EP2476088A4 - Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification - Google Patents

Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification

Info

Publication number
EP2476088A4
EP2476088A4 EP10816167.0A EP10816167A EP2476088A4 EP 2476088 A4 EP2476088 A4 EP 2476088A4 EP 10816167 A EP10816167 A EP 10816167A EP 2476088 A4 EP2476088 A4 EP 2476088A4
Authority
EP
European Patent Office
Prior art keywords
merchants
payment information
secure communication
verification token
token
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP10816167.0A
Other languages
German (de)
English (en)
Other versions
EP2476088A2 (fr
Inventor
Ayman Hammad
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Visa International Service Association
Original Assignee
Visa International Service Association
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US12/712,148 external-priority patent/US7891560B2/en
Priority claimed from US12/780,657 external-priority patent/US9038886B2/en
Application filed by Visa International Service Association filed Critical Visa International Service Association
Publication of EP2476088A2 publication Critical patent/EP2476088A2/fr
Publication of EP2476088A4 publication Critical patent/EP2476088A4/fr
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • G06Q20/425Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computing Systems (AREA)
  • Software Systems (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
EP10816167.0A 2009-09-10 2010-09-10 Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification Withdrawn EP2476088A4 (fr)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US24136709P 2009-09-10 2009-09-10
US12/712,148 US7891560B2 (en) 2009-05-15 2010-02-24 Verification of portable consumer devices
US12/780,657 US9038886B2 (en) 2009-05-15 2010-05-14 Verification of portable consumer devices
PCT/US2010/048455 WO2011031988A2 (fr) 2009-09-10 2010-09-10 Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification

Publications (2)

Publication Number Publication Date
EP2476088A2 EP2476088A2 (fr) 2012-07-18
EP2476088A4 true EP2476088A4 (fr) 2014-01-15

Family

ID=43733107

Family Applications (1)

Application Number Title Priority Date Filing Date
EP10816167.0A Withdrawn EP2476088A4 (fr) 2009-09-10 2010-09-10 Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification

Country Status (5)

Country Link
EP (1) EP2476088A4 (fr)
AU (1) AU2010292125B2 (fr)
BR (1) BR112012005419A2 (fr)
CA (1) CA2773543A1 (fr)
WO (1) WO2011031988A2 (fr)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9715681B2 (en) 2009-04-28 2017-07-25 Visa International Service Association Verification of portable consumer devices
US9105027B2 (en) 2009-05-15 2015-08-11 Visa International Service Association Verification of portable consumer device for secure services
US8534564B2 (en) 2009-05-15 2013-09-17 Ayman Hammad Integration of verification tokens with mobile communication devices
US10846683B2 (en) 2009-05-15 2020-11-24 Visa International Service Association Integration of verification tokens with mobile communication devices
US8893967B2 (en) 2009-05-15 2014-11-25 Visa International Service Association Secure Communication of payment information to merchants using a verification token
US9038886B2 (en) 2009-05-15 2015-05-26 Visa International Service Association Verification of portable consumer devices
WO2012122049A2 (fr) 2011-03-04 2012-09-13 Visa International Service Association Intégration d'une fonctionnalité de paiement dans des éléments sécurisés d'ordinateurs
US10282724B2 (en) 2012-03-06 2019-05-07 Visa International Service Association Security system incorporating mobile device
TWI566564B (zh) * 2012-04-25 2017-01-11 Samton International Development Technology Co Ltd Virtual reality authentication circuit, system and electronic consumption method
US9807612B2 (en) * 2014-04-25 2017-10-31 Tendyron Corporation Secure data interaction method and system
CN109191116B (zh) * 2018-07-27 2023-05-12 创新先进技术有限公司 资源管理方法和系统以及支付管理方法和系统
US11451396B2 (en) * 2019-11-05 2022-09-20 Microsoft Technology Licensing, Llc False positive reduction in electronic token forgery detection
CN114692572B (zh) * 2022-03-30 2025-01-10 中国农业银行股份有限公司 数据转化方法及相关装置

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5365586A (en) * 1993-04-09 1994-11-15 Washington University Method and apparatus for fingerprinting magnetic media
WO2002001520A1 (fr) * 2000-06-26 2002-01-03 Covadis S.A. Dispositif destine a effectuer des transactions securisees dans un reseau de communication
US20060016879A1 (en) * 2004-07-26 2006-01-26 First Data Corporation Presentation instrument security arrangement and methods
EP2098985A2 (fr) * 2008-03-03 2009-09-09 Broadcom Corporation Architecture sûre pour lecteurs financiers

