KR20180108907A - Method and system for generating an advanced storage key in a mobile device without secure elements - Google Patents

Abstract

A method for constructing an advanced storage key comprises the steps of storing in a memory of a mobile device a first program comprising at least (i) device information associated with the mobile device, (ii) program code associated with the first program, Associated program code, and (iii) program code associated with the second program, the program code associated with the second program comprising a first key; Generating a device fingerprint associated with the mobile device based on the device information through execution of code associated with the first program; Generating a random value through execution of code associated with the first program; Constructing a diversifier value based on the generated device fingerprint, the generated random value, and an instance identifier included in a code associated with the first program; And decrypting the constructed multivalued value using a first key stored in a code associated with the second program through execution of a code associated with the second program to obtain a storage key.

Description

FIELD OF THE INVENTION [0001] The present invention relates to a method and system for generating an advanced storage key in a mobile device having no security elements,

Related Applications

This application claims priority from U.S. Patent No. 35 USC §119 (e), provisional applications filed December 2, 2013, 61 / 910,819; Provisional application 61 / 951,842, filed March 12, 2014; Provisional application 61 / 955,716, filed March 19, 2014; Provisional application 61 / 979,132, filed April 14, 2014; Provisional application 61 / 980,784, filed April 17, 2014; Provisional application 61 / 979,122, filed April 14, 2014; And Provisional Application No. 61 / 996,665, filed May 14, 2014; In particular, provisional application 61 / 979,113, filed April 14, 2014, the entire contents of each of which are incorporated herein by reference.

Technical field

This disclosure relates to the generation of advanced storage keys for use in mobile devices that do not have the necessary security elements and, more specifically, security features for securely storing data in mobile devices are provided And to use the various values to build an advanced storage key on a non-mobile device.

As mobile and communications technologies advance, significant opportunities have arisen, including the ability to initiate payment transactions using their mobile device to a user of a mobile computing device and to pay for payment transactions . One such method of enabling such operations through a mobile device is to provide near field communication (NFC) to securely transfer payment details from the mobile device to a non-contact point of sale (POS) ) Technology. To achieve this, mobile phones with secure element hardware such as secure element (SE) chips are used to securely store payment credentials. The security element is a dedicated security element that can be included in some NFC-enabled devices, an anti-tamper platform that can securely host sensitive data for applications and applications.

However, not all mobile devices are equipped with security elements. In addition, some financial institutions have not been able to access the security elements on mobile devices, even if they are equipped with security elements. As a result, many consumers who have mobile devices with the necessary hardware to perform contactless or other types of remote payment transactions may not be able to actually use this functionality. Because of such difficulties, there is a need for a technical problem solving technique that allows mobile computing devices to initiate and perform payment settlement transactions without the use of security elements.

Some methods and systems for performing payment transactions using mobile devices that do not use security elements in mobile devices that do not have security elements or are equipped with security elements are described in " &Quot; Systems and Methods for Processing Mobile Payments by Provisioning Credentials to Mobile Devices Without Secure Elements "by Mehdi Collinge, filed March 14, < RTI ID = 0.0 & U.S. Patent Application No. 13 / 827,042, the entire content of which is incorporated herein by reference. While such methods and systems may be well suited to perform payment transactions via mobile devices that do not use the security element, many consumers, merchants, and financial institutions may be required to participate in such transactions . ≪ / RTI >

As a result, it is possible to provide greater security for receipt and storage of payment credentials in mobile devices for which there is no security element, and to provide greater security for payment from the mobile device to the point- Technical troubleshooting techniques are needed that provide increased security for the transmission of payment credentials. Increased security in these processes can result in increased peace of mind for all involved entities, which can result in increased use of mobile devices for contactless or remote payment transactions , Which can provide many benefits to consumers through traditional payment methods.

The present disclosure provides a description of a system and method for constructing advanced storage keys.

A method for constructing an advanced storage key includes storing at least one instance identifier in the memory of the mobile communication device as at least (i) device information associated with the mobile communication device, and (ii) program code associated with the first application program (Iii) a program code associated with a second application program, the program code comprising a first key, the program code being associated with a second application program; Generating, by the processing device, a device fingerprint associated with the mobile communication device based on the stored device information through execution of the program code associated with the first application program; Generating, by the processing device, a random value through execution of a program code associated with the first application program; Constructing a diversifier value by the processing device based on at least the instance identifier included in the generated device fingerprint, the generated random value, and the program code associated with the first application program ; And decrypting the constructed multivalued value by the processing device using a first key stored in a program code associated with the second application program through execution of the program code associated with the second application program, And acquiring the acquired information.

A system for building an advanced storage key includes a memory and a processing device of a mobile communication device. Wherein the memory of the mobile communication device comprises: at least a device information associated with the mobile communication device; program code associated with the first application program, the program code associated with the first application program including at least one instance identifier; Program code associated with the program, the program code being associated with the second application program, the key code including a first key. Wherein the processing device is configured to generate a device fingerprint associated with the mobile communication device based on the stored device information through execution of the program code associated with the first application program, And generating a random value based on at least an instance identifier included in the generated device fingerprint, the generated random value, and the program code associated with the first application program, value and decrypting the constructed multivalued value using a first key stored in the program code associated with the second application program through execution of the program code associated with the second application program Section is configured to obtain the key.

The scope of the present disclosure will be best understood from the following detailed description of exemplary embodiments taken in conjunction with the accompanying drawings. The accompanying drawings contain the following drawings.

1 is a block diagram illustrating a high-level system architecture for processing payment transactions with advanced security in provisioning and storing payment settlement credentials in accordance with exemplary embodiments.
FIG. 2 is a block diagram illustrating the mobile device of FIG. 1 for secure receipt and storage of payment settlement credentials in accordance with exemplary embodiments and for processing payment transactions for which there is no security element.
FIG. 3 is a block diagram illustrating a card database of the mobile device of FIG. 2 for storing payment settlement credentials in accordance with exemplary embodiments.
4 is a block diagram illustrating the memory of the mobile device of FIG. 2 for storing data used for generation of application passwords and generation of advanced storage keys in accordance with exemplary embodiments.
FIG. 5 is a block diagram illustrating the transaction management server of FIG. 1 for processing payment transactions with a mobile device without a security element according to exemplary embodiments.
FIG. 6 is a block diagram illustrating an account database of the processing server of FIG. 5 for storage of account details and payment settlement credentials in accordance with exemplary embodiments.
FIG. 7 is a flow chart illustrating a process for transmitting and verifying a dual application password for processing of payment transactions, including a mobile device without a security element according to exemplary embodiments.
Figure 8 is a flow chart illustrating an alternative process for transmission and identification of dual application ciphers for processing of payment transactions, including mobile devices without a security element according to exemplary embodiments.
FIG. 9 is a flow chart illustrating a process for creating, transmitting, and verifying remote notification services or other data messages provisioned to a mobile device without a security element in accordance with exemplary embodiments.
10A and 10B are flow charts illustrating a process for generating, transmitting, and verifying a message returned by a mobile device without a security element according to an exemplary embodiment.
FIG. 11 is a flow chart illustrating a process for identifying a remote notification service message using the mobile device of FIG. 2 in accordance with exemplary embodiments.
12 is a diagram illustrating generation of an advanced storage key using the mobile device of FIG. 2 in accordance with exemplary embodiments.
Figures 13 and 14 are flow charts illustrating exemplary methods for payment settlement credentials generated in a payment transaction in accordance with exemplary embodiments.
15 is a flow chart illustrating an exemplary method for receiving and processing a remote notification service message in accordance with exemplary embodiments.
16 is a flow chart illustrating an exemplary method for building an advanced storage key in accordance with exemplary embodiments.
17 is a block diagram illustrating a computer system architecture in accordance with exemplary embodiments.

Additional feasible fields of the present disclosure will become apparent from the detailed description provided hereinafter. It is to be understood that the specific description of exemplary embodiments is intended to be illustrative only and is not intended to necessarily limit the scope of the present disclosure.

Glossary of terms

Payment Network - Cash - A system or network used for remittance through the use of substitutes. Payment networks can use different protocols and procedures to handle remittances for different types of transactions. Transactions that may be performed through the payment network may include product or service purchases, credit purchases, debit transactions, funds transfers, account withdrawals, and the like. The payment networks may be configured to perform transactions via cash-in replacements, which may include payment cards, letters of credit, checks, transaction accounts, and the like. Examples of networks or systems configured to perform as payment networks include those operated by MasterCard ^® , VISA ^® , Discover ^® , American Express ^® , PayPal ^{®, and the} like. The term "payment network" as used herein may refer to both a payment network as an entity, and a physical payment network such as equipment, hardware, and software, including a payment network.

Transaction Account - A financial account that can be used to fund transactions such as current accounts, savings accounts, credit accounts, virtual payment accounts, and so on. A transactional account may be associated with a consumer, which may be any suitable type of entity associated with a payment settlement account, which may include individuals, families, companies, businesses, government agencies, and the like. In some cases, the transaction account may be a synthetic transaction account, such as those accounts operated by PayPal ^{® and} so on.

Payment Card - A card or data associated with a transaction account that can be provided to a merchant to finance a financial transaction through an associated transaction account. Payment cards may include credit cards, debit cards, recharge cards, storage value cards, prepaid cards, vehicle cards, virtual payment numbers, virtual card numbers, control payment numbers, etc. have. The payment card may be a physical card that may be provided to the merchant or may be data representing an associated transaction account (e.g., a related transaction account as stored in a communication device such as a smart phone or a computer). For example, in some cases, data including a payment account number can be considered a payment card for processing transactions in which the relevant transaction account is financed. In some cases, a check may be considered a payment card if the check is applicable.

Payment Transactions - Transactions between two entities whose money or other financial benefits are exchanged from one entity to the other. The payment transaction may be a money transfer for the purchase of goods or services, for debt repayment, or for any other exchange of financial benefits, as will be apparent to those skilled in the relevant arts. In some cases, payment transactions may refer to transactions that are funded through payment payment cards, such as credit card transactions, and / or payment settlement accounts. Such payment transactions may be processed through the issuer, the payment network, and the recipient. The process for processing such payment transactions may include at least one of approval, batching, settlement, settlement, and financing. The authorization includes providing the merchant with payment details by the consumer, submitting transaction details (e.g., transaction details including payment details) from the merchant to the merchant's recipient, and funding the transaction And verifying the payment details to the issuer of the consumer's payment account being used. Batching may refer to storing an approved transaction in batches with other authorized transactions for distribution to the recipient. Clearing may include dispatching transactions from the recipient to the payment network for processing. The settlement may include the issuer's withdrawal by the payment network for transactions involving issuer beneficiaries. In some cases, the issuer can deposit money to the recipient through the payment payment network. In other cases, the issuer can directly deposit money to the recipient. Funding may include depositing money from the receiver to the merchant for clearing and settlement payment transactions. As will be apparent to those skilled in the relevant arts, the order and / or classification of the steps discussed above is performed as part of the payment transaction processing.

Point-of-sale information management system - a system and method for entering transaction data, payment payment data, and / or other suitable types of data for the purchase of goods and / or services and / or payment for goods and / (E. G., A consumer, a user, etc.). ≪ / RTI > The point-of-sale information management system may be a physical device (e.g., a cash register, a kiosk, a desktop computer, etc.) at a physical location that a customer visits as part of the transaction, such as a "brick and mortar & , A smart phone, a tablet computer, etc.), or it may be a virtual device in an electronic commerce environment, such as an online retailer receiving communications from customers over a network such as the Internet. In the case where the point-of-sale information management system may be a virtual device, when a computing device operated by a user to start the transaction or a computing device receiving data as a result of the transaction is applicable, .

Using mobile devices without security elements Payment  Systems that process transactions

1 illustrates a system 100 for processing payment transactions using a mobile device that does not require the use of security elements, wherein the use of security elements includes securely provisioning payment credentials to the mobile device , Secure storage of the mobile device, and use in generating a plurality of application passwords for use in identifying and processing the payment transaction.

The system 100 may include a transaction management server 102. The transaction management server 102 may be configured to provision payment credentials to the mobile device 104 using a securely transmitted remote notification message, as will be discussed in greater detail below, May be one or more computing devices that are specifically programmed to perform the functions discussed herein to identify payment settlement credentials generated by the computing device 104. It will be appreciated by those skilled in the relevant art that the transaction management server 102 may be configured to perform a number of functions configured to perform the functions discussed herein, A device, a server, and / or a computing network. The mobile device 104 is suitable for performing the functions discussed herein, as will be discussed in greater detail below, and may be a cellular phone, smart phone, smart watch, other wearable or embedded computing device, tablet computer, And may be any type of mobile computing device. In some embodiments, the mobile device 104 may not be provided with a security element. In other embodiments, the mobile device 104 may include a security element, but such a security element may not be used with the methods and systems discussed herein and may be used, for example, ≪ / RTI >

The mobile device 104 may communicate with the transaction management server 102 using multiple communication channels, e.g., multiple communication channels using dual channel communication. Dual channel communications may include ensuring higher security in data transmission using, for example, two communication channels for transmitting and receiving data for verification and authentication. The mobile device 104 may include a mobile payment application (MPA) configured to be executed by the mobile device 104 to perform the functions of the mobile device 104 discussed herein have. The MPA may be installed on the mobile device 104 and the MPA may be configured to allow the mobile device 104 and the transaction management server 102 to use one or more communication channels And may be enabled using methods and systems that are well known to those skilled in the relevant arts which are capable of securely transmitting and receiving communications over the Internet.

The system 100 may also include an issuer 106. The issuer 106 may be a financial institution, such as a issuing bank, that issues payment cards or payment settlement credentials to the consumer 108 associated with the transaction account. The publisher 106 may provide the transaction management server 102 with payment settlement details associated with the transaction account and / or payment card. The payment details may include, for example, transaction account number, account holder name, expiration date, security code, and the like. The transaction management server 102 may store the data in an account database, which will be discussed in more detail below. The transaction management server 102 may provision the payment settlement credentials to the mobile device 104. The term "payment settlement credentials" as used herein is intended to include but is not limited to payment details, payment credentials, single use keys, session keys, application passwords, card master keys, And any data used by the mobile device 104 and / or the transaction management server 102 in the transmission and validation of the payment payment information used in the payment transaction using the system .

In some embodiments, the payment settlement credentials may be provisioned to the mobile device 104 via remote notification service messages. As will be discussed in more detail below, the remote notification service (RNS) message is a security message that is transmitted to the mobile device 104 and then confirmed by the mobile device 104, And a secure message that allows it to be secure from users. The MPA of the mobile device 104 may verify the authenticity of the received RNS message and may decrypt the received RNS message to obtain data contained therein. The mobile device 104 may then perform any necessary functions based on the data (e.g., by executing the instructions contained in the data) and, if applicable, And may generate a return message to be sent back to the server 102. In some cases, the return message may be acknowledged by the transaction management server 102.

In some cases, an acknowledgment of the RNS messages at the mobile device 104, or acknowledgment of the return messages at the transaction management server 102, may at least use message counters and authentication codes. The use of counters and authorization codes may be possible only for the intended mobile device 104 to identify and decrypt the data contained in the RNS message. In addition, if rules and / or algorithms used in the generation of the authentication codes are included in the MPA, only the mobile device 104, which also includes a specific instance of the application program, This may result in further increased security. If the RNS message can contain payment credentials, then it is possible that the payment credentials are only appropriate on the appropriate mobile device 104 and only if the MPA used to access the payment credentials is adequate and approved It can be ensured that it is available only in case of an application which has been downloaded.

Payment settlement credentials provisioned to the mobile device 104 may be securely stored in a repository within the mobile device 104, such as a card database, as will be discussed in more detail below. In some embodiments, the mobile device 104 may be configured to generate an advanced storage key for use in securely storing data such as payment credentials in a database or memory within the mobile device 104 Lt; / RTI > The creation of the advanced storage key may be accomplished using a secure storage key that can be used to securely store data in the mobile device 104 using unique device information, native MPA information, and randomly generated information, as will be discussed in greater detail below. Can be identified. As a result, the payment credentials or other sensitive data can be safely stored in the mobile device 104 without the use of a security element, which allows the mobile device 104 to initiate a payment transaction Initiate and perform results, increasing the availability to publishers 106 and consumers 108 while maintaining a high level of security.

Once the mobile device 104 is received, verified, and has payment credentials for a securely stored transaction account therein, the consumer 108 may transfer the mobile device 104 to merchant-side point-of-sale information management And may move to the terminal 110 to perform a payment transaction. The consumer 108 may select merchandise or services for purchase and may initiate payment transactions with merchants for purchasing the merchandise or services and may use the mobile device 104 to initiate payment And may provide payment settlement credentials for use in funding a payment transaction. Delivery of payment settlement credentials to the point of sale information management terminal 110 may include delivery of two or more application passwords. The use of two or more application passwords allows for the use of methods and systems discussed herein rather than those available in traditional non-contact and remote transactions, including transactions performed using mobile device 104 with secure elements Thereby increasing the security level of the transactions being processed.

The application ciphers may be generated by the mobile device 104 using separate session keys and additional data, each of which is discussed below. Application passwords generated using the data stored in the mobile device 104, such as in the repository associated with the MPA, guaranteed by the advanced storage key, are used by the application secrets to authenticate the mobile device 104 and a specific instance of the MPA Can be authenticated. In some cases, one of the ciphers and / or the session keys used to generate the ciphers may use the information provided by the customer 108, such as a personal identification number (PIN) . The use of the PIN or other consumer authentication information may allow a password to authenticate both the consumer 108 and the mobile device 104. In such a case, the passwords generated by the mobile device 104 may include a first password for authenticating the mobile device 104 and a second password for authenticating both the mobile device 104 and the consumer 108. [ . ≪ / RTI >

The ciphers may be received by the point of sale information management terminal 110 as part of the performance of a payment transaction, such as through near field communication. The application passwords may be needed in the context of a contactless transaction, a remote transaction, a secure remote payment transaction, a self-stripe transaction, and any suitable type of payment transaction, such as an M / Chip EMV transaction, But may be accompanied by additional payment information such as may be transmitted to the point-of-sale terminal 110 using any suitable method therefor. The ciphers may be sent to the recipient 112, which may be a financial institution, such as a receiving bank, associated with the merchant. The recipient 112 may issue to the merchant a transaction account, which is used, for example, to receive payments of funds from the consumer 108 for a payment transaction. The recipient 112 may submit the passwords and additional transaction details to the payment network 114 using methods and systems that are well known to those skilled in the relevant arts. For example, the transaction details and application secrets may be included in an authorization request submitted to the payment payment network 114 on payment settlement rails.

In some embodiments, both application passwords may be included in a single transaction message. For example, the mobile device 104 and / or point-of-sale information management system 110 may be configured to transfer application passwords using both existing payment systems and hardware within legacy data fields of a traditional transaction message Both application passwords can be included. In some cases, the transaction management server 102 may be configured to use Track 2 data for validation of the application passwords as in a self-stripe transaction. In such a case, if the transaction message contains Track 1 data, the transaction management server 102 may be configured to convert Track 1 data to Track 2 data, which may also be modified Track 1 or Track 2 And converting the data into track 1 or track 2 data, each of which is not modified (e.g., original, reconstructed, etc.). By performing these functions and including the application passwords in the legacy data fields, the transaction management server 102 does not require the use of the security element 104 on the mobile device 104, Can be used to process and validate remote and contactless payment transactions using a mobile device 104 having a high security level, without modification to payment systems.

The payment payment network 114 may process the payment transaction using methods and systems that would be apparent to those skilled in the relevant arts. As part of the process, the payment payment network 114 may send the application passwords to the publisher 106 for verification. In some embodiments, the verification may be performed by the payment payment network 114. The publisher 106 or payment payment network 114 may communicate with the transaction management server 102. In some embodiments, the application passwords may be sent to the transaction management server 102 and verified through the generation of application passwords for verification using the transaction management server 102, May be generated using locally stored payment settlement credentials. In other embodiments, the issuer 106 or payment payment network 114 may request application passwords from the transaction management server 102, and the transaction management server 102 may generate application passwords, 104 to the issuer 106 or payment payment network 114 for validation of the passwords generated by the issuer 106 or the payment payment network 114.

Because the transaction management server 102 processes the payment settlement credentials and other data used by the mobile device 104 to generate the application passwords, 104 may be performed through a comparison of the application passwords generated by the mobile device 104 and the passwords generated by the transaction management server 102. For example, In some embodiments, the transaction management server 102 may be part of the issuer 106 or the payment payment network 114. In instances where the transaction management server 102 may be part of the payment payment network 114, a payment transaction (e.g., for approval of funding using the transaction account of the consumer 108 with the issuer 106) The validation may be performed before contacting the publisher 106 as part of the traditional processing of the document.

By using multiple application passwords, the security of the payment transactions can be enhanced. In addition, as with the case where one password authenticates the mobile device 104 and the remaining password authenticates both the mobile device 104 and the consumer 108 (e.g., via the consumer's PIN) In the case where the password of the issuer 106 can authenticate separate data, it may also provide the issuer 106 with additional data and considerations for use in determining whether to approve or deny the transaction. For example, if both passwords are incorrect (e.g., if the passwords generated by the mobile device 104 do not match the passwords generated by the transaction management server 102) Transactions can be denied. In the event that one cipher is correct and the remaining cipher is incorrect, the transaction may be rejected for security reasons and approved as based on the issuer 106's decision. For example, the publisher 106 may approve a transaction for which mobile authentication has been passed even though consumer authentication has failed, because other available data may be used by an authorized user to use the mobile device 104 for a transaction However, this is because the consumer 108 may indicate that the mobile device 104 is not available for the transaction.

As a result, the use of both passwords can provide valuable data that can be used by publishers 106 and payment payment networks 114 in the processing of payment transactions. In addition, the use of two or more ciphers can provide greater security than traditional non-contact or remote payment methods, which reduces fraud for consumers 108, publishers 106, and merchants, May result in higher acceptance of the merchants 108, publishers 106, and merchants. The use of two or more application passwords may be securely provisioned using the RNS messaging methods and systems discussed herein and stored securely via advanced storage keys created using the methods and systems discussed herein In instances where the system 100 is generated from credentials, the overall security of the system 100 may be significantly higher than in traditional systems for contactless payment settlements and transaction processing. As a result, the system 100 may provide increased security in various data transmission, storage, and processing embodiments than those provided in traditional contactless payment systems, and may utilize the methods and systems discussed herein Lt; RTI ID = 0.0 > payment transactions. ≪ / RTI >

Mobile devices

Figure 2 illustrates one embodiment of the mobile device 104 of the system. It should be apparent to those skilled in the relevant art that the embodiment of the mobile device 104 illustrated in Figure 2 is provided by way of example only and is intended to encompass all possible configurations of the mobile device 104 suitable for performing the functions as discussed herein It may not be complete for the For example, a computer system 1700 illustrated in FIG. 17 and discussed in more detail below may be a suitable configuration of the mobile device 104.

The mobile device 104 may include a receiving unit 202. The receiving unit 202 may be configured to receive data via one or more network protocols via one or more networks. The receiving unit 202 may be implemented on the mobile device 104, such as, for example, a mobile payment application (MPA), which is discussed in more detail below and executed by the mobile device 104 And receive program data for one or more application programs to be executed. The receiving unit 202 may also receive remote notification service (RNS) messages, such as those sent by the transaction management server 102, including RNS messages including payment settlement credentials . The receiving unit 202 may also receive additional data suitable for performing traditional functions of the mobile device 104, such as telephonic communications, cellular communications, and the like. In some instances, the mobile device 104 may include a plurality of receiving units 202, such as separate receiving units 202 each configured to communicate with one or more separate networks via suitable protocols. For example, the mobile device 104 may include a first receiving unit 202 for receiving data for NFC transactions, and a second receiving unit 202 for receiving communications over a mobile communication network.

The mobile device 104 may also include an input unit 214. The input unit 214 may be connected to the mobile device 104 for receiving inputs from a consumer 108 such as a keyboard, mouse, click wheel, scroll wheel, touch screen, microphone, And to communicate with one or more input devices connected to the input device. The input unit 214 may receive input from the consumer 108, which may be processed by the processing unit 204.

The processing unit 204 may be configured to perform the functions of the mobile device 104 discussed herein. The processing unit 204 may execute program code stored in the mobile device, such as for the MPA, and may perform other functions of the mobile device 104, as well as a plurality of functions associated with each application program . The processing unit 204 receives input from the consumer 108 via the input unit 214 and will be apparent to those skilled in the relevant arts but may be skilled in the art to execute application programs, Such as by receiving data, transmitting data, displaying data, and so forth. For example, the processing unit 204 may be configured to validate RNS messages, generate advanced storage keys, and generate application passwords, as will be discussed in greater detail below.

The mobile device 104 may also include a display unit 210. The display unit 210 is connected internally or externally to the mobile device 104 to display data, such as data transmitted to the display unit 210 for display by the processing unit 204 And may be configured to communicate with one or more display devices. Display devices may include liquid crystal displays, light emitting diode displays, thin film transistor displays, touch screen displays, and the like.

The mobile device 104 may also include a transmission unit 206. The transmission unit 206 may be configured to transmit data via one or more network protocols via one or more networks. The sending unit 206 may send RNS response messages to the transaction management server 102. [ The transfer unit 206 may also be configured to send application passwords and / or payment credentials, for example, to a point-of-sale information management system 110 for use in a payment transaction. The transmission unit 206 may be further configured to perform additional functions of the mobile device 104, such as conventional functions of a mobile communication device for transmitting cellular communications and the like, as will be apparent to those skilled in the relevant art. have. In some instances, the mobile unit 104 may include a transmission unit 206 configured to transmit payment settlement credentials and payment settlement passwords via the NFC and another transmission unit 206 configured to transmit data via the mobile communication network , Which may be separately configured to communicate with one or more separate networks, such as a wireless network (e.

The mobile device 104 may also include a card database 208. The card database 208, which is discussed in more detail below, may be a data store on the mobile device 104 configured to store data associated with one or more transaction accounts and / or payment cards. The card database 208 includes payment settlement credentials associated with a transaction account as will be discussed in more detail below but provisioned in the secure RNS message by the transaction management server 102 to the mobile device 104, And may store additional data that may be used in the generation of ciphers. In some instances, the card database 208 may be stored as part of a mobile payment payment application.

The mobile device 104 may further include a memory 212. The memory 212 discussed below in more detail may be configured to store data for a suitable mobile device 104 to perform the functions of the mobile device 104 discussed herein. For example, the memory 212 may store data suitable for generation of advanced storage keys for encryption of additional data in the mobile device 104, such as the card database 208, as will be discussed in greater detail below. . The memory 212 also includes program code for application programs to be executed by the processing unit 204, such as an operating system, data via the input unit 214 and data Program codes for displaying the program, rules and / or algorithms for performing the functions discussed herein, and the like. The memory 212 may also store appropriate data to perform conventional functions of the mobile device 104, such as rules and / or algorithms for transmitting and receiving cellular communications over a mobile network. Additional data stored in the memory 212 will be apparent to those skilled in the relevant arts.

Mobile device card database

3 illustrates a card database (not shown) of the mobile device 104 for storing payment credentials and other data associated with transaction accounts for use in funding payment transactions performed with the mobile device 104 208 are illustrated.

The card database 208 may include one or more payment settlement profiles 302 illustrated in FIG. 3 as payment settlement profiles 302a, 302b, and 302c. Each payment settlement profile 302 may be associated with a transaction account that may be used to fund the payment transaction and may include at least one payment settlement 304, one or more single use keys 306, A key 308, a second session key 310, and an application transaction counter 312.

The payment settlement credentials 304 may include data associated with an associated transaction account used for identification and validation by the issuer 106 and / or payment payment network 114 in the processing of a payment transaction using the associated transaction account . ≪ / RTI > The payment credentials 304 may include, for example, transaction account numbers, security codes, expiration dates, cardholder names, authorized user names, tracking data, card layout description data, digit counts, And so on.

Single use keys 306 are used to create one or more of the application passwords used in the payment transaction, and may be a valid payment for a single payment transaction that may be used by the processing unit 204 of the mobile device 104. [ They can be tokens. In some embodiments, the single use key 306 may include one or more of the other data elements included in the payment settlement profile 302. [ For example, each single usage key 306 may include a separate application transaction counter 312, which may not be separately included in the payment settlement profile 302. The different configurations of data stored in the payment settlement profile 302 for use in performing the functions discussed herein will be apparent to those skilled in the art. In some instances, the single use key 306 may comprise a key used to generate the one or more application passwords and may be a key used to generate the one or more application passwords. In some embodiments, the first session key 308 and the second session key 310 may be included in the single use key 306 provisioned to the mobile device 104 and / or the single use key 306 ). ≪ / RTI >

The first session key 308 and the second session key 310 may be used to generate application passwords that are transmitted to the point-of-sale information management system 110 as part of a payment transaction transaction using the mobile device 104 And may be additional keys used by the processing unit 204. In some embodiments, the first session key 308 may be used by the processing unit 204 using, for example, program codes, rules, or algorithms stored in the memory 212 of the mobile device 104, Lt; / RTI > The second session key 310 may be used to generate a second application password.

In some embodiments, the second session key 310 may be generated by the processing unit 204. In such an embodiment, the second session key 310 is generated using the single-use key 306 and the user authentication data, such as the PIN provided by the customer 108 (e.g., via the input unit 214) . In such an embodiment, the second session key 310 may not be stored in the payment settlement profile 302 and may instead be created, used, and discarded as part of a payment settlement transaction process. The second application password is therefore both generated from the single use key 306 and the second session key 310 generated using the consumer PIN so that both the mobile device 104 and the consumer 108 Lt; / RTI >

A personal identification number (PIN) may be used to authenticate the consumer 108 (e. G., To register the MPA on the mobile device 104 or to allow the issuer 106 and / 102) may be a number supplied by the consumer 108. [0034] When performing a payment transaction, the consumer 108 or another user of the mobile device 104 may supply the PIN via the input unit 214. In some embodiments, if the supplied PIN is incorrect (e.g., does not match the PIN provided by the consumer 108 at registration), the processing unit 204 continues to send the second session key 310 And then generate a second application password. If the supplied PIN is incorrect, then the second application password may become inaccurate and this may result in a second application by the transaction management server 102, issuer 106, and / or payment payment network 114 Failure of validation of the second application password by the transaction management server 102, the issuer 106, and / or the payment payment network 114 results in a failure of the validation of the password, May provide the issuer 106 with an opportunity to decline and may still approve the transaction.

Mobile device memory

4 is a block diagram of the mobile device 104 for storing application programs and other data to be used for secure storage of data on the mobile device 104 and for performing payment transactions using the mobile device 104. [ RTI ID = 0.0 > 212 < / RTI > In one exemplary embodiment, the memory 212 may not be a security element.

The memory 212 may include device information 402. The device information 402 may include one or more pieces of data associated with the mobile device 104 that may be unique to the mobile device 104 in some instances. For example, the device information 402 may include a media access control address, a reference number, a serial number, an identification number, and the like. Additional information that may be considered as the device information 402 of the mobile device 104 will be apparent to those skilled in the relevant arts.

The memory 212 may also include a mobile payment application (MPA) 404. The MPA 404 performs the functions of the mobile device 104 discussed herein, such as receiving and storing payment settlement credentials, validating RNS messages, and generating application passwords for use in performing payment transactions Lt; / RTI > Additional features of the MPA 404 may include conventional features of a digital wallet or other similar application program, as will be apparent to those skilled in the relevant arts.

The MPA 404 may include program code 406. The program code 406 is code that is executed by the processing unit 204 of the mobile device 104 to cause the processing unit 204 and other components of the mobile device 104 to communicate with one another, And to perform functions of the MPA 404 as shown in FIG. For example, the program code 406 may include code suitable for generating application passwords, validating RNS messages, and so on. The program code 406 may also include suitable program code for generating a random value, which may be used to generate an advanced storage key. The random value may be a random number or a pseudo-random number, which may be generated using methods and systems that will be readily apparent to those skilled in the relevant arts.

An instance identifier 408 may also be included in the MPA 404. The instance identifier 408 may be a value that is specific to a particular MPA 404 and may be used to generate an advanced storage key that is used to secure data in the mobile device 104 such as the card database 208 . By making the instance identifier 408 unique to the MPA 404, the plurality of MPAs 404 can determine which MPA 404 is associated with the mobile device 404 without having to access data that is securely stored by any other MPA 404 (S) 104 so that the payment settlement profiles 302 for particular transaction accounts are not accessible by other programs. The instance identifier 408 may be a number, an alphanumeric value, a hexadecimal value, or any suitable value that may be unique to the MPA 404.

The processing unit 204 of the mobile device 104 may be configured to generate a diversifier value using the device information 402 as will be discussed in greater detail below, (404), and the instance identifier (408) is stored in the MPA (404). The multivalued value may be used by the encryption application 410, which is also stored in the memory 212. The cryptographic application 410 may be an application program configured to perform white-box encryption and / or any other suitable cryptographic functions that become apparent to those skilled in the relevant arts.

The encryption application 410 may include program code 412. The program code 412 may be used by the processing unit 204 and other components of the mobile device 104 to enable the mobile device 104 to perform encryption functions of the cryptographic application 410 discussed herein The processing unit 204 of FIG. The functions may include generating an advanced storage key. The advanced storage key may be generated using the encryption key 414 included in the encryption application 410 and the multi-valued value generated by the mobile payment application 404. In some embodiments, the multivalued value may be decrypted using the encryption key 414 to obtain the advanced storage key.

The encryption application 410 may also be configured to encrypt the repository within the mobile device 104 using the advanced storage key. In some embodiments, the encryption may be performed using one or more box encryption schemes. The encrypted store may be a card database 208, such as the data stored in the MPA 404, and / or any other suitable storage. In some embodiments, the encryption application 410 may be included as part of the MPA 404. The advanced storage key may be included in the encryption application 410 or the MPA 404 and may be regenerated by the MPA 404 and the encryption application 410 when necessary.

The memory 212 may also include any additional functions of the mobile devices as well as any additional data stored in the mobile device 104 suitable for performing the functions discussed herein. For example, the memory 212 may include program code for an operating system, code, rules, or algorithms for receiving and transmitting mobile communications, such as telephone calls and the like.

In some embodiments, the mobile device 104 may also be stored in an encrypted local storage that is internal to the mobile device 104, such as in the memory 212, the card database 208, Lt; RTI ID = 0.0 > already < / RTI > encrypted data. In such an embodiment, the mobile device 104 may generate the advanced storage key using the same methods and systems using the generated random value and may encrypt the data provisioned to the mobile device 104 And to send the generated random value to the transaction management server 102 or other trusted entity. Accordingly, the mobile device 104 may receive already encrypted data using the advanced storage key for local storage at the mobile device 104. [

Transaction management server

An embodiment of the transaction management server 102 of the system 100 is illustrated in FIG. It should be apparent to those skilled in the relevant art that the embodiment of the transaction management server 102 illustrated in Figure 5 is provided by way of example only and may be any transaction management server 102 suitable for performing the functions discussed herein, Lt; / RTI > may not be complete for all possible configurations of < RTI ID = 0.0 > For example, a computer system 1700 illustrated in FIG. 17 and discussed in more detail below may be a suitable configuration of the transaction management server 102.

The transaction management server 102 may include a receiving unit 502. The receiving unit 502 may be configured to receive data via one or more network protocols over one or more networks. The receiving unit 502 may receive data from the mobile device 104, such as receive or return messages, acknowledgment messages, transaction notifications, etc., from the payment network 114, the issuer 106, Data. ≪ / RTI > The receiving unit 502 may receive transaction notifications or password requests to initiate generation of application passwords for use in validating payment settlement credentials, for example, in a payment transaction. The receiving unit 502 may also receive transaction accounting data from, for example, the publisher 106 for use in generating payment settlement credentials for provisioning to the mobile device 104.

The transaction management server 102 may also include a processing unit 504. The processing unit 504 may be configured to perform the functions of the transaction management server 102 discussed herein, as will be apparent to those skilled in the relevant arts. Accordingly, the processing unit 504 generates and encrypts the RNS messages and data included herein, as will be discussed in greater detail below, validates return messages from the mobile device 104, Create application passwords, validate application passwords, and so on.

The transaction management server 102 may additionally include a transfer unit 506. [ The transmission unit 506 may be configured to transmit data via one or more network protocols via one or more networks. The transmission unit 506 may transmit RNS messages, payment credentials, application passwords, validation notifications, and other data that become apparent to those skilled in the relevant arts. The transmission unit 506 may be configured to transmit data to the mobile device 104 via, for example, a mobile communication network or Internet, a payment network 114, a publisher 106, and any other suitable entity.

 The transaction management server 102 may also include an account database 508. The account database 508, which will be discussed in greater detail below, may be configured to store account information for a plurality of transaction accounts. The account information may include data and keys used for the generation of application passwords used for validating payment settlement credentials received during payment transactions performed using the mobile device 104. [ The account database 508 may also include transaction data for payment transactions performed with the mobile device 104, such as data associated with the consumer 108 of the associated transaction account or other authorized users, May be configured to store data.

The transaction management server 102 may also include a memory 510. The memory 510 may be configured to store additional data for use by the transaction management server 102 to perform the functions described herein. For example, the memory 510 may include rules or algorithms for validating application ciphers, rules or algorithms for generating validation notifications, algorithms for generating session keys and application ciphers, data and RNS messages Encryption keys for encrypting and decrypting the data, and the like. Additional data that may be stored in the memory 510 becomes apparent to those skilled in the art.

Transaction management server account database

FIG. 6 is a flow diagram illustrating the transaction management server (FIG. 6) for storing data associated with transaction accounts for use in validating payment transactions and other transaction data provided in the performance of payment transactions, One embodiment of the account database 508 of the computer 102 is illustrated.

The account database 508 may include a plurality of account profiles 602 illustrated in FIG. 6 as account profiles 602a, 602b, 602c. Each account profile 602 includes one or more single use keys 604, a first session key 606, a second session key 608, an application transaction counter 610, and a first card master key 612 . In some embodiments, the account profile 602 may additionally include a second card master key 612.

Each account profile 602 may correspond to a payment settlement profile 302 that is provisioned to the mobile device 104. The single usage keys 604 stored in the account profile 602 may correspond to single usage keys 306 stored in the corresponding payment payment profile 302 associated with the same transaction account. The data must match the application passwords if the data is correct and unmodified when an application password is generated by the transaction management server 102 or the mobile device 104, May enable validation of the payment settlement credentials presented by < RTI ID = 0.0 >

In some embodiments, the account profile 602 may include a personal identification number (PIN) corresponding to the PIN 314 stored in the corresponding payment payment profile 302. [ In such an embodiment, the PIN 314 is provided to the receiving unit 202 of the transaction management server 102 via a secure message, such as an incoming message provided by the mobile device 104, . In other embodiments, the card master key may be used in place of the PIN, such as the first card master key 612. In such an embodiment, the processing unit 504 of the transaction management server 102 may use the single use key 306 and the PIN 314 to generate a second session key 310) based on the second card master key (614). The second session key (608) may be generated based on the second card master key (614). In some instances, the second session key 608 may also be based on the corresponding single use key 604. In such embodiments, algorithms for the generation of session keys and / or application ciphers may be performed such that the passwords generated by the mobile device 104 and the transaction management server 102 are based on data used herein can do.

The first session key 606 may be used by the processing unit 504 of the transaction management server 102 to generate a first application secret and the second session key 608 may be used to generate a second application secret . In some embodiments, the application transaction counter 610 may be used to generate one or more of the session keys and / or application passwords. The application transaction counter 610 may be a value corresponding to a payment transaction to be performed that is incremented or otherwise modified during each transaction. The application transaction counter 610 may correspond to the application transaction counter 312 stored in the corresponding payment payment profile 302 at the mobile device 104 so that its use is only valid if the valid MPA 404 is valid And to possess the correct application transaction counter 312 to generate session keys and / or application passwords. Additional techniques may be used to further enhance the security of the session key and / or application encryption generation, such as unpredictable numbers and other techniques that will be apparent to those skilled in the relevant arts.

Handling payment transactions using mobile devices

FIG. 7 illustrates a process for processing payment transactions using a mobile device 104 without a secure element and using creation and validation of two or more application passwords.

In step 702, the transaction management server 102 sends the payment credentials 304 and other accounting data (e. G., The transfer unit (e. G. 506). ≪ / RTI > In step 704, the receiving unit 202 of the mobile device 104 may receive the payment settlement credentials 304 and other account data. In step 706, the processing unit 204 of the mobile device 104 may store the data in the payment payment profile 302 of the card database 208. The account data may include any other suitable data such as the payment settlement credentials 304, one or more single use keys 308, and one or more of the session keys 308, 310.

In step 708, the processing unit 204 may generate two application passwords for use in performing a payment transaction. In some embodiments, a method may be used to represent step 708 through the input unit 214, a method for placing the mobile device 104 near the point-of-sale information management system 110 to initiate transactions over near field communication, May be initiated by the consumer 108 as by a suitable method. The generation of the application passwords may include generating a first application password using the first session key 308 stored in the payment payment profile 302. [ The second application key may be generated using the second session key 310 and the second session key 310 may be generated using the single use key 306 and the PIN 314. [ In some instances, the consumer 108 may enter a PIN within the mobile device 104 (e.g., via the input unit 214) during the start of either step 708 or step 708. In some embodiments, one or both of the application passwords may also be generated using the application transaction counter 312.

Once the application passwords are generated, the application passwords are transmitted to the issuer 102 via the point-of-sale information management system 110, the recipient 112, and the payment network 114 together with the payment credentials 304 (106) < / RTI > The payment settlement credentials 304 and application ciphers may be received by the issuer 106 at step 710. In step 712, the transfer unit 206 of the mobile device 104 may send a transaction notification to the transaction management server 102. In step 714, the receiving unit 502 of the transaction management server 102 may receive the transaction notification. The transaction notification may inform the transaction management server 102 that the mobile device 104 has initiated a payment transaction using the payment payment profile 302. [ In some instances, identification information may be included in the transaction notification.

In step 716, the processing unit 504 of the transaction management server 102 may identify an accounting profile 602 corresponding to the payment payment profile 302 and may use two or more application passwords Lt; / RTI > The first application secret may be generated using the first session key 606 and the first session key 606 may be generated using the first card master key 612. [ The second application password may be generated using the second session key 608. [ In some embodiments, one or both of the application secrets and / or session keys may be additionally based on the single use keys 604, application transaction counter 610, or some other suitable data .

In step 718, the transfer unit 506 of the transaction management server 102 may send the generated application passwords to the issuer 106 and the issuer 106 may receive the passwords in step 718 have. At step 720, the issuer 106 may activate the application passwords provided by the mobile device 104 with the payment settlement credentials 304. Validation of the application passwords may include comparing application passwords generated and supplied by the transaction management server 102 with passwords supplied by the mobile device 104. Once validation is performed, in step 722, the publisher 106 may process the transaction accordingly. Transaction processing may include the acceptance of a payment transaction, for example, when one or both of the above passwords are validated, and may include an acknowledgment of a payment transaction, for example, if one or both of the passwords are determined to be invalid Rejection.

At step 724, a transaction notification may be sent by the publisher 106, or other entity (e.g., the payment network 114, recipient 112, etc.) as part of the payment transaction transaction. The transaction notification may be sent to the transaction management server 102 at step 726 and received by the receiving unit 502. [ The transaction notification may also be received by the receiving unit 202 of the mobile device 104 at step 728. The transaction notification may be an indication of acceptance or denial of the payment transaction. The processing units 204 and 504 of the mobile device 104 and the transaction management server 102, respectively, may perform one or more functions as a result of the received transaction notification. For example, if the transaction is acknowledged and successfully processed, the application transaction counters 310 and 610 may be updated accordingly in the corresponding profiles.

Figure 8 illustrates an alternative process for processing payment transactions using the mobile device 104. [

In step 802, the payment settlement credentials 304 and other account data may be transferred to the mobile device 104 by the transfer unit 506 of the transaction management server 102. At step 804, the receiving unit 202 of the mobile device 104 may receive payment settlement credits 304 and other account data, which may be stored in the payment payment profile 302 at step 806. At step 808, the processing unit 204 of the mobile device 104 may generate the two application ciphers as discussed above, and the ciphers, payment settlement credentials 304, and other appropriate data To the issuer 106 (e.g., via the point-of-sale information management system 110).

At step 810, the publisher 106 may receive application passwords and any other suitable data that may be used by the publisher 106 to validate the transaction data and / have. In step 812, the issuer 106 may submit a request for validation ciphers to the transaction management server 102. In some embodiments, the request includes payment settlement credentials 304 or other data suitable for use by the transaction management server 102 in identifying the account profile 602 to be used to generate the validation ciphers . In one embodiment, the request may additionally include two application passwords generated by the mobile device 104 for validation.

In step 814, the receiving unit 502 of the transaction management server 102 may receive a cryptographic request. At step 816, the processing unit 504 of the transaction management server 102 may generate two application passwords to be used for validation as discussed above. In embodiments where the cryptographic request also includes two application ciphers generated by the mobile device 104, step 816 also includes two ciphers by the processing unit 504 using the two newly generated application ciphers Lt; / RTI > Validation ciphers, or validation results, in applicable embodiments may be sent to the issuer 106 by the transmission unit 506. In step 818, the publisher 106 may receive validation ciphers and / or validation results.

At step 820, the publisher 106 may validate the application passwords provided by the mobile device 104 using the application passwords generated by the transaction management server 102. In embodiments where the transaction management server 102 provides validation results to the publisher 106, step 820 may include identifying the result of validation of each of the two application passwords. At step 822, the publisher 106 may then process the payment transaction based on the result of the validation. In step 824, transaction notifications may be sent to the transaction management server 102 in steps 826 and 828, respectively, and received by the corresponding receiving units 502 and 202.

Remote Notification Service and Data Messaging

FIG. 9 illustrates a process for transmitting and validating remote notification services (RNS) messages and other data messages sent from the transaction management server 102 to the mobile device 104. The RNS messages may be transmitted via a remote notification service, such as using a mobile communication network associated with the mobile device 104. The RNS messages may be used for payment transactions, such as account data used in the processing of payment transactions as discussed above, and other information that may be used in establishing a secure connection between the mobile device 104 and the transaction management server 102, May be used to provision credentials 304 and other account data.

In step 902, the processing unit 504 of the transaction management server 102 may generate a message. In instances where mutual authentication is established with the mobile device 104, appropriate information may be included in the message to establish the mutual authentication, such as a session identifier. In other instances, such as when mutual authentication is established between the transaction management server 102 and the mobile device 104 using the process illustrated in FIG. 9 and discussed herein, the generated messages may include payment credentials (E.g., single use keys 306 or payment clearing credentials 304, etc.) to be executed by the MPA 404 of the mobile device 104. In one embodiment, And may include notifications to be presented to the consumer 108 (e.g., account balances, payment settlement notices, etc.), or other suitable data.

In step 904, the processing unit 504 may encrypt the generated message. The message may be encrypted using the private key of the private / public key pair, in which case the mobile device 104 may possess the corresponding public key. In some instances, the message may be encrypted using the MPA, such as the encryption key 414, or an encryption key associated with the mobile device 104. In step 906, the processing unit 504 may generate a message authentication code. The message authentication code may be generated using the encrypted message and may be a key generated using one or more specially configured rules and / or algorithms. For example, the message authentication code may be generated using one or more encryption and obfuscation methods, such as padding. In some embodiments, the message authentication code may be generated using the encryption key.

In step 908, the transfer unit 506 of the transaction management server 102 may send the combined data message to the mobile device 104. In embodiments where the mutual authentication can be performed, the combined data message may be a remote notification service message sent to the mobile device 104 via the remote notification service. The combined data message may be received by the receiving unit 202 of the mobile device 104 at step 910 and the combined data message may include the message authentication code and the encrypted message. In some instances, additional identifiers, such as those generated using known methods for the MPA 404 for verification of the combined data message, may also be included in the combined data message. In some cases, such as when mutual authentication has already been performed, a message counter may also be included in the combined data message.

In step 912, the processing unit 204 may generate a reference authorization code. The reference authentication code may be generated using the received encrypted message and may be generated using the same rules and algorithms as the transaction management server 102 used to generate the message authentication code, The generated reference authentication code corresponds to the message authentication code when the message authentication code is generated by a trusted source (for example, the transaction management server 102). In embodiments in which the message authentication code can be generated using the encryption key, the processing unit 204 uses the encryption key 414 stored in the memory 212 or another suitable encryption key to generate the reference authentication code Lt; / RTI >

In step 914, the processing unit 204 validates the message authentication code contained in the received combined data message by comparing the message authentication code included in the received combined data message against the generated reference authentication code can do. If both the message counter and the message authentication code are validated, the combined data message can be determined to be reliable (e.g., authentic) as originating from the transaction management server 102. In instances where the message identifier may be included in the combined data message, the processing unit 204 may also use a process known by the MPA 404 for generating and comparing the combined data message, The message identifier can be validated. In embodiments where a message counter may be included in the combined data message, the processing unit 204 may send a message to the mobile device 104, for example, to the MPA 404 or to a reference counter The message counter included in the combined data message can be validated.

In step 916, the processing unit 204 may decrypt the encrypted message contained in the received combined data message. The encrypted message may be stored in the memory 212 (e.g., in the encryption application 410 or MPA 404) or may be stored in a local database (e.g., encrypted using an advanced storage key) Or may be decoded using other suitable decoding methods. In step 918, in the processing unit 204, the processing unit 204 may perform one or more appropriate actions based on the decrypted data from the encrypted message. In the example illustrated in FIG. 9, the mobile device 104 is configured to perform mutual authentication with the transaction management server 102, for example, using a session identifier included in the encrypted message and decrypted by the processing unit 204, Can be performed. In step 920, the transaction management server 102 may receive the session identifier and perform any further actions necessary for mutual authentication with the mobile device 104. [ In cases where mutual authentication has already been performed, it is possible to use the messages described in this document, such as payment settlement credentials 404, single use keys 406, and program instructions for the MPA 404, Other information suitable for performing the functions may be included.

In some embodiments, the mobile device 104 may be configured (e.g., via the MPA 404) to generate a return message and submit it to the transaction management server 102. In some instances, the return message may include data generated in response to actions performed as commanded through the decrypted message, as discussed above. For example, the return message may indicate valid receipt and storage of single use keys 306 or payment settlements 304. [ In other examples, the return message may be a notification of receipt and validation of the combined data message. In an example where the authentication is performed first, the return message may include a session identifier used for performing the mutual authentication.

10A and 10B illustrate a process for generating and sending a return message by the mobile device 104 and validating the return message by the transaction management server 102. [

In step 1002, the processing unit 204 of the mobile device 104 may generate an incoming message. The received message may be generated based on the program code 406 stored in the MPA 404 and may include actions to be performed as indicated in the decrypted combined data message received from the transaction management server 102 Can be additionally performed on the basis of the above. For example, the received message may include a notification of successful receipt and storage of payment credentials 304. In step 1004, the processing unit 204 may increment the reception counter. The reception counter may be a counter indicating the number of reception messages transmitted to the transaction management server 102. The reception counter may be stored in the memory 212, e.g., in the MPA 404, or in a database encrypted using the advanced storage key. As will be apparent to those skilled in the relevant art, step 1004 may be an optional step and may only be used in instances where the counter is used for validating a data message.

In step 1006, the processing unit 204 may encrypt the received message. The received message may be encrypted using the encryption key 414 stored in the encryption application 410 or alternatively may be stored in the MPA 404 or locally encrypted database. The encryption key used to encrypt the received message may be a private key as part of the key pair, and the transaction management server 102 owns the corresponding public key. In step 1008, the processing unit 204 may generate a received authentication code based on the encrypted received message. In some embodiments, the receiving authentication code may be generated using rules, algorithms, and / or processes as used to generate the reference authentication code illustrated in step 912 of FIG. 9 discussed above.

In step 1010, the transmission unit 206 of the mobile device 104 may send a reception notification message to the transmission management server 102. The receiving notification message may be received by the receiving unit 502 of the transaction management server 102 and the receiving notification message may include at least the receiving authentication code, the encrypted receiving message, and the receiving counter. In some embodiments, the receive notification message may be sent to the transaction management server 102 using a mobile communication network, such as a cellular network, associated with the mobile device 104. [

In step 1014, the processing unit 504 of the transaction management server 102 may increment the acknowledgment counter. The confirmation counter may indicate the number of messages received from the mobile device 104 that are used for validating the messages received from the mobile device 104. The confirmation counter may be stored in the memory 510 of the transaction management server 102 or other suitable data store. For example, in some embodiments, the confirmation counter may be stored in an account profile 602 associated with the mobile device 104. In one example, each account profile 602 includes an acknowledgment counter (e.g., a message and / or message to be used for messages sent to / from the transaction management server 102 and the mobile device 104 associated with the corresponding transaction account) Counter) may be included. As will be apparent to those skilled in the relevant art, step 1014 may be an optional step and may not be used in instances where the counter is not used for validating return messages.

In step 1016, the processing unit 504 may generate a verification authentication code. The verification authentication code may be generated based on an encrypted received message included in the received notification message and may be generated using the same rules, algorithms, and / or processes used to generate the message authentication code . In step 1018, the processing unit 504 may validate the receive counter contained in the receive notification message by comparing the receive counter contained in the receive notification message with the acknowledge counter. In step 1020, the processing unit 504 may validate the received authentication code by comparing the received authentication code with the message authentication code to ensure that the message is from the approved mobile device 104. [

Once the counter (e. G., If applicable) and authentication code are validated, at step 1022, the processing unit 504 may decrypt the encrypted message contained in the received notification message. The encrypted message may be decrypted using a stored encryption key or other suitable decryption method. The encrypted message may be decrypted to obtain a received message generated by the mobile device 104. In step 1024, the processing unit 504 may perform any suitable actions as needed based on the data contained in the received message. The processing unit 204 may send a corresponding single use keys 604 in the corresponding accounting profile 602, for example, if the received message includes an indication of successful reception and storage of single use keys 306. [ Can be activated.

Validation of data messages

FIG. 11 illustrates a process 1100 for validating data messages received by the mobile device 104 from the transaction management server 102.

In step 1102, the processing unit 204 of the mobile device 104 sends encryption keys, authentication generation keys, authentication keys, and so on to the locally encrypted storage, e.g., the locally encrypted storage encrypted using the memory 212 or the advanced storage key, And rules and / or algorithms for their use and application. In step 1104, the receiving unit 202 of the mobile device 104 may receive a data message from the transaction management server 102. [ In some embodiments, the data message may be received from the transaction management server 102 following the establishment of mutual authentication between two devices using, for example, the process illustrated in FIG. 9 and discussed above. The data message may include at least a message counter, a message authentication code, and an encrypted message.

In step 1106, the processing unit 204 may increment the reference counter. The reference counter may be stored in the memory 212 or other local repository and may be used to indicate the number of messages received from the transaction management server 102. In some instances, the reference counter may be incremented using an algorithm, so that the reference counter uses the serial number, but the mobile device 104 may be targeted (e.g., via the MPA 404) And may not be incremented through a known algorithm for the transaction management server 102.

In step 1108, the processing unit 204 may validate the message counter contained in the received data message. Validation of the message counter may include a comparison of the message counter to a value of the reference counter after the increment. Failed validation may indicate that the source of the data message is not the transaction management server 102 or otherwise unreliable. If the validation fails, at step 1110, the processing unit 204 may perform one or more appropriate actions associated with receiving and / or validating the failed data message. For example, the processing unit 204 may discard the data message, notify the transaction management server 102, lock the associated payment settlement profile 302, You can also perform other actions that will become obvious to the people.

If the validation of the message is passed, the process 1100 may proceed to step 1112, where the encrypted message may be padded. The padding of the encrypted message may include the addition of values for the encrypted message or data associated therewith. The padding can be used to enhance the security of the message validation process because the padding is to be replicated by an unauthorized entity to successfully transmit or receive a data message without authorization, And may be another function that must be performed by the transaction management server 104 and the transaction management server 102. As will be apparent to those skilled in the relevant art, step 1112 may be an optional step. In some embodiments, step 1112 may be applied to some examples of the process 1110. For example, the encrypted message may be padded with predetermined increments of the reference counter.

In step 1114, the processing unit 204 may generate a reference authentication code. The reference authentication code may be generated based on the encrypted message using, for example, one or more rules or algorithms stored at step 1102 (e.g., as padding if applicable). In some embodiments, the reference authentication code may be a key and may be a value generated by applying a key to the encrypted message. In step 1116, the processing unit 204 may validate the message authentication code received in the RNS message. Validation of the message authentication code may include comparing the code to the generated reference authentication code as another identification method if the received data message is from an authorized source (e.g., transaction management server 102) .

If the validation of the message authentication code fails, the process 1100 may proceed to step 1110, where failure processing is performed. If validation of the message authentication code is passed, at step 1118, the encrypted message contained in the received data message may be decrypted by the processing unit 204. [ The message may be decrypted using, for example, one or more encryption / decryption keys, rules, and / or algorithms stored in the mobile device 104 at step 1102. For example, the encryption key 414 stored in the encryption application 410 of the memory 212 may be used to decrypt the encrypted message. In step 1120, the processing unit 204 may perform one or more actions, if appropriate, based on the content of the decrypted message. For example, if the decrypted message includes single-use keys 306, the single-use keys 306 may be stored in the appropriate payment profile 302 of the card database 208, Which may then be encrypted using the advanced storage key.

Advanced Storage Key

12 is a flow diagram for secure storage of data at the mobile device 104, such as payment payment profiles 302 and other data that can be securely stored and accessed at the mobile device 104 without the use of a secure element. The generation and use of the advanced storage key by the mobile device 104 is illustrated.

The device information 402 stored in the memory 212 of the mobile device 104 includes three or more parts of the device information 1202 illustrated in Figure 12 as the device information 1202a, 1202b, and 1202c . Each piece of device information 1202 may be associated with the mobile device 104. In some instances, each portion of the device information 1202 may be unique to the mobile device 104. In other instances, one or more of the portions of device information 1202 may be not unique to the mobile device 104 (e.g., model number), but if three portions of device information 1202 are taken together (E. G., Unique combination) for the mobile device 104. < / RTI > Parts of the device information 1202 may be data that is not changed during the lifetime of the mobile device 104. [

The processing unit 204 of the mobile device 104 may generate a mobile device fingerprint 1204 based on three portions 1202a, 1202b, and 1202c of device information. The mobile device fingerprint 1204 may be a value unique to the mobile device 104 and may include one or more rules or algorithms contained in the program code 406 of the MPA 404, Lt; / RTI > The mobile device fingerprint 1204 may be, for example, a numeric value, a hexadecimal value, a string, or the like.

The processing unit 204 may also be configured to generate a diversifier value 1208 using the mobile device fingerprint 1204. The multivalued value may be generated by combining the random number 1206 with the instance identifier 408 of the MPA 404 and the mobile device fingerprint 1204. The random value 1206 may be a random number or a pseudo-random number generated by the processing unit 204. In some instances, the random value 1206 may be generated according to one or more rules or algorithms stored in the memory 212. The combination of the mobile device fingerprint 1204, instance identifier 408 and random value 1206 may also be performed using one or more rules or algorithms stored, for example, in the program code 406 of the MPA 404 . The use of the instance identifier 408 to generate the multivalued value may be used by the MPA 404 to prevent data stored by other instances of the MPA 404 from being accessed by multiple installations of the MPA 404, Lt; RTI ID = 0.0 > securely < / RTI >

The processing unit 204 may then generate the advanced storage key 1210 through application of the encryption value 414 stored in the encryption application 410 to the multivalued value 1208. [ In some instances, the advanced storage key 1210 may be generated by decrypting the multivalued value 1208 using the encryption key 414. In other examples, the advanced storage key 1210 may be a value resulting from encryption of the multivalued value 1208 using the encryption key 414. [ In some embodiments, the advanced storage key 1210 may be generated as a result of performing the white-box encryption using the multivalued value 1208 and the encryption key 414. [

Once the advanced storage key 1210 is created, the processing unit 204 may encrypt the local database 1210 using the advanced storage key 1210. The local database 1210 may comprise, for example, the card database 208, one or more payment profiles 302, a portion of the memory 212, or other suitable data source. In some instances, the local database 1210 may be part of another database in the mobile device 104, such as the card database 208. For example, the card database 208 may include a separate local database 1212 for each instance of the MPA 404 for storing payment payment profiles 302 associated with each instance of the MPA 404, ). ≪ / RTI > The resulting encrypted local database 1214 may then be accessed by any other application program inside or outside the mobile device 104, except for the particular instance of the MPA 404 that includes the instance identifier 408. [ You can safely store inaccessible data. Thus, the encrypted local database 1214 may be ideal for storing payment credentials 304, single use keys 306, and other account data, and may be stored in secure storage of sensitive account information Function can be provided.

In some embodiments, the store key may also be used by the transaction management server 102 to provide encrypted data to the mobile device 104 for storage in the encrypted local database 1214. In some embodiments, For example, the transfer unit 206 of the mobile device 104 may send the generated random value 1206 to the transaction management server 102. In some instances, the instance identifier 408 may also be sent to the transaction management server 102 and the instance identifier 408 may be sent to the transaction management server 102 by the transaction management server 102, Lt; / RTI > The transaction management server 102 may then generate the advanced storage key 1210 itself and use the advanced storage key 1210 to store data to be provisioned to the mobile device 104, Credentials 304, single-use keys 306, etc., and may then transmit the encrypted data to the mobile device 104. [ The mobile device 104 may then store the pre-encrypted data in the encrypted local database 1214.

Payment  In a transaction Payment Credentials  The first representative method to generate

13 illustrates a method 1300 for generating payment credentials in a payment transaction, including the use of two application ciphers to securely use payment credentials in a mobile device 104 without a security element. .

At step 1302, at least a single usage key (e.g., single use key 306) may be stored in memory associated with the transaction account (e.g., payment payment profile 302). In some embodiments, the memory 302 may be a non-secure element memory of a mobile communication device (e.g., the mobile device 104). In step 1304, a personal identification number (PIN) may be received by the receiving device (e.g., the receiving unit 202 and / or the input unit 214).

In step 1306, a first session key (e.g., the first session key 308) may be identified by the processing device (e.g., the processing unit 204). At step 1308, a second session key (e.g., a second session key 310) may be generated by the processing device 204 based at least on the stored single use key 306 and the received PIN .

In step 1310, a first application secret may be generated by the processing device 204 based at least on the first session key 308. [ At step 1312, a second application secret may be generated by the processing device 204 based at least on the second session key 310.

At step 1314, at least the first application password and the second application password may be transmitted by a transmitting device (e.g., the transmitting unit 206) for use in a payment transaction. In some embodiments, the first application password and the second application password may be transmitted to a point-of-sale information management device (e.g., the point-of-sale information management system 110). In one embodiment, the method (1300) may additionally include storing a card master key associated with the transaction account in the memory (302), wherein identification of the first session key (308) Includes generating the first session key (308) based on at least the stored card master key by the processing device (204).

In some embodiments, the method 1300 may also include storing an application transaction counter (e.g., the application transaction counter 312) in the memory, in which case the first session key 308 The identification includes generating the first session key (308) by the processing device (204) based at least on the stored application transaction counter (312). In one embodiment, the method 1300 may additionally include, by the processing device 204, validating the received PIN prior to generating the second session key 310. In an additional embodiment, the processing device 204 may be configured to generate an invalid second session key 310 if the received PIN fails.

Payment  In a transaction Payment Credentials  A second representative method for generating

14 shows a method 1400 for generating a payment settlement in a payment settlement transaction, including the use of two application password validations of payment settlement credentials generated by the mobile device 104 without the use of a security element. Is illustrated.

At step 1402, at least a card master key (e.g., a first card master key 612) may be stored in a memory (e.g., account profile 602) associated with the transaction account. In step 1404, (E.g., the first session key 606) may be generated by the processing device (e.g., the processing device 504) based at least on the stored card master key 612. In step 1406, (E.g., a second session key 608) may be generated by the processing device 504.

In step 1408, a first application secret may be generated by the processing device 504 based at least on the first session key 606. In step 1410, a second application secret may be generated by the processing device 504 based at least on the second session key 608. At step 1412, at least the first application password and the second application password may be transmitted by a transmission device (e.g., the transmission unit 506) for use in a payment transaction.

In one embodiment, the method 1400 may further include storing in the memory 602 a transaction account sequence number associated with the transaction account, wherein the first session key is stored It is additionally done based on the transaction account sequence number. In some embodiments, the method 1400 may also include storing a second card master key (e.g., the second card master key 614) associated with the transaction account in the memory 602 In which case the second session key 608 is based at least on the stored second card master key 614.

In one embodiment, the method 1400 includes receiving a first corresponding application password and a second corresponding application password by a receiving device (e.g., the receiving unit 502); The processing unit being configured to: (i) receive the first corresponding application password based on the generated first application password, and (ii) generate a second application password based on the received second application password Validating a second corresponding application password; And transmitting, by the sending device (506), the result of the validation for use in the payment transaction. In one additional embodiment, the first corresponding application password and the second corresponding application password may be received from a point-of-sale information management device (e.g., point-of-sale information management system 110). In another additional embodiment, the result of the validation may be sent to a financial institution (e.g., the publisher 106) associated with the transaction account.

Representative methods for handling data messages

FIG. 15 shows a remote notification message received via a remote notification service, including reception and validation of a data message, such as a remote notification message received via a remote notification service, by the mobile device 104 that does not use a secure element A method 1500 of processing the same data message is illustrated.

At step 1502, at least the encryption key may be stored in a memory (e.g., memory 212). In some embodiments, the memory 212 may be a non-secure element memory within a mobile communication device (e.g., the mobile device 104). At step 1504, a data message may be received by a receiving device (e.g., the receiving unit 202), in which case the data message may include at least an encrypted message and a message authentication code, Is generated using at least a portion of the encrypted message. In some embodiments, the data message may be a remote notification service message received via a remote notification service.

At step 1506, a reference authentication code may be generated by the processing device (e.g., the processing unit 204) using at least a portion of the encrypted message contained in the received data message. In one embodiment, the memory 212 may additionally include one or more authentication code generation rules, the reference authentication code may include one or more of the stored one or more authentication codes for a portion of the encrypted message included in the received data message And may be generated based on application of authentication code generation rules. In step 1508, the received data message may be validated by the processing device 204 based on a check of the message authentication code included in the received data message for the generated reference authentication code. In some embodiments, a reference counter may additionally be included in the memory, and the received data message may additionally include a message counter, wherein the received data message includes the received data for the stored reference counter May be additionally enabled by the processing device 204 based on a check of the message counter contained in the message.

In step 1510, the encrypted message contained in the data message may be decrypted by the processing device 204 using the stored encryption key to obtain a decrypted message. In one embodiment, the decrypted message includes at least one of a digitized card profile (e.g., payment settlement credentials 304) and a single use key (e.g., single use key 306) for use in a payment transaction One may be included. In some embodiments, the method 1500 may also include, by the processing device 204, checking the data format of the decrypted message based on one or more data formatting rules.

In one embodiment, the method 1500 may additionally include transmitting a receiving notification in response to the received data message by a transmitting device (e.g., the transmitting unit 206). In one additional embodiment, the method (1500) comprises performing one or more actions on the basis of the decrypted message by the processing device (204); Generating a return message based on the one or more actions performed as a result of the one or more actions performed by the processing device (204); Encrypting the generated return message using the stored encryption key by the processing device (204) to obtain an encrypted return message; And generating a return authorization code using at least a portion of the encrypted return message, wherein the transmitted received notification includes the encrypted return message and the return authorization code, . In a further embodiment, a return counter may additionally be included in the memory 212, and the transmitted receive notification may additionally include the recovery counter.

In some embodiments, the method 1500 further comprises padding the encrypted message contained in the received data message using the padding key by the processing device 204, A portion of the encrypted message used to generate the authentication code is the padded encrypted message. In an additional embodiment, the padding key may be the encryption key. In another alternative embodiment, the memory 212 may additionally include an authentication code padding algorithm, and padding the encrypted message using the padding key may include adding the padding key to the authentication code padding algorithm, And padding the encrypted message based on the application of the encrypted message.

Typical way to build advanced storage keys

FIG. 16 illustrates a method 600 for establishing an advanced storage key for secure encryption and storage of local data in a mobile device that does not use a secure element.

At step 1602, at least the device information associated with the mobile communication device (e.g., the mobile device 104) (e.g., device information 402), the first application program (e.g., the mobile payment application 404) (E.g., program code 412) associated with the second application program (e.g., the encryption application 410) may be stored in the memory of the mobile communication device 104 (E.g., an instance identifier 408) is included in the program code 406 associated with the first application program 404 in this case, and may be stored in the memory 212, The program code 412 associated with the second application program 410 includes at least a first key (e.g., the encryption key 414).

In some embodiments, the device information 402 may include one or more unique identifiers associated with the mobile communication device 104. In one embodiment, the instance identifier 408 may be unique to an instance of the first application program 404. In some embodiments, the second application program 410 may be configured to perform white-box encryption using the first key. In one embodiment, the first key may be a dynamic key. In some embodiments, program code 412 associated with the second application program 410 may be included in the program code 406 associated with the first application program 404. In additional embodiments, the second application program 410 may be an executable function of the first application program 404.

In step 1604, a device fingerprint (e.g., a mobile device fingerprint 1204) associated with the mobile communication device 104 is transmitted to the stored device (e. G., Via the execution of program code 406 associated with the first application program 404) May be generated by the processing device (e.g., the processing unit 204) based on the information 402. At step 1606, a random value (e.g., a random value 1206) may be generated by the processing device 204 through execution of the program code 406 associated with the first application program 404. In some embodiments, the random value 1206 may be a random number or a pseudo-random number.

In step 1608, a multi-valued value (e.g., a multi-valued value 1208) is stored in the generated device fingerprint 1204, the generated random value 1206, and the program code 406 associated with the first application 404 The instance identifier 408 may be constructed by the processing device 204 based on the instance identifier 408 contained in the instance identifier 408. [ In step 1610, the constructed multivalued value 1208 is transferred to the second application program 410 via execution of the program code 412 associated with the second application program 410 to obtain a storage key (e.g., advanced save key 1210) 2 may be decrypted by the processing device 204 using the first key stored in the program code 412 associated with the second application program 410. [

In some embodiments, the method 1600 includes storing protected data in a local database (e.g., the local database 1212) of the mobile communication device 104; And encrypting the protection data stored in the local database 1212 using the storage key (1210) by the processing device (204). In one embodiment, the method also includes storing program data associated with the first application program 404 in the memory 212; And storing the generated random data (1206) in program data associated with the first application program (404).

In one embodiment, the method 1600 further comprises transmitting at least the random value 1206 by a transmitting device (e.g., the transmitting unit 206); Receiving one or more encrypted parameters by a receiving device (e.g., the receiving device 202), wherein the one or more encrypted parameters are each encrypted using the storage key (1210); And storing the received one or more encrypted parameters in a local database (1212) of the mobile communication device (104). In an additional embodiment, the store key 1210 may be sent to a third party (e.g., the transaction management server 102) and the one or more encrypted parameters may be received from the third party 102 . In some additional embodiments, the instance identifier 408 may also be transmitted by the transmitting device 206.

Computer System Architecture

FIG. 17 illustrates a computer system 1700 that enables embodiments of the present disclosure, or portions thereof, to be implemented as computer-readable code. For example, the transaction management server 102 and the mobile device 104 of FIG. 1 may be implemented in a computer system (e.g., a computer system) using hardware, software, firmware, non-transient computer readable media having stored thereon instructions, 1700 and may be implemented in one or more computer systems or other processing systems. The hardware, software, or any combination thereof may be implemented using modules and components used to implement the methods of Figures 7, 8, 9A, 9B, 10A, 10B, 11, .

Where programmable logic is used, such logic may be executed on a commercially available processing platform or dedicated device. Those of ordinary skill in the art will appreciate that embodiments of the disclosed subject matter may be practiced in conjunction with multi-core multiprocessor systems, minicomputers, mainframe computers, computers linked or clustered with distributed functions, Lt; RTI ID = 0.0 > and / or < / RTI > embedded computers that may be embedded within a computer system. For example, at least one processor device and memory may be used to implement the embodiments described above.

A processor device as discussed herein may be a single processor, a plurality of processors, or combinations thereof. Processor devices may have one or more processor "cores ". The terms "computer program medium", "non-temporary computer readable medium", and "computer usable medium" as reviewed herein generally refer to a removable storage unit 1718, a removable storage unit 1722), and a hard disk installed in the hard disk drive 1712. [0154]

Various embodiments of the present disclosure are described for such representative computer system 1700. Knowing this description will become apparent to those skilled in the art how to implement the present disclosure using other computer systems and / or computer architectures. Although the operations may be described as a sequential process, some of the operations are stored locally or remotely for access by virtually parallel, concurrent, and / or distributed environments, and by single or multi-processor machines RTI ID = 0.0 > program code. ≪ / RTI > In addition, in some embodiments, the order of operations may be rearranged without departing from the spirit of the disclosed subject matter.

The processor device 1704 may be a dedicated or general purpose processor device. The processor device 1704 may be connected to a communication infrastructure 1706, such as a bus, a message queue, a network, a multi-core message delivery scheme, and so on. The network may be any network suitable for performing the functions as disclosed herein and may be a local area network (LAN), a wide area network (WAN), a wireless communication network , WiFi), a mobile communication network, a satellite communication network, the Internet, an optical fiber, a coaxial cable, infrared, radio frequency (RF), or any combination thereof. Other suitable network types and configurations will be apparent to those skilled in the relevant arts. The computer system 1700 may also include a main memory 1708 (e.g., random access memory, read only memory, etc.) and may also include an auxiliary memory 1710. The secondary memory 1710 may include a removable storage drive 1714, such as a floppy disk drive, a magnetic tape drive, an optical disk drive, a flash memory, and the like, and a hard disk drive 1712.

The removable storage drive 1714 can be read from the removable storage unit 1718 and / or written to the removable storage unit 1718 in a known manner. The removable storage unit 1718 may include a removable storage medium that can be read and written by the removable storage drive 1714. [ For example, when the removable storage drive 1714 is a floppy disk drive or a universal serial bus port, the removable storage unit 1718 may be a floppy disk or a portable flash drive, respectively. In one embodiment, the removable storage unit 1718 may be a non-temporary computer-readable recording medium.

Such as the removable storage unit 1722 and the interface 1720, which allow computer programs or other instructions to be loaded into the computer system 1700. In some embodiments, . ≪ / RTI > Examples of such means include, but are not limited to, program cartridges and cartridge interfaces (such as those found in video game systems), removable memory chips (e.g., EEPROM, PROM, etc.) Sockets, and other removable storage units 1722 and interfaces 1720.

Data stored in the computer system 1700 (e.g., in the main memory 1708 and / or the auxiliary memory 1710) may be stored in an optical storage (e.g., a compact disk, a digital versatile disk, a Blu-ray disk, And may be stored on any suitable type of computer readable medium, such as a tape storage (e.g., hard disk drive). The data may comprise any suitable type of database configuration, such as a relational database, a structured query language (SQL) database, a distributed database, an object database, and the like. Suitable configurations and storage types will be apparent to those skilled in the relevant arts.

The computer system 1700 may also include a communication interface 1724. The communication interface 1724 may be configured to allow software and data to be communicated between the computer system 1700 and external devices. Exemplary communication interfaces 1724 may include a modem, a network interface (e.g., an Ethernet card), a communication port, a PCMCIA slot and a card, and the like. The software and data communicated through the communication interface 1724 may be in the form of signals that may be electronic, electro-magnetic, optical, or other signals, as will be apparent to those skilled in the relevant arts. The signals may be configured to carry the signals and may be moved through a communication path 1726 that may be implemented using wires, cables, optical fibers, telephone lines, cellular phone links, radio frequency links, and the like.

The computer system 1700 may additionally include a display interface 1702. The display interface 1702 may be configured to allow data to be communicated between the computer system 1700 and the external display 1730. Representative display interfaces 1702 may include a high-definition multimedia interface (HDMI), a digital visual interface (DVI), a video graphics array (VGA), and the like. The display 1730 may be a cathode ray tube (CRT) display, a liquid crystal display (LCD), a light-emitting diode (LED) display, a capacitive touch display, a thin- display of any suitable type for displaying data transmitted via the display interface 1702 of the computer system 1700, including a transistor (TFT) display and the like.

Computer program media and computer usable media may refer to memories such as main memory 1708 and auxiliary memory 1710, which may be memory semiconductors (e.g., DRAMs, etc.). These computer program products may be means for providing software to the computer system 1700. Computer programs (e.g., computer control logic) may be stored in the main memory 1708 and / or the auxiliary memory 1710. Computer programs may also be received via the communication interface 1724. [ Such computer programs enable computer system 1700 to implement methods of the present invention as discussed herein. In particular, the computer programs may be stored on a computer-readable medium such as, but not limited to, a processor device 1704, as shown in Figures 7, 8, 9A, 9B, 10A, 10B, 11, and 13-16 Thereby enabling the illustrated methods to be implemented. Accordingly, such computer programs may represent the controllers of the computer system 1700. If the present disclosure is implemented using software, the software may be stored in a computer program product and stored in the removable storage drive 1714, interface 1720, and hard disk drive 1712, or communication interface 1724 may be used to load the computer system 1700.

Techniques consistent with this disclosure may include, among other features, secure storage of data using advanced storage keys and transmission and validation of remote notification service messages, of payment transactions using mobile devices that do not use secure elements Processing systems and methods. Although various representative embodiments of the disclosed systems and methods are described above, those skilled in the relevant arts will appreciate that the various exemplary embodiments of the disclosed systems and methods are provided for illustrative purposes only, and not for purposes of limitation. The various exemplary embodiments of the disclosed systems and methods are not exhaustive and are not intended to limit the disclosure to the precise forms disclosed. Modifications and variations may be possible in light of the above teachings and may be acquired from practice of the present disclosure without departing from the breadth or scope.

Claims (9)

In the device,
A database for storing an encrypted session key using a storage key;
Means for decrypting the second key using the first key to obtain the storage key;
Means for decrypting the encrypted session key stored in the database using the obtained storage key; And
Means for generating an application secret for determining whether a transaction should be authorized using the decrypted session key;
≪ / RTI > The method according to claim 1,
Wherein the second key is generated based on a random value. 3. The method according to claim 1 or 2,
The apparatus comprises:
Means for discarding the decrypted session key once the decrypted session key is used by the means for generating the application password;
Lt; / RTI > 4. The method according to any one of claims 1 to 3,
Means for encrypting the decrypted session key using a third key to generate an encrypted message;
Means for generating a code associated with the generated encrypted message; And
Means for generating a combined message comprising the generated encrypted message and the generated code;
Lt; / RTI > 5. The method of claim 4,
And the third key is the first key. The method according to claim 4 or 5,
Wherein the code is generated using padding. The method according to claim 4 or 5,
Wherein the code is a fourth key. CLAIMS 1. A method of controlling a device including a database storing an encrypted session key using a storage key,
The method comprises:
Decrypting the second key using the first key to obtain the storage key;
Decrypting the encrypted session key stored in the database using the obtained storage key; And
Generating an application secret for determining whether to use the decrypted session key to authorize a transaction;
And a control method of the apparatus. And a database for storing the encrypted session key using the storage key,
Decrypting the second key using the first key to obtain the storage key;
Decrypting the encrypted session key stored in the database using the obtained storage key; And
Generating an application secret for determining whether a transaction should be authorized using the decrypted session key;
Gt; a computer program. ≪ / RTI >

Images