MX356939B - Method and system for generating an advanced storage key in a mobile device without secure elements. - Google Patents

Method and system for generating an advanced storage key in a mobile device without secure elements.

Info

Publication number
MX356939B
MX356939B MX2016010086A MX2016010086A MX356939B MX 356939 B MX356939 B MX 356939B MX 2016010086 A MX2016010086 A MX 2016010086A MX 2016010086 A MX2016010086 A MX 2016010086A MX 356939 B MX356939 B MX 356939B
Authority
MX
Mexico
Prior art keywords
program
mobile device
code associated
generating
storage key
Prior art date
Application number
MX2016010086A
Other languages
Spanish (es)
Other versions
MX2016010086A (en
Inventor
Radu Cristian
Collinge Mehdi
Original Assignee
Mastercard International Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mastercard International Inc filed Critical Mastercard International Inc
Publication of MX2016010086A publication Critical patent/MX2016010086A/en
Publication of MX356939B publication Critical patent/MX356939B/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Storage Device Security (AREA)
  • Cash Registers Or Receiving Machines (AREA)
  • Telephone Function (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A method for building an advanced storage key includes: storing, in a memory of a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program, the code including an instance identifier, and (iii) program code associated with a second program, the code including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.
MX2016010086A 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements. MX356939B (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201461979113P 2014-04-14 2014-04-14
PCT/US2014/068000 WO2015160385A1 (en) 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements

Publications (2)

Publication Number Publication Date
MX2016010086A MX2016010086A (en) 2017-04-27
MX356939B true MX356939B (en) 2018-06-20

Family

ID=54324415

Family Applications (1)

Application Number Title Priority Date Filing Date
MX2016010086A MX356939B (en) 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements.

Country Status (14)

Country Link
EP (1) EP3132406A4 (en)
JP (3) JP6224254B2 (en)
KR (3) KR101903709B1 (en)
CN (2) CN106104605B (en)
AU (3) AU2014391256B2 (en)
CA (1) CA2933336C (en)
IL (1) IL246109B (en)
MX (1) MX356939B (en)
NZ (1) NZ721223A (en)
RU (2) RU2653290C1 (en)
SG (2) SG11201604876YA (en)
UA (1) UA117951C2 (en)
WO (1) WO2015160385A1 (en)
ZA (1) ZA201603938B (en)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10270748B2 (en) 2013-03-22 2019-04-23 Nok Nok Labs, Inc. Advanced authentication techniques and applications
US11521203B2 (en) * 2015-07-09 2022-12-06 Cryptography Research, Inc. Generating a cryptographic key based on transaction data of mobile payments
JP2017175226A (en) * 2016-03-18 2017-09-28 株式会社インテック Program, method and system for issuing public key certificate
US10769635B2 (en) 2016-08-05 2020-09-08 Nok Nok Labs, Inc. Authentication techniques including speech and/or lip movement analysis
EP3340094B1 (en) * 2016-12-22 2021-04-28 Mastercard International Incorporated Method for renewal of cryptographic whiteboxes under binding of new public key and old identifier
EP3364329B1 (en) * 2017-02-21 2023-07-26 Mastercard International Incorporated Security architecture for device applications
CN108804908B (en) * 2017-05-04 2023-05-09 腾讯科技(深圳)有限公司 Equipment fingerprint generation method and device and computing equipment
CN107908948B (en) * 2017-11-01 2019-11-19 中国移动通信集团江苏有限公司 A kind of Android APP device-fingerprint generation method applied to security risk control
US11868995B2 (en) 2017-11-27 2024-01-09 Nok Nok Labs, Inc. Extending a secure key storage for transaction confirmation and cryptocurrency
US11831409B2 (en) 2018-01-12 2023-11-28 Nok Nok Labs, Inc. System and method for binding verifiable claims
CN109068304A (en) * 2018-08-07 2018-12-21 佛山市苔藓云链科技有限公司 It is a kind of to verify the true method of internet of things equipment using near-field communication
US11258604B2 (en) * 2018-10-19 2022-02-22 Oracle International Corporation Rewiring cryptographic key management system service instances
US12041039B2 (en) * 2019-02-28 2024-07-16 Nok Nok Labs, Inc. System and method for endorsing a new authenticator
JP7127585B2 (en) * 2019-03-12 2022-08-30 オムロン株式会社 Safety system and maintenance method
US11792024B2 (en) 2019-03-29 2023-10-17 Nok Nok Labs, Inc. System and method for efficient challenge-response authentication
US11783332B2 (en) 2020-02-14 2023-10-10 Mastercard International Incorporated Method and system for facilitating secure card-based transactions
EP3933731A1 (en) * 2020-06-30 2022-01-05 Mastercard International Incorporated Authorization data processing for multiple issuers
US11784798B2 (en) 2021-03-30 2023-10-10 Visa International Service Association System, method, and computer program product for data security
CN115396103B (en) * 2022-10-26 2023-03-24 杭州海康威视数字技术股份有限公司 AI data sharing method, system and device based on white box key