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6983882B2 (en) * 2003-03-31 2006-01-10 Kepler, Ltd. Personal biometric authentication and authorization device
US7761374B2 (en) 2003-08-18 2010-07-20 Visa International Service Association Method and system for generating a dynamic verification value
US7740168B2 (en) 2003-08-18 2010-06-22 Visa U.S.A. Inc. Method and system for generating a dynamic verification value
KR20050019674A (ko) * 2003-08-20 2005-03-03 엘지전자 주식회사 이동 통신 단말기를 이용한 모바일 신용카드 결재 방법
US7584153B2 (en) * 2004-03-15 2009-09-01 Qsecure, Inc. Financial transactions with dynamic card verification values
US8934865B2 (en) * 2006-02-02 2015-01-13 Alcatel Lucent Authentication and verification services for third party vendors using mobile devices
KR100899477B1 (ko) * 2006-12-05 2009-05-27 백승한 결재 인증 시스템 및 방법

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5365586A (en) * 1993-04-09 1994-11-15 Washington University Method and apparatus for fingerprinting magnetic media
WO2002001520A1 (fr) * 2000-06-26 2002-01-03 Covadis S.A. Dispositif destine a effectuer des transactions securisees dans un reseau de communication
US20060016879A1 (en) * 2004-07-26 2006-01-26 First Data Corporation Presentation instrument security arrangement and methods
EP2098985A2 (fr) * 2008-03-03 2009-09-09 Broadcom Corporation Architecture sûre pour lecteurs financiers

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of WO2011031988A2 *

Also Published As

Publication number Publication date
WO2011031988A3 (fr) 2011-07-21
WO2011031988A2 (fr) 2011-03-17
BR112012005419A2 (pt) 2016-04-12
AU2010292125A1 (en) 2012-04-26
CA2773543A1 (fr) 2011-03-17
EP2476088A2 (fr) 2012-07-18
AU2010292125B2 (en) 2014-11-06

Similar Documents

Publication Publication Date Title
EP2476088A4 (fr) Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification
GB2473400B (en) Real time authentication of payment cards
EP2291793A4 (fr) Carte de transaction
EP2248093A4 (fr) Jeton de transaction financière
GB2470281B (en) Purchase transaction system with encrypted transaction information
EP2119076A4 (fr) Authentification d'une carte de données au moyen d'une valeur de vérification de transaction
GB201309968D0 (en) Purchase transaction system with encrypted payment card data
ZA201008904B (en) Secure transaction authentication
SG10201405002VA (en) Location controls on payment card transactions
EP2156397A4 (fr) Transactions par carte de paiement sécurisées
GB2490075B (en) Transaction auditing for data security devices
EP2394388A4 (fr) Vérification et authentification de transaction en réseau
EP2478479A4 (fr) Facilitation de paiements de commerce électronique à l'aide de procédés de paiement client non acceptés
EP2561470A4 (fr) Traitement de paiement à transaction par tierce partie
GB201322282D0 (en) A system for payment via electronic wallet
EP2715632A4 (fr) Système de transaction monétaire
SG10201500686YA (en) Authentication framework extension to verify identification information
EP2656280A4 (fr) Système de paiement de distribution de carburant pour une évaluation sécurisée des données d'un détenteur de carte
GB2488486B (en) Payment card
GB0905388D0 (en) Verification of a payment card transaction
GB0905150D0 (en) Decreasing credit card fraud
PL2325806T3 (pl) Sposób generowania transakcji poboru opłat drogowych
GB0905398D0 (en) Verification of a payment card transaction over the internet
TWM369724U (en) Structure of coin holding card
GB0810826D0 (en) Payment card, transaction systems and method of issuing a payment card

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20120330

AK Designated contracting states

Kind code of ref document: A2

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK SM TR

DAX Request for extension of the european patent (deleted)
A4 Supplementary search report drawn up and despatched

Effective date: 20131217

RIC1 Information provided on ipc code assigned before grant

Ipc: G06F 21/35 20130101ALI20131211BHEP

Ipc: H04L 29/06 20060101ALI20131211BHEP

Ipc: G06Q 20/32 20120101ALI20131211BHEP

Ipc: G06F 21/31 20130101ALI20131211BHEP

Ipc: G06Q 20/42 20120101ALI20131211BHEP

Ipc: G06Q 20/20 20120101ALI20131211BHEP

Ipc: G06Q 20/12 20120101ALI20131211BHEP

Ipc: H04L 9/32 20060101ALI20131211BHEP

Ipc: G06F 21/34 20130101ALI20131211BHEP

Ipc: G06Q 20/40 20120101ALI20131211BHEP

Ipc: G06Q 20/00 20120101AFI20131211BHEP

Ipc: G06F 21/00 20130101ALI20131211BHEP

Ipc: G06Q 20/38 20120101ALI20131211BHEP

17Q First examination report despatched

Effective date: 20140120

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION HAS BEEN WITHDRAWN

18W Application withdrawn

Effective date: 20141021