UA117951C2 - Спосіб і система для генерації вдосконаленого ключа зберігання в мобільному пристрої без захисних елементів - Google Patents

Спосіб і система для генерації вдосконаленого ключа зберігання в мобільному пристрої без захисних елементів

Info

Publication number
UA117951C2
UA117951C2 UAA201609401A UAA201609401A UA117951C2 UA 117951 C2 UA117951 C2 UA 117951C2 UA A201609401 A UAA201609401 A UA A201609401A UA A201609401 A UAA201609401 A UA A201609401A UA 117951 C2 UA117951 C2 UA 117951C2
Authority
UA
Ukraine
Prior art keywords
program
mobile device
code associated
generating
storage key
Prior art date
Application number
UAA201609401A
Other languages
English (en)
Inventor
Мехді Коллінге
Крістіан Раду
Original Assignee
Мастеркард Інтернешнл Інкорпорейтед
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Мастеркард Інтернешнл Інкорпорейтед filed Critical Мастеркард Інтернешнл Інкорпорейтед
Publication of UA117951C2 publication Critical patent/UA117951C2/uk

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Storage Device Security (AREA)
  • Telephone Function (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Cash Registers Or Receiving Machines (AREA)

Abstract

Спосіб побудови вдосконаленого ключа зберігання включає в себе: збереження, в пам'яті мобільного пристрою, щонайменше (і) інформації про пристрій, пов'язаний з мобільним пристроєм, (іі) програмного коду, пов'язаного з першою програмою, причому код включає в себе ідентифікатор екземпляра, і (ііі) програмного коду, пов'язаного з другою програмою, причому код включає в себе перший ключ; генерацію характерної ознаки пристрою, пов'язаної з мобільним пристроєм, на основі інформації про пристрій, за допомогою виконання коду, пов'язаного з першою програмою; генерацію випадкового значення за допомогою виконання коду, пов'язаного з першою програмою; побудову значення диверсифікатора на основі згенерованої характерної ознаки пристрою, згенерованого випадкового значення і ідентифікатора екземпляра, включеного в код, пов'язаний з першою програмою; і дешифрування побудованого значення диверсифікатора з використанням першого ключа, що зберігається в коді, пов'язаному з другою програмою, за допомогою виконання коду, пов'язаного з другою програмою, для отримання ключа зберігання.
UAA201609401A 2014-04-14 2014-12-02 Спосіб і система для генерації вдосконаленого ключа зберігання в мобільному пристрої без захисних елементів UA117951C2 (uk)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201461979113P 2014-04-14 2014-04-14
PCT/US2014/068000 WO2015160385A1 (en) 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements

Publications (1)

Publication Number Publication Date
UA117951C2 true UA117951C2 (uk) 2018-10-25

Family

ID=54324415

Family Applications (1)

Application Number Title Priority Date Filing Date
UAA201609401A UA117951C2 (uk) 2014-04-14 2014-12-02 Спосіб і система для генерації вдосконаленого ключа зберігання в мобільному пристрої без захисних елементів

Country Status (14)