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7606771B2 (en) * 2001-01-11 2009-10-20 Cardinalcommerce Corporation Dynamic number authentication for credit/debit cards
DE502005010250D1 (en) * 2005-01-07 2010-10-21 Limo Patentverwaltung Gmbh DEVICE FOR HOMOGENIZING LIGHT
KR100842267B1 (en) * 2006-12-01 2008-06-30 한국전자통신연구원 Server, Client and Method for integrated user authentication in a system of multi-authentication means
JP2009284231A (en) * 2008-05-22 2009-12-03 Panasonic Corp Key generating apparatus, key generating method, key generating program, and electronic apparatus
US8555089B2 (en) * 2009-01-08 2013-10-08 Panasonic Corporation Program execution apparatus, control method, control program, and integrated circuit
US8893967B2 (en) * 2009-05-15 2014-11-25 Visa International Service Association Secure Communication of payment information to merchants using a verification token
AU2011237715B2 (en) * 2010-04-09 2014-12-18 Visa International Service Association System and method for securely validating transactions
US8380177B2 (en) * 2010-04-09 2013-02-19 Paydiant, Inc. Mobile phone payment processing methods and systems
CA2823685C (en) * 2010-08-12 2017-03-07 Mastercard International, Inc. Multi-commerce channel wallet for authenticated transactions
US20120151223A1 (en) * 2010-09-20 2012-06-14 Conde Marques Ricardo Nuno De Pinho Coelho Method for securing a computing device with a trusted platform module-tpm
US8746553B2 (en) * 2010-09-27 2014-06-10 Mastercard International Incorporated Purchase Payment device updates using an authentication process
BR112013011299B1 (en) * 2010-11-10 2021-05-18 Einnovations Holdings Pte. Ltd. method of executing a financial transaction over an unsecured public telecommunications infrastructure and communications device to facilitate the execution of a financial transaction over an unsecured public telecommunications infrastructure
GB201105765D0 (en) * 2011-04-05 2011-05-18 Visa Europe Ltd Payment system
US20120317628A1 (en) * 2011-06-09 2012-12-13 Yeager C Douglas Systems and methods for authorizing a transaction
US9473295B2 (en) * 2011-09-26 2016-10-18 Cubic Corporation Virtual transportation point of sale
US10515359B2 (en) * 2012-04-02 2019-12-24 Mastercard International Incorporated Systems and methods for processing mobile payments by provisioning credentials to mobile devices without secure elements
KR101671457B1 (en) * 2012-04-18 2016-11-01 구글 인코포레이티드 Processing payment transactions without a secure element
WO2013159110A1 (en) * 2012-04-20 2013-10-24 Conductiv Software, Inc. Multi-factor mobile transaction authentication
KR20130140948A (en) * 2012-05-17 2013-12-26 삼성전자주식회사 Apparatus and method for contents encryption and decryption based on storage device id
US8738454B2 (en) * 2012-07-23 2014-05-27 Wal-Mart Stores, Inc. Transferring digital receipt data to mobile devices
US9646303B2 (en) * 2013-08-15 2017-05-09 Visa International Service Association Secure remote payment transaction processing using a secure element
JP6353537B2 (en) * 2013-12-02 2018-07-04 マスターカード インターナショナル インコーポレーテッド Method and system for performing secure authentication of users and mobile devices without using a secure element

