CN113590930A - 使用短程收发器进行数据访问控制的系统和方法 - Google Patents

使用短程收发器进行数据访问控制的系统和方法 Download PDF

Info

Publication number
CN113590930A
CN113590930A CN202110220684.6A CN202110220684A CN113590930A CN 113590930 A CN113590930 A CN 113590930A CN 202110220684 A CN202110220684 A CN 202110220684A CN 113590930 A CN113590930 A CN 113590930A
Authority
CN
China
Prior art keywords
account
client device
data
link
holder
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110220684.6A
Other languages
English (en)
Inventor
拉伊科·埃琳西克
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Capital One Services LLC
Original Assignee
Capital One Services LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Capital One Services LLC filed Critical Capital One Services LLC
Publication of CN113590930A publication Critical patent/CN113590930A/zh
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • G06Q20/3674Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/953Querying, e.g. by the use of web search engines
    • G06F16/9535Search customisation based on user profiles and personalisation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/28Databases characterised by their database models, e.g. relational or object models
    • G06F16/284Relational databases
    • G06F16/288Entity relationship models
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/352Contactless payments by cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/353Payments by cards read by M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/356Aspects of software for card payments
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • G06Q20/3672Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes initialising or reloading thereof
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2137Time limited access, e.g. to a computer or data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2145Inheriting rights or properties, e.g., propagation of permissions or restrictions within a hierarchy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Finance (AREA)
  • Databases & Information Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Data Mining & Analysis (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Power Engineering (AREA)
  • Medical Informatics (AREA)
  • Software Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

提出了用于通过诸如非接触式卡的短程收发器与客户端设备的交互来控制数据访问的系统和方法。示例性系统和方法可以包括:建立存储用于多个账户的信息的数据库;从第二账户持有人的客户端设备接收将第一账户与第二账户链接的账户链接请求,该账户链接请求是响应于非接触式卡和客户端设备之间的点击动作而生成的;向第一账户持有人的客户端设备发射用于批准账户链接请求的链接批准请求;从第一账户持有人客户端设备接收响应于第一账户持有人批准账户链接请求的指示而生成的链接批准消息;以及向第二账户持有人客户端设备发射账户链接。

