSTEM FOR SECURE CREDENTIAL GENERATION | |
Sinha | Is Your ATM Card Really Safe? | |
KR20040068445A (ko) | 휴대폰 승인번호를 이용한 신용/현금 카드 사용승인 처리방법 및 시스템 | |
KR20110106977A (ko) | 카드결제보안방법 |