Country Link
EP (1) EP3132406A4 (uk)
JP (3) JP6224254B2 (uk)
KR (3) KR102151579B1 (uk)
CN (2) CN111523884B (uk)
AU (3) AU2014391256B2 (uk)
CA (1) CA2933336C (uk)
IL (1) IL246109B (uk)
MX (1) MX356939B (uk)
NZ (1) NZ721223A (uk)
RU (2) RU2682840C2 (uk)
SG (2) SG10201801008SA (uk)
UA (1) UA117951C2 (uk)
WO (1) WO2015160385A1 (uk)
ZA (1) ZA201603938B (uk)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10270748B2 (en) 2013-03-22 2019-04-23 Nok Nok Labs, Inc. Advanced authentication techniques and applications
US11521203B2 (en) * 2015-07-09 2022-12-06 Cryptography Research, Inc. Generating a cryptographic key based on transaction data of mobile payments
JP2017175226A (ja) * 2016-03-18 2017-09-28 株式会社インテック 公開鍵証明書を発行するためのプログラム、方法およびシステム
US10769635B2 (en) 2016-08-05 2020-09-08 Nok Nok Labs, Inc. Authentication techniques including speech and/or lip movement analysis
EP3340094B1 (en) * 2016-12-22 2021-04-28 Mastercard International Incorporated Method for renewal of cryptographic whiteboxes under binding of new public key and old identifier
EP3364329B1 (en) * 2017-02-21 2023-07-26 Mastercard International Incorporated Security architecture for device applications
CN108804908B (zh) * 2017-05-04 2023-05-09 腾讯科技(深圳)有限公司 一种设备指纹生成方法、装置及计算设备
CN107908948B (zh) * 2017-11-01 2019-11-19 中国移动通信集团江苏有限公司 一种应用于安全风险控制的安卓app设备指纹生成方法
US11868995B2 (en) 2017-11-27 2024-01-09 Nok Nok Labs, Inc. Extending a secure key storage for transaction confirmation and cryptocurrency
US11831409B2 (en) 2018-01-12 2023-11-28 Nok Nok Labs, Inc. System and method for binding verifiable claims
CN109068304A (zh) * 2018-08-07 2018-12-21 佛山市苔藓云链科技有限公司 一种使用近场通信验证物联网设备真实的方法
US11258604B2 (en) * 2018-10-19 2022-02-22 Oracle International Corporation Rewiring cryptographic key management system service instances
US12041039B2 (en) * 2019-02-28 2024-07-16 Nok Nok Labs, Inc. System and method for endorsing a new authenticator
JP7127585B2 (ja) * 2019-03-12 2022-08-30 オムロン株式会社 セーフティシステムおよびメンテナンス方法
US11792024B2 (en) 2019-03-29 2023-10-17 Nok Nok Labs, Inc. System and method for efficient challenge-response authentication
US11783332B2 (en) 2020-02-14 2023-10-10 Mastercard International Incorporated Method and system for facilitating secure card-based transactions
EP3933731A1 (en) * 2020-06-30 2022-01-05 Mastercard International Incorporated Authorization data processing for multiple issuers
US11784798B2 (en) 2021-03-30 2023-10-10 Visa International Service Association System, method, and computer program product for data security
CN115396103B (zh) * 2022-10-26 2023-03-24 杭州海康威视数字技术股份有限公司 基于白盒密钥的ai数据共享方法、系统和装置

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7606771B2 (en) * 2001-01-11 2009-10-20 Cardinalcommerce Corporation Dynamic number authentication for credit/debit cards
EP1839083B1 (de) * 2005-01-07 2010-09-08 LIMO Patentverwaltung GmbH & Co. KG Vorrichtung zur homogenisierung von licht
KR100842267B1 (ko) * 2006-12-01 2008-06-30 한국전자통신연구원 다중 인증 수단을 가지는 시스템의 통합 사용자 인증 서버,클라이언트 및 방법
JP2009284231A (ja) * 2008-05-22 2009-12-03 Panasonic Corp 鍵生成装置、鍵生成方法及び鍵生成プログラム、並びに、電子機器
US8555089B2 (en) * 2009-01-08 2013-10-08 Panasonic Corporation Program execution apparatus, control method, control program, and integrated circuit
US8893967B2 (en) * 2009-05-15 2014-11-25 Visa International Service Association Secure Communication of payment information to merchants using a verification token
US8380177B2 (en) * 2010-04-09 2013-02-19 Paydiant, Inc. Mobile phone payment processing methods and systems
CN102792325B (zh) * 2010-04-09 2017-09-01 维萨国际服务协会 用于安全地证实交易的系统和方法
SG187832A1 (en) * 2010-08-12 2013-03-28 Mastercard International Inc Multi-commerce channel wallet for authenticated transactions
US20120151223A1 (en) * 2010-09-20 2012-06-14 Conde Marques Ricardo Nuno De Pinho Coelho Method for securing a computing device with a trusted platform module-tpm
US8746553B2 (en) * 2010-09-27 2014-06-10 Mastercard International Incorporated Purchase Payment device updates using an authentication process
AU2010363671B2 (en) * 2010-11-10 2014-11-27 Einnovations Holdings Pte. Ltd. Method of performing a financial transaction via unsecured public telecommunication infrastructure and an apparatus for same
GB201105765D0 (en) * 2011-04-05 2011-05-18 Visa Europe Ltd Payment system
WO2012170895A1 (en) * 2011-06-09 2012-12-13 Yeager C Douglas Systems and methods for authorizing a transaction
US9473295B2 (en) * 2011-09-26 2016-10-18 Cubic Corporation Virtual transportation point of sale
US10515359B2 (en) * 2012-04-02 2019-12-24 Mastercard International Incorporated Systems and methods for processing mobile payments by provisioning credentials to mobile devices without secure elements
JP5795453B2 (ja) * 2012-04-18 2015-10-14 グーグル・インコーポレーテッド セキュア要素を用いない支払取引処理
WO2013159110A1 (en) * 2012-04-20 2013-10-24 Conductiv Software, Inc. Multi-factor mobile transaction authentication
KR20130140948A (ko) * 2012-05-17 2013-12-26 삼성전자주식회사 저장 장치의 식별자에 기반한 컨텐츠의 암복호화 장치 및 방법
US8738454B2 (en) * 2012-07-23 2014-05-27 Wal-Mart Stores, Inc. Transferring digital receipt data to mobile devices
CN113011896B (zh) * 2013-08-15 2024-04-09 维萨国际服务协会 使用安全元件的安全远程支付交易处理
BR112016012527A2 (pt) * 2013-12-02 2017-08-08 Mastercard International Inc Método e sistema para autenticação segura de usuário e dispositivo móvel sem elementos seguros

Also Published As

Publication number Publication date
AU2014391256A1 (en) 2016-07-07
AU2019250276A1 (en) 2019-11-07
AU2014391256B2 (en) 2017-07-13
CN111523884B (zh) 2023-05-30
MX356939B (es) 2018-06-20
KR102150722B1 (ko) 2020-09-02
KR20180108907A (ko) 2018-10-04
EP3132406A1 (en) 2017-02-22
RU2653290C1 (ru) 2018-05-07
KR102151579B1 (ko) 2020-09-03
SG11201604876YA (en) 2016-07-28
RU2018113732A3 (uk) 2019-03-04
CN106104605B (zh) 2020-03-17
AU2019250276B2 (en) 2021-04-01
JP6224254B2 (ja) 2017-11-01
RU2018113732A (ru) 2019-03-04
WO2015160385A1 (en) 2015-10-22
CN111523884A (zh) 2020-08-11
KR20160132105A (ko) 2016-11-16
CA2933336C (en) 2018-09-04
JP6889967B2 (ja) 2021-06-18
JP2017513248A (ja) 2017-05-25
KR20200018729A (ko) 2020-02-19
IL246109B (en) 2020-03-31
MX2016010086A (es) 2017-04-27
SG10201801008SA (en) 2018-03-28
CN106104605A (zh) 2016-11-09
AU2017245412A1 (en) 2017-11-02
KR101903709B1 (ko) 2018-10-04
NZ721223A (en) 2018-02-23
RU2682840C2 (ru) 2019-03-21
ZA201603938B (en) 2017-09-27
IL246109A0 (en) 2016-07-31
JP2020074566A (ja) 2020-05-14
JP2018050300A (ja) 2018-03-29
CA2933336A1 (en) 2015-10-22
JP6703510B2 (ja) 2020-06-03
EP3132406A4 (en) 2017-11-01

Similar Documents

Publication Publication Date Title
MX2016010086A (es) Metodo y sistema para generar una llave de almacenamiento avanzada en un dispositivo movil sin elementos de seguridad.
CL2016001866A1 (es) Un método para construir una clave de almacenamiento avanzada en un dispositivo de comunicación móvil.
MX2023007718A (es) Transito y almacenamiento de datos de usuario encriptados.
WO2017171987A8 (en) System, apparatus and method for performing secure memory training and management in a trusted environment
GB2538927A (en) Methods and apparatus to identify media using hash keys
NZ746653A (en) Access control for encrypted data in machine-readable identifiers
MX2017007292A (es) Programacion remota para sistema de control de acceso con datos de tarjeta virtual.
MX2015009491A (es) Procedimiento y aparato de autenticacion de usuarios basados en datos de audio y video.
TW201614650A (en) Comparison operations in memory
PH12018502160A1 (en) Systems and methods for secure storage of user information in a user profile
MX361793B (es) Método y sistema para la autentificación segura del usuario y el dispositivo móvil sin elementos de seguridad.
GB2530972A (en) Encrypted purging of data from content node storage
GB201215009D0 (en) Mobile energy audit system and method
EP3627843A3 (en) Systems and methods for performing transport i/o
MY183516A (en) Printing apparatus, printing method, and storage medium
WO2014195293A3 (en) Authentication devices, key generator devices, methods for controlling an authentication device, and methods for controlling a key generator
WO2014179145A3 (en) Drive level encryption key management in a distributed storage system
EP2639996A3 (en) Collusion-resistant outsourcing of private set intersection
NZ701459A (en) Systems and methods for secure processing with embedded cryptographic unit
MX2016013227A (es) Metodo para almacenar datos por medio de un dispositivo de almacenamiento y dispositivo de almacenamiento.
GB201211472D0 (en) Ordered deletion of content in storage systems
BR112013001728A2 (pt) métodos para criptografar um valor introduzido em um dispositivo de usuário, para verificar um valor comunicado a um sistema de autenticação via uma rede de comunicações, e para comunicar um valor introduzido em um dispositivo de usuário a um sistema de autenticação via uma rede de comunicações, dispositivo de usuário, sistema, software, e, meio legível por computador.
IN2014MU00771A (uk)
SG10201810442RA (en) Secure identity verification
GB2574545A (en) Security credentials