Description

使用短程收发器进行数据访问控制的系统和方法
技术领域
本公开总体上涉及用户数据控制,并且更具体地,涉及用于通过短程收发器与客户端设备的交互来主动控制用户对数据的访问的示例性系统和方法。
背景技术
典型的用户拥有一个或多个实体的多个不同账户。当用户创建账户时,用户通常会提供一定数量的有关该用户的个人识别信息,以及用于账户访问的信息(例如用户名和密码)。每个实体可以具有例如不同的用户数据保留策略、不同的使用策略和不同的用户数据共享策略。使用用户信息的策略可能会进一步更改,而没有通知用户。另外,用户信息的拥有者也可能通过一个实体对另一实体的并购或买断而改变多次,而没有通知用户。
账户访问通常将依靠登录凭证(例如,用户名和密码)来确认持卡人的身份。但是,如果登录凭证受到破坏,则其他人可能会访问该用户的账户。另外,与用户共享其个人信息的实体或个人越多,在实体之一处违规窃取用户信息的风险就越大。此外,用户可能仅出于有限的目的或时间限制而希望与实体或个人共享某些个人信息。
因此,提供允许用户控制用户信息的使用以克服本文所述的至少一些缺陷的示例性系统和方法会是有益的。
发明内容
所公开的技术的方面包括用于通过诸如非接触式卡的短程收发器与客户端设备的交互来控制数据访问的系统和方法。可以在账户信息的上下文中提供数据访问控制,包括通过短程收发器(例如非接触式卡)与客户端设备的交互来处理将第一账户与第二账户链接的请求,使得某些账户标识符信息或账户登录信息不需要透露给请求访问另一个人或实体的账户数据的个人或实体。
本公开的实施例提供了一种数据访问控制系统,包括:存储用于多个账户的信息的数据库,针对与第一账户持有人相关联的第一账户,所述信息包括第一账户标识符和第一账户数据,以及针对与第二账户持有人相关联的第二账户,所述信息包括第二账户标识符;被配置为通过网络与多个客户端设备通信的服务器,所述多个客户端设备包括与第一账户持有人相关联的第一客户端设备,和与第二账户持有人相关联的第二客户端设备;包括通信接口、处理器和存储器的非接触式卡,所述存储器存储小应用程序和令牌,其中所述非接触式卡与第一账户持有人相关联;包括指令的客户端应用程序,其用于在第一客户端设备或第二客户端设备中的至少一个上执行,所述客户端应用程序被配置为:当在第二客户端设备上执行时:响应于非接触式卡和第二客户端设备之间的点击动作(tap action):从非接触式卡接收令牌,并向服务器发射令牌和将第一账户与第二账户链接的账户链接请求;和从服务器接收账户链接确认消息,该消息包括用于访问第一账户数据的指令;以及当在第一客户端设备上执行时:响应于来自服务器的用于批准账户链接请求的链接批准请求,向服务器发射批准账户链接请求的链接批准消息;和,与服务器和数据库进行数据通信的处理器,所述处理器被配置为:接收来自第二客户端设备的令牌和账户链接请求;基于令牌识别第一账户;向第一客户端设备发射用于批准账户链接请求的链接批准请求;从第一客户端设备接收批准账户链接请求的链接批准消息;和向第二客户端设备发射账户链接确认消息,该消息包括用于访问第一账户数据的指令。
本公开的实施例提供了一种用于控制数据访问的方法,包括:建立存储用于多个账户的信息的数据库,针对与第一账户持有人相关联的第一账户,所述信息包括第一账户标识符、第一账户数据和数据控制参数,针对与第二账户持有人相关联的第二账户,所述信息包括第二账户标识符;经由网络从第二账户持有人的客户端设备接收将第一账户与第二账户链接的账户链接请求,所述账户链接请求是响应于非接触式卡和第二账户持有人客户端设备之间的点击动作而生成的,所述账户链接请求以及令牌存储在非接触式卡上,其中非接触式卡与第一账户持有人相关联;基于令牌识别第一账户;经由网络向第一账户持有人的客户端设备发射用于批准账户链接请求的链接批准请求;经由网络从第一账户持有人客户端设备接收链接批准消息,该链接批准消息是响应于第一账户持有人批准账户链接请求的指示而生成的;和经由网络向第二账户持有人客户端设备发射账户链接确认消息,该账户链接确认消息确认批准账户链接请求,并提供用于访问第一账户数据的指令。
本公开的实施例提供了一种用于控制数据访问的方法,包括:建立存储用于多个账户的信息的数据库,针对与第一账户持有人相关联的第一账户,所述信息包括第一账户标识符、第一账户数据和数据控制参数,针对与第二账户持有人相关联的第二账户,所述信息包括第二账户标识符;提供包括通信接口、处理器和存储器的非接触式卡,所述存储器存储小应用程序和令牌,其中所述通信接口被配置为支持近场通信、蓝牙或Wi-Fi中的至少一种,并且其中所述非接触式卡与第一账户持有人相关联;和提供包括指令的客户端应用程序,所述客户端应用程序用于在第一账户持有人的第一客户端设备或第二账户持有人的第二客户端设备中的至少一个上执行,所述客户端应用程序被配置为:当在第二客户端设备上执行时:响应于非接触式卡和第二客户端设备之间的点击动作:从非接触式卡接收令牌,并向服务器发射令牌和将第一账户与第二账户链接的账户链接请求;和从服务器接收账户链接确认消息,该消息包括用于访问第一账户数据的指令,该数据访问是根据数据控制参数提供的;以及当在第一客户端设备上执行时:确定非接触式卡和第一客户端设备之间的点击动作,该点击动作是响应于用于批准账户链接请求的链接批准请求的,该点击动作表示批准账户链接请求;和向服务器发射批准账户链接请求的链接批准消息。
在下文中参考以下描述的并在附图中示出的特定示例实施例,更详细地解释了所公开的设计的其他特征以及由此提供的优点。
附图说明
图1A是根据一个或多个示例实施例的数据访问控制系统的图。
图1B是示出根据一个或多个示例实施例的用于提供数据访问控制的序列的图。
图2示出了根据一个或多个示例实施例的在数据访问控制系统中使用的客户端设备的组件。
图3示出了根据一个或多个示例实施例的在数据访问控制系统中使用的短程收发器的组件。
图4是示出根据一个或多个示例实施例,在数据访问控制系统中使用的客户端设备与短程收发器之间的交互的图。
图5是示出根据一个或多个示例实施例,在数据访问控制系统中使用的客户端设备与短程收发器之间的交互的图。
图6是示出根据一个或多个示例实施例的数据访问控制的方法的流程图。
图7是示出根据一个或多个示例实施例的数据访问控制的方法的流程图。
图8是示出根据一个或多个示例实施例的数据访问控制的方法的流程图。
具体实施方式
实施例的以下描述提供了参考数字的非限制性代表示例,以特别地描述本发明的不同方面的特征和教导。从实施例的描述中,应当认识到,所描述的实施例能够与其他实施例分开地或组合地实现。审阅了实施例的描述的本领域普通技术人员应该能够学习和理解本发明的不同描述方面。实施例的描述应在某种程度上促进对本发明的理解,使得未具体覆盖但是在阅读了实施例的描述的本领域技术人员的知识范围内的其他实施方式将被理解为与本发明的应用一致。
所公开的系统和方法的示例性实施例提供用于通过短程收发器(例如非接触式卡)与客户端设备的交互来控制数据访问。可以在控制对账户信息的访问的上下文中提供数据访问控制。可以通过诸如非接触式卡之类的短程收发器与客户端设备的交互来处理将第一账户与第二账户链接的请求,从而不必向请求访问另一个人或实体的账户数据的个人或实体公开某些账户标识符信息或账户登录信息。所公开的技术的益处可以包括改进的账户信息数据安全性、改进的防欺诈功能和改进的用户体验。
图1A显示了示出根据一个或多个示例实施例的数据访问控制系统100的图。如下面进一步讨论的,系统100可以包括客户端设备101、客户端设备103、短程收发器105、服务器110、处理器120和数据库130。客户端设备101和客户端设备103可以经由网络115与服务器110通信。尽管图1示出了以某些方式连接的某些组件,但是系统100可以包括以各种方式连接的附加的或多个组件。
系统100可以包括一个或多个客户端设备,例如客户端设备101和/或客户端设备103,其每个可以是支持网络的(network-enabled)计算机。如本文所指,支持网络的计算机可以包括但不限于计算机设备或通信设备,包括例如服务器、网络应用程序、个人计算机、工作站、电话、手持式PC、个人数字助理、瘦客户端、胖客户端、因特网浏览器或其他设备。客户端设备101和103中的每一个也可以是移动设备;例如,移动设备可以包括
Figure BDA0002954745580000051
的iPhone、iPod、iPad或任何其他运行Apple的
Figure BDA0002954745580000053
操作系统的移动设备,任何运行Microsoft的
Figure BDA0002954745580000054
操作系统的设备,任何运行Google的
Figure BDA0002954745580000052
操作系统的设备,和/或任何其他智能手机、平板电脑或类似的可穿戴移动设备。下面参考图2进一步描述可以包括在诸如客户端设备101和/或客户端设备103的客户端设备中的附加特征。
系统100可以包括一个或多个短程收发器,例如短程收发器105。短程收发器105可以在诸如近场通信(NFC)之类的短程通信场中与诸如客户端设备101和/或客户端设备103之类的客户端设备进行无线通信。短程收发器105可以包括例如非接触式卡、智能卡,或者可以包括具有变化的形状因数的设备,例如表链、吊坠或被配置为在短程通信场内进行通信的其他设备。在其他实施例中,短程收发器105可以与客户端设备101、103相同或相似。下面参考图3进一步描述可以包括在诸如短程收发器105之类的短程收发器中的附加特征。
系统100可以包括一个或多个服务器110。在一些示例实施例中,服务器110可以包括一个或多个耦合到存储器的处理器(例如,微处理器)。服务器110可以被配置为中央系统、服务器或平台,以在不同时间控制和调用各种数据以执行多个工作流动作。服务器110可以是例如刀片型服务器的专用服务器计算机,或者可以是个人计算机、膝上型计算机、笔记本计算机、掌上型计算机、网络计算机、移动设备或能够支持系统100的任何处理器控制的设备。
服务器110可以被配置为与一个或多个处理器(例如,处理器120)进行数据通信(例如,经由连接)。在一些示例实施例中,服务器110可以合并处理器120。在一些示例实施例中,服务器110可以在物理上与处理器120分离和/或远离处理器120。处理器120可以被配置为用作后端处理器。处理器120可以被配置与数据库130和/或服务器110进行数据通信(例如,经由连接)。处理器120可以包括一个或多个处理设备,例如微处理器、RISC处理器、ASIC等,以及相关的处理电路。处理器120可以包括或连接到存储可执行指令和/或数据的存储器。处理器120可以经由服务器110向诸如客户端设备101和/或103之类的其他设备通信发送消息、请求、通知、数据等,或从其接收消息、请求、通知、数据等。
服务器110可以被配置为与诸如数据库130的一个或多个数据库进行数据通信(例如,经由连接)。数据库130可以是关系数据库或非关系数据库,或者是多个数据库的组合。在一些示例实施例中,服务器110可以合并数据库130。在一些示例实施例中,数据库130可以在物理上与服务器110分离和/或远离服务器110,位于另一服务器、基于云的平台上或与服务器110进行数据通信的任何存储设备中。
服务器110、处理器120和数据库130之间的连接可以经由适合于在这些组件之间进行通信的有线和/或无线的任何通信线路、链路或网络或其组合来进行。这样的网络可以包括网络115和/或与本文参考网络115描述的网络相同或相似类型的一个或多个网络。在一些示例实施例中,服务器110、处理器120和数据库130之间的连接可以包括公司LAN。
服务器110和/或数据库130可以包括用于控制对用户账户的访问的用户登录凭证。登录凭证可以包括但不限于用户名、密码、访问码、安全性问题、滑动模式、图像识别、身份扫描(例如,驾驶执照扫描和护照扫描)、设备注册、电话号码、电子邮件地址、社交媒体账户访问信息和生物识别(例如,语音识别、指纹扫描、视网膜扫描和面部扫描)。
数据库130可以包含与一个或多个账户有关的数据。帐户可以由(或代表)各种实体中的任何一个或多个来维护和/或与之相关,所述实体例如(但不限于)银行、商人、在线零售商、服务提供商、销售商、制造商、社交媒体提供商、体育或娱乐活动的提供商或发起人、或连锁酒店。例如,数据库130可以包括但不限于账户标识信息(例如,账户编号、账户所有者标识号、账户所有者名称和联系信息-其中任何一个或多个可以包括账户标识符),账户特征(例如,账户类型、资金和交易限制、以及访问和其他活动的权限),并且可以包括与账户相关的数据,包括财务信息(例如余额信息、付款历史记录和交易历史记录)、社交和/或个人信息。存储在数据库130中的数据可以以任何适当的格式存储,并且可以以安全的格式被加密和存储以防止未授权的访问。任何合适的算法/过程都可以用于数据加密和授权解密。
服务器110可以被配置为经由一个或多个网络(例如,网络115)与一个或多个客户端设备(例如,客户端设备101和/或客户端设备103)进行通信。网络115可以包括无线网络、有线网络或无线网络和有线网络的任意组合中的一个或多个,并且可以被配置为将客户端设备101和/或103连接到服务器110。例如,网络115可以包括以下中的一个或多个:光纤网络、无源光网络、电缆网络、因特网网络、卫星网络、无线局域网(LAN)、全球移动通信系统、个人通信服务、个人局域网、无线应用协议、多媒体消息传递服务、增强消息传递服务、短消息服务、基于时分复用的系统、基于码分多址的系统、D-AMPS、Wi-Fi、固定无线数据、IEEE802.11b、802.15.1、802.11n和802.11g、蓝牙、NFC、射频识别(RFID)、Wi-Fi等。
另外,网络115可以包括但不限于电话线、光纤、IEEE以太网902.3、广域网、无线个人局域网、LAN或诸如因特网的全球网络。另外,网络115可以支持因特网网络、无线通信网络、蜂窝网络等或其任何组合。网络115可以进一步包括一个网络,或者上述任何数量的示例性类型的网络,其作为独立网络运行或彼此协作。网络115可以利用它们所通信地耦合到的一个或多个网络元件的一个或多个协议。网络115可以转换为网络设备的一个或多个协议,或从其他协议转换为网络设备的一个或多个协议。尽管网络115被描述为单个网络,但是应当理解,根据一个或多个示例实施例,网络115可以包括多个互连的网络,例如,因特网、服务提供商的网络、有线电视网络、例如信用卡关联网络、LAN的公司网络和/或家庭网络。
在一些示例实施例中,服务器110可以访问包括数据库130中的记录的记录,以确定用于与客户端设备101和/或客户端设备103进行通信的一种或多种方法。该通信方法可以包括具有存储在客户端设备101和/或客户端设备103上的应用程序的可操作的推送通知。其他通信方法可以包括文本消息或电子邮件,或其他适合基于网络的客户端/服务器配置中的消息传递技术。客户端设备101和/或103的消息或请求可以通过客户端设备上的应用程序传递到服务器110,或者可以通过文本消息或电子邮件或其他适合于基于网络的客户端/服务器配置的消息传递技术来发送。可以使用与源自服务器110的通信相同的通信方法,或者经由不同的通信方法,将源自客户端设备101或客户端设备103的通信发送至服务器110。
图1B显示了示出根据一个或多个示例实施例的用于提供数据访问控制的序列的图,其可以包括链接两个账户的请求,每个账户由单独的账户持有人持有。图1B引用了如图1A所示的示例实施例系统100的类似组件。客户端设备101可以与第一账户持有人相关联。第一账户持有人可以具有关联的第一账户,该第一账户可以包括第一账户标识符和第一账户数据。客户端设备101可以包括应用程序102,其可以包括用于由客户端设备101执行的指令。客户端设备101可以包括下面参考图2进一步描述的特征。应用程序102可以被配置为在使用客户端设备101时为第一账户持有人提供用户界面。应用程序102可以被配置为经由客户端设备101与其他客户端设备、与短程收发器105以及与服务器110通信。如本文参考客户端设备101所述,应用程序102可以被配置为接收请求和发送消息。包括账户标识符和账户数据的账户信息可以存储在数据库130中。
客户端设备103可以与第二账户持有人相关联。第二账户持有人可以具有关联的第二账户,该第二账户可以包括第二账户标识符。客户端设备103可以包括应用程序104,其可以包括用于由客户端设备103执行的指令。客户端设备103可以包括以下参考图2进一步描述的特征。应用程序104可以被配置为在使用客户端设备103时为第二账户持有人提供用户界面。应用程序104可以被配置为经由客户端设备103与其他客户端设备、与短程收发器105以及与服务器110通信。如本文参考客户端设备103所述,应用程序104可以被配置为发送请求和接收消息。
短程收发器105可以与第一账户持有人相关联。短程收发器105可以包括例如非接触式卡,并且可以包括下面参考图3进一步描述的特征。短程收发器105可以具有存储小应用程序106和/或令牌107的存储器,令牌107与第一账户持有人相关联。
令牌可用于通过令牌授权来提高安全性。服务器110可以向客户端设备101和/或103发送验证请求,从客户端设备101和/或103接收响应信息,并且如果被验证,则向客户端设备101和/或103发送验证令牌。验证令牌可以基于预定令牌,或者可以是基于算法的动态令牌,该算法可以是秘密的并且仅为服务器110以及客户端设备101和/或103所知;该算法可以包括参与者可以独立验证的实时参数,例如特定位置的温度或时间。令牌可以用于验证第一账户持有人或第二账户持有人的身份。验证请求和/或验证令牌可以是基于短程收发器105上存储的令牌107的。
在一些示例实施例中,应用程序104可以在客户端设备103上显示指令,提示第二账户持有人在短程收发器105和客户端设备103之间发起点击动作。如本文所使用的,点击动作可以包括对着客户端设备103点击短程收发器105(反之亦然)。例如,如果短程收发器105是非接触式卡,并且客户端设备103是移动设备,则点击动作可以包括在客户端设备103的屏幕或其他部分上点击非接触式卡。然而,点击动作不限于短程收发器105对着客户端设备103进行物理点击,并且可以包括其他手势,诸如短程收发器105在客户端设备(103)附近进行摆动或其他运动(反之亦然)。
在标号150处,短程收发器105和客户端设备103之间可以有点击动作。点击动作可以是响应于在客户端设备103上显示的提示。
在标号152处,应用程序104可以(经由客户端设备103)与短程收发器105通信(例如,在短程收发器105被带到客户端设备103附近之后)。应用程序104与短程收发器105之间的通信可以涉及短程收发器105(例如非接触式卡)足够靠近客户端设备103的读卡器(未示出)以实现应用程序104与短程收发器105之间的NFC数据传输,并且可以结合(或响应)短程收发器105和客户端设备103之间的点击动作(例如,在标号150处的点击动作)发生。该通信可以包括数据或命令的交换,以在应用程序104和短程收发器105之间建立通信会话。数据交换可以包括一个或多个密钥的转移或交换,所述一个或多个密钥可以是预先存在的密钥或被生成作为会话密钥。在一些示例实施例中,通信可以在短程收发器105和客户端设备103之间的点击动作之前,在短程收发器105进入客户端设备103的短程通信场时发生。
在标号154,短程收发器105可以将与第一账户持有人相关联的令牌107发送给应用程序104。令牌107可以包括第一账户标识符,该第一账户标识符对于特定的用户账户可以是唯一的。在一个示例实施例中,令牌107可以包括对于第一账户持有人而言是唯一的标识符,但是对于特定账户不是唯一的;在这种情况下,如果第一个账户持有人有多个账户,则第二个账户持有人将需要选择要关联的账户。在一些示例实施例中,令牌107可以包括与第一账户持有人相关联的密钥。在一些示例实施例中,向应用程序104发送令牌107可以结合(或响应于)短程收发器105和客户端设备103之间的点击动作(例如,在标号150处的点击动作)。在一些示例实施例中,向应用程序104发送令牌107可以在短程收发器105与客户端设备103之间的点击动作之前,在短程收发器105进入到客户端设备103的短程通信场时发生。
在标号156处,应用程序104可以将令牌107连同账户链接请求一起发送到服务器110,所述账户链接请求用于将第一账户(与第一账户持有人相关联)与第二账户(与第二账户持有人相关联)进行链接。可以响应于短程收发器105与客户端设备103之间的点击动作(例如,例如标号150处的点击动作)来执行该操作。
在标号158,处理器120可以(例如,经由服务器110)接收令牌和账户链接请求。处理器120可以使用令牌来识别与第一账户持有人相关联的第一账户。在一些示例实施例中,可以通过使用令牌中的第一账户标识符在数据库130中查找账户信息来执行识别第一账户。在一些示例实施例中,在标号159,如果令牌包括与第一账户持有人相关联的密钥,则处理器120可以使用令牌中的密钥来认证第一账户持有人为与短程收发器105相关联的第一账户持有人。
在标号160处,处理器120可以向客户端设备101发送(例如,经由服务器110)链接批准请求,以请求第一账户持有人批准第二账户持有人的将第一账户与第二账户链接的帐户链接请求。链接批准请求可以包括例如第二账户持有人的名称,以及第一账户持有人考虑该请求所需的任何信息或指令。链接批准请求可以包括第一账户持有人可以批准或拒绝该请求的通知。可以将链接批准请求作为推送通知发送到应用程序102(通过客户端设备101)。在一些示例实施例中,应用程序102可以在客户端设备101上显示指令,提示第一账户持有人在短程收发器105和客户端设备101之间发起点击动作。
在标号162处,短程收发器105和客户端设备101之间可以有点击动作。点击动作可以是响应于链接批准请求(和/或响应于在客户端设备101上显示的提示),并且可以表示第一账户持有人批准账户链接请求。
在标号164,应用程序102可以将链接批准消息发送到服务器,以表示第一账户持有人批准账户链接请求。可以响应于短程收发器105和客户端设备101之间的点击动作(例如,例如在标号162处的点击动作)来执行该操作。在示例实施例中,取而代之的是,应用程序102可以向服务器发送拒绝消息(未示出),该拒绝消息表示第一账户持有人拒绝账户链接请求。