Also Published As

Publication number Publication date
JP6703510B2 (en) 2020-06-03
IL246109A0 (en) 2016-07-31
RU2682840C2 (en) 2019-03-21
CN106104605A (en) 2016-11-09
JP6224254B2 (en) 2017-11-01
KR20200018729A (en) 2020-02-19
SG10201801008SA (en) 2018-03-28
AU2017245412A1 (en) 2017-11-02
KR20160132105A (en) 2016-11-16
JP2017513248A (en) 2017-05-25
CN106104605B (en) 2020-03-17
IL246109B (en) 2020-03-31
MX2016010086A (en) 2017-04-27
JP6889967B2 (en) 2021-06-18
KR101903709B1 (en) 2018-10-04
AU2014391256A1 (en) 2016-07-07
EP3132406A1 (en) 2017-02-22
RU2653290C1 (en) 2018-05-07
KR102151579B1 (en) 2020-09-03
SG11201604876YA (en) 2016-07-28
AU2019250276A1 (en) 2019-11-07
CA2933336A1 (en) 2015-10-22
JP2020074566A (en) 2020-05-14
RU2018113732A (en) 2019-03-04
JP2018050300A (en) 2018-03-29
AU2014391256B2 (en) 2017-07-13
KR102150722B1 (en) 2020-09-02
CN111523884A (en) 2020-08-11
CN111523884B (en) 2023-05-30
AU2019250276B2 (en) 2021-04-01
KR20180108907A (en) 2018-10-04
CA2933336C (en) 2018-09-04
NZ721223A (en) 2018-02-23
WO2015160385A1 (en) 2015-10-22
UA117951C2 (en) 2018-10-25
EP3132406A4 (en) 2017-11-01
ZA201603938B (en) 2017-09-27
RU2018113732A3 (en) 2019-03-04

Similar Documents

Publication Publication Date Title
UA117951C2 (en) Method and system for generating an advanced storage key in a mobile device without secure elements
CL2016001866A1 (en) A method to build an advanced storage key on a mobile communication device.
MX2023007718A (en) Encrypted userdata transit and storage.
WO2017171987A8 (en) System, apparatus and method for performing secure memory training and management in a trusted environment
GB2538927A (en) Methods and apparatus to identify media using hash keys
NZ746653A (en) Access control for encrypted data in machine-readable identifiers
MX2017007292A (en) Remote programming for access control system with virtual card data.
MX354574B (en) User authentication method and apparatus based on audio and video data.
PH12018502160A1 (en) Systems and methods for secure storage of user information in a user profile
MX361793B (en) Method and system for secure authentication of user and mobile device without secure elements.
AR097524A1 (en) DATA ENCRYPTION AND SMART CARD THAT STORTS ENCRYPTED DATA
GB2530972A (en) Encrypted purging of data from content node storage
GB201215009D0 (en) Mobile energy audit system and method
WO2014195293A3 (en) Authentication devices, key generator devices, methods for controlling an authentication device, and methods for controlling a key generator
EP3627843A3 (en) Systems and methods for performing transport i/o
WO2014179145A3 (en) Drive level encryption key management in a distributed storage system
NZ701459A (en) Systems and methods for secure processing with embedded cryptographic unit
GB201211472D0 (en) Ordered deletion of content in storage systems
BR112013001728A2 (en) methods for encrypting a value entered in a user device, for verifying a value communicated to an authentication system via a communications network, and for communicating a value entered in a user device to an authentication system via a communications network, user device, system, software, and computer readable medium.
MX355275B (en) Enabling access to data.
IN2014MU00771A (en)
SG10201810442RA (en) Secure identity verification
GB2574545A (en) Security credentials
WO2015157131A3 (en) System and method for boot sequence modification using chip-restricted instructions residing on an external memory device
SG11201805503TA (en) Method of inputting document information, device, server, and storage medium

Legal Events

Date Code Title Description
FG Grant or registration