在标号166,处理器120可以向客户端设备103发送(例如,经由服务器110)链接确认消息,以确认对将第一账户与第二账户进行链接的请求的批准。可以将链接确认消息作为推送通知发送到应用程序104(通过客户端设备103)。在一些示例实施例中,可以利用由第一账户持有人授予的链接第一和第二账户的许可来更新数据库130中用于第一账户和/或第二账户的信息。
在示例实施例中,取而代之的是,处理器120可以向客户端设备103发送拒绝通知(未示出),该拒绝通知表示第一账户持有人拒绝账户链接请求。
在标号168处,处理器120可以向客户端设备103发送(例如,经由服务器110)用于获得对第一账户中的第一账户数据进行访问的指令。用于访问第一账户数据的指令可以包含在链接确认消息中(在标号166处),或者可以作为单独通信的一部分发送,包括向应用程序104的推送通知。
处理器120可以从数据库130检索所请求的第一账户数据,并将该数据发射到客户端设备103。在发射到客户端设备103之前,处理器120可以使用任何适当的加密方法对所请求的第一账户数据进行加密,所述加密方法诸如三重DES、RSA公钥私钥加密、非对称加密、Blowfish加密、Twofish加密、高级加密标准(AES)、量子密钥分发、Honey加密等。在一些实施例中,所请求的第一账户数据可以在被处理器120检索之前,已经被加密并存储在数据库130中。
一旦接收到所请求的第一账户数据,客户端设备103可以解密该信息,如果该信息是在处理器120发射之前被加密的。客户端设备103可以接收与加密的第一账户数据的第一通信分开的解密密钥。加密可以允许根据数据控制参数来控制对第一账户数据的访问。例如,第一账户数据可以以每次客户端设备103希望获得对第一账户数据的访问时要求客户端设备103从处理器120请求新密钥的方式被加密,使得该数据针对客户端设备103的每次访问将需要进行解密;该过程将允许处理器120跟踪并确保第一账户数据不会以与数据控制参数不一致的方式被访问。
在示例实施例中,第二账户持有人可以登录到第二账户,并通过后端上的数据共享,根据任何数据控制参数来获得对第一账户数据的访问。
在客户端设备103上执行的应用程序104可以通过使用应用程序编程接口(API),执行与服务器110/处理器120发送和接收消息和请求的步骤。应用程序104可以被配置为接收、解密和访问所请求的第一账户数据。通过与应用程序104的交互,处理器120可以监视客户端设备103对所请求的第一账户数据的访问(包括根据数据控制参数)。例如,处理器120可以通过与应用程序104的交互来确定客户端设备103已经获得了对所请求的第一账户数据的访问的次数,或者这种访问发生的一个或多个时间段。在一些实施例中,可以允许应用程序104基于时间限制或有限使用次数来存储所请求的第一账户数据。
在示例实施例中,处理器120可以被配置为确定第一账户是否有资格与第二账户链接。账户链接的资格可以基于,例如,所涉及账户的类型(例如,商业账户),或账户持有人的身份(例如,家庭成员或同一企业实体的成员)。资格还可以基于第一账户持有人之前是否已批准账户链接或撤销对账户链接的批准,或者所请求的访问是否会违反数据控制参数(在下面进一步讨论)。可以例如在存储在数据库130中或在短程收发器105的存储器中的标志中指示账户链接的资格。
在一个或多个示例实施例中,可以根据数据控制参数来限制第二账户持有人对第一账户数据的访问。在示例实施例中,数据控制参数可以与第一账户信息一起存储在数据库130中。应用程序102可以为第一账户持有人提供一个接口,以选择存储在数据库130中的数据控制参数。所选择的数据控制参数可以被存储在数据库130中,并且可以被用于限制第二账户持有人对第一账户数据的访问。应用程序102还可以将选择的数据控制参数发送到短程收发器105。在示例实施例中,数据控制参数可以存储在短程收发器105的存储器中。可以将存储在短程收发器105的存储器中的数据控制参数发送给应用程序104,并由应用程序104用来限制第二账户持有人对第一账户数据的访问。小应用程序106可以被配置为接收数据控制参数并将数据控制参数存储在短程收发器105的存储器中。小应用程序106可以进一步配置为将数据控制参数发射到客户端设备103。在一些示例实施例中,第一账户持有人可以在批准链接账户的请求时选择数据控制参数,并且应用程序102可以将所选择的数据控制参数与链接批准消息一起发射到服务器110。所选择的数据控制参数可以被存储在数据库130中,并且可以被用于限制第二账户持有人对第一账户数据的访问。
在一个或多个示例实施例中,数据控制参数可以用于以一种或多种方式来限制第二账户持有人对第一账户数据的访问。例如,数据控制参数可以只允许在特定或有限的时间段内访问。作为另一个示例,数据控制参数可以允许第二账户持有人进行一次性访问。作为另一个示例,数据控制参数可以允许不限时间段的访问,除非第一账户持有人撤销对将第一账户与第二账户链接的请求的批准。作为另一个示例,数据控制参数可以仅允许访问第一账户数据的对应于预定义类别的部分。作为另一个示例,数据控制参数可以基于第二账户持有人的身份提供不同的访问权限。作为另一示例,仅当在客户端设备103的短程通信场的范围内检测到短程收发器105时,数据控制参数才可以允许访问。在一些示例实施例中,在获得账户链接批准之后,每当第二账户持有人尝试访问第一账户数据时,处理器120可以基于数据控制参数和第一账户持有人的任何撤销进行检查,以确定是否允许该访问。
在示例实施例中,可以响应于短程收发器105与客户端设备103之间的点击动作来启动应用程序104。在示例实施例中,可以响应于短程收发器105与客户端设备101之间的点击动作来启动应用程序102。
图2示出了根据一个或多个示例实施例的在数据访问控制系统中使用的客户端设备200的组件。在一个或多个示例实施例中,客户端设备200可以是以上参考图1A和图1B描述的客户端设备101和/或103中的一个或多个。客户端设备200可以包括一个或多个应用程序201、一个或多个处理器202、短程通信接口203和网络接口204。应用程序201可以包括软件应用程序或可执行程序代码,该软件应用程序或可执行程序代码将在处理器202上执行并且被配置为执行本文针对任何客户端设备(例如客户端设备101和/或103)描述的功能,和/或本文参考应用程序102描述的任何功能。应用程序201可以被配置为例如经由客户端设备200,诸如经由短程通信接口203和/或网络接口204,与其他设备发射和/或接收数据。例如,应用程序201可以被配置为发起一个或多个请求,例如向短程收发器(例如,非接触式卡)发起近场数据交换请求。应用程序201还可被配置为经由显示器(未示出)为客户端设备的用户提供用户界面。应用程序201可以存储在客户端设备200中的存储器中;存储器可以包括只读存储器,一次写入多次读取存储器,和/或,读/写存储器(例如RAM、ROM和EEPROM)。
处理器202可以包括一个或多个处理设备,例如微处理器、RISC处理器、ASIC等,并且可以包括相关的处理电路。处理器202可以包括或连接到存储可执行指令和/或数据的存储器,这对于控制、操作或与包括应用程序201的客户端设备200的其他特征是必要或适当的。处理器202(包括任何关联的处理电路)可以包含其他组件,包括处理器、存储器、错误和奇偶校验/CRC检查器、数据编码器、防冲突算法、控制器、命令解码器、安全原语和防篡改硬件,这对于执行本文描述的功能是必要的。
短程通信接口203可以支持经由诸如NFC、RFID或蓝牙的短程无线通信场进行的通信。短程通信接口203可以包括读取器,例如移动设备NFC读取器。短程通信接口203可以被合并到网络接口204中,或者可以被提供为单独的接口。
网络接口204可以包括有线或无线数据通信能力。这些功能可以支持与有线或无线通信网络的数据通信,这些网络包括因特网、蜂窝网络、广域网、局域网、无线个人局域网、广域网、用于发射和接收数据信号的任何其他有线或无线网络、或其任何组合。这样的网络可以包括但不限于电话线、光纤、IEEE以太网902.3、广域网、局域网、无线个人局域网、广域网或诸如因特网的全球网络。
客户端设备200还可以包括显示器(未示出)。这种显示器可以是用于呈现视觉信息的任何类型的设备,例如计算机监视器、平板显示器或移动设备屏幕,包括液晶显示器、发光二极管显示器、等离子面板和阴极射线管显示器。
客户端设备200还可以包括一个或多个设备输入(未示出)。这样的输入可以包括客户端设备300可用和支持的用于向客户端设备输入信息的任何设备,例如触摸屏、键盘、鼠标、光标控制设备、触摸屏、麦克风、数码相机、录像机或摄像机。设备输入可以用于输入信息并与客户端设备200交互,以及通过扩展与本文描述的系统进行交互。
图3示出了根据一个或多个示例实施例的在数据访问控制系统中使用的短程收发器300的组件。在一个或多个示例实施例中,短程收发器300可以是以上参考图1A和图1B描述的短程收发器105中的一个或多个。短程收发器300可以包括例如非接触式卡,或者可以包括具有变化的形状因数的设备,例如表链、吊坠或配置为在短程通信场内进行通信的其他设备。短程收发器300可以包括处理器301、存储器302和短程通信接口305。
处理器301可以包括一个或多个处理设备,例如微处理器、RISC处理器、ASIC等,并且可以包括相关的处理电路。处理器301可以包括或连接到存储可执行指令和/或数据的存储器,这对于控制、操作或与短程收发器300的其他功能(包括小应用程序303)会是必要的或适当的。处理器301(包括任何关联的处理电路)可以包含其他组件,包括处理器、存储器、错误和奇偶校验/CRC检查器、数据编码器、防冲突算法、控制器、命令解码器、安全原语和防篡改硬件,这对于执行本文描述的功能是必要的。
存储器302可以是只读存储器、一次写入多次读取存储器或读/写存储器,例如RAM、ROM和EEPROM。存储器302可以被配置为存储一个或多个小应用程序303以及一个或多个令牌304。小应用程序303可以包括一个或多个配置为在处理器301上执行的软件应用程序,例如可以在非接触式卡上执行的Java卡小应用程序。然而,应当理解,小应用程序303不限于Java卡小应用程序,而是可以是能够在非接触式卡或具有有限存储器的其他设备上操作的任何软件应用程序。小应用程序303可以被配置为响应一个或多个请求,例如来自客户端设备的近场数据交换请求,包括来自具有读取器(例如,移动设备NFC读取器)的设备的请求。小应用程序303可以被配置为从(或向)存储器302读取(或写入)包括令牌304的数据,并且响应于请求提供包括令牌304的数据。
令牌304可以包括分配给短程收发器300的用户的唯一字母数字标识符,并且该标识符可以将短程收发器300的用户与其他短程收发器的其他用户(例如其他非接触式卡用户)区分开。在一些示例实施例中,令牌304可以标识客户和分配给该客户的账户,并且可以进一步标识与该客户的账户相关联的短程收发器(例如,非接触式卡)。在一些示例实施例中,令牌304可以包括与短程收发器关联的用户或客户唯一的密钥。
短程通信接口305可以支持经由诸如NFC、RFID或蓝牙的短程无线通信场进行的通信。短程收发器300还可包括连接到短程通信接口305的一个或多个天线(未示出),以提供与短程无线通信场的连通性。
图4是示出根据一个或多个示例实施例(包括以上参照图1A-1B描述的实施例)的在数据访问控制系统中使用的客户端设备401和短程收发器420之间的交互作用400的图。客户端设备401可以是以上参考图1A和图1B描述的客户端设备103。客户端设备401可以与第二账户持有人相关联。用户界面402可以由以上参考图1B描述的应用程序104生成。短程收发器420可以是以上参考图1A和图1B描述的短程收发器105。在短程收发器420进入客户端设备401的短程通信场中之后(例如,经由点击动作),客户端设备401可以与短程收发器420进行通信。客户端设备401可以经由发射信号431向短程收发器420发送数据或命令,并且可以经由接收信号432从短程收发器420接收包括令牌422的数据。客户端设备401与短程收发器420之间的通信可以如上面参考图1B(例如,客户端设备101或103以及短程收发器105)所描述的进行。
用户界面402可以在客户端设备401上呈现用于账户链接请求410的屏幕显示,该屏幕显示可以包括字段411和字段412。如有必要,第二账户持有人可以在字段411中输入用户名,并在字段412中输入密码。屏幕显示可以包括指令414,该指令提示第二账户持有人点击短程收发器420(在所示的示例中,短程收发器420可以是非接触式卡)以发起将第一账户与第二账户链接的账户链接请求。指令414可以是来自服务器110(图1A和1B所示)的推送通知。响应于点击动作,客户端设备401可以将账户链接请求发射到服务器110(如图1A和图1B所示)。
图5是示出了根据一个或多个示例实施例(包括以上参照图1A-1B描述的实施例)的在数据访问控制系统中使用的客户端设备501和短程收发器520之间的交互500的图。客户端设备501可以是以上参考图1A和图1B描述的客户端设备101。客户端设备501可以与第一账户持有人相关联。用户界面502可以由以上参考图1B描述的应用程序102生成。短程收发器520可以是以上参考图1A和图1B描述的短程收发器105。在短程收发器520进入客户端设备501的短程通信场中时(例如,经由点击动作),客户端设备501可以与短程收发器520进行通信。客户端设备501可以经由发射信号531向短程收发器520发送数据或命令,并且可以经由接收信号532从短程收发器520接收包括令牌522的数据。客户端设备501与短程收发器520之间的通信可以如上面参考图1B(例如,客户端设备101或103以及短程收发器105)所描述的进行。
用户界面502可以在客户端设备501上呈现用于账户链接请求510的屏幕显示,该屏幕显示可以包括字段511和字段512。如有必要,第一账户持有人可以在字段511中输入用户名,并在字段512中输入密码。屏幕显示可以包括指令514,该指令通知第一账户持有人第二账户持有人(在示例中名为2_Acc_Hldr)已请求将第一账户与第二账户链接,并提示第一账户持有人点击短程收发器520(在所示示例中,短程收发器520可以是非接触式卡)以批准将第一账户与第二账户链接的账户链接请求。指令514可以来自服务器110(图1A和图1B所示)的推送通知。客户端设备501可以响应于点击动作将账户链接批准消息发送到服务器110。在一些示例实施例中,用户界面502可以在批准链接账户的请求时向第一账户持有人提供选择数据控制参数的选项。客户端设备501可以将所选择的数据控制参数连同链接批准消息一起发射到服务器110;或者,如上所述,所选择的数据控制参数可以被存储并且可以被用于限制第二账户持有人对第一账户数据的访问。
图6是示出了根据一个或多个示例实施例的数据访问控制方法600的流程图,其参考了上述组件和特征,包括但不限于附图和相关描述。数据访问控制方法600可以由在与第二账户持有人相关联的客户端设备103上执行的应用程序104执行。短程收发器105与第一账户持有人相关联。
在框610处,应用程序104可以使客户端设备103显示账户链接请求屏幕(例如,如图4所示并且在上文参照图4所描述的)。账户链接请求屏幕可以包括与/针对客户端设备103点击短程收发器105以发起账户链接请求的指令。如以上参考图4所述,短程收发器420(并且因此,短程收发器105)可以是非接触式卡。
在框620处,可以在短程收发器105与客户端设备103之间检测点击动作。
在框630处,可以从短程收发器105接收令牌107。接收令牌107可以是响应于框620的点击动作的。令牌107可以包括第一账户标识符。在一些示例实施例中,令牌107可以包括与第一账户持有人相关联的密钥。
在框640处,令牌107可以与将第一账户与第二账户链接的账户链接请求一起被发射到服务器110。令牌107和账户链接请求向服务器110的传输可以是响应于框620的点击动作的。
在框650处,可以从服务器110接收账户链接确认消息以及用于访问第一账户数据的指令。如上所述,指令可以是账户链接确认消息的一部分,或者可以是单独消息的一部分。
在框660,第二账户持有人可以根据接收到的指令访问第一账户数据。如上所述,在一些示例实施例中,可以仅根据数据控制参数来提供对第一账户数据的访问。在一些示例实施例中,数据控制参数与第一账户信息一起存储在数据库130中,并且数据访问受到处理器120的限制。在一些示例实施例中,数据控制参数被存储在短程收发器105的存储器中,并且由应用程序104从短程收发器105接收。在一些示例实施例中,可以在接收用于访问第一账户数据的指令之前对第一账户数据进行加密。可以使用与第一账户持有人相关联的密钥来对加密的第一账户数据进行解密。
图7是示出根据一个或多个示例实施例的数据访问控制方法700的流程图,其参考上述组件和特征,包括但不限于附图和相关描述。数据访问控制方法700可以由在与第一账户持有人相关联的客户端设备101上执行的应用程序102执行。短程收发器105与第一账户持有人相关联。
在框710,可以从服务器110接收链接批准请求,该链接批准请求征求批准将第一账户与第二账户链接。
在框720处,应用程序102可以使客户端设备101显示账户链接请求屏幕(诸如,如图5所示,并且如上文中参照图5所述)。账户链接请求屏幕可以包括与/针对客户端设备101点击短程收发器105以批准账户链接请求的指令。如以上参考图5所述,短程收发器520(并且因此,短程收发器105)可以是非接触式卡。
在框730处,可以检测在短程收发器105与客户端设备101之间的点击动作,该点击动作表示对链接批准请求的批准。点击动作可以是响应于链接批准请求的。在示例实施例中,可以通过其他方法(例如,选择按钮)来表示批准。
在框740处,可以从短程收发器105接收令牌107。令牌107可以包括第一账户标识符。在一些示例实施例中,令牌107可以包括与第一账户持有人相关联的密钥。
在框750,可以将链接批准消息发送到服务器110,该连接批准消息表示批准将第一账户与第二账户链接的请求。
图8是示出了根据一个或多个示例实施例的数据访问控制方法800的流程图,其参考上述组件和特征,包括但不限于附图和相关描述。数据访问控制方法800可以由处理器120经由服务器110与第一账户持有人所关联的客户端设备101和/或第二账户持有人所关联的客户端设备103通信来执行。
在框810处,可以从与第二账户持有人相关联的客户端设备103接收请求将第一账户与第二账户链接的账户链接请求以及令牌107。令牌107可以包括第一账户标识符。在一些示例实施例中,令牌107可以包括与第一账户持有人相关联的密钥。
在框820处,账户链接请求的发送者可以被识别为第二账户持有人。
在框830,可以基于接收到的令牌107来识别第一账户。在一些示例实施例中,当令牌107包括与第一账户持有人相关联的密钥时,与第一账户持有人相关联的密钥可以用于认证第一账户持有人。
在框840,处理器可以确认第一账户有资格与第二账户链接。如以上参考图1B所讨论的,账户链接的资格可以基于例如所涉及的账户的类型(例如,商业账户)或账户持有人的身份(例如,家庭成员或同一企业实体的成员)。
在框850,可以将链接批准请求发送到与第一账户持有人相关联的客户端设备101,以寻求批准将第一账户与第二账户链接。
在框860,可以从客户端设备101接收链接批准消息,该链接批准消息表示批准将第一账户与第二账户链接的请求。
在框870,可以将账户链接确认消息连同用于访问第一账户数据的指令一起发送到与第二账户持有人相关联的客户端设备103。如上所述,指令可以是账户链接确认消息的一部分,或者可以是单独消息的一部分。在一些示例实施例中,可以根据数据控制参数来限制对第一账户数据的访问。在一些示例实施例中,处理器120可以在向客户端设备103提供用于访问第一账户数据的指令之前对第一账户数据进行加密。可以使用与第一账户持有人相关联的密钥来对第一账户数据进行加密。
本公开中的实施例的描述提供了参考附图和数字的非限制性代表示例,以具体地描述本公开的不同方面的特征和教导。从实施例的描述中,应当认识到,所描述的实施例能够与其他实施例分开地或组合地实现。审阅了实施例的描述的本领域普通技术人员应该能够学习和理解本公开的不同描述方面。实施例的描述应在某种程度上促进对本公开的理解,使得未具体覆盖但是在阅读了实施例的描述的本领域技术人员的知识范围内的其他实施方式将被理解为与本公开的应用一致。
在整个说明书和权利要求书中,除非上下文另外明确指出,否则以下术语至少具有本文明确关联的含义。术语“或”旨在表示包含性的“或”。此外,术语“一”,“一个”和“该”旨在表示一个或多个,除非另有说明或从上下文中清楚地指向单数形式。
在该描述中,已经阐述了许多具体细节。然而,应理解,可在没有这些具体细节的情况下实践所公开技术的实施方式。在其他情况下,未详细示出公知的方法、结构和技术,以免混淆对本描述的理解。引用“一些示例”、“其他示例”、“一个示例”、“示例”、“各种示例”,“一个实施例”、“实施例”、“一些实施例”、“示例实施例”、“各种实施例”、“一个实施方式”、“实施方式”、“示例性实施方式”、“各种实施方式”、“一些实施方式”等指示如此描述的所公开技术的一个或多个实施方式可以包括特定特征、结构或特性,但并非每个实施方式都必须包括该特定的特征、结构或特性。此外,虽然可以重复使用短语“在一个示例中”、“在一个实施例中”或“在一种实施方式中”,但是不一定是指相同的示例、实施例或实施方式。
如本文所使用的,除非另外指定,否则使用序数形容词“第一”、“第二”、“第三”等来描述共同的对象,仅指示相同对象的不同实例被引用,而不是指意图暗示这样描述的对象必须在时间、空间、等级或任何其他方式上呈现给定的顺序。
尽管已结合当前被认为是最实际可行的和各种实施方式描述了所公开技术的某些实施方式,但是应当理解,所公开技术不限于所公开的实施方式,相反,本公开旨在覆盖所附权利要求的范围内包括的各种修改和等效布置。尽管本文使用了特定术语,但是它们仅在一般和描述性意义上使用,而不是出于限制的目的。
本书面描述使用示例来公开所公开技术的某些实施方式,包括最佳模式,并且还使本领域技术人员能够实践所公开技术的某些实施方式,包括制造和使用任何设备或系统以及执行所包括的任何内容。所公开技术的某些实施方式的可专利范围在权利要求中定义,并且可以包括本领域技术人员想到的其他示例。如果这样的其他示例具有与权利要求的字面语言相同的结构元件,或者如果它们包括与权利要求的字面语言没有实质性差异的等效结构元件,则它们意图在权利要求的范围内。

Claims (20)

1.一种数据访问控制系统,包括:
存储用于多个账户的信息的数据库,针对与第一账户持有人相关联的第一账户,所述信息包括第一账户标识符和第一账户数据,以及针对与第二账户持有人相关联的第二账户,所述信息包括第二账户标识符;
被配置为通过网络与多个客户端设备通信的服务器,所述多个客户端设备包括与所述第一账户持有人相关联的第一客户端设备,和与所述第二账户持有人相关联的第二客户端设备;
包括通信接口、处理器和存储器的非接触式卡,所述存储器存储小应用程序和令牌,其中所述非接触式卡与所述第一账户持有人相关联;
包括指令的客户端应用程序,其用于在所述第一客户端设备或所述第二客户端设备中的至少一个上执行,所述客户端应用程序被配置为:
当在所述第二客户端设备上执行时:
响应于所述非接触式卡与所述第二客户端设备之间的点击动作:从所述非接触式卡接收所述令牌,并将所述令牌和将所述第一账户与所述第二账户链接的账户链接请求发射到所述服务器;和
从所述服务器接收账户链接确认消息,所述账户链接确认消息包括用于访问第一账户数据的指令;
以及,当在所述第一客户端设备上执行时:
响应于来自所述服务器的用于批准所述账户链接请求的链接批准请求,向所述服务器发射批准所述账户链接请求的链接批准消息;
和,
与所述服务器和所述数据库进行数据通信的处理器,所述处理器被配置为:
接收来自所述第二客户端设备的令牌和账户链接请求;
基于所述令牌识别所述第一账户;
向所述第一客户端设备发射用于批准所述账户链接请求的链接批准请求;
从所述第一客户端设备接收批准所述账户链接请求的链接批准消息;以及
向所述第二客户端设备发射账户链接确认消息,所述账户链接确认消息包括用于访问第一账户数据的指令。
2.根据权利要求1所述的数据访问控制系统,其中,所述处理器还被配置为确定所述第一账户是否有资格链接到所述第二账户。
3.根据权利要求1所述的数据访问控制系统,其中,所述第一账户信息包括数据控制参数,并且所述处理器还被配置为根据所述数据控制参数,限制所述第二客户端设备对所述第一账户数据的访问。
4.根据权利要求1所述的数据访问控制系统,其中:
所述非接触式卡的存储器还存储用于所述第一账户的数据控制参数;和
所述客户端应用程序还被配置为,当由所述第二客户端设备执行时:
从所述非接触式卡接收用于所述第一账户的数据控制参数;和
根据接收到的数据控制参数,限制所述第二客户端设备对所述第一账户数据的访问。
5.根据权利要求4所述的数据访问控制系统,其中,所述客户端应用程序还被配置为,当由所述第一客户端设备执行时:
提供选择用于控制对所述第一账户数据的访问的数据控制参数的界面;和
将所选择的数据控制参数发射到所述非接触式卡。
6.根据权利要求5所述的数据访问控制系统,其中,所述小应用程序被配置为:
接收所选择的数据控制参数,并将所选择的数据控制参数存储在所述非接触式卡的存储器中;和
将所选择的数据控制参数发射到所述第二客户端设备。
7.根据权利要求1所述的数据访问控制系统,其中,所述客户端应用还被配置为,当由所述第一客户端设备执行时,确定所述非接触式卡与所述第一客户端设备之间的点击动作,所述点击动作是响应于用于批准所述账户链接请求的链接批准请求的,所述点击动作表示对所述账户链接请求的批准。
8.根据权利要求1所述的数据访问控制系统,其中:
所述令牌包括与所述第一账户持有人相关联的密钥;并且
所述处理器还被配置为使用所述密钥来认证所述第一账户持有人。
9.根据权利要求1所述的数据访问控制系统,其中,所述处理器还被配置为在向所述第二客户端设备提供对所述第一账户数据的访问之前,对所述第一账户数据进行加密。
10.根据权利要求9所述的数据访问控制系统,其中,所述客户端应用程序还被配置为当由所述第二客户端设备执行时,在接收到对所述第一账户数据的访问之后,对所述第一账户数据进行解密。
11.一种控制数据访问的方法,包括:
建立存储用于多个账户的信息的数据库,针对与第一账户持有人相关联的第一账户,所述信息包括第一账户标识符、第一账户数据和数据控制参数,以及针对与第二账户持有人相关联的第二账户,所述信息包括第二账户标识符;
经由网络从所述第二账户持有人的客户端设备接收将所述第一账户与所述第二账户链接的账户链接请求,所述账户链接请求是响应于非接触式卡和第二账户持有人客户端设备之间的点击动作而生成的,所述账户链接请求以及令牌存储在所述非接触式卡上,其中所述非接触式卡与所述第一账户持有人相关联;
基于所述令牌识别所述第一账户;
经由所述网络向所述第一账户持有人的客户端设备发射用于批准所述账户链接请求的链接批准请求;
经由所述网络从所述第一账户持有人客户端设备接收链接批准消息,所述链接批准消息是响应于所述第一账户持有人批准所述账户链接请求的指示而生成的;和
经由所述网络向所述第二账户持有人客户端设备发射账户链接确认消息,所述账户链接确认消息确认对所述账户链接请求的批准,并提供用于访问所述第一账户数据的指令。
12.根据权利要求11所述的方法,其中,所述令牌包括密钥,所述方法还包括使用所述密钥来认证所述第一账户持有人。
13.根据权利要求11所述的方法,其中,所述数据控制参数允许所述第二账户持有人仅在有限的时间段内访问所述第一账户数据。
14.根据权利要求11所述的方法,其中,所述数据控制参数允许所述第二账户持有人仅一次性访问所述第一账户数据。
15.根据权利要求11所述的方法,其中,所述数据控制参数允许所述第二账户持有人访问所述第一账户数据不受时间段限制,除非所述第一账户持有人撤消了对将所述第一账户与所述第二账户关联的请求的批准。
16.根据权利要求11所述的方法,其中,所述数据控制参数允许所述第二账户持有人仅访问所述第一账户数据中与预定义类别相对应的部分。
17.根据权利要求11所述的方法,其中,所述数据控制参数包括基于所述第二账户持有人的身份的不同数据访问权限。
18.根据权利要求11所述的方法,其中,所述数据控制参数允许所述第二账户持有人仅在所述非接触式卡被检测到处于所述第二账户持有人客户端设备的短程通信场的范围内时,访问所述第一账户数据。
19.根据权利要求11所述的方法,其中,所述第一账户持有人批准所述账户链接请求的指示包括所述非接触式卡和所述第一账户持有人客户端设备之间的点击动作。
20.一种控制数据访问的方法,包括:
建立存储用于多个账户的信息的数据库,针对与第一账户持有人相关联的第一账户,所述信息包括第一账户标识符、第一账户数据和数据控制参数,以及针对与第二账户持有人相关联的第二账户,所述信息包括第二账户标识符;
提供包括通信接口、处理器和存储器的非接触式卡,所述存储器存储小应用程序和令牌,其中所述通信接口被配置为支持近场通信、蓝牙或Wi-Fi中的至少一种,并且其中所述非接触式卡与所述第一账户持有人相关联;以及
提供包括指令的客户端应用程序,所述客户端应用程序用于在所述第一账户持有人的第一客户端设备或所述第二账户持有人的第二客户端设备中的至少一个上执行,所述客户端应用程序被配置为:
当在所述第二客户端设备上执行时:
响应于所述非接触式卡与所述第二客户端设备之间的点击动作:从所述非接触式卡接收所述令牌,并将所述令牌和将所述第一账户与所述第二账户链接的账户链接请求发射到服务器;
从所述服务器接收账户链接确认消息,所述账户链接确认消息包括用于访问第一账户数据的指令,该数据访问是根据数据控制参数提供的;
以及,当在所述第一客户端设备上执行时:
确定所述非接触式卡和所述第一客户端设备之间的点击动作,所述点击动作是响应于用于批准所述账户链接请求的链接批准请求的,所述点击动作表示对所述账户链接请求的批准;以及
向所述服务器发射批准所述账户链接请求的链接批准消息。
CN202110220684.6A 2020-04-30 2021-02-26 使用短程收发器进行数据访问控制的系统和方法 Pending CN113590930A (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US16/863,952 2020-04-30
US16/863,952 US10861006B1 (en) 2020-04-30 2020-04-30 Systems and methods for data access control using a short-range transceiver

Publications (1)

Publication Number Publication Date
CN113590930A true CN113590930A (zh) 2021-11-02

Family

ID=73653837

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110220684.6A Pending CN113590930A (zh) 2020-04-30 2021-02-26 使用短程收发器进行数据访问控制的系统和方法

Country Status (8)

Country Link
US (3) US10861006B1 (zh)
EP (1) EP3905089A1 (zh)
JP (1) JP2021174528A (zh)
KR (1) KR20210134212A (zh)
CN (1) CN113590930A (zh)
AU (1) AU2021200914A1 (zh)
CA (1) CA3108475A1 (zh)
SG (1) SG10202101473QA (zh)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115277072A (zh) * 2022-06-17 2022-11-01 支付宝(杭州)信息技术有限公司 账号打通方法、装置、存储介质以及计算机设备

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10861006B1 (en) * 2020-04-30 2020-12-08 Capital One Services, Llc Systems and methods for data access control using a short-range transceiver
US11449804B2 (en) * 2020-09-04 2022-09-20 ZenPayroll, Inc. Machine-learned database recommendation model
US11689538B2 (en) * 2020-10-28 2023-06-27 Capital One Services, Llc Methods and systems for authentication for high-risk communications
US11620644B2 (en) * 2021-04-16 2023-04-04 Bank Of America Corporation Electronic system for initiating resource distributions from a first source retainer with a token associated with a second source retainer
US11314875B1 (en) * 2021-11-30 2022-04-26 Snowflake Inc. Replication of account security features in multiple deployment database

Family Cites Families (554)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2523745B1 (fr) 1982-03-18 1987-06-26 Bull Sa Procede et dispositif de protection d'un logiciel livre par un fournisseur a un utilisateur
JPS6198476A (ja) 1984-10-19 1986-05-16 Casio Comput Co Ltd カードターミナル
FR2613565B1 (fr) 1987-04-03 1989-06-23 Bull Cps Procede pour acheminer des cles secretes vers des modules de securite et des cartes utilisateurs, dans un reseau de traitement d'informations
US5036461A (en) 1990-05-16 1991-07-30 Elliott John C Two-way authentication system between user's smart card and issuer-specific plug-in application modules in multi-issued transaction device
FR2704341B1 (fr) 1993-04-22 1995-06-02 Bull Cp8 Dispositif de protection des clés d'une carte à puce.
US5363448A (en) 1993-06-30 1994-11-08 United Technologies Automotive, Inc. Pseudorandom number generation and cryptographic authentication
US5377270A (en) 1993-06-30 1994-12-27 United Technologies Automotive, Inc. Cryptographic authentication of transmitted messages using pseudorandom numbers
JP3053527B2 (ja) 1993-07-30 2000-06-19 インターナショナル・ビジネス・マシーンズ・コーポレイション パスワードを有効化する方法及び装置、パスワードを生成し且つ予備的に有効化する方法及び装置、認証コードを使用して資源のアクセスを制御する方法及び装置
US5537314A (en) 1994-04-18 1996-07-16 First Marketrust Intl. Referral recognition system for an incentive award program
US5764789A (en) 1994-11-28 1998-06-09 Smarttouch, Llc Tokenless biometric ATM access system
US7152045B2 (en) 1994-11-28 2006-12-19 Indivos Corporation Tokenless identification system for authorization of electronic transactions and electronic transmissions
US5778072A (en) 1995-07-07 1998-07-07 Sun Microsystems, Inc. System and method to transparently integrate private key operations from a smart card with host-based encryption services
US5666415A (en) 1995-07-28 1997-09-09 Digital Equipment Corporation Method and apparatus for cryptographic authentication
US5832090A (en) 1995-08-10 1998-11-03 Hid Corporation Radio frequency transponder stored value system employing a secure encryption protocol
US5748740A (en) 1995-09-29 1998-05-05 Dallas Semiconductor Corporation Method, apparatus, system and firmware for secure transactions
US6049328A (en) 1995-10-20 2000-04-11 Wisconsin Alumni Research Foundation Flexible access system for touch screen devices
US5616901A (en) 1995-12-19 1997-04-01 Talking Signs, Inc. Accessible automatic teller machines for sight-impaired persons and print-disabled persons
DE69704684T2 (de) 1996-02-23 2004-07-15 Fuji Xerox Co., Ltd. Vorrichtung und Verfahren zur Authentifizierung von Zugangsrechten eines Benutzers zu Betriebsmitteln nach dem Challenge-Response-Prinzip
US6226383B1 (en) 1996-04-17 2001-05-01 Integrity Sciences, Inc. Cryptographic methods for remote authentication
US5768373A (en) 1996-05-06 1998-06-16 Symantec Corporation Method for providing a secure non-reusable one-time password
US5901874A (en) 1996-05-07 1999-05-11 Breakthrough Marketing, Inc. Handicapped accessible dumpster
US6058373A (en) 1996-10-16 2000-05-02 Microsoft Corporation System and method for processing electronic order forms
US6483920B2 (en) 1996-12-04 2002-11-19 Bull, S.A. Key recovery process used for strong encryption of messages
US5796827A (en) 1996-11-14 1998-08-18 International Business Machines Corporation System and method for near-field human-body coupling for encrypted communication with identification cards
US6021203A (en) 1996-12-11 2000-02-01 Microsoft Corporation Coercion resistant one-time-pad cryptosystem that facilitates transmission of messages having different levels of security
US6061666A (en) 1996-12-17 2000-05-09 Citicorp Development Center Automatic bank teller machine for the blind and visually impaired
GB9626196D0 (en) 1996-12-18 1997-02-05 Ncr Int Inc Self-service terminal (sst) and a method of oerating the sst to control movement of a card of the sst
US6282522B1 (en) 1997-04-30 2001-08-28 Visa International Service Association Internet payment system using smart card
US7290288B2 (en) 1997-06-11 2007-10-30 Prism Technologies, L.L.C. Method and system for controlling access, by an authentication server, to protected computer resources provided via an internet protocol network
US5960411A (en) 1997-09-12 1999-09-28 Amazon.Com, Inc. Method and system for placing a purchase order via a communications network
US5983273A (en) 1997-09-16 1999-11-09 Webtv Networks, Inc. Method and apparatus for providing physical security for a user account and providing access to the user's environment and preferences
US5883810A (en) 1997-09-24 1999-03-16 Microsoft Corporation Electronic online commerce card with transactionproxy number for online transactions
US6367011B1 (en) 1997-10-14 2002-04-02 Visa International Service Association Personalization of smart cards
IL122105A0 (en) 1997-11-04 1998-04-05 Rozin Alexander A two-way radio-based electronic toll collection method and system for highway
US6889198B2 (en) 1998-01-30 2005-05-03 Citicorp Development Center, Inc. Method and system for tracking smart card loyalty points
US7207477B1 (en) 2004-03-08 2007-04-24 Diebold, Incorporated Wireless transfer of account data and signature from hand-held device to electronic check generator
US6199762B1 (en) 1998-05-06 2001-03-13 American Express Travel Related Services Co., Inc. Methods and apparatus for dynamic smartcard synchronization and personalization
ATE282990T1 (de) 1998-05-11 2004-12-15 Citicorp Dev Ct Inc System und verfahren zur biometrischen authentifizierung eines benutzers mit einer chipkarte
JP3112076B2 (ja) 1998-05-21 2000-11-27 豊 保倉 ユーザ認証システム
US6615189B1 (en) 1998-06-22 2003-09-02 Bank One, Delaware, National Association Debit purchasing of stored value card for use by and/or delivery to others
US6216227B1 (en) 1998-06-29 2001-04-10 Sun Microsystems, Inc. Multi-venue ticketing using smart cards
US7660763B1 (en) 1998-11-17 2010-02-09 Jpmorgan Chase Bank, N.A. Customer activated multi-value (CAM) card
US6032136A (en) 1998-11-17 2000-02-29 First Usa Bank, N.A. Customer activated multi-value (CAM) card
US6438550B1 (en) 1998-12-10 2002-08-20 International Business Machines Corporation Method and apparatus for client authentication and application configuration via smart cards
US6829711B1 (en) 1999-01-26 2004-12-07 International Business Machines Corporation Personal website for electronic commerce on a smart java card with multiple security check points
ES2191608T3 (es) 1999-02-18 2003-09-16 Orbis Patents Ltd Sistema y metodo de tarjeta de credito.
US6731778B1 (en) 1999-03-31 2004-05-04 Oki Electric Industry Co, Ltd. Photographing apparatus and monitoring system using same
US6402028B1 (en) 1999-04-06 2002-06-11 Visa International Service Association Integrated production of smart cards
US6227447B1 (en) 1999-05-10 2001-05-08 First Usa Bank, Na Cardless payment system
US7127605B1 (en) 1999-05-10 2006-10-24 Axalto, Inc. Secure sharing of application methods on a microcontroller
US6845498B1 (en) 1999-05-11 2005-01-18 Microsoft Corporation Method and apparatus for sharing data files among run time environment applets in an integrated circuit card
US6504945B1 (en) 1999-07-13 2003-01-07 Hewlett-Packard Company System for promoting correct finger placement in a fingerprint reader
US7908216B1 (en) 1999-07-22 2011-03-15 Visa International Service Association Internet payment, authentication and loading system using virtual smart card
US6324271B1 (en) 1999-08-17 2001-11-27 Nortel Networks Limited System and method for authentication of caller identification
SE515327C2 (sv) 1999-08-27 2001-07-16 Ericsson Telefon Ab L M Anordning för att utföra säkra transaktioner i en kommunikationsanordning
US7085931B1 (en) 1999-09-03 2006-08-01 Secure Computing Corporation Virtual smart card system and method
US6834271B1 (en) 1999-09-24 2004-12-21 Kryptosima Apparatus for and method of secure ATM debit card and credit card payment transactions via the internet
US7319986B2 (en) 1999-09-28 2008-01-15 Bank Of America Corporation Dynamic payment cards and related management systems and associated methods
US6910627B1 (en) 1999-09-29 2005-06-28 Canon Kabushiki Kaisha Smart card systems and electronic ticketing methods
JP2001195368A (ja) 1999-11-01 2001-07-19 Sony Corp 認証情報通信システムおよび認証情報通信方法、携帯情報処理装置、並びにプログラム提供媒体
US8794509B2 (en) 1999-11-05 2014-08-05 Lead Core Fund, L.L.C. Systems and methods for processing a payment authorization request over disparate payment networks
US8814039B2 (en) 1999-11-05 2014-08-26 Lead Core Fund, L.L.C. Methods for processing a payment authorization request utilizing a network of point of sale devices
AU1431301A (en) 1999-11-22 2001-06-04 Intel Corporation Integrity check values (icv) based on pseudorandom binary matrices
US7366703B2 (en) 2000-01-05 2008-04-29 American Express Travel Related Services Company, Inc. Smartcard internet authorization system
US7796013B2 (en) 2000-01-10 2010-09-14 Ensign Holdings Device using histological and physiological biometric marker for authentication and activation
US20010034702A1 (en) 2000-02-04 2001-10-25 Mockett Gregory P. System and method for dynamically issuing and processing transaction specific digital credit or debit cards
US20030034873A1 (en) 2000-02-16 2003-02-20 Robin Chase Systems and methods for controlling vehicle access
WO2001061659A1 (en) 2000-02-16 2001-08-23 Mastercard International Incorporated System and method for conducting electronic commerce with a remote wallet server
US6779115B1 (en) 2000-02-18 2004-08-17 Digital5, Inc. Portable device using a smart card to receive and decrypt digital data
US20010029485A1 (en) 2000-02-29 2001-10-11 E-Scoring, Inc. Systems and methods enabling anonymous credit transactions
US6852031B1 (en) 2000-11-22 2005-02-08 Igt EZ pay smart card and tickets system
US8046256B2 (en) 2000-04-14 2011-10-25 American Express Travel Related Services Company, Inc. System and method for using loyalty rewards as currency
WO2001082246A2 (en) 2000-04-24 2001-11-01 Visa International Service Association Online payer authentication service
US7933589B1 (en) 2000-07-13 2011-04-26 Aeritas, Llc Method and system for facilitation of wireless e-commerce transactions
US6631197B1 (en) 2000-07-24 2003-10-07 Gn Resound North America Corporation Wide audio bandwidth transduction method and device
AU2001284882A1 (en) 2000-08-14 2002-02-25 Peter H. Gien System and method for facilitating signing by buyers in electronic commerce
ES2259669T3 (es) 2000-08-17 2006-10-16 Dexrad (Proprietary) Limited Transferencia de datos de verificacion.
US7689832B2 (en) 2000-09-11 2010-03-30 Sentrycom Ltd. Biometric-based system and method for enabling authentication of electronic messages sent over a network
US7006986B1 (en) 2000-09-25 2006-02-28 Ecardless Bancorp, Ltd. Order file processes for purchasing on the internet using verified order information
US6873260B2 (en) 2000-09-29 2005-03-29 Kenneth J. Lancos System and method for selectively allowing the passage of a guest through a region within a coverage area
US6877656B1 (en) 2000-10-24 2005-04-12 Capital One Financial Corporation Systems, methods, and apparatus for instant issuance of a credit card
US6721706B1 (en) 2000-10-30 2004-04-13 Koninklijke Philips Electronics N.V. Environment-responsive user interface/entertainment device that simulates personal interaction
US7069435B2 (en) 2000-12-19 2006-06-27 Tricipher, Inc. System and method for authentication in a crypto-system utilizing symmetric and asymmetric crypto-keys
US7606771B2 (en) 2001-01-11 2009-10-20 Cardinalcommerce Corporation Dynamic number authentication for credit/debit cards
EP1223565A1 (en) 2001-01-12 2002-07-17 Motorola, Inc. Transaction system, portable device, terminal and methods of transaction
US20020093530A1 (en) 2001-01-17 2002-07-18 Prasad Krothapalli Automatic filling and submission of completed forms
US20020152116A1 (en) 2001-01-30 2002-10-17 Yan Kent J. Method and system for generating fixed and/or dynamic rebates in credit card type transactions
US20020158123A1 (en) 2001-01-30 2002-10-31 Allen Rodney F. Web-based smart card system and method for maintaining status information and verifying eligibility
US7181017B1 (en) 2001-03-23 2007-02-20 David Felsher System and method for secure three-party communications
ATE364202T1 (de) 2001-04-02 2007-06-15 Motorola Inc Aktivieren und deaktivieren von softwarefunktionen
US7290709B2 (en) 2001-04-10 2007-11-06 Erica Tsai Information card system
US7044394B2 (en) 2003-12-17 2006-05-16 Kerry Dennis Brown Programmable magnetic data storage card
US20020153424A1 (en) 2001-04-19 2002-10-24 Chuan Li Method and apparatus of secure credit card transaction
US20040015958A1 (en) 2001-05-15 2004-01-22 Veil Leonard Scott Method and system for conditional installation and execution of services in a secure computing environment
US7206806B2 (en) 2001-05-30 2007-04-17 Pineau Richard A Method and system for remote utilizing a mobile device to share data objects
DE10127511A1 (de) 2001-06-06 2003-01-02 Wincor Nixdorf Gmbh & Co Kg Schreib-/Lesegerät für eine Ausweis- oder Kreditkarte vom RFID-Typ
US20030167350A1 (en) 2001-06-07 2003-09-04 Curl Corporation Safe I/O through use of opaque I/O objects
AUPR559201A0 (en) 2001-06-08 2001-07-12 Canon Kabushiki Kaisha Card reading device for service access
US6834795B1 (en) 2001-06-29 2004-12-28 Sun Microsystems, Inc. Secure user authentication to computing resource via smart card
US7762457B2 (en) 2001-07-10 2010-07-27 American Express Travel Related Services Company, Inc. System and method for dynamic fob synchronization and personalization
US7993197B2 (en) 2001-08-10 2011-08-09 Igt Flexible loyalty points programs
US8266451B2 (en) 2001-08-31 2012-09-11 Gemalto Sa Voice activated smart card
US20030055727A1 (en) 2001-09-18 2003-03-20 Walker Jay S. Method and apparatus for facilitating the provision of a benefit to a customer of a retailer
US7373515B2 (en) 2001-10-09 2008-05-13 Wireless Key Identification Systems, Inc. Multi-factor authentication system
JP3975720B2 (ja) 2001-10-23 2007-09-12 株式会社日立製作所 Icカード、顧客情報分析システムおよび顧客情報分析結果提供方法
US6641050B2 (en) 2001-11-06 2003-11-04 International Business Machines Corporation Secure credit card
US6934861B2 (en) 2001-11-06 2005-08-23 Crosscheck Identification Systems International, Inc. National identification card system and biometric identity verification method for negotiating transactions
US7243853B1 (en) 2001-12-04 2007-07-17 Visa U.S.A. Inc. Method and system for facilitating memory and application management on a secured token
US8108687B2 (en) 2001-12-12 2012-01-31 Valve Corporation Method and system for granting access to system and content
FR2834403B1 (fr) 2001-12-27 2004-02-06 France Telecom Systeme cryptographique de signature de groupe
JP3820999B2 (ja) 2002-01-25 2006-09-13 ソニー株式会社 近接通信システム及び近接通信方法、データ管理装置及びデータ管理方法、記憶媒体、並びにコンピュータ・プログラム
SE524778C2 (sv) 2002-02-19 2004-10-05 Douglas Lundholm Förfarande och arrangemang för att skydda mjukvara för otillbörlig användning eller kopiering
US6905411B2 (en) 2002-02-27 2005-06-14 Igt Player authentication for cashless gaming machine instruments
US20030208449A1 (en) 2002-05-06 2003-11-06 Yuanan Diao Credit card fraud prevention system and method using secure electronic credit card
US7900048B2 (en) 2002-05-07 2011-03-01 Sony Ericsson Mobile Communications Ab Method for loading an application in a device, device and smart card therefor
CN100440195C (zh) 2002-05-10 2008-12-03 斯伦贝谢(北京)智能卡科技有限公司 智能卡更换方法及其更换系统
US8010405B1 (en) 2002-07-26 2011-08-30 Visa Usa Inc. Multi-application smart card device software solution for smart cardholder reward selection and redemption
US20040127256A1 (en) 2002-07-30 2004-07-01 Scott Goldthwaite Mobile device equipped with a contactless smart card reader/writer
CA2494299C (en) 2002-08-06 2013-10-08 Privaris, Inc. Methods for secure enrollment and backup of personal identity credentials into electronic devices
US7697920B1 (en) 2006-05-05 2010-04-13 Boojum Mobile System and method for providing authentication and authorization utilizing a personal wireless communication device
JP4553565B2 (ja) 2002-08-26 2010-09-29 パナソニック株式会社 電子バリューの認証方式と認証システムと装置
CZ2005209A3 (cs) 2002-09-10 2005-12-14 Ivi Smart Technologies, Inc. Bezpečné biometrické ověření identity
US7306143B2 (en) 2002-09-20 2007-12-11 Cubic Corporation Dynamic smart card/media imaging
US8985442B1 (en) 2011-07-18 2015-03-24 Tiger T G Zhou One-touch payment using haptic control via a messaging and calling multimedia system on mobile device and wearable device, currency token interface, point of sale device, and electronic payment card
US9710804B2 (en) 2012-10-07 2017-07-18 Andrew H B Zhou Virtual payment cards issued by banks for mobile and wearable devices
AU2003272066A1 (en) 2002-10-16 2004-05-04 Alon Bear Smart card network interface device
US9740988B1 (en) 2002-12-09 2017-08-22 Live Nation Entertainment, Inc. System and method for using unique device indentifiers to enhance security
US9251518B2 (en) 2013-03-15 2016-02-02 Live Nation Entertainment, Inc. Centralized and device-aware ticket-transfer system and methods
AU2003283760A1 (en) 2003-01-14 2004-08-10 Koninklijke Philips Electronics N.V. Method and terminal for detecting fake and/or modified smart card
US7453439B1 (en) 2003-01-16 2008-11-18 Forward Input Inc. System and method for continuous stroke word-based text input
US20050195975A1 (en) 2003-01-21 2005-09-08 Kevin Kawakita Digital media distribution cryptography using media ticket smart cards
US8589335B2 (en) 2003-04-21 2013-11-19 Visa International Service Association Smart card personalization assistance tool
EP1632091A4 (en) 2003-05-12 2006-07-26 Gtech Corp METHOD AND SYSTEM FOR AUTHENTICATION
US7110792B2 (en) * 2003-05-19 2006-09-19 Einar Rosenberg Apparatus and method for increased security of wireless transactions
US7949559B2 (en) 2003-05-27 2011-05-24 Citicorp Credit Services, Inc. Credit card rewards program system and method
US8200775B2 (en) 2005-02-01 2012-06-12 Newsilike Media Group, Inc Enhanced syndication
JP4744106B2 (ja) 2003-08-06 2011-08-10 パナソニック株式会社 セキュアデバイス、情報処理端末、通信システム及び通信方法
US20050075985A1 (en) 2003-10-03 2005-04-07 Brian Cartmell Voice authenticated credit card purchase verification
FI20031482A (fi) 2003-10-10 2005-04-11 Open Bit Oy Ltd Maksutapahtumatietojen prosessointi
US7597250B2 (en) 2003-11-17 2009-10-06 Dpd Patent Trust Ltd. RFID reader with multiple interfaces
US20050138387A1 (en) 2003-12-19 2005-06-23 Lam Wai T. System and method for authorizing software use
US7357309B2 (en) 2004-01-16 2008-04-15 Telefonaktiebolaget Lm Ericsson (Publ) EMV transactions in mobile terminals
US7165727B2 (en) 2004-02-24 2007-01-23 Sun Microsystems, Inc. Method and apparatus for installing an application onto a smart card
US7374099B2 (en) 2004-02-24 2008-05-20 Sun Microsystems, Inc. Method and apparatus for processing an application identifier from a smart card
US7584153B2 (en) 2004-03-15 2009-09-01 Qsecure, Inc. Financial transactions with dynamic card verification values
US7472829B2 (en) 2004-12-10 2009-01-06 Qsecure, Inc. Payment card with internally generated virtual account numbers for its magnetic stripe encoder and user display
JP2007529797A (ja) 2004-03-19 2007-10-25 フンベル ローガー 認証機能および支払い機能を備えた、無線自転車キー、自動車、家屋、rfidタグのための携帯電話におけるオールインワンキーまたは制御ソフトウェアカード
US20140019352A1 (en) 2011-02-22 2014-01-16 Visa International Service Association Multi-purpose virtual card transaction apparatuses, methods and systems
US7748617B2 (en) 2004-04-12 2010-07-06 Gray R O'neal Electronic identification system
US8762283B2 (en) 2004-05-03 2014-06-24 Visa International Service Association Multiple party benefit from an online authentication service
CA2541639C (en) 2004-05-03 2011-04-19 Research In Motion Limited System and method for application authorization
US7703142B1 (en) 2004-05-06 2010-04-20 Sprint Communications Company L.P. Software license authorization system
US7660779B2 (en) 2004-05-12 2010-02-09 Microsoft Corporation Intelligent autofill
GB0411777D0 (en) 2004-05-26 2004-06-30 Crypomathic Ltd Computationally asymmetric cryptographic systems
US7314165B2 (en) 2004-07-01 2008-01-01 American Express Travel Related Services Company, Inc. Method and system for smellprint recognition biometrics on a smartcard
US7175076B1 (en) 2004-07-07 2007-02-13 Diebold Self-Service Systems Division Of Diebold, Incorporated Cash dispensing automated banking machine user interface system and method
US8439271B2 (en) 2004-07-15 2013-05-14 Mastercard International Incorporated Method and system using a bitmap for passing contactless payment card transaction variables in standardized data formats
MX2007000546A (es) 2004-07-15 2007-03-30 Mastercard International Inc Lector de tarjeta de pago sin contacto con volumen operativo frustoconico.
US7287692B1 (en) 2004-07-28 2007-10-30 Cisco Technology, Inc. System and method for securing transactions in a contact center environment
EP1630712A1 (en) 2004-08-24 2006-03-01 Sony Deutschland GmbH Method for operating a near field communication system
JP2008511217A (ja) 2004-08-27 2008-04-10 ビクトリオン テクノロジー カンパニー リミテッド 鼻骨伝導式無線通信伝送装置
US20060047954A1 (en) 2004-08-30 2006-03-02 Axalto Inc. Data access security implementation using the public key mechanism
US7375616B2 (en) 2004-09-08 2008-05-20 Nokia Corporation Electronic near field communication enabled multifunctional device and method of its operation
US7270276B2 (en) 2004-09-29 2007-09-18 Sap Ag Multi-application smartcard
US20060085848A1 (en) 2004-10-19 2006-04-20 Intel Corporation Method and apparatus for securing communications between a smartcard and a terminal
US7748636B2 (en) 2004-11-16 2010-07-06 Dpd Patent Trust Ltd. Portable identity card reader system for physical and logical access
GB2410113A (en) 2004-11-29 2005-07-20 Morse Group Ltd A system and method of accessing banking services via a mobile telephone
US8224753B2 (en) 2004-12-07 2012-07-17 Farsheed Atef System and method for identity verification and management
US7232073B1 (en) 2004-12-21 2007-06-19 Sun Microsystems, Inc. Smart card with multiple applications
GB0428543D0 (en) 2004-12-31 2005-02-09 British Telecomm Control of data exchange
US8200700B2 (en) 2005-02-01 2012-06-12 Newsilike Media Group, Inc Systems and methods for use of structured and unstructured distributed data
US20130104251A1 (en) 2005-02-01 2013-04-25 Newsilike Media Group, Inc. Security systems and methods for use with structured and unstructured data
US8347088B2 (en) 2005-02-01 2013-01-01 Newsilike Media Group, Inc Security systems and methods for use with structured and unstructured data
DE102005004902A1 (de) 2005-02-02 2006-08-10 Utimaco Safeware Ag Verfahren zur Anmeldung eines Nutzers an einem Computersystem
US7581678B2 (en) 2005-02-22 2009-09-01 Tyfone, Inc. Electronic transaction card
US7628322B2 (en) 2005-03-07 2009-12-08 Nokia Corporation Methods, system and mobile device capable of enabling credit card personalization using a wireless network
EP2315170B1 (en) 2005-03-07 2014-05-14 Nokia Corporation Method and mobile terminal device including smartcard module and near field communications means
US7128274B2 (en) 2005-03-24 2006-10-31 International Business Machines Corporation Secure credit card with near field communications
US8266441B2 (en) 2005-04-22 2012-09-11 Bank Of America Corporation One-time password credit/debit card
WO2006119184A2 (en) 2005-05-04 2006-11-09 Tricipher, Inc. Protecting one-time-passwords against man-in-the-middle attacks
US7793851B2 (en) 2005-05-09 2010-09-14 Dynamics Inc. Dynamic credit card with magnetic stripe and embedded encoder and methods for using the same to provide a copy-proof credit card
US20080035738A1 (en) 2005-05-09 2008-02-14 Mullen Jeffrey D Dynamic credit card with magnetic stripe and embedded encoder and methods for using the same to provide a copy-proof credit card
WO2006124808A2 (en) 2005-05-16 2006-11-23 Mastercard International Incorporated Method and system for using contactless payment cards in a transit system
US20060280338A1 (en) 2005-06-08 2006-12-14 Xerox Corporation Systems and methods for the visually impared
US8583454B2 (en) 2005-07-28 2013-11-12 Beraja Ip, Llc Medical claims fraud prevention system including photograph records identification and associated methods
US8762263B2 (en) 2005-09-06 2014-06-24 Visa U.S.A. Inc. System and method for secured account numbers in proximity devices
US20070067833A1 (en) 2005-09-20 2007-03-22 Colnot Vincent C Methods and Apparatus for Enabling Secure Network-Based Transactions
EP2024921A4 (en) 2005-10-06 2010-09-29 C Sam Inc TRANSACTION SERVICES
US8245292B2 (en) 2005-11-16 2012-08-14 Broadcom Corporation Multi-factor authentication using a smartcard
JP4435076B2 (ja) 2005-11-18 2010-03-17 フェリカネットワークス株式会社 携帯端末,データ通信方法,およびコンピュータプログラム
US7568631B2 (en) 2005-11-21 2009-08-04 Sony Corporation System, apparatus and method for obtaining one-time credit card numbers using a smart card
WO2007076476A2 (en) 2005-12-22 2007-07-05 Mastercard International Incorporated Methods and systems for two-factor authentication using contactless chip cards or devices and mobile devices or dedicated personal readers
FR2895608B1 (fr) 2005-12-23 2008-03-21 Trusted Logic Sa Procede pour la realisation d'un compteur securise sur un systeme informatique embarque disposant d'une carte a puce
US7775427B2 (en) 2005-12-31 2010-08-17 Broadcom Corporation System and method for binding a smartcard and a smartcard reader
US8559987B1 (en) 2005-12-31 2013-10-15 Blaze Mobile, Inc. Wireless bidirectional communications between a mobile device and associated secure element
US8352323B2 (en) 2007-11-30 2013-01-08 Blaze Mobile, Inc. Conducting an online payment transaction using an NFC enabled mobile communication device
US8224018B2 (en) 2006-01-23 2012-07-17 Digimarc Corporation Sensing data from physical objects
US9137012B2 (en) 2006-02-03 2015-09-15 Emc Corporation Wireless authentication methods and apparatus
US20070224969A1 (en) 2006-03-24 2007-09-27 Rao Bindu R Prepaid simcard for automatically enabling services
US7380710B2 (en) 2006-04-28 2008-06-03 Qsecure, Inc. Payment card preloaded with unique numbers
US7571471B2 (en) 2006-05-05 2009-08-04 Tricipher, Inc. Secure login using a multifactor split asymmetric crypto-key with persistent key security
DE602007008313D1 (de) 2006-05-10 2010-09-23 Inside Contactless Verfahren zur Weiterleitung von aus- und eingehenden Daten in ein NFC-Chipset
EP1873962B1 (en) 2006-06-29 2009-08-19 Incard SA Method for key diversification on an IC Card
US9985950B2 (en) 2006-08-09 2018-05-29 Assa Abloy Ab Method and apparatus for making a decision on a card
GB0616331D0 (en) 2006-08-16 2006-09-27 Innovision Res & Tech Plc Near Field RF Communicators And Near Field Communications Enabled Devices
US20080072303A1 (en) 2006-09-14 2008-03-20 Schlumberger Technology Corporation Method and system for one time password based authentication and integrated remote access
US20080071681A1 (en) 2006-09-15 2008-03-20 Khalid Atm Shafiqul Dynamic Credit and Check Card
US8322624B2 (en) 2007-04-10 2012-12-04 Feinics Amatech Teoranta Smart card with switchable matching antenna
US8738485B2 (en) 2007-12-28 2014-05-27 Visa U.S.A. Inc. Contactless prepaid product for transit fare collection
US7962369B2 (en) 2006-09-29 2011-06-14 Einar Rosenberg Apparatus and method using near field communications
US8474028B2 (en) 2006-10-06 2013-06-25 Fmr Llc Multi-party, secure multi-channel authentication
GB2443234B8 (en) 2006-10-24 2009-01-28 Innovision Res & Tech Plc Near field RF communicators and near field RF communications enabled devices
US8682791B2 (en) 2006-10-31 2014-03-25 Discover Financial Services Redemption of credit card rewards at a point of sale
US20080109309A1 (en) 2006-10-31 2008-05-08 Steven Landau Powered Print Advertisements, Product Packaging, and Trading Cards
US8267313B2 (en) 2006-10-31 2012-09-18 American Express Travel Related Services Company, Inc. System and method for providing a gift card which affords benefits beyond what is purchased
US9251637B2 (en) 2006-11-15 2016-02-02 Bank Of America Corporation Method and apparatus for using at least a portion of a one-time password as a dynamic card verification value
US8365258B2 (en) 2006-11-16 2013-01-29 Phonefactor, Inc. Multi factor authentication
US8327428B2 (en) * 2006-11-30 2012-12-04 Microsoft Corporation Authenticating linked accounts
CN101192295A (zh) 2006-11-30 2008-06-04 讯想科技股份有限公司 芯片信用卡网络交易系统与方法
US8041954B2 (en) 2006-12-07 2011-10-18 Paul Plesman Method and system for providing a secure login solution using one-time passwords
US20080162312A1 (en) 2006-12-29 2008-07-03 Motorola, Inc. Method and system for monitoring secure applet events during contactless rfid/nfc communication
US7594605B2 (en) 2007-01-10 2009-09-29 At&T Intellectual Property I, L.P. Credit card transaction servers, methods and computer program products employing wireless terminal location and registered purchasing locations
GB2442249B (en) 2007-02-20 2008-09-10 Cryptomathic As Authentication device and method
US8095974B2 (en) 2007-02-23 2012-01-10 At&T Intellectual Property I, L.P. Methods, systems, and products for identity verification
US8463711B2 (en) 2007-02-27 2013-06-11 Igt Methods and architecture for cashless system security
US9081948B2 (en) 2007-03-13 2015-07-14 Red Hat, Inc. Configurable smartcard
US20080223918A1 (en) 2007-03-15 2008-09-18 Microsoft Corporation Payment tokens
US8867988B2 (en) 2007-03-16 2014-10-21 Lg Electronics Inc. Performing contactless applications in battery off mode
US8285329B1 (en) 2007-04-02 2012-10-09 Sprint Communications Company L.P. Mobile device-based control of smart card operation
US8667285B2 (en) 2007-05-31 2014-03-04 Vasco Data Security, Inc. Remote authentication and transaction signatures
US7739169B2 (en) 2007-06-25 2010-06-15 Visa U.S.A. Inc. Restricting access to compromised account information
US20120252350A1 (en) 2007-07-24 2012-10-04 Allan Steinmetz Vehicle safety device for reducing driver distractions
US20090037275A1 (en) 2007-08-03 2009-02-05 Pollio Michael J Consolidated membership/rewards card system
US8235825B2 (en) 2007-08-14 2012-08-07 John B. French Smart card holder for automated gaming system and gaming cards
US20110101093A1 (en) 2007-08-19 2011-05-05 Yubico Ab Device and method for generating dynamic credit card data
US7748609B2 (en) 2007-08-31 2010-07-06 Gemalto Inc. System and method for browser based access to smart cards
WO2009039419A1 (en) 2007-09-21 2009-03-26 Wireless Dynamics, Inc. Wireless smart card and integrated personal area network, near field communication and contactless payment system
US8249654B1 (en) 2007-09-27 2012-08-21 Sprint Communications Company L.P. Dynamic smart card application loading
US8095113B2 (en) 2007-10-17 2012-01-10 First Data Corporation Onetime passwords for smart chip cards
GB2457221A (en) 2007-10-17 2009-08-12 Vodafone Plc Smart Card Web Server (SCWS) administration within a plurality of security domains
FR2922701B1 (fr) 2007-10-23 2009-11-20 Inside Contacless Procede de personnalisation securise d'un chipset nfc
US7652578B2 (en) 2007-10-29 2010-01-26 Motorola, Inc. Detection apparatus and method for near field communication devices
US8135648B2 (en) 2007-11-01 2012-03-13 Gtech Corporation Authentication of lottery tickets, game machine credit vouchers, and other items
US20090132417A1 (en) 2007-11-15 2009-05-21 Ebay Inc. System and method for selecting secure card numbers
US8011577B2 (en) 2007-12-24 2011-09-06 Dynamics Inc. Payment cards and devices with gift card, global integration, and magnetic stripe reader communication functionality
US7922082B2 (en) 2008-01-04 2011-04-12 M2 International Ltd. Dynamic card validation value
GB0801225D0 (en) 2008-01-23 2008-02-27 Innovision Res & Tech Plc Near field RF communications
US8233841B2 (en) 2008-01-30 2012-07-31 Ebay Inc. Near field communication initialization
US8369960B2 (en) 2008-02-12 2013-02-05 Cardiac Pacemakers, Inc. Systems and methods for controlling wireless signal transfers between ultrasound-enabled medical devices
US9947002B2 (en) 2008-02-15 2018-04-17 First Data Corporation Secure authorization of contactless transaction
US8302167B2 (en) 2008-03-11 2012-10-30 Vasco Data Security, Inc. Strong authentication token generating one-time passwords and signatures upon server credential verification
ATE554593T1 (de) 2008-03-27 2012-05-15 Motorola Mobility Inc Verfahren und vorrichtung für die automatische nahfeld-kommunikations-anwendungsauswahl in einem elektronischen gerät
ITMI20080536A1 (it) 2008-03-28 2009-09-29 Incard Sa Metodo per proteggere un file cap per una carta a circuito integrato.
US8024576B2 (en) 2008-03-31 2011-09-20 International Business Machines Corporation Method and system for authenticating users with a one time password using an image reader
US8365988B1 (en) 2008-04-11 2013-02-05 United Services Automobile Association (Usaa) Dynamic credit card security code via mobile device
US8347112B2 (en) 2008-05-08 2013-01-01 Texas Instruments Incorporated Encryption/decryption engine with secure modes for key decryption and key derivation
US9082117B2 (en) 2008-05-17 2015-07-14 David H. Chin Gesture based authentication for wireless payment by a mobile electronic device
US8099332B2 (en) 2008-06-06 2012-01-17 Apple Inc. User interface for application management for a mobile device
EP2139196A1 (en) 2008-06-26 2009-12-30 France Telecom Method and system for remotely blocking/unblocking NFC applications on a terminal
US8229853B2 (en) 2008-07-24 2012-07-24 International Business Machines Corporation Dynamic itinerary-driven profiling for preventing unauthorized card transactions
US8662401B2 (en) 2008-07-25 2014-03-04 First Data Corporation Mobile payment adoption by adding a dedicated payment button to mobile device form factors
US8740073B2 (en) 2008-08-01 2014-06-03 Mastercard International Incorporated Methods, systems and computer readable media for storing and redeeming electronic certificates using a wireless smart card
US8706622B2 (en) 2008-08-05 2014-04-22 Visa U.S.A. Inc. Account holder demand account update
US8438382B2 (en) 2008-08-06 2013-05-07 Symantec Corporation Credential management system and method
US20100033310A1 (en) 2008-08-08 2010-02-11 Narendra Siva G Power negotation for small rfid card
BRPI0912057B1 (pt) 2008-08-08 2020-09-15 Assa Abloy Ab Mecanismo de sensor direcional e autenticação de comunicações
EP2324445B1 (en) 2008-08-20 2019-03-20 Xcard Holdings, LLC Secure smart card system
US8103249B2 (en) 2008-08-23 2012-01-24 Visa U.S.A. Inc. Credit card imaging for mobile payment and other applications
US10970777B2 (en) 2008-09-15 2021-04-06 Mastercard International Incorporated Apparatus and method for bill payment card enrollment
US20100078471A1 (en) 2008-09-30 2010-04-01 Apple Inc. System and method for processing peer-to-peer financial transactions
US9037513B2 (en) 2008-09-30 2015-05-19 Apple Inc. System and method for providing electronic event tickets
US20100095130A1 (en) 2008-10-13 2010-04-15 Global Financial Passport, Llc Smartcards for secure transaction systems
US20100094754A1 (en) 2008-10-13 2010-04-15 Global Financial Passport, Llc Smartcard based secure transaction systems and methods
US8689013B2 (en) 2008-10-21 2014-04-01 G. Wouter Habraken Dual-interface key management
CN101729502B (zh) 2008-10-23 2012-09-05 中兴通讯股份有限公司 密钥分发方法和系统
US8371501B1 (en) 2008-10-27 2013-02-12 United Services Automobile Association (Usaa) Systems and methods for a wearable user authentication factor
EP2182439A1 (en) 2008-10-28 2010-05-05 Gemalto SA Method of managing data sent over the air to an applet having a restricted interface
US20100114731A1 (en) 2008-10-30 2010-05-06 Kingston Tamara S ELECTRONIC WALLET ("eWallet")
WO2010069033A1 (en) 2008-12-18 2010-06-24 Bce Inc Validation method and system for use in securing nomadic electronic transactions
EP2199992A1 (en) 2008-12-19 2010-06-23 Gemalto SA Secure activation before contactless banking smart card transaction
US10354321B2 (en) 2009-01-22 2019-07-16 First Data Corporation Processing transactions with an extended application ID and dynamic cryptograms
US9065812B2 (en) 2009-01-23 2015-06-23 Microsoft Technology Licensing, Llc Protecting transactions
EP2211481B1 (en) 2009-01-26 2014-09-10 Motorola Mobility LLC Wireless communication device for providing at least one near field communication service
US9509436B2 (en) 2009-01-29 2016-11-29 Cubic Corporation Protection of near-field communication exchanges
EP2219374A1 (en) 2009-02-13 2010-08-18 Irdeto Access B.V. Securely providing a control word from a smartcard to a conditional access module
CN101820696B (zh) 2009-02-26 2013-08-07 中兴通讯股份有限公司 支持增强型近场通信的终端及其处理方法
US20100240413A1 (en) 2009-03-21 2010-09-23 Microsoft Corporation Smart Card File System
US8567670B2 (en) 2009-03-27 2013-10-29 Intersections Inc. Dynamic card verification values and credit transactions
EP2199965A1 (en) 2009-04-22 2010-06-23 Euro-Wallet B.V. Payment transaction client, server and system
US8893967B2 (en) 2009-05-15 2014-11-25 Visa International Service Association Secure Communication of payment information to merchants using a verification token
US8417231B2 (en) 2009-05-17 2013-04-09 Qualcomm Incorporated Method and apparatus for programming a mobile device with multiple service accounts
US8391719B2 (en) 2009-05-22 2013-03-05 Motorola Mobility Llc Method and system for conducting communication between mobile devices
US20100312635A1 (en) 2009-06-08 2010-12-09 Cervenka Karen L Free sample coupon card
US20100312634A1 (en) 2009-06-08 2010-12-09 Cervenka Karen L Coupon card point of service terminal processing
US20110029367A1 (en) * 2009-07-29 2011-02-03 Visa U.S.A. Inc. Systems and Methods to Generate Transactions According to Account Features
US10304069B2 (en) 2009-07-29 2019-05-28 Shopkick, Inc. Method and system for presentment and redemption of personalized discounts
US8186602B2 (en) 2009-08-18 2012-05-29 On Track Innovations, Ltd. Multi-application contactless smart card
US20110060631A1 (en) 2009-09-04 2011-03-10 Bank Of America Redemption of customer benefit offers based on goods identification
US8317094B2 (en) 2009-09-23 2012-11-27 Mastercard International Incorporated Methods and systems for displaying loyalty program information on a payment card
US9251538B1 (en) 2009-09-23 2016-02-02 Verient Inc System and method for automatically filling webpage fields
US8830866B2 (en) 2009-09-30 2014-09-09 Apple Inc. Methods and apparatus for solicited activation for protected wireless networking
US20110084132A1 (en) 2009-10-08 2011-04-14 At&T Intellectual Property I, L.P. Devices, Systems and Methods for Secure Remote Medical Diagnostics
EP2487876A4 (en) 2009-10-09 2014-04-02 Panasonic Corp DEVICE MOUNTED ON VEHICLE
US8806592B2 (en) 2011-01-21 2014-08-12 Authentify, Inc. Method for secure user and transaction authentication and risk management
US8843757B2 (en) 2009-11-12 2014-09-23 Ca, Inc. One time PIN generation
US8799668B2 (en) 2009-11-23 2014-08-05 Fred Cheng Rubbing encryption algorithm and security attack safe OTP token
US9225526B2 (en) 2009-11-30 2015-12-29 Red Hat, Inc. Multifactor username based authentication
US9258715B2 (en) 2009-12-14 2016-02-09 Apple Inc. Proactive security for mobile devices
EP2336986A1 (en) 2009-12-17 2011-06-22 Gemalto SA Method of personalizing an application embedded in a secured electronic token
US10049356B2 (en) 2009-12-18 2018-08-14 First Data Corporation Authentication of card-not-present transactions
US9324066B2 (en) 2009-12-21 2016-04-26 Verizon Patent And Licensing Inc. Method and system for providing virtual credit card services
US8615468B2 (en) 2010-01-27 2013-12-24 Ca, Inc. System and method for generating a dynamic card value
CA2694500C (en) 2010-02-24 2015-07-07 Diversinet Corp. Method and system for secure communication
US10255601B2 (en) 2010-02-25 2019-04-09 Visa International Service Association Multifactor authentication using a directory server
US9129270B2 (en) 2010-03-02 2015-09-08 Gonow Technologies, Llc Portable E-wallet and universal card
US9317018B2 (en) 2010-03-02 2016-04-19 Gonow Technologies, Llc Portable e-wallet and universal card
SI23227A (sl) 2010-03-10 2011-05-31 Margento R&D D.O.O. Brezžični mobilni transakcijski sistem in postopek izvedbe transakcije z mobilnim telefonom
WO2011119976A2 (en) 2010-03-26 2011-09-29 Visa International Service Association System and method for early detection of fraudulent transactions
EP2556596B1 (en) 2010-04-05 2018-05-23 Mastercard International Incorporated Systems, methods, and computer readable media for performing multiple transactions through a single near field communication (nfc) tap
US10304051B2 (en) 2010-04-09 2019-05-28 Paypal, Inc. NFC mobile wallet processing systems and methods
US9122964B2 (en) 2010-05-14 2015-09-01 Mark Krawczewicz Batteryless stored value card with display
US20120109735A1 (en) 2010-05-14 2012-05-03 Mark Stanley Krawczewicz Mobile Payment System with Thin Film Display
US9047531B2 (en) 2010-05-21 2015-06-02 Hand Held Products, Inc. Interactive user interface for capturing a document in an image signal
TWI504229B (zh) 2010-05-27 2015-10-11 Mstar Semiconductor Inc 支援電子錢包功能之行動裝置
AU2011261259B2 (en) 2010-06-04 2015-05-14 Visa International Service Association Payment tokenization apparatuses, methods and systems
US20120079281A1 (en) 2010-06-28 2012-03-29 Lionstone Capital Corporation Systems and methods for diversification of encryption algorithms and obfuscation symbols, symbol spaces and/or schemas
US8723941B1 (en) 2010-06-29 2014-05-13 Bank Of America Corporation Handicap-accessible ATM
CN103109259A (zh) 2010-07-01 2013-05-15 以谢·白南斯托克 位置感知移动连接及信息交换系统
US8500031B2 (en) 2010-07-29 2013-08-06 Bank Of America Corporation Wearable article having point of sale payment functionality
US9916572B2 (en) 2010-08-18 2018-03-13 International Business Machines Corporation Payment card processing system
US8312519B1 (en) 2010-09-30 2012-11-13 Daniel V Bailey Agile OTP generation
US8799087B2 (en) 2010-10-27 2014-08-05 Mastercard International Incorporated Systems, methods, and computer readable media for utilizing one or more preferred application lists in a wireless device reader
US9965756B2 (en) 2013-02-26 2018-05-08 Digimarc Corporation Methods and arrangements for smartphone payments
WO2012071078A1 (en) 2010-11-23 2012-05-31 X-Card Holdings, Llc One-time password card for secure transactions
US20120143754A1 (en) 2010-12-03 2012-06-07 Narendra Patel Enhanced credit card security apparatus and method
US8646059B1 (en) 2010-12-17 2014-02-04 Google Inc. Wallet application for interacting with a secure element application without a trusted server for authentication
US8726405B1 (en) 2010-12-23 2014-05-13 Emc Corporation Techniques for providing security using a mobile wireless communications device having data loss prevention circuitry
US8977195B2 (en) 2011-01-06 2015-03-10 Texas Insruments Incorporated Multiple NFC card applications in multiple execution environments
US8475367B1 (en) 2011-01-09 2013-07-02 Fitbit, Inc. Biometric monitoring device having a body weight sensor, and methods of operating same
AU2012205371A1 (en) 2011-01-14 2013-07-11 Visa International Service Association Healthcare prepaid payment platform apparatuses, methods and systems
JP5692244B2 (ja) 2011-01-31 2015-04-01 富士通株式会社 通信方法、ノード、およびネットワークシステム
US10373160B2 (en) 2011-02-10 2019-08-06 Paypal, Inc. Fraud alerting using mobile phone location
EP2487629B1 (en) 2011-02-10 2016-11-30 Nxp B.V. Secure smart poster
US20120239417A1 (en) 2011-03-04 2012-09-20 Pourfallah Stacy S Healthcare wallet payment processing apparatuses, methods and systems
US8811959B2 (en) 2011-03-14 2014-08-19 Conner Investments, Llc Bluetooth enabled credit card with a large data storage volume
US20120238206A1 (en) 2011-03-14 2012-09-20 Research In Motion Limited Communications device providing near field communication (nfc) secure element disabling features related methods
US20120284194A1 (en) 2011-05-03 2012-11-08 Microsoft Corporation Secure card-based transactions using mobile phones or other mobile devices
WO2012154915A1 (en) 2011-05-10 2012-11-15 Dynamics Inc. Systems, devices, and methods for mobile payment acceptance, mobile authorizations, mobile wallets, and contactless communication mechanisms
US20120296818A1 (en) 2011-05-17 2012-11-22 Ebay Inc. Method for authorizing the activation of a spending card
US8868902B1 (en) 2013-07-01 2014-10-21 Cryptite LLC Characteristically shaped colorgram tokens in mobile transactions
RU2602394C2 (ru) 2011-06-07 2016-11-20 Виза Интернешнл Сервис Ассосиэйшн Устройства, способы и системы токенизации конфиденциальности платежей
US20120317628A1 (en) 2011-06-09 2012-12-13 Yeager C Douglas Systems and methods for authorizing a transaction
US9087208B2 (en) 2011-06-27 2015-07-21 Google Inc. Persistent key access to album
US9042814B2 (en) 2011-06-27 2015-05-26 Broadcom Corporation Measurement and reporting of received signal strength in NFC-enabled devices
EP2541458B1 (en) 2011-06-27 2017-10-04 Nxp B.V. Resource management system and corresponding method
US9209867B2 (en) 2011-06-28 2015-12-08 Broadcom Corporation Device for authenticating wanted NFC interactions
US8620218B2 (en) 2011-06-29 2013-12-31 Broadcom Corporation Power harvesting and use in a near field communications (NFC) device
US9026047B2 (en) 2011-06-29 2015-05-05 Broadcom Corporation Systems and methods for providing NFC secure application support in battery-off mode when no nonvolatile memory write access is available
US9390411B2 (en) 2011-07-27 2016-07-12 Murray Jarman System or method for storing credit on a value card or cellular phone rather than accepting coin change
US9075979B1 (en) 2011-08-11 2015-07-07 Google Inc. Authentication based on proximity to mobile device
CN102956068B (zh) 2011-08-25 2017-02-15 富泰华工业(深圳)有限公司 自动柜员机及其语音提示方法
EP2751754A4 (en) 2011-08-30 2015-06-03 C Douglas Yeager SYSTEMS AND METHOD FOR AUTHORIZING A TRANSACTION WITH AN UNEXPECTED CRYPTOGRAM
FR2980055B1 (fr) 2011-09-12 2013-12-27 Valeo Systemes Thermiques Dispositif de transmission de puissance inductif
US10032036B2 (en) 2011-09-14 2018-07-24 Shahab Khan Systems and methods of multidimensional encrypted data transfer
WO2013039395A1 (en) 2011-09-14 2013-03-21 Ec Solution Group B.V. Active matrix display smart card
US8977569B2 (en) 2011-09-29 2015-03-10 Raj Rao System and method for providing smart electronic wallet and reconfigurable transaction card thereof
US8577810B1 (en) 2011-09-29 2013-11-05 Intuit Inc. Secure mobile payment authorization
US9152832B2 (en) 2011-09-30 2015-10-06 Broadcom Corporation Positioning guidance for increasing reliability of near-field communications
US20140279479A1 (en) 2011-10-12 2014-09-18 C-Sam, Inc. Nfc paired bluetooth e-commerce
US10332102B2 (en) 2011-10-17 2019-06-25 Capital One Services, Llc System, method, and apparatus for a dynamic transaction card
US10510070B2 (en) 2011-10-17 2019-12-17 Capital One Services, Llc System, method, and apparatus for a dynamic transaction card
US9318257B2 (en) 2011-10-18 2016-04-19 Witricity Corporation Wireless energy transfer for packaging
RU2576586C2 (ru) 2011-10-31 2016-03-10 Мани Энд Дэйта Протекшн Лиценц Гмбх Унд Ко.Кг Способ аутентификации
US9000892B2 (en) 2011-10-31 2015-04-07 Eastman Kodak Company Detecting RFID tag and inhibiting skimming
US8818867B2 (en) 2011-11-14 2014-08-26 At&T Intellectual Property I, L.P. Security token for mobile near field communication transactions
RU154072U1 (ru) 2011-11-14 2015-08-10 Васко Дэйта Секьюрити Интернэшнл Гмбх Средство чтения смарт-карты с безопасной функцией журналирования
US9064253B2 (en) 2011-12-01 2015-06-23 Broadcom Corporation Systems and methods for providing NFC secure application support in battery on and battery off modes
US20140040139A1 (en) 2011-12-19 2014-02-06 Sequent Software, Inc. System and method for dynamic temporary payment authorization in a portable communication device
US9740342B2 (en) 2011-12-23 2017-08-22 Cirque Corporation Method for preventing interference of contactless card reader and touch functions when they are physically and logically bound together for improved authentication security
US9154903B2 (en) 2011-12-28 2015-10-06 Blackberry Limited Mobile communications device providing near field communication (NFC) card issuance features and related methods
US8880027B1 (en) 2011-12-29 2014-11-04 Emc Corporation Authenticating to a computing device with a near-field communications card
US20130179351A1 (en) 2012-01-09 2013-07-11 George Wallner System and method for an authenticating and encrypting card reader
US20130185772A1 (en) 2012-01-12 2013-07-18 Aventura Hq, Inc. Dynamically updating a session based on location data from an authentication device
US20130191279A1 (en) 2012-01-20 2013-07-25 Bank Of America Corporation Mobile device with rewritable general purpose card
WO2013116726A1 (en) 2012-02-03 2013-08-08 Ebay Inc. Adding card to mobile wallet using nfc
KR101443960B1 (ko) 2012-02-22 2014-11-03 주식회사 팬택 사용자 인증 전자 장치 및 방법
US8898088B2 (en) 2012-02-29 2014-11-25 Google Inc. In-card access control and monotonic counters for offline payment processing system
US9020858B2 (en) 2012-02-29 2015-04-28 Google Inc. Presence-of-card code for offline payment processing system
US20130232082A1 (en) 2012-03-05 2013-09-05 Mark Stanley Krawczewicz Method And Apparatus For Secure Medical ID Card
US9048882B2 (en) 2012-03-15 2015-06-02 Intel Corporation Near field communications (NFC) and proximity sensor for portable devices
WO2013155562A1 (en) 2012-04-17 2013-10-24 Secure Nfc Pty. Ltd. Nfc card lock
US20130282360A1 (en) 2012-04-20 2013-10-24 James A. Shimota Method and Apparatus for Translating and Locating Services in Multiple Languages
US9953310B2 (en) 2012-05-10 2018-04-24 Mastercard International Incorporated Systems and method for providing multiple virtual secure elements in a single physical secure element of a mobile device
EP2663110A1 (en) 2012-05-11 2013-11-13 BlackBerry Limited Near Field Communication Tag Data Management
US9306626B2 (en) 2012-05-16 2016-04-05 Broadcom Corporation NFC device context determination through proximity gestural movement detection
US8681268B2 (en) 2012-05-24 2014-03-25 Abisee, Inc. Vision assistive devices and user interfaces
US9406011B2 (en) * 2012-05-29 2016-08-02 Stratos Technologies, Inc. Virtual wallet
US8862113B2 (en) 2012-06-20 2014-10-14 Qualcomm Incorporated Subscriber identity module activation during active data call
US9589399B2 (en) 2012-07-02 2017-03-07 Synaptics Incorporated Credential quality assessment engine systems and methods
US20140032410A1 (en) 2012-07-24 2014-01-30 Ipay International, S.A. Method and system for linking and controling of payment cards with a mobile
KR101421568B1 (ko) 2012-07-27 2014-07-22 주식회사 케이티 스마트카드, 스마트카드 서비스 단말 및 스마트카드 서비스 방법
US9530130B2 (en) 2012-07-30 2016-12-27 Mastercard International Incorporated Systems and methods for correction of information in card-not-present account-on-file transactions
KR101934293B1 (ko) 2012-08-03 2019-01-02 엘지전자 주식회사 이동 단말기의 이동 단말기 및 그의 nfc결제 방법
US9361619B2 (en) 2012-08-06 2016-06-07 Ca, Inc. Secure and convenient mobile authentication techniques
EP2698756B1 (en) 2012-08-13 2016-01-06 Nxp B.V. Local Trusted Service Manager
US9332587B2 (en) 2012-08-21 2016-05-03 Blackberry Limited Smart proximity priority pairing
US20140074655A1 (en) 2012-09-07 2014-03-13 David Lim System, apparatus and methods for online one-tap account addition and checkout
AU2013315510B2 (en) 2012-09-11 2019-08-22 Visa International Service Association Cloud-based Virtual Wallet NFC Apparatuses, methods and systems
US9275218B1 (en) 2012-09-12 2016-03-01 Emc Corporation Methods and apparatus for verification of a user at a first device based on input received from a second device
US8888002B2 (en) 2012-09-18 2014-11-18 Sensormatic Electronics, LLC Access control reader enabling remote applications
US20140081720A1 (en) 2012-09-19 2014-03-20 Mastercard International Incorporated Method and system for processing coupons in a near field transaction
US9338622B2 (en) 2012-10-04 2016-05-10 Bernt Erik Bjontegard Contextually intelligent communication systems and processes
US9665858B1 (en) 2012-10-11 2017-05-30 Square, Inc. Cardless payment transactions with multiple users
US20160019536A1 (en) * 2012-10-17 2016-01-21 Royal Bank Of Canada Secure processing of data
US10075437B1 (en) 2012-11-06 2018-09-11 Behaviosec Secure authentication of a user of a device during a session with a connected server
US8584219B1 (en) 2012-11-07 2013-11-12 Fmr Llc Risk adjusted, multifactor authentication
CA2930752A1 (en) 2012-11-15 2014-05-22 Behzad Malek System and method for location-based financial transaction authentication
EP2795950B1 (en) 2012-11-19 2018-09-05 Avery Dennison Corporation Nfc security system and method for disabling unauthorized tags
US9038894B2 (en) 2012-11-20 2015-05-26 Cellco Partnership Payment or other transaction through mobile device using NFC to access a contactless transaction card
CN103023643A (zh) 2012-11-22 2013-04-03 天地融科技股份有限公司 一种动态口令牌及动态口令生成方法
US9224013B2 (en) 2012-12-05 2015-12-29 Broadcom Corporation Secure processing sub-system that is hardware isolated from a peripheral processing sub-system
US9064259B2 (en) 2012-12-19 2015-06-23 Genesys Telecomminucations Laboratories, Inc. Customer care mobile application
US10147086B2 (en) 2012-12-19 2018-12-04 Nxp B.V. Digital wallet device for virtual wallet
WO2014102721A1 (en) 2012-12-24 2014-07-03 Cell Buddy Network Ltd. User authentication system
US8934837B2 (en) 2013-01-03 2015-01-13 Blackberry Limited Mobile wireless communications device including NFC antenna matching control circuit and associated methods
US9942750B2 (en) 2013-01-23 2018-04-10 Qualcomm Incorporated Providing an encrypted account credential from a first device to a second device
US20140214674A1 (en) 2013-01-29 2014-07-31 Reliance Communications, Llc. Method and system for conducting secure transactions with credit cards using a monitoring device
US20140229375A1 (en) 2013-02-11 2014-08-14 Groupon, Inc. Consumer device payment token management
US9785946B2 (en) 2013-03-07 2017-10-10 Mastercard International Incorporated Systems and methods for updating payment card expiration information
US10152706B2 (en) 2013-03-11 2018-12-11 Cellco Partnership Secure NFC data authentication
US9307505B2 (en) 2013-03-12 2016-04-05 Blackberry Limited System and method for adjusting a power transmission level for a communication device
US9763097B2 (en) 2013-03-13 2017-09-12 Lookout, Inc. Method for performing device security corrective actions based on loss of proximity to another device
US20150134452A1 (en) 2013-03-15 2015-05-14 Gerald Shawn Williams Mechanism for facilitating dynamic and targeted advertisements for computing systems
US20140339315A1 (en) 2013-04-02 2014-11-20 Tnt Partners, Llc Programmable Electronic Card and Supporting Device
WO2014170741A2 (en) 2013-04-15 2014-10-23 Pardhasarthy Mahesh Bhupathi Payback payment system and method to facilitate the same
EP2989770A1 (en) 2013-04-26 2016-03-02 Interdigital Patent Holdings, Inc. Multi-factor authentication to achieve required authentication assurance level
US20140337235A1 (en) 2013-05-08 2014-11-13 The Toronto-Dominion Bank Person-to-person electronic payment processing
US9104853B2 (en) 2013-05-16 2015-08-11 Symantec Corporation Supporting proximity based security code transfer from mobile/tablet application to access device
US10043164B2 (en) 2013-05-20 2018-08-07 Mastercard International Incorporated System and method for facilitating a transaction between a merchant and a cardholder
US20140365780A1 (en) 2013-06-07 2014-12-11 Safa Movassaghi System and methods for one-time password generation on a mobile computing device
US10475027B2 (en) 2013-07-23 2019-11-12 Capital One Services, Llc System and method for exchanging data with smart cards
EP3025270A1 (en) 2013-07-25 2016-06-01 Nymi inc. Preauthorized wearable biometric device, system and method for use thereof
GB2516861A (en) 2013-08-01 2015-02-11 Mastercard International Inc Paired Wearable payment device
CN103417202B (zh) 2013-08-19 2015-11-18 赵蕴博 一种腕式生命体征监测装置及其监测方法
WO2015047224A1 (en) 2013-09-24 2015-04-02 Intel Corporation Systems and methods for nfc access control in a secure element centric nfc architecture
EP2854332A1 (en) 2013-09-27 2015-04-01 Gemalto SA Method for securing over-the-air communication between a mobile application and a gateway
US11748746B2 (en) 2013-09-30 2023-09-05 Apple Inc. Multi-path communication of electronic device secure element data for online payments
US10878414B2 (en) 2013-09-30 2020-12-29 Apple Inc. Multi-path communication of electronic device secure element data for online payments
EP3070602A4 (en) 2013-11-15 2016-12-14 Kuang-Chi Intelligent Photonic Tech Ltd METHODS OF TRANSMITTING AND RECEIVING INSTRUCTION INFORMATION AND RELATED DEVICES
CA2930149A1 (en) 2013-11-19 2015-05-28 Visa International Service Association Automated account provisioning
JP6438027B2 (ja) 2013-12-02 2018-12-12 マスターカード インターナショナル インコーポレーテッド セキュアエレメントを用いずに移動装置に対する遠隔通知サービスメッセージをセキュアに送信するための方法およびシステム
CN115082065A (zh) 2013-12-19 2022-09-20 维萨国际服务协会 基于云的交易方法和系统
US20150178725A1 (en) * 2013-12-23 2015-06-25 Nicholas Poetsch Transaction authorization control and account linking involving multiple and singular accounts or users
US20150205379A1 (en) 2014-01-20 2015-07-23 Apple Inc. Motion-Detected Tap Input
US9420496B1 (en) 2014-01-24 2016-08-16 Sprint Communications Company L.P. Activation sequence using permission based connection to network
US9773151B2 (en) 2014-02-06 2017-09-26 University Of Massachusetts System and methods for contactless biometrics-based identification
US20160012465A1 (en) 2014-02-08 2016-01-14 Jeffrey A. Sharp System and method for distributing, receiving, and using funds or credits and apparatus thereof
US20150371234A1 (en) 2014-02-21 2015-12-24 Looppay, Inc. Methods, devices, and systems for secure provisioning, transmission, and authentication of payment data
US9838424B2 (en) 2014-03-20 2017-12-05 Microsoft Technology Licensing, Llc Techniques to provide network security through just-in-time provisioned accounts
EP2924914A1 (en) 2014-03-25 2015-09-30 Gemalto SA Method to manage a one time password key
US9251330B2 (en) 2014-04-09 2016-02-02 International Business Machines Corporation Secure management of a smart card
US20150317626A1 (en) 2014-04-30 2015-11-05 Intuit Inc. Secure proximity exchange of payment information between mobile wallet and point-of-sale
SG11201608973TA (en) 2014-05-01 2016-11-29 Visa Int Service Ass Data verification using access device
AU2015255887A1 (en) 2014-05-07 2016-10-13 Visa International Service Association Enhanced data interface for contactless communications
US10475026B2 (en) 2014-05-16 2019-11-12 International Business Machines Corporation Secure management of transactions using a smart/virtual card
US20150339663A1 (en) 2014-05-21 2015-11-26 Mastercard International Incorporated Methods of payment token lifecycle management on a mobile device
US10043185B2 (en) 2014-05-29 2018-08-07 Apple Inc. User interface for payments
US9449239B2 (en) 2014-05-30 2016-09-20 Apple Inc. Credit card auto-fill
KR101508320B1 (ko) 2014-06-30 2015-04-07 주식회사 인포바인 Nfc 카드를 이용한 otp 발급 장치, otp 생성 장치, 및 이를 이용한 방법
US9455968B1 (en) 2014-12-19 2016-09-27 Emc Corporation Protection of a secret on a mobile device using a secret-splitting technique with a fixed user share
US9780953B2 (en) 2014-07-23 2017-10-03 Visa International Service Association Systems and methods for secure detokenization
US20160026997A1 (en) 2014-07-25 2016-01-28 XPressTap, Inc. Mobile Communication Device with Proximity Based Communication Circuitry
US9875347B2 (en) 2014-07-31 2018-01-23 Nok Nok Labs, Inc. System and method for performing authentication using data analytics
US20160048913A1 (en) 2014-08-15 2016-02-18 Mastercard International Incorporated Systems and Methods for Assigning a Variable Length Bank Identification Number
US9775029B2 (en) 2014-08-22 2017-09-26 Visa International Service Association Embedding cloud-based functionalities in a communication device
US10242356B2 (en) 2014-08-25 2019-03-26 Google Llc Host-formatted select proximity payment system environment response
CN106797311B (zh) 2014-08-29 2020-07-14 维萨国际服务协会 用于安全密码生成的系统、方法和存储介质
CN104239783A (zh) 2014-09-19 2014-12-24 东软集团股份有限公司 一种特定信息安全输入系统及方法
US9953323B2 (en) 2014-09-23 2018-04-24 Sony Corporation Limiting e-card transactions based on lack of proximity to associated CE device
GB2530726B (en) 2014-09-25 2016-11-02 Ibm Distributed single sign-on
RU2019124722A (ru) 2014-09-26 2019-10-01 Виза Интернэшнл Сервис Ассосиэйшн Система и способы предоставления зашифрованных данных удаленного сервера
US9432339B1 (en) 2014-09-29 2016-08-30 Emc Corporation Automated token renewal using OTP-based authentication codes
US9473509B2 (en) 2014-09-29 2016-10-18 International Business Machines Corporation Selectively permitting or denying usage of wearable device services
CN104463270A (zh) 2014-11-12 2015-03-25 惠州Tcl移动通信有限公司 一种基于rfid的智能终端、金融卡以及金融管理系统
WO2016080952A1 (en) 2014-11-17 2016-05-26 Empire Technology Development Llc Mobile device prevention of contactless card attacks
US10223689B2 (en) 2014-12-10 2019-03-05 American Express Travel Related Services Company, Inc. System and method for over the air provisioned wearable contactless payments
GB2533333A (en) 2014-12-16 2016-06-22 Visa Europe Ltd Transaction authorisation
WO2016112290A1 (en) 2015-01-09 2016-07-14 Interdigital Technology Corporation Scalable policy based execution of multi-factor authentication
US10333696B2 (en) 2015-01-12 2019-06-25 X-Prime, Inc. Systems and methods for implementing an efficient, scalable homomorphic transformation of encrypted data with minimal data expansion and improved processing efficiency
US20170011406A1 (en) 2015-02-10 2017-01-12 NXT-ID, Inc. Sound-Directed or Behavior-Directed Method and System for Authenticating a User and Executing a Transaction
CN105930040A (zh) 2015-02-27 2016-09-07 三星电子株式会社 包含电子支付系统的电子装置及其操作方法
US20160267486A1 (en) 2015-03-13 2016-09-15 Radiius Corp Smartcard Payment System and Method
US11736468B2 (en) 2015-03-16 2023-08-22 Assa Abloy Ab Enhanced authorization
US20160277383A1 (en) 2015-03-16 2016-09-22 Assa Abloy Ab Binding to a user device
US20170289127A1 (en) 2016-03-29 2017-10-05 Chaya Coleena Hendrick Smart data cards that enable the performance of various functions upon activation/authentication by a user's fingerprint, oncard pin number entry, and/or by facial recognition of the user, or by facial recognition of a user alone, including an automated changing security number that is displayed on a screen on a card's surface following an authenticated biometric match
WO2016160816A1 (en) 2015-03-30 2016-10-06 Hendrick Chaya Coleena Smart data cards that enable the performance of various functions upon activation/authentication by a user's fingerprint, oncard pin number entry, and/or by facial recognition of the user, or by facial recognition of a user alone, including an automated changing security number that is displayed on a screen on a card's surface following an authenticated biometric match
CN107924477A (zh) 2015-04-14 2018-04-17 第资本服务公司 用于动态交易卡的系统、方法和设备
US10360557B2 (en) 2015-04-14 2019-07-23 Capital One Services, Llc Dynamic transaction card protected by dropped card detection
US10482453B2 (en) 2015-04-14 2019-11-19 Capital One Services, Llc Dynamic transaction card protected by gesture and voice recognition
US9674705B2 (en) 2015-04-22 2017-06-06 Kenneth Hugh Rose Method and system for secure peer-to-peer mobile communications
EP3292484B1 (en) 2015-05-05 2021-07-07 Ping Identity Corporation Identity management service using a block chain
US20160335531A1 (en) 2015-05-12 2016-11-17 Dynamics Inc. Dynamic security codes, tokens, displays, cards, devices, multi-card devices, systems and methods
FR3038429B1 (fr) 2015-07-03 2018-09-21 Ingenico Group Conteneur de paiement, procede de creation, procede de traitement, dispositifs et programmes correspondants
US20170039566A1 (en) 2015-07-10 2017-02-09 Diamond Sun Labs, Inc. Method and system for secured processing of a credit card
US10108965B2 (en) 2015-07-14 2018-10-23 Ujet, Inc. Customer communication system including service pipeline
US11120436B2 (en) 2015-07-17 2021-09-14 Mastercard International Incorporated Authentication system and method for server-based payments
US20170024716A1 (en) 2015-07-22 2017-01-26 American Express Travel Related Services Company, Inc. System and method for single page banner integration
US10492163B2 (en) 2015-08-03 2019-11-26 Jpmorgan Chase Bank, N.A. Systems and methods for leveraging micro-location devices for improved travel awareness
KR20170028015A (ko) 2015-09-03 2017-03-13 엔에이치엔엔터테인먼트 주식회사 휴대용 단말기를 이용한 온라인 신용카드 결제 시스템 및 결제 방법
WO2017042400A1 (en) 2015-09-11 2017-03-16 Dp Security Consulting Sas Access method to an on line service by means of access tokens and secure elements restricting the use of these access tokens to their legitimate owner
FR3041195A1 (fr) 2015-09-11 2017-03-17 Dp Security Consulting Procede d'acces a un service en ligne au moyen d'un microcircuit securise et de jetons de securite restreignant l'utilisation de ces jetons a leur detenteur legitime
ITUB20155318A1 (it) 2015-10-26 2017-04-26 St Microelectronics Srl Tag, relativo procedimento e sistema per identificare e/o autenticare oggetti
US20170140379A1 (en) 2015-11-17 2017-05-18 Bruce D. Deck Credit card randomly generated pin
US10706400B1 (en) * 2015-11-19 2020-07-07 Wells Fargo Bank, N.A. Systems and methods for financial operations performed at a contactless ATM
CA2944935A1 (en) 2015-11-27 2017-05-27 The Toronto-Dominion Bank System and method for remotely activating a pin-pad terminal
WO2017100318A1 (en) 2015-12-07 2017-06-15 Capital One Services, Llc Electronic access control system
US9948467B2 (en) 2015-12-21 2018-04-17 Mastercard International Incorporated Method and system for blockchain variant using digital signatures
KR101637863B1 (ko) 2016-01-05 2016-07-08 주식회사 코인플러그 본인인증용 정보 보안 전송시스템 및 방법
EP3411824B1 (en) 2016-02-04 2019-10-30 Nasdaq Technology AB Systems and methods for storing and sharing transactional data using distributed computer systems
SE542197C2 (en) * 2016-02-09 2020-03-10 Izettle Merchant Services Ab Card reader terminal with external contactless antenna
US9619952B1 (en) 2016-02-16 2017-04-11 Honeywell International Inc. Systems and methods of preventing access to users of an access control system
US10148135B2 (en) 2016-02-16 2018-12-04 Intel IP Corporation System, apparatus and method for authenticating a device using a wireless charger
FR3049083A1 (fr) 2016-03-15 2017-09-22 Dp Security Consulting Sas Procede de duplication des donnees d'un microcircuit securise vers un autre microcircuit securise permettant, au plus, a un seul microcircuit securise d'etre operationnel a un instant donne
US9961194B1 (en) 2016-04-05 2018-05-01 State Farm Mutual Automobile Insurance Company Systems and methods for authenticating a caller at a call center
EP3229397B1 (en) 2016-04-07 2020-09-09 ContactOffice Group Method for fulfilling a cryptographic request requiring a value of a private key
US10255816B2 (en) 2016-04-27 2019-04-09 Uber Technologies, Inc. Transport vehicle configuration for impaired riders
US10333705B2 (en) 2016-04-30 2019-06-25 Civic Technologies, Inc. Methods and apparatus for providing attestation of information using a centralized or distributed ledger
KR20170126688A (ko) 2016-05-10 2017-11-20 엘지전자 주식회사 스마트 카드 및 그 스마트 카드의 제어 방법
US9635000B1 (en) 2016-05-25 2017-04-25 Sead Muftic Blockchain identity management system based on public identities ledger
GB201609460D0 (en) 2016-05-30 2016-07-13 Silverleap Technology Ltd Increased security through ephemeral keys for software virtual contactless card in a mobile phone
US10097544B2 (en) 2016-06-01 2018-10-09 International Business Machines Corporation Protection and verification of user authentication credentials against server compromise
US10680677B2 (en) 2016-08-01 2020-06-09 Nxp B.V. NFC system wakeup with energy harvesting
US10032169B2 (en) 2016-08-08 2018-07-24 Ellipse World, Inc. Prepaid, debit and credit card security code generation system
US20180039986A1 (en) 2016-08-08 2018-02-08 Ellipse World S.A. Method for a Prepaid, Debit and Credit Card Security Code Generation System
US10084762B2 (en) 2016-09-01 2018-09-25 Ca, Inc. Publicly readable blockchain registry of personally identifiable information breaches
US10748130B2 (en) 2016-09-30 2020-08-18 Square, Inc. Sensor-enabled activation of payment instruments
US10462128B2 (en) 2016-10-11 2019-10-29 Michael Arthur George Verification of both identification and presence of objects over a network
US10719771B2 (en) 2016-11-09 2020-07-21 Cognitive Scale, Inc. Method for cognitive information processing using a cognitive blockchain architecture
US20180160255A1 (en) 2016-12-01 2018-06-07 Youngsuck PARK Nfc tag-based web service system and method using anti-simulation function
US10133979B1 (en) 2016-12-29 2018-11-20 Wells Fargo Bank, N.A. Wearable computing device-powered chip-enabled card
US10237070B2 (en) 2016-12-31 2019-03-19 Nok Nok Labs, Inc. System and method for sharing keys across authenticators
DE102017000768A1 (de) 2017-01-27 2018-08-02 Giesecke+Devrient Mobile Security Gmbh Verfahren zum Durchführen einer Zweifaktorauthentifizierung
US20180240106A1 (en) 2017-02-21 2018-08-23 Legacy Ip Llc Hand-held electronics device for aggregation of and management of personal electronic data
US20180254909A1 (en) 2017-03-06 2018-09-06 Lamark Solutions, Inc. Virtual Identity Credential Issuance and Verification Using Physical and Virtual Means
US10764043B2 (en) 2017-04-05 2020-09-01 University Of Florida Research Foundation, Incorporated Identity and content authentication for phone calls
US10129648B1 (en) 2017-05-11 2018-11-13 Microsoft Technology Licensing, Llc Hinged computing device for binaural recording
US20190019375A1 (en) 2017-07-14 2019-01-17 Gamblit Gaming, Llc Ad hoc customizable electronic gaming table
US9940571B1 (en) 2017-08-25 2018-04-10 Capital One Services, Llc Metal contactless transaction card
US10019707B1 (en) 2017-10-24 2018-07-10 Capital One Services, Llc Transaction card mode related to locating a transaction card
US11102180B2 (en) 2018-01-31 2021-08-24 The Toronto-Dominion Bank Real-time authentication and authorization based on dynamically generated cryptographic data
US11509475B2 (en) * 2018-06-15 2022-11-22 Proxy, Inc. Method and apparatus for obtaining multiple user credentials
US10607214B1 (en) 2018-10-02 2020-03-31 Capital One Services, Llc Systems and methods for cryptographic authentication of contactless cards
US20220058633A1 (en) * 2018-11-21 2022-02-24 Verona Holdings Sezc Tokenization platform
US10861006B1 (en) * 2020-04-30 2020-12-08 Capital One Services, Llc Systems and methods for data access control using a short-range transceiver

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115277072A (zh) * 2022-06-17 2022-11-01 支付宝(杭州)信息技术有限公司 账号打通方法、装置、存储介质以及计算机设备
CN115277072B (zh) * 2022-06-17 2024-03-15 支付宝(杭州)信息技术有限公司 账号打通方法、装置、存储介质以及计算机设备

Also Published As

Publication number Publication date
JP2021174528A (ja) 2021-11-01
US20220156720A1 (en) 2022-05-19
SG10202101473QA (en) 2021-11-29
CA3108475A1 (en) 2021-10-30
AU2021200914A1 (en) 2021-11-18
KR20210134212A (ko) 2021-11-09
EP3905089A1 (en) 2021-11-03
US20210342818A1 (en) 2021-11-04
US11270291B2 (en) 2022-03-08
US10861006B1 (en) 2020-12-08

Similar Documents

Publication Publication Date Title
US11270291B2 (en) Systems and methods for data access control using a short-range transceiver
US11764962B2 (en) Systems and methods for data access control of secure memory using a short-range transceiver
JP2022501871A (ja) 非接触カードの暗号化認証のためのシステムおよび方法
US20230291749A1 (en) Systems and methods for verified messaging via short-range transceiver
US20210342477A1 (en) Systems and methods for data access control of personal user data using a short-range transceiver
US20220051241A1 (en) Systems and methods for user verification via short-range transceiver

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
REG Reference to a national code

Ref country code: HK

Ref legal event code: DE

Ref document number: 40056157

Country of ref document: HK

